NewX509 0 0 596 580 Dialog 9 6 0 6 Arial 14 50 false false false false Create Qt::Horizontal QSizePolicy::Expanding 20 20 95 40 95 40 true 0 Source 9 6 Qt::Vertical QSizePolicy::Expanding 20 16 Signing request 8 6 Sign this Certificate signing &request Copy extensions from the request true A certificate signing request can be signed, even if the private key of the request is not available. This is the intention of a CSR: Getting signed by a CA certificate, whoes certificate of course must be in the database Of course you need the private key of the CSR if you want to create a self-signed cert from it. Show request Qt::Vertical QSizePolicy::Expanding 20 16 Signing 9 6 0 6 Create a &self signed certificate with the serial true If you leave this blank the serial 00 will be used 1 0 6 Use &this Certificate for for signing All certificates in your database that can create valid signatures This list contains all certificates with the CA-flag set to true and whoes private key is present in the key-database. If this list is disabled, you only can create a self-signed certificate. Qt::Vertical 20 16 0 6 Signature algorithm Qt::Vertical QSizePolicy::Expanding 20 16 Template 9 6 Template for the new certificate 7 0 0 0 All available templates This list contains all templates from the toplevel template Tab Apply Qt::Vertical QSizePolicy::Expanding 20 16 Subject 9 6 Distinguished name 8 6 0 6 60 Organisation This name is only used internally and does not appear in the resulting certificate 100 Must be exactly 2 letter of size (DE, UK) 2 64 Country code State or Province Locality Organ. unit Common name E-Mail address Internal name Qt::Horizontal 0 6 This name is only used internally and does not appear in the resulting certificate 100 Add Delete QAbstractItemView::SingleSelection QAbstractItemView::SelectRows 0 0 Private key 9 6 7 0 0 0 This list only contains unused keys Qt::Horizontal QSizePolicy::Expanding 20 20 This funny button creates a key. Go figure. &Generate a new key Extensions 8 6 0 6 Basic constrains 8 6 0 6 Type If this will become a CA certificate or not Set this to TRUE if you want to create a CA certificate that signs other certificates. This is always set to FALSE for client or server certificates. In most cases self-signed certificates are CA certificates. Self-signed non-CA certificates are unusual although they are possible. Not defined Certification Authority End Entity 0 6 Path length How much CAs may be below this. If this is left empty the pathlen is not included in the certificate. Otherwise it distinguishes the count of chained CA certificates below this one. A pathlen of 0 means, that this certificate may not issue other sub-CA certificates. Although it can do it, all chain-checking algorithms in e.g. your browser or openssl will (should) fail. The basic constraints should always be critical &Critical Key identifier 8 6 Creates a hash of the key following the PKIX guidelines &Subject Key Identifier Copy the Subject Key Identifier from the issuer If this box is checked an attempt is made to copy the subject key identifier from the signing certificate. It also copies the issuer and serial number from the issuer certificate. Normally this will only be done if the keyid option fails. &Authority Key Identifier Qt::Vertical 20 40 0 6 Validity 8 6 Not before Not after Time range 8 6 Apply Days Months Years Set the time to 00:00:00 and 23:59:59 respectively Midnight Qt::Vertical 20 40 0 6 Authority Info Access CRL distribution point issuer alternative name URI: This is a multi-valued extension that supports all the literal options of subject alternative name. Of the few software packages that currentlyi nterpret this extension most only interpret the URI option. Currently each option will set a new DistributionPoint with the fullName field set to the given value. Other fields like cRLissuer and reasons cannot currently be set or displayed: at this time no examples were available that used these fields. If you see this extension with <UNSUPPORTED> when you attempt to print it out or it doesn't appear to display correctly then let steve know, including the certificate (mail steve at openssl dot org) . Examples: URI:http://www.myhost.com/myca.crl URI:http://www.my.com/my.crl, URI:http://www.oth.com/my.crl can be altered by the file "aia.txt" Edit Edit DNS: IP: URI: email: RID: The authority information access extension gives details about how to access certain information relating to the CA. Its syntax is accessOID;location where 'location' has the same syntax as subject alternative name (except that email:copy is not supported). accessOID can be any valid OID but only certain values are meaningful for example OCSP and caIssuers. OCSP gives the location of an OCSP responder: this is used by Netscape PSM and other software. Example: OCSP;URI:http://ocsp.my.host/ caIssuers;URI:http://my.ca/ca.html DNS: IP: URI: email: RID: The subject alternative name extension allows various literal values to be used. These include "email" (an email address) , "URI" a uniform resource indicator, "DNS" (a DNS domain name) , RID (a registered ID: OBJECT IDENTIFIER) and IP (an IP address). Examples: email:my@other.address, IP: 1.1.1.1 , URI:http://my.url.here/ email:my@other.address, RID:1.2.3.4, DNS: ns.server.tld Edit subject alternative name Edit DNS: IP: URI: email: RID: The issuer alternative name extension allows various literal values to be used. These include "email" (an email address) , "URI" a uniform resource indicator, "DNS" (a DNS domain name), RID (a registered ID: OBJECT IDENTIFIER) and IP (an IP address). Examples: email:my@other.address, IP: 1.1.1.1 , URI:http://my.url.here/ email:my@other.address, RID:1.2.3.4, DNS: ns.server.tld 0 0 100 30 Key Usage 8 6 0 6 Key usage 8 6 &Critical QAbstractItemView::MultiSelection QAbstractItemView::SelectRows Digital Signature Non Repudiation Key Encipherment Data Encipherment Key Agreement Certificate Sign CRL Sign Encipher Only Decipher Only Extended key usage 8 6 C&ritical QAbstractItemView::MultiSelection QAbstractItemView::SelectRows 0 0 100 30 Netscape 8 6 0 6 QAbstractItemView::MultiSelection SSL Client SSL Server S/MIME Object Signing SSL CA S/MIME CA Object Signing CA Qt::Horizontal QSizePolicy::Expanding 20 20 0 6 107 107 Great picture , heh ? true Qt::Vertical QSizePolicy::Expanding 20 20 0 6 CA Revocation URL Revocation URL SSL server name Certificate renewal URL Comment CA policy URL Base URL If you know a more pretty one tell me 0 0 100 30 0 0 100 30 0 6 7 0 0 0 Cancel Qt::Horizontal 311 31 3 0 0 0 OK hashBox QComboBox

widgets/hashBox.h

Validity QWidget

widgets/validity.h

1 tabWidget fromReqCB reqList copyReqExtCB showReqBut selfSignRB serialNr foreignSignRB certList tempList applyTemplate description countryName stateOrProvinceName localityName organisationName organisationalUnitName commonName emailAddress extDNobj extDNname extDNadd extDNdel extDNlist keyList genKeyBUT basicCA basicPath bcCritical subKey authKey validNumber validRange midnightCB applyTime subAltName editSubAlt issAltName editIssAlt crlDist editCrlDist aiaOid authInfAcc editAuthInfAcc kuCritical keyUsage ekuCritical ekeyUsage nsCertType nsBaseUrl nsRevocationUrl nsCARevocationUrl nsRenewalUrl nsCaPolicyUrl nsSslServerName nsComment okButton cancelButton cancelButton clicked() NewX509 reject() 96 569 179 282