|
basicConstraints
|
|
|
changed
|
|
|
diff
|
--- before
+++ after
@@ -1 +1,85 @@
-{}
+{
+ "authority_cert_issuer": null,
+ "authority_cert_serial_number": null,
+ "authority_key_identifier": null,
+ "basic_constraints": [
+ "CA:TRUE"
+ ],
+ "basic_constraints_critical": true,
+ "can_parse_csr": true,
+ "extended_key_usage": null,
+ "extended_key_usage_critical": false,
+ "extensions_by_oid": {
+ "2.5.29.14": {
+ "critical": false,
+ "value": "BBRnu+f+FOPWPyudX3pPFHB/f1MDMw=="
+ },
+ "2.5.29.17": {
+ "critical": false,
+ "value": "MFCCB3NlcnZpY2WCIXNlcnZpY2UucmtlY2x1c3Rlci5rdWJlaW5pdC5sb2NhbIIicmVnaXN0cnkucmtlY2x1c3Rlci5rdWJlaW5pdC5sb2NhbA=="
+ },
+ "2.5.29.19": {
+ "critical": true,
+ "value": "MAMBAf8="
+ }
+ },
+ "key_usage": null,
+ "key_usage_critical": false,
+ "name_constraints_critical": false,
+ "name_constraints_excluded": null,
+ "name_constraints_permitted": null,
+ "ocsp_must_staple": null,
+ "ocsp_must_staple_critical": false,
+ "public_key": "-----BEGIN PUBLIC KEY-----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\np+6vJsnPgLneY9jtoYGHSdMCAwEAAQ==\n-----END PUBLIC KEY-----\n",
+ "public_key_data": {
+ "exponent": 65537,
+ "modulus": 834899495725552332166966715682793263098561320922172572747287719422193592160482023399105094284404014639861328627725208357098635159311155947602027107160712793867699686114808349358601704839331032947920632323685147854174073855164521575581788615261869887958909559022507200906172764504131426593566656527836808133046964652668904309679264919402335285770627514210107482232928324135692681680452825544810356665911742068482156148652091568248496913572941019483136963309231866061471159115474949324247664333754163461117238534776640579695194583373060932956415070506658157024423608880940098502471104491236152602286964610301328380035377186552688864027351630543159403626636351440229298549555297593951828542731597098114258875957327742061245849378243566780889024628860155413298540621802206633672962727113427074340495180144038849181836898878404512706916942283334652409053835927812922692406879276449584557803806307528082573852992322726069310635154146279618590412899935038069771838383431756633570933171009031701964424574819789438719112861617002264772342577213575051582161192584926327419029291759199090288576023593642245559711270934720610757631093910953389595659365717700625404954934145642207581399622725576437643156115041855456519296593742857353662782982611,
+ "size": 4096
+ },
+ "public_key_fingerprints": {
+ "sha256": "f0:9f:88:ca:ae:d8:94:18:fc:ea:9c:53:ca:b4:1c:a3:9c:42:c0:5d:ea:cc:c4:66:0f:22:32:b2:41:31:14:6b"
+ },
+ "public_key_type": "RSA",
+ "signature_valid": true,
+ "subject": {
+ "commonName": "service.rkecluster.kubeinit.local",
+ "countryName": "US",
+ "localityName": "MyCity",
+ "organizationName": "MyCompany",
+ "organizationalUnitName": "MyDepartment",
+ "stateOrProvinceName": "MyState"
+ },
+ "subject_alt_name": [
+ "DNS:service",
+ "DNS:service.rkecluster.kubeinit.local",
+ "DNS:registry.rkecluster.kubeinit.local"
+ ],
+ "subject_alt_name_critical": false,
+ "subject_key_identifier": "67:bb:e7:fe:14:e3:d6:3f:2b:9d:5f:7a:4f:14:70:7f:7f:53:03:33",
+ "subject_ordered": [
+ [
+ "countryName",
+ "US"
+ ],
+ [
+ "stateOrProvinceName",
+ "MyState"
+ ],
+ [
+ "localityName",
+ "MyCity"
+ ],
+ [
+ "organizationName",
+ "MyCompany"
+ ],
+ [
+ "organizationalUnitName",
+ "MyDepartment"
+ ],
+ [
+ "commonName",
+ "service.rkecluster.kubeinit.local"
+ ]
+ ]
+}
|
|
extendedKeyUsage
|
None
|
|
filename
|
/var/kubeinit/registry/certs/domain.csr
|
|
invocation
|
{
"module_args": {
"attributes": null,
"authority_cert_issuer": null,
"authority_cert_serial_number": null,
"authority_key_identifier": null,
"backup": false,
"basic_constraints": [
"CA:TRUE"
],
"basic_constraints_critical": true,
"common_name": "service.rkecluster.kubeinit.local",
"country_name": "US",
"create_subject_key_identifier": true,
"crl_distribution_points": null,
"digest": "sha256",
"email_address": null,
"extended_key_usage": null,
"extended_key_usage_critical": false,
"force": false,
"group": null,
"key_usage": null,
"key_usage_critical": false,
"locality_name": "MyCity",
"mode": null,
"name_constraints_critical": false,
"name_constraints_excluded": null,
"name_constraints_permitted": null,
"ocsp_must_staple": false,
"ocsp_must_staple_critical": false,
"organization_name": "MyCompany",
"organizational_unit_name": "MyDepartment",
"owner": null,
"path": "/var/kubeinit/registry/certs/domain.csr",
"privatekey_content": null,
"privatekey_passphrase": null,
"privatekey_path": "/var/kubeinit/registry/certs/domain.key",
"return_content": false,
"select_crypto_backend": "auto",
"selevel": null,
"serole": null,
"setype": null,
"seuser": null,
"state": "present",
"state_or_province_name": "MyState",
"subject": null,
"subject_alt_name": [
"DNS:service",
"DNS:service.rkecluster.kubeinit.local",
"DNS:registry.rkecluster.kubeinit.local"
],
"subject_alt_name_critical": false,
"subject_key_identifier": null,
"subject_ordered": null,
"unsafe_writes": false,
"use_common_name_for_san": true,
"version": 1
}
}
|
|
keyUsage
|
None
|
|
name_constraints_excluded
|
|
|
name_constraints_permitted
|
|
|
ocspMustStaple
|
|
|
privatekey
|
/var/kubeinit/registry/certs/domain.key
|
|
subject
|
[
[
"C",
"US"
],
[
"ST",
"MyState"
],
[
"L",
"MyCity"
],
[
"O",
"MyCompany"
],
[
"OU",
"MyDepartment"
],
[
"CN",
"service.rkecluster.kubeinit.local"
]
]
|
|
subjectAltName
|
[
"DNS:service",
"DNS:service.rkecluster.kubeinit.local",
"DNS:registry.rkecluster.kubeinit.local"
]
|