Crypt::Perl::X509v3 - TLS/SSL Certificates
my $cert = Crypt::Perl::X509v3->new(
key => $crypt_perl_public_key_obj,
issuer => [
[ commonName => 'Foo', surname => 'theIssuer' ],
[ givenName => 'separate RDNs' ],
],
subject => \@subject, #same format as issuer
not_before => $unixtime,
not_after => $unixtime,
# The same structure as in Crypt::Perl::PKCS10 …
extensions => [
[ keyUsage => 'keyCertSign', 'keyEncipherment' ],
[ $extn_name => @extn_args ],
# ..
],
serial_number => 12345,
issuer_unique_id => '..',
subject_unique_id => '..',
);
# The signature algorithm (2nd argument) is not needed
# when the signing key is Ed25519.
$cert->sign( $crypt_perl_private_key_obj, 'sha256' );
my $pem = $cert->to_pem();
This module is experimental! The API may change between versions. If
you’re going to build something off of it, ensure that you check
Crypt::Perl’s changelog before updating this module.
This module can create TLS/SSL certificates. The caller has full control over
all certificate components, and anything not specified is not assumed.
There currently is not a parsing interface. Hopefully that can be
remedied.