why I can't build certificate with one 64 or 128 bits size RSA key?
Because it could be cracked almost immediately. :)
Yes, but what's your point? ;-)
Response to OP, Rich Salz knows at least as much as I do about this stuff --
Seriously, no smiley here -- independent of recommended key sizes, you at least need enough key length to support a block size plus random padding (see OAEP), or a hash length plus random pad (cf. PKCS) for digital signatures.
For toy ciphers, for play, not intended for real work, try 512 bit RSA keys. For serious stuff, probably 1024, 1536, or 2048-bit keys.
Read the FAQ at the RSALABS site, it's a good start.
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
