Dave Pinn wrote: > Nelson B wrote: >> Best bet is to get a formatted listing of the certificate itself, >> showing all the extensions and their criticality. > > OK, here goes: > > Non-critical X.509 version 3 extensions: > > * CRL Distribution Points > * Authority Key Identifier > * Subject Key Identifier > * Authority Information Access > * Subject Alternative Name > * Netscape Cert Type > * Certificate Policies > > Critical X.509 version 3 extensions (values shown below keys): > > * Basic Constraints > - Subject Type=End Entity, Path Length Constraint=None > * Key Usage > - Digital Signature, Non-Repudiation (c0) > > I don't have a clue what it all means. Is it all good?
Yes. Looks perfect. No unknown critical extensions there. All these extensions are known to mozilla products, except for the Policies extension which is not critical. In short, I see no reason among those extensions why the cert should not appear in the cert list of FF or TB. Out of curiosity, what tool(s) did you use to get that data? -- Nelson B _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
