RSA Legalities

[Brian Aberle]

To build a legally royalty free SSL implementation what RSA algorithms do I need to abstain from using? When does the RSA patent expire?   1. The apps/req.exe utility generates this key that I use     to for the certificate authority in apps/CA.exe.   -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: DES-EDE3-CBC,D096F03DF488D895 (...) -----END RSA PRIVATE KEY-----       2. CA.exe issues certificates.  The certificates are created using [Signature Algorithm: md5WithRSAEncryption]. Is this legitimate?          3. In my SSL Server I have the following: SSL_CTX_set_cipher_list(ctx,"DES-CBC3-SHA") Does this select the SSL encryption algorithm?  If so, how do I guarantee that my client application supports this?