PureBasic
PureBasic
Generate CSR with Uncommon Fields
See more CSR Examples
Demonstrates how to generate a new RSA key and a Certificate Signing Request (CSR) for this:csr.common.name=Admin forInformation-MainShop csr.serial.number=1-XYZ|2-2.0|3-999695 csr.organization.identifier=990099994100099 csr.organization.unit.name=9999910000 csr.organization.name=9999910000 csr.country.name=SA csr.invoice.type=1100 csr.location.address=King Fahed Road csr.industry.business.category=MainOffice
Chilkat PureBasic Downloads
IncludeFile "CkFileAccess.pb"
IncludeFile "CkPrivateKey.pb"
IncludeFile "CkCsr.pb"
IncludeFile "CkRsa.pb"
Procedure ChilkatExample()
success.i = 0
; This requires the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.
; First generate an RSA private key.
rsa.i = CkRsa::ckCreate()
If rsa.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; Generate a random 2048-bit RSA key.
privKey.i = CkPrivateKey::ckCreate()
If privKey.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
success = CkRsa::ckGenKey(rsa,2048,privKey)
If success = 0
Debug CkRsa::ckLastErrorText(rsa)
CkRsa::ckDispose(rsa)
CkPrivateKey::ckDispose(privKey)
ProcedureReturn
EndIf
; Create the CSR object and set properties.
csr.i = CkCsr::ckCreate()
If csr.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
CkCsr::setCkCommonName(csr, "Admin forInformation-MainShop")
; Country Name (2 letter code)
CkCsr::setCkCountry(csr, "SA")
; Organization Name (eg, company)
CkCsr::setCkCompany(csr, "9999910000")
; Organizational Unit Name (eg, secion/division)
CkCsr::setCkCompanyDivision(csr, "9999910000")
; See https://www.alvestrand.no/objectid/2.5.4.html for OIDs for the following fields:
; csr.serial.number=1-XYZ|2-2.0|3-999695
; 2.5.4.5 - id-at-serialNumber
CkCsr::ckSetSubjectField(csr,"2.5.4.5","1-XYZ|2-2.0|3-999695","UTF8String")
; csr.organization.identifier=990099994100099
; 2.5.4.45 - id-at-uniqueIdentifier Don't know if this is correct.
CkCsr::ckSetSubjectField(csr,"2.5.4.45","1100","UTF8String")
; csr.invoice.type=1100
; Don't know what this OID would be...
CkCsr::ckSetSubjectField(csr,"2.5.4.99","1100","UTF8String")
; csr.location.address=King Fahed Road
; 2.5.4.9 - id-at-streetAddress
CkCsr::ckSetSubjectField(csr,"2.5.4.9","King Fahed Road","UTF8String")
; csr.industry.business.category=MainOffice
; 2.5.4.15 - id-at-businessCategory
CkCsr::ckSetSubjectField(csr,"2.5.4.15","MainOffice","UTF8String")
; Create the CSR using the private key.
pemStr.s = CkCsr::ckGenCsrPem(csr,privKey)
If CkCsr::ckLastMethodSuccess(csr) <> 1
Debug CkCsr::ckLastErrorText(csr)
CkRsa::ckDispose(rsa)
CkPrivateKey::ckDispose(privKey)
CkCsr::ckDispose(csr)
ProcedureReturn
EndIf
; Save the private key and CSR to a files.
CkPrivateKey::ckSavePkcs8EncryptedPemFile(privKey,"password","qa_output/privKey1.pem")
fac.i = CkFileAccess::ckCreate()
If fac.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
CkFileAccess::ckWriteEntireTextFile(fac,"qa_output/csr1.pem",pemStr,"utf-8",0)
; Show the CSR.
Debug pemStr
; Sample output:
; The CSR PEM can be checked here:
; https://www.networking4all.com/en/support/tools/csr+check/
; Copy-and-paste the PEM into the online CSR Decoding / CSR Verification form
; -----BEGIN CERTIFICATE REQUEST-----
; MIIC6jCCAdICAQAwgaQxITAfBgNVBAMMGG15c3ViZG9tYWluLm15ZG9tYWluLmNv
; ...
; ...
; hJnYCvjzFz4O9VtT+JtP9ldRHWV3KpZ8ne3AjD+F
; -----END CERTIFICATE REQUEST-----
CkRsa::ckDispose(rsa)
CkPrivateKey::ckDispose(privKey)
CkCsr::ckDispose(csr)
CkFileAccess::ckDispose(fac)
ProcedureReturn
EndProcedure