Hi Steve:
Thanks for your reply. Just so that the mailing list has this answer the
next time some poor sod has to implement this, I'd just like to confirm
that this is now the right formulation in openssl.cnf:
[my_cert_extensions]
basicConstraints = CA:FALSE
keyUsage = cri
On Tue, Aug 25, 2009, Patrick Patterson wrote:
> Hello all:
>
> I find myself needing to create some test certificates with SMIME
> Capabilities
> encoded in them. Now, the ASN.1 prototype for these are:
>
> SMIMECapabilities ::= SEQUENCE OF SMIMECapability
>
> SMIMECapability ::= SEQUENCE {
