grid-tools/certificates/INFN_provenance - airavata-sandbox - Git at Google

 -----BEGIN PGP SIGNED MESSAGE-----
 Hash: SHA1

 [ Replacement INFN signing policy, May 2008 (mccreary) ]

 Retrieved from
 <https://dist.eugridpma.info/distribution/igtf/current/accredited/tgz/>
 	ca_INFN-CA-2006-1.28.tar.gz

 on 01May09. Web server presented certificate w/ subject:

 	CN = dist.eugridpma.info
 	O  = NIKHEF
 	OU = PDP
 Serial Num = 01:00:00:00:00:01:10:E4:53:B7:A5

 from authority:

 	CN = Cybertrust Educational CA
 	O  = Cybertrust
 	OU = Educational CA

 Valid from 21Feb07 until 21Feb2010

 Fingerprints:
 	SHA1	7D:EF:99:28:66:AB:46:91:AE:0C:05:59:8A:F8:69:60:0F:E0:E0:24
 	MD5	5D:AE:44:D1:14:F6:E8:8A:BB:EE:AD:3F:7A:1F:13:6D

 Updated 2f3fadf6.signing_policy:
 dubfwe:~/repo/security/certificates mccreary$ diff 2f3fadf6.signing_policy ../new/ca_INFN-CA-2006-1.28/2f3fadf6.signing_policy
 1,3c1,4
 <  access_id_CA      X509         '/C=IT/O=INFN/CN=INFN CA'
 <  pos_rights        globus       CA:sign
 <  cond_subjects     globus       '"/C=IT/O=INFN/OU=Personal Certificate/L=*/CN=*"' '"/C=IT/O=INFN/OU=Host/L=*/CN=*"' '"/C=IT/O=INFN/OU=Service/L=*/CN=*"'
 - ---
 > # @(#)$Id: 2f3fadf6.signing_policy,v 1.1 2006/10/10 10:13:18 pmacvsdg Exp $
 > access_id_CA            X509    '/C=IT/O=INFN/CN=INFN CA'
 > pos_rights            globus  CA:sign
 > cond_subjects         globus  '"/C=it/O=INFN/*" "/C=IT/O=INFN/*"'

 Verified other files have no significant differences
 	2f3fadf6.0
 openssl x509 -subject -fingerprint -sha1 -noout -in 2f3fadf6.0
 subject= /C=IT/O=INFN/CN=INFN CA
 SHA1 Fingerprint=7D:17:44:C4:C9:1F:01:A8:B3:1C:81:E1:FF:8D:D8:91:B4:E1:5C:71
 MD5 Fingerprint=0A:D8:F4:7E:9E:39:6B:85:AE:68:FD:E5:8E:EA:6D:1B

 	2f3fadf6.crl_url
 dubfwe:~/repo/security/certificates mccreary$ diff 2f3fadf6.crl_url ../new/ca_INFN-CA-2006-1.28/2f3fadf6.crl_url
 1c1
 < http://security.fi.infn.it/CA/INFNCA_crl.pem
 - ---
 > http://security.fi.infn.it/CA/INFNCA_crl.der
 -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1.4.7 (Darwin)

 iD8DBQFJ+2l4YjEf42hR7yYRAkFuAKCX3S+Sng6Axxd/t5FQVG17B902qACgkaj3
 Gt5Pv1Gq9NGw/0RbJfT1OnU=
 =Fgz2
 -----END PGP SIGNATURE-----
	-----BEGIN PGP SIGNED MESSAGE-----
	Hash: SHA1

	[ Replacement INFN signing policy, May 2008 (mccreary) ]

	Retrieved from
	<https://dist.eugridpma.info/distribution/igtf/current/accredited/tgz/>
	ca_INFN-CA-2006-1.28.tar.gz

	on 01May09. Web server presented certificate w/ subject:

	CN = dist.eugridpma.info
	O = NIKHEF
	OU = PDP
	Serial Num = 01:00:00:00:00:01:10:E4:53:B7:A5

	from authority:

	CN = Cybertrust Educational CA
	O = Cybertrust
	OU = Educational CA

	Valid from 21Feb07 until 21Feb2010

	Fingerprints:
	SHA1 7D:EF:99:28:66:AB:46:91:AE:0C:05:59:8A:F8:69:60:0F:E0:E0:24
	MD5 5D:AE:44:D1:14:F6:E8:8A:BB:EE:AD:3F:7A:1F:13:6D

	Updated 2f3fadf6.signing_policy:
	dubfwe:~/repo/security/certificates mccreary$ diff 2f3fadf6.signing_policy ../new/ca_INFN-CA-2006-1.28/2f3fadf6.signing_policy
	1,3c1,4
	< access_id_CA X509 '/C=IT/O=INFN/CN=INFN CA'
	< pos_rights globus CA:sign
	< cond_subjects globus '"/C=IT/O=INFN/OU=Personal Certificate/L=/CN="' '"/C=IT/O=INFN/OU=Host/L=/CN="' '"/C=IT/O=INFN/OU=Service/L=/CN="'
	- ---
	> # @(#)$Id: 2f3fadf6.signing_policy,v 1.1 2006/10/10 10:13:18 pmacvsdg Exp $
	> access_id_CA X509 '/C=IT/O=INFN/CN=INFN CA'
	> pos_rights globus CA:sign
	> cond_subjects globus '"/C=it/O=INFN/" "/C=IT/O=INFN/"'

	Verified other files have no significant differences
	2f3fadf6.0
	openssl x509 -subject -fingerprint -sha1 -noout -in 2f3fadf6.0
	subject= /C=IT/O=INFN/CN=INFN CA
	SHA1 Fingerprint=7D:17:44:C4:C9:1F:01:A8:B3:1C:81:E1:FF:8D:D8:91:B4:E1:5C:71
	MD5 Fingerprint=0A:D8:F4:7E:9E:39:6B:85:AE:68:FD:E5:8E:EA:6D:1B

	2f3fadf6.crl_url
	dubfwe:~/repo/security/certificates mccreary$ diff 2f3fadf6.crl_url ../new/ca_INFN-CA-2006-1.28/2f3fadf6.crl_url
	1c1
	< http://security.fi.infn.it/CA/INFNCA_crl.pem
	- ---
	> http://security.fi.infn.it/CA/INFNCA_crl.der
	-----BEGIN PGP SIGNATURE-----
	Version: GnuPG v1.4.7 (Darwin)

	iD8DBQFJ+2l4YjEf42hR7yYRAkFuAKCX3S+Sng6Axxd/t5FQVG17B902qACgkaj3
	Gt5Pv1Gq9NGw/0RbJfT1OnU=
	=Fgz2
	-----END PGP SIGNATURE-----