|
|
|
@ -1076,6 +1076,7 @@ In case the certificate chain is incorrect, you can tap on the little info butto
|
|
|
|
|
After the certificate details the issuer or "selfSign" is shown.
|
|
|
|
|
A certificate is self signed when the subject and the issuer are the same.
|
|
|
|
|
Certificates from a certificate authority (CA) are marked with "[keyCertSign](https://tools.ietf.org/html/rfc5280#section-4.2.1.3)".
|
|
|
|
|
You can find the description of other key usage bits, like *cRLSign*, via this same link.
|
|
|
|
|
Certificates found in the Android key store are marked with "Android".
|
|
|
|
|
|
|
|
|
|
A valid chain looks like this:
|
|
|
|
@ -1095,8 +1096,6 @@ If you are looking for a free (test) S/MIME certificate, see [here](http://kb.mo
|
|
|
|
|
Please be sure to [read this first](https://davidroessli.com/logs/2019/09/free-smime-certificates-in-2019/#update20191219)
|
|
|
|
|
if you want to request an S/MIME Actalis certificate.
|
|
|
|
|
|
|
|
|
|
S/MIME certificates can for example be purchased via [Xolphin](https://www.xolphin.com/).
|
|
|
|
|
|
|
|
|
|
How to extract a public key from a S/MIME certificate:
|
|
|
|
|
|
|
|
|
|
```
|
|
|
|
|