o.open/Office_Networks
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Initial commit

Browse Source
This commit is contained in:
Christoph
2018-05-08 03:01:03 +02:00
commit 1c4c595cd6
3256 changed files with 417972 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

257
AKB/openvpn/akb/chris.conf Normal file
View File

@ -0,0 +1,257 @@
##############################################
# Sample client-side OpenVPN 2.0 config file #
# for connecting to multi-client server. #
# #
# This configuration can be used by multiple #
# clients, however each client should have #
# its own cert and key files. #
# #
# On Windows, you might want to rename this #
# file so it has a .ovpn extension #
##############################################
# Specify that we are a client and that we
# will be pulling certain config file directives
# from the server.
client
# Use the same setting as you are using on
# the server.
# On most systems, the VPN will not function
# unless you partially or fully disable
# the firewall for the TUN/TAP interface.
;dev tap
dev tun
# Are we connecting to a TCP or
# UDP server? Use the same setting as
# on the server
proto udp
# The hostname/IP and port of the server.
# You can have multiple remote entries
# to load balance between the servers.
remote gw-akb.oopen.de 1194
topology subnet
# Keep trying indefinitely to resolve the
# host name of the OpenVPN server. Very useful
# on machines which are not permanently connected
# to the internet such as laptops.
resolv-retry infinite
# Most clients don't need to bind to
# a specific local port number.
nobind
# Try to preserve some state across restarts.
persist-key
persist-tun
# Server CA
<ca>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</ca>
# Client Certificate
<cert>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</cert>
# Client Key
<key>
-----BEGIN ENCRYPTED PRIVATE KEY-----
MIIJpDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIv1QmF1WWGZUCAggA
MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECBjEdQTZjORVBIIJUPtA3jx4uwYc
CO2uYGxSRVoMMywlQkniF5fzmxvd5Ghz24hXa+xHpBjCiliengMoETdJT4fkodPa
xT4LiWeRgok0K6d0vdZM3XQBoozhHkKMDclQDQRfgRA3/buIONOKJQiymG3v9zRg
oj8f/GCOEeGxz5mc0F1b3VSOeDeI+v+kiqs3e94uLxk1PoQxcJWLzRUsh6i7tMYK
MlYgLbmB/zqBW37fE8MI3+EQ7hvajiHawWeuZ8/SCzHP1rugn/l+jVNWVjMH8S+j
8CXVy4k7xyEKtB8vV9kWyhXrLvSMbB6Q23o4Pv5qrLLR2aOe/5DHVSKysmmHR9BC
S1IFvX4cej8aOhOqYpWtKsaDXqvyVF3yEhl2avTZmeKW6kUWnrb5V4vke6oV7BMe
y4Vno5uZu3Na4Csdx4c7C4UhNCzRt3xKFyK/q/B/hmsaRuLfL2mflBvHLMpqGXuq
Iphox2OBMjCQFInje192yKVtjaYXfJAD02wS1aN8fo+9j1aWw7KGqcD4eTjW8Ddw
HlT2ZdhV3F0A/Ltm/glGUkIQmOF4LxWIQXmGGNvjxXXUHIBVgN1GbhFHhcBLnL4b
Xw8Y40HTQAguyi9AdOW7CBy0KAeGsLt4EfxS7CFU1Ou+zbdgqP7so6tuT58XxRdD
2AHtDG81OY90/47SIn9kJ715VeMyscGSVz+dsy7DDaaA7LExww8jnBIR1vpYYkuj
unXPv7NXgcb6oqzvJRSL56DCICNK7C5tPu22UmOj6Z1PaLNM1ttJ7yEqpqqYjJJ6
z2lz+ngpJ9HnpXBNjQJkQUF7ov1VpG7pW44kf8xuLakM7/rupAgsxBXpTMvtN2lH
kyZceWPBohHQX1vcUJCHjetS+fTSxELMpinA4OhioiceAJhax0XPkNUFEzWxDQwr
7kyXJ0d2LyKiJ3Um2QlsPsybQkrkkV9U2807SqYqFPVh1CwO6mBlLUb8jOKzyhui
4n1d0lPfh+3jvtXDnogNsbCuLWvHHTP4iGB3pZAa971t6ZXgLr03EJkI9aGWdSto
HBnhEdw0ZTau9menKeZXiYdGjE0LiX1+lmzpULPo3BHdqJ9Wt/SlTyfDL8++Rc8l
QY017OtBRr5rnbFuVnMSiXtNpC/vU4+NIUWJGN8OvwSI4IX17R2ND4Z/J1lM6XVp
wqsFYkCAJlHJc2DbmOx4xtnj3pst4zQ0bU0nzLE0xAXSgqTP19/ikOX/Yj1+NOch
iDrNNvge9NUFa6zT315+W/cr7LBjXnm9zbgSx1h14ceBK3o0xSxhevKui9WfhJ1I
RCqIMLSU0Yk7aEAVJz4RJJCsJ/SwWAflSSV6lyDK7IuuB0qQ/F4nhpZc9kVGS4zu
0UcayScHb5YtD85xvREMH5r2jHXxtTjQbA45mRU7UQyUsTyTt103ygEt2w2fTl2w
VCuhNJrIws7y14rgccD8wZ3Lp7UW8n5sxhjHhYZxwVhAbx5LvfVKj2z0qNGNgCvN
SVG9mnOBbFiswLVCmJxbbOxo9RmzHKa8RD+KZvM/Na6SCoSivYU4BjZqodh72bTT
J6bd7IknwmV8AcGdnueVUgiVWH/t1wXOxySOcvKQu19AQU1Hc45gnCLxXJvrSNdh
pcCVkcwO+NlDm0DM7yDajv139mVAf7qTuwGXIhC0h+PtrmutaSargz/c06xAStFy
o+LtRVMcyiNLcZxpf3IUxwRSP6pS75Vgi+u0v6Uqx6dofnIgkjKh19/yPjU0rlFv
NW5FED4K9mWrYRWHjgrSQL33gOZ2QZTYcywAkZ+ZjELl2BBNkAEhMzKy6kcac8Ni
QdOKifldPodD9SQwY576fHiHGKFb9t1NKmQmXPTYH+pC7Yq/NZgAuwXStdoK6RQr
A4PrxAyXVkCG2Fvk3FTI0AZ0ycMQdA0EEUnTPgokawke2nCjv6pgM6N2Ks+N4Tcn
me8cVUfyrd+dYIECT+PADT1vpw8nZuJjvJS3u2xipoiUpLzJmBZGKiRGLesiZV9/
SGTUPriphVoz/RO+cCt5kD+fYF458dDKkuxXDGRaGROlDZ2zCbr/DqYbtrjaPTZw
+JLQOMNKNUm+xmeu7FMlTt/Fkm9ffwEuOpfHbixcP9M5DY90HMAR48chJhc7Zxc+
FntPqpG2BtAe1kfUJqta/kyN+nNGWujst2++WT5kVUok9XoKh75knoLcZkGXIcfV
l52tLLtKW7IlYOkHzu/0xGK4ZSK/AdLj1gw8H8B2RmM1KWjrVND4E3uv4+ickDKD
zDDxT62VEaFG+Hlw0w8TPZhNBcwqeXBsfZO9ioPE0vUF8nXsr4jEK+7uWIXI5lsq
6zShok8+j3918hLPycGKlCQ2Ht5bNjuOJpQ79AmCWK6iOSnYk4j6hA/XEpSvdsXF
4tkId5sW6SJO0iVbUs9XO2/EpZq2x6PspO8CMckEoV/AJxFkXvHOzOES7XZByVyh
HNN5PGAHR8qeg0QFktAVGmzAutCNtsDFXlA34C0UgBimMFYQSUJcS6TxxQvzRoiL
Fh7DopwuiuuOW3Fbh+CspWCShgCKabYB6kKQaJxSEuQd4HOUq0hmoCVhg2R10Ycd
v+iKyr4ovYhjT7JGd+B7evVw7s1glFzMMLJOL0X4cwVPNM2dksu480oejoR5y9g8
KNZLlbzEeFXUJGzPSZIjlujmAv4sYegUGL9so5X+TD+/NsoqrkmJVcU0mSZE0cFB
3IUudXZJYphF9eyl2pk3qCtNjLqbd+4DYK1vtKNBJLk7gROTi830yXZmGYQB9P6s
IbenqPJDNy8yPhoEe52PKAX8AgU4mDHPPiFGkezdkx8uUkvBG3S/NiAyRT1fgK2h
pZqHOZXhcqprGxSPAUA1FrVM7uw8RVh9SR0R8s9rCtMvNlVvxTcsvo2XM4SguAOt
lh/D+P22FeQNmWPNhA4yEfA+8bGvDSrFLvjR2jd0KH9QNktDI3mDqrsRl3gaXviR
6DBPSF909U6bQit6JVIij1Otz4HiRO9ytj4KecqE0NlaG6SrF3hYY8EFW0FN01C4
AhA2RQllHZge9PWJbJ1gFUJM/otjGjcj8l7yqarKorhpUUnuJqOQzGw/qq9Wn/oK
ZD5gO5pp3Al4ArK8tgP0X4ArbSqSTZ7ZNOataM/DtRbc6QFcs6wcwTzv4KQysszV
EHcAQ0atQTI97raPRX8RYkS3DSVEIy+y
-----END ENCRYPTED PRIVATE KEY-----
</key>
# Verify server certificate by checking
# that the certicate has the nsCertType
# field set to "server". This is an
# important precaution to protect against
# a potential attack discussed here:
# http://openvpn.net/howto.html#mitm
#
# To use this feature, you will need to generate
# your server certificates with the nsCertType
# field set to "server". The build-key-serve
ns-cert-type server
# If a tls-auth key is used on the server
# then every client must also have the key.
#
# Don't forget to set the 'key-direction' Parameter if using
# Inline Key. Usualy , sever has key direction '0', while client
# has ke direction '1'.
#
key-direction 1
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
5b91b2a91925f7503bb408768cb5053b
80a9d011f37c13df8297549c485d787b
6450a5341cd9b5079bf4993cd7724c91
8ae6953503cf30565dc75025061990c7
44348470db2143ff80b8ed281d822a69
a2d67538439c1f04f73df867848f618f
cc096eb98252e5c7e01a7921803ca4fe
18a0df2a99aaf15839f598fc5a3f24b9
17afcfd477d49792ffe450a18b8ad0f2
a9b1e5bc658e066e461472b2439ad423
1be921f71ac59a050bc751f681fcd553
60c4274c640dc56b0e140d5e9e062349
12bfaa7450b615bbc898f822dd5eb6bc
f3023bbcd87fb2a18c651dbae4bfbbcb
5797d4b6c01f0bd700681b308e19b239
53cfefa995eb4bf57ee985194e814548
-----END OpenVPN Static key V1-----
</tls-auth>
# Select a cryptographic cipher.
# If the cipher option is used on the server
# then you must also specify it here.
# Enable compression on the VPN link.
# Don't enable this unless it is also
# enabled in the server config file.
comp-lzo
# Verbosity level.
# 0 -- quiet except for fatal errors.
# 1 -- mostly quiet, but display non-fatal network errors.
# 3 -- medium output, good for normal operation.
# 9 -- verbose, good for troubleshooting
verb 1
# Setting 'pull' on the client takes care to get the 'push' durectives
# from the server
pull

18
AKB/openvpn/akb/crl.pem Normal file
View File

@ -0,0 +1,18 @@
-----BEGIN X509 CRL-----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-----END X509 CRL-----

1
AKB/openvpn/akb/easy-rsa/build-ca Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-ca

1
AKB/openvpn/akb/easy-rsa/build-dh Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-dh

1
AKB/openvpn/akb/easy-rsa/build-inter Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-inter

1
AKB/openvpn/akb/easy-rsa/build-key Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-key

1
AKB/openvpn/akb/easy-rsa/build-key-pass Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-key-pass

1
AKB/openvpn/akb/easy-rsa/build-key-pkcs12 Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-key-pkcs12

1
AKB/openvpn/akb/easy-rsa/build-key-server Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-key-server

1
AKB/openvpn/akb/easy-rsa/build-req Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-req

1
AKB/openvpn/akb/easy-rsa/build-req-pass Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/build-req-pass

1
AKB/openvpn/akb/easy-rsa/clean-all Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/clean-all

1
AKB/openvpn/akb/easy-rsa/inherit-inter Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/inherit-inter

1
AKB/openvpn/akb/easy-rsa/list-crl Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/list-crl

268
AKB/openvpn/akb/easy-rsa/openssl-0.9.6.cnf Normal file
View File

@ -0,0 +1,268 @@
# For use with easy-rsa version 2.0
#
# OpenSSL example configuration file.
# This is mostly being used for generation of certificate requests.
#
# This definition stops the following lines choking if HOME isn't
# defined.
HOME = .
RANDFILE = $ENV::HOME/.rnd
# Extra OBJECT IDENTIFIER info:
#oid_file = $ENV::HOME/.oid
oid_section = new_oids
# To use this configuration file with the "-extfile" option of the
# "openssl x509" utility, name here the section containing the
# X.509v3 extensions to use:
# extensions =
# (Alternatively, use a configuration file that has only
# X.509v3 extensions in its main [= default] section.)
[ new_oids ]
# We can add new OIDs in here for use by 'ca' and 'req'.
# Add a simple OID like this:
# testoid1=1.2.3.4
# Or use config file substitution like this:
# testoid2=${testoid1}.5.6
####################################################################
[ ca ]
default_ca = CA_default # The default ca section
####################################################################
[ CA_default ]
dir = $ENV::KEY_DIR # Where everything is kept
certs = $dir # Where the issued certs are kept
crl_dir = $dir # Where the issued crl are kept
database = $dir/index.txt # database index file.
new_certs_dir = $dir # default place for new certs.
certificate = $dir/ca.crt # The CA certificate
serial = $dir/serial # The current serial number
crl = $dir/crl.pem # The current CRL
private_key = $dir/ca.key # The private key
RANDFILE = $dir/.rand # private random number file
x509_extensions = usr_cert # The extentions to add to the cert
# Extensions to add to a CRL. Note: Netscape communicator chokes on V2 CRLs
# so this is commented out by default to leave a V1 CRL.
# crl_extensions = crl_ext
default_days = 3650 # how long to certify for
default_crl_days= 30 # how long before next CRL
default_md = sha256 # which md to use.
preserve = no # keep passed DN ordering
# A few difference way of specifying how similar the request should look
# For type CA, the listed attributes must be the same, and the optional
# and supplied fields are just that :-)
policy = policy_anything
# For the CA policy
[ policy_match ]
countryName = match
stateOrProvinceName = match
organizationName = match
organizationalUnitName = optional
commonName = supplied
emailAddress = optional
# For the 'anything' policy
# At this point in time, you must list all acceptable 'object'
# types.
[ policy_anything ]
countryName = optional
stateOrProvinceName = optional
localityName = optional
organizationName = optional
organizationalUnitName = optional
commonName = supplied
emailAddress = optional
####################################################################
[ req ]
default_bits = $ENV::KEY_SIZE
default_keyfile = privkey.pem
default_md = sha256
distinguished_name = req_distinguished_name
attributes = req_attributes
x509_extensions = v3_ca # The extentions to add to the self signed cert
# Passwords for private keys if not present they will be prompted for
# input_password = secret
# output_password = secret
# This sets a mask for permitted string types. There are several options.
# default: PrintableString, T61String, BMPString.
# pkix : PrintableString, BMPString.
# utf8only: only UTF8Strings.
# nombstr : PrintableString, T61String (no BMPStrings or UTF8Strings).
# MASK:XXXX a literal mask value.
# WARNING: current versions of Netscape crash on BMPStrings or UTF8Strings
# so use this option with caution!
string_mask = nombstr
# req_extensions = v3_req # The extensions to add to a certificate request
[ req_distinguished_name ]
countryName = Country Name (2 letter code)
countryName_default = $ENV::KEY_COUNTRY
countryName_min = 2
countryName_max = 2
stateOrProvinceName = State or Province Name (full name)
stateOrProvinceName_default = $ENV::KEY_PROVINCE
localityName = Locality Name (eg, city)
localityName_default = $ENV::KEY_CITY
0.organizationName = Organization Name (eg, company)
0.organizationName_default = $ENV::KEY_ORG
# we can do this but it is not needed normally :-)
#1.organizationName = Second Organization Name (eg, company)
#1.organizationName_default = World Wide Web Pty Ltd
organizationalUnitName = Organizational Unit Name (eg, section)
#organizationalUnitName_default =
commonName = Common Name (eg, your name or your server\'s hostname)
commonName_max = 64
emailAddress = Email Address
emailAddress_default = $ENV::KEY_EMAIL
emailAddress_max = 40
# JY -- added for batch mode
organizationalUnitName_default = $ENV::KEY_OU
commonName_default = $ENV::KEY_CN
# SET-ex3 = SET extension number 3
[ req_attributes ]
challengePassword = A challenge password
challengePassword_min = 4
challengePassword_max = 20
unstructuredName = An optional company name
[ usr_cert ]
# These extensions are added when 'ca' signs a request.
# This goes against PKIX guidelines but some CAs do it and some software
# requires this to avoid interpreting an end user certificate as a CA.
basicConstraints=CA:FALSE
# Here are some examples of the usage of nsCertType. If it is omitted
# the certificate can be used for anything *except* object signing.
# This is OK for an SSL server.
# nsCertType = server
# For an object signing certificate this would be used.
# nsCertType = objsign
# For normal client use this is typical
# nsCertType = client, email
# and for everything including object signing:
# nsCertType = client, email, objsign
# This is typical in keyUsage for a client certificate.
# keyUsage = nonRepudiation, digitalSignature, keyEncipherment
# This will be displayed in Netscape's comment listbox.
nsComment = "Easy-RSA Generated Certificate"
# PKIX recommendations harmless if included in all certificates.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=clientAuth
keyUsage = digitalSignature
# This stuff is for subjectAltName and issuerAltname.
# Import the email address.
# subjectAltName=email:copy
subjectAltName=$ENV::KEY_ALTNAMES
# Copy subject details
# issuerAltName=issuer:copy
#nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem
#nsBaseUrl
#nsRevocationUrl
#nsRenewalUrl
#nsCaPolicyUrl
#nsSslServerName
[ server ]
# JY ADDED -- Make a cert with nsCertType set to "server"
basicConstraints=CA:FALSE
nsCertType = server
nsComment = "Easy-RSA Generated Server Certificate"
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=serverAuth
keyUsage = digitalSignature, keyEncipherment
subjectAltName=$ENV::KEY_ALTNAMES
[ v3_req ]
# Extensions to add to a certificate request
basicConstraints = CA:FALSE
keyUsage = nonRepudiation, digitalSignature, keyEncipherment
[ v3_ca ]
# Extensions for a typical CA
# PKIX recommendation.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid:always,issuer:always
# This is what PKIX recommends but some broken software chokes on critical
# extensions.
#basicConstraints = critical,CA:true
# So we do this instead.
basicConstraints = CA:true
# Key usage: this is typical for a CA certificate. However since it will
# prevent it being used as an test self-signed certificate it is best
# left out by default.
# keyUsage = cRLSign, keyCertSign
# Some might want this also
# nsCertType = sslCA, emailCA
# Include email address in subject alt name: another PKIX recommendation
# subjectAltName=email:copy
# Copy issuer details
# issuerAltName=issuer:copy
# DER hex encoding of an extension: beware experts only!
# obj=DER:02:03
# Where 'obj' is a standard or added object
# You can even override a supported extension:
# basicConstraints= critical, DER:30:03:01:01:FF
[ crl_ext ]
# CRL extensions.
# Only issuerAltName and authorityKeyIdentifier make any sense in a CRL.
# issuerAltName=issuer:copy
authorityKeyIdentifier=keyid:always,issuer:always

293
AKB/openvpn/akb/easy-rsa/openssl-0.9.8.cnf Normal file
View File

@ -0,0 +1,293 @@
# For use with easy-rsa version 2.0
#
# OpenSSL example configuration file.
# This is mostly being used for generation of certificate requests.
#
# This definition stops the following lines choking if HOME isn't
# defined.
HOME = .
RANDFILE = $ENV::HOME/.rnd
openssl_conf = openssl_init
[ openssl_init ]
# Extra OBJECT IDENTIFIER info:
#oid_file = $ENV::HOME/.oid
oid_section = new_oids
engines = engine_section
# To use this configuration file with the "-extfile" option of the
# "openssl x509" utility, name here the section containing the
# X.509v3 extensions to use:
# extensions =
# (Alternatively, use a configuration file that has only
# X.509v3 extensions in its main [= default] section.)
[ new_oids ]
# We can add new OIDs in here for use by 'ca' and 'req'.
# Add a simple OID like this:
# testoid1=1.2.3.4
# Or use config file substitution like this:
# testoid2=${testoid1}.5.6
####################################################################
[ ca ]
default_ca = CA_default # The default ca section
####################################################################
[ CA_default ]
dir = $ENV::KEY_DIR # Where everything is kept
certs = $dir # Where the issued certs are kept
crl_dir = $dir # Where the issued crl are kept
database = $dir/index.txt # database index file.
new_certs_dir = $dir # default place for new certs.
certificate = $dir/ca.crt # The CA certificate
serial = $dir/serial # The current serial number
crl = $dir/crl.pem # The current CRL
private_key = $dir/ca.key # The private key
RANDFILE = $dir/.rand # private random number file
x509_extensions = usr_cert # The extentions to add to the cert
# Extensions to add to a CRL. Note: Netscape communicator chokes on V2 CRLs
# so this is commented out by default to leave a V1 CRL.
# crl_extensions = crl_ext
default_days = 3650 # how long to certify for
default_crl_days= 30 # how long before next CRL
default_md = sha256 # which md to use.
preserve = no # keep passed DN ordering
# A few difference way of specifying how similar the request should look
# For type CA, the listed attributes must be the same, and the optional
# and supplied fields are just that :-)
policy = policy_anything
# For the CA policy
[ policy_match ]
countryName = match
stateOrProvinceName = match
organizationName = match
organizationalUnitName = optional
commonName = supplied
name = optional
emailAddress = optional
# For the 'anything' policy
# At this point in time, you must list all acceptable 'object'
# types.
[ policy_anything ]
countryName = optional
stateOrProvinceName = optional
localityName = optional
organizationName = optional
organizationalUnitName = optional
commonName = supplied
name = optional
emailAddress = optional
####################################################################
[ req ]
default_bits = $ENV::KEY_SIZE
default_keyfile = privkey.pem
default_md = sha256
distinguished_name = req_distinguished_name
attributes = req_attributes
x509_extensions = v3_ca # The extentions to add to the self signed cert
# Passwords for private keys if not present they will be prompted for
# input_password = secret
# output_password = secret
# This sets a mask for permitted string types. There are several options.
# default: PrintableString, T61String, BMPString.
# pkix : PrintableString, BMPString.
# utf8only: only UTF8Strings.
# nombstr : PrintableString, T61String (no BMPStrings or UTF8Strings).
# MASK:XXXX a literal mask value.
# WARNING: current versions of Netscape crash on BMPStrings or UTF8Strings
# so use this option with caution!
string_mask = nombstr
# req_extensions = v3_req # The extensions to add to a certificate request
[ req_distinguished_name ]
countryName = Country Name (2 letter code)
countryName_default = $ENV::KEY_COUNTRY
countryName_min = 2
countryName_max = 2
stateOrProvinceName = State or Province Name (full name)
stateOrProvinceName_default = $ENV::KEY_PROVINCE
localityName = Locality Name (eg, city)
localityName_default = $ENV::KEY_CITY
0.organizationName = Organization Name (eg, company)
0.organizationName_default = $ENV::KEY_ORG
# we can do this but it is not needed normally :-)
#1.organizationName = Second Organization Name (eg, company)
#1.organizationName_default = World Wide Web Pty Ltd
organizationalUnitName = Organizational Unit Name (eg, section)
#organizationalUnitName_default =
commonName = Common Name (eg, your name or your server\'s hostname)
commonName_max = 64
name = Name
name_max = 64
emailAddress = Email Address
emailAddress_default = $ENV::KEY_EMAIL
emailAddress_max = 40
# JY -- added for batch mode
organizationalUnitName_default = $ENV::KEY_OU
commonName_default = $ENV::KEY_CN
name_default = $ENV::KEY_NAME
# SET-ex3 = SET extension number 3
[ req_attributes ]
challengePassword = A challenge password
challengePassword_min = 4
challengePassword_max = 20
unstructuredName = An optional company name
[ usr_cert ]
# These extensions are added when 'ca' signs a request.
# This goes against PKIX guidelines but some CAs do it and some software
# requires this to avoid interpreting an end user certificate as a CA.
basicConstraints=CA:FALSE
# Here are some examples of the usage of nsCertType. If it is omitted
# the certificate can be used for anything *except* object signing.
# This is OK for an SSL server.
# nsCertType = server
# For an object signing certificate this would be used.
# nsCertType = objsign
# For normal client use this is typical
# nsCertType = client, email
# and for everything including object signing:
# nsCertType = client, email, objsign
# This is typical in keyUsage for a client certificate.
# keyUsage = nonRepudiation, digitalSignature, keyEncipherment
# This will be displayed in Netscape's comment listbox.
nsComment = "Easy-RSA Generated Certificate"
# PKIX recommendations harmless if included in all certificates.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=clientAuth
keyUsage = digitalSignature
# This stuff is for subjectAltName and issuerAltname.
# Import the email address.
# subjectAltName=email:copy
subjectAltName=$ENV::KEY_ALTNAMES
# Copy subject details
# issuerAltName=issuer:copy
#nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem
#nsBaseUrl
#nsRevocationUrl
#nsRenewalUrl
#nsCaPolicyUrl
#nsSslServerName
[ server ]
# JY ADDED -- Make a cert with nsCertType set to "server"
basicConstraints=CA:FALSE
nsCertType = server
nsComment = "Easy-RSA Generated Server Certificate"
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=serverAuth
keyUsage = digitalSignature, keyEncipherment
subjectAltName=$ENV::KEY_ALTNAMES
[ v3_req ]
# Extensions to add to a certificate request
basicConstraints = CA:FALSE
keyUsage = nonRepudiation, digitalSignature, keyEncipherment
[ v3_ca ]
# Extensions for a typical CA
# PKIX recommendation.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid:always,issuer:always
# This is what PKIX recommends but some broken software chokes on critical
# extensions.
#basicConstraints = critical,CA:true
# So we do this instead.
basicConstraints = CA:true
# Key usage: this is typical for a CA certificate. However since it will
# prevent it being used as an test self-signed certificate it is best
# left out by default.
# keyUsage = cRLSign, keyCertSign
# Some might want this also
# nsCertType = sslCA, emailCA
# Include email address in subject alt name: another PKIX recommendation
# subjectAltName=email:copy
# Copy issuer details
# issuerAltName=issuer:copy
# DER hex encoding of an extension: beware experts only!
# obj=DER:02:03
# Where 'obj' is a standard or added object
# You can even override a supported extension:
# basicConstraints= critical, DER:30:03:01:01:FF
[ crl_ext ]
# CRL extensions.
# Only issuerAltName and authorityKeyIdentifier make any sense in a CRL.
# issuerAltName=issuer:copy
authorityKeyIdentifier=keyid:always,issuer:always
[ engine_section ]
#
# If you are using PKCS#11
# Install engine_pkcs11 of opensc (www.opensc.org)
# And uncomment the following
# verify that dynamic_path points to the correct location
#
#pkcs11 = pkcs11_section
[ pkcs11_section ]
engine_id = pkcs11
dynamic_path = /usr/lib/engines/engine_pkcs11.so
MODULE_PATH = $ENV::PKCS11_MODULE_PATH
PIN = $ENV::PKCS11_PIN
init = 0

290
AKB/openvpn/akb/easy-rsa/openssl-1.0.0.cnf Normal file
View File

@ -0,0 +1,290 @@
# For use with easy-rsa version 2.0 and OpenSSL 1.0.0*
# This definition stops the following lines choking if HOME isn't
# defined.
HOME = .
RANDFILE = $ENV::HOME/.rnd
openssl_conf = openssl_init
[ openssl_init ]
# Extra OBJECT IDENTIFIER info:
#oid_file = $ENV::HOME/.oid
oid_section = new_oids
engines = engine_section
# To use this configuration file with the "-extfile" option of the
# "openssl x509" utility, name here the section containing the
# X.509v3 extensions to use:
# extensions =
# (Alternatively, use a configuration file that has only
# X.509v3 extensions in its main [= default] section.)
[ new_oids ]
# We can add new OIDs in here for use by 'ca' and 'req'.
# Add a simple OID like this:
# testoid1=1.2.3.4
# Or use config file substitution like this:
# testoid2=${testoid1}.5.6
####################################################################
[ ca ]
default_ca = CA_default # The default ca section
####################################################################
[ CA_default ]
dir = $ENV::KEY_DIR # Where everything is kept
certs = $dir # Where the issued certs are kept
crl_dir = $dir # Where the issued crl are kept
database = $dir/index.txt # database index file.
new_certs_dir = $dir # default place for new certs.
certificate = $dir/ca.crt # The CA certificate
serial = $dir/serial # The current serial number
crl = $dir/crl.pem # The current CRL
private_key = $dir/ca.key # The private key
RANDFILE = $dir/.rand # private random number file
x509_extensions = usr_cert # The extentions to add to the cert
# Extensions to add to a CRL. Note: Netscape communicator chokes on V2 CRLs
# so this is commented out by default to leave a V1 CRL.
# crl_extensions = crl_ext
#default_days = 3650 # how long to certify for
default_days = 11688
#default_crl_days= 30 # how long before next CRL
default_crl_days = 11688
default_md = sha256 # use public key default MD
preserve = no # keep passed DN ordering
# A few difference way of specifying how similar the request should look
# For type CA, the listed attributes must be the same, and the optional
# and supplied fields are just that :-)
policy = policy_anything
# For the CA policy
[ policy_match ]
countryName = match
stateOrProvinceName = match
organizationName = match
organizationalUnitName = optional
commonName = supplied
name = optional
emailAddress = optional
# For the 'anything' policy
# At this point in time, you must list all acceptable 'object'
# types.
[ policy_anything ]
countryName = optional
stateOrProvinceName = optional
localityName = optional
organizationName = optional
organizationalUnitName = optional
commonName = supplied
name = optional
emailAddress = optional
####################################################################
[ req ]
default_bits = $ENV::KEY_SIZE
default_keyfile = privkey.pem
default_md = sha256
distinguished_name = req_distinguished_name
attributes = req_attributes
x509_extensions = v3_ca # The extentions to add to the self signed cert
# Passwords for private keys if not present they will be prompted for
# input_password = secret
# output_password = secret
# This sets a mask for permitted string types. There are several options.
# default: PrintableString, T61String, BMPString.
# pkix : PrintableString, BMPString (PKIX recommendation after 2004).
# utf8only: only UTF8Strings (PKIX recommendation after 2004).
# nombstr : PrintableString, T61String (no BMPStrings or UTF8Strings).
# MASK:XXXX a literal mask value.
string_mask = nombstr
# req_extensions = v3_req # The extensions to add to a certificate request
[ req_distinguished_name ]
countryName = Country Name (2 letter code)
countryName_default = $ENV::KEY_COUNTRY
countryName_min = 2
countryName_max = 2
stateOrProvinceName = State or Province Name (full name)
stateOrProvinceName_default = $ENV::KEY_PROVINCE
localityName = Locality Name (eg, city)
localityName_default = $ENV::KEY_CITY
0.organizationName = Organization Name (eg, company)
0.organizationName_default = $ENV::KEY_ORG
# we can do this but it is not needed normally :-)
#1.organizationName = Second Organization Name (eg, company)
#1.organizationName_default = World Wide Web Pty Ltd
organizationalUnitName = Organizational Unit Name (eg, section)
#organizationalUnitName_default =
commonName = Common Name (eg, your name or your server\'s hostname)
commonName_max = 64
name = Name
name_max = 64
emailAddress = Email Address
emailAddress_default = $ENV::KEY_EMAIL
emailAddress_max = 40
# JY -- added for batch mode
organizationalUnitName_default = $ENV::KEY_OU
commonName_default = $ENV::KEY_CN
name_default = $ENV::KEY_NAME
# SET-ex3 = SET extension number 3
[ req_attributes ]
challengePassword = A challenge password
challengePassword_min = 4
challengePassword_max = 20
unstructuredName = An optional company name
[ usr_cert ]
# These extensions are added when 'ca' signs a request.
# This goes against PKIX guidelines but some CAs do it and some software
# requires this to avoid interpreting an end user certificate as a CA.
basicConstraints=CA:FALSE
# Here are some examples of the usage of nsCertType. If it is omitted
# the certificate can be used for anything *except* object signing.
# This is OK for an SSL server.
# nsCertType = server
# For an object signing certificate this would be used.
# nsCertType = objsign
# For normal client use this is typical
# nsCertType = client, email
# and for everything including object signing:
# nsCertType = client, email, objsign
# This is typical in keyUsage for a client certificate.
# keyUsage = nonRepudiation, digitalSignature, keyEncipherment
# This will be displayed in Netscape's comment listbox.
nsComment = "Easy-RSA Generated Certificate"
# PKIX recommendations harmless if included in all certificates.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=clientAuth
keyUsage = digitalSignature
# This stuff is for subjectAltName and issuerAltname.
# Import the email address.
# subjectAltName=email:copy
subjectAltName=$ENV::KEY_ALTNAMES
# Copy subject details
# issuerAltName=issuer:copy
#nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem
#nsBaseUrl
#nsRevocationUrl
#nsRenewalUrl
#nsCaPolicyUrl
#nsSslServerName
[ server ]
# JY ADDED -- Make a cert with nsCertType set to "server"
basicConstraints=CA:FALSE
nsCertType = server
nsComment = "Easy-RSA Generated Server Certificate"
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=serverAuth
keyUsage = digitalSignature, keyEncipherment
subjectAltName=$ENV::KEY_ALTNAMES
[ v3_req ]
# Extensions to add to a certificate request
basicConstraints = CA:FALSE
keyUsage = nonRepudiation, digitalSignature, keyEncipherment
[ v3_ca ]
# Extensions for a typical CA
# PKIX recommendation.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid:always,issuer:always
# This is what PKIX recommends but some broken software chokes on critical
# extensions.
#basicConstraints = critical,CA:true
# So we do this instead.
basicConstraints = CA:true
# Key usage: this is typical for a CA certificate. However since it will
# prevent it being used as an test self-signed certificate it is best
# left out by default.
# keyUsage = cRLSign, keyCertSign
# Some might want this also
# nsCertType = sslCA, emailCA
# Include email address in subject alt name: another PKIX recommendation
# subjectAltName=email:copy
# Copy issuer details
# issuerAltName=issuer:copy
# DER hex encoding of an extension: beware experts only!
# obj=DER:02:03
# Where 'obj' is a standard or added object
# You can even override a supported extension:
# basicConstraints= critical, DER:30:03:01:01:FF
[ crl_ext ]
# CRL extensions.
# Only issuerAltName and authorityKeyIdentifier make any sense in a CRL.
# issuerAltName=issuer:copy
authorityKeyIdentifier=keyid:always,issuer:always
[ engine_section ]
#
# If you are using PKCS#11
# Install engine_pkcs11 of opensc (www.opensc.org)
# And uncomment the following
# verify that dynamic_path points to the correct location
#
#pkcs11 = pkcs11_section
[ pkcs11_section ]
engine_id = pkcs11
dynamic_path = /usr/lib/engines/engine_pkcs11.so
MODULE_PATH = $ENV::PKCS11_MODULE_PATH
PIN = $ENV::PKCS11_PIN
init = 0

288
AKB/openvpn/akb/easy-rsa/openssl-1.0.0.cnf.ORIG Normal file
View File

@ -0,0 +1,288 @@
# For use with easy-rsa version 2.0 and OpenSSL 1.0.0*
# This definition stops the following lines choking if HOME isn't
# defined.
HOME = .
RANDFILE = $ENV::HOME/.rnd
openssl_conf = openssl_init
[ openssl_init ]
# Extra OBJECT IDENTIFIER info:
#oid_file = $ENV::HOME/.oid
oid_section = new_oids
engines = engine_section
# To use this configuration file with the "-extfile" option of the
# "openssl x509" utility, name here the section containing the
# X.509v3 extensions to use:
# extensions =
# (Alternatively, use a configuration file that has only
# X.509v3 extensions in its main [= default] section.)
[ new_oids ]
# We can add new OIDs in here for use by 'ca' and 'req'.
# Add a simple OID like this:
# testoid1=1.2.3.4
# Or use config file substitution like this:
# testoid2=${testoid1}.5.6
####################################################################
[ ca ]
default_ca = CA_default # The default ca section
####################################################################
[ CA_default ]
dir = $ENV::KEY_DIR # Where everything is kept
certs = $dir # Where the issued certs are kept
crl_dir = $dir # Where the issued crl are kept
database = $dir/index.txt # database index file.
new_certs_dir = $dir # default place for new certs.
certificate = $dir/ca.crt # The CA certificate
serial = $dir/serial # The current serial number
crl = $dir/crl.pem # The current CRL
private_key = $dir/ca.key # The private key
RANDFILE = $dir/.rand # private random number file
x509_extensions = usr_cert # The extentions to add to the cert
# Extensions to add to a CRL. Note: Netscape communicator chokes on V2 CRLs
# so this is commented out by default to leave a V1 CRL.
# crl_extensions = crl_ext
default_days = 3650 # how long to certify for
default_crl_days= 30 # how long before next CRL
default_md = sha256 # use public key default MD
preserve = no # keep passed DN ordering
# A few difference way of specifying how similar the request should look
# For type CA, the listed attributes must be the same, and the optional
# and supplied fields are just that :-)
policy = policy_anything
# For the CA policy
[ policy_match ]
countryName = match
stateOrProvinceName = match
organizationName = match
organizationalUnitName = optional
commonName = supplied
name = optional
emailAddress = optional
# For the 'anything' policy
# At this point in time, you must list all acceptable 'object'
# types.
[ policy_anything ]
countryName = optional
stateOrProvinceName = optional
localityName = optional
organizationName = optional
organizationalUnitName = optional
commonName = supplied
name = optional
emailAddress = optional
####################################################################
[ req ]
default_bits = $ENV::KEY_SIZE
default_keyfile = privkey.pem
default_md = sha256
distinguished_name = req_distinguished_name
attributes = req_attributes
x509_extensions = v3_ca # The extentions to add to the self signed cert
# Passwords for private keys if not present they will be prompted for
# input_password = secret
# output_password = secret
# This sets a mask for permitted string types. There are several options.
# default: PrintableString, T61String, BMPString.
# pkix : PrintableString, BMPString (PKIX recommendation after 2004).
# utf8only: only UTF8Strings (PKIX recommendation after 2004).
# nombstr : PrintableString, T61String (no BMPStrings or UTF8Strings).
# MASK:XXXX a literal mask value.
string_mask = nombstr
# req_extensions = v3_req # The extensions to add to a certificate request
[ req_distinguished_name ]
countryName = Country Name (2 letter code)
countryName_default = $ENV::KEY_COUNTRY
countryName_min = 2
countryName_max = 2
stateOrProvinceName = State or Province Name (full name)
stateOrProvinceName_default = $ENV::KEY_PROVINCE
localityName = Locality Name (eg, city)
localityName_default = $ENV::KEY_CITY
0.organizationName = Organization Name (eg, company)
0.organizationName_default = $ENV::KEY_ORG
# we can do this but it is not needed normally :-)
#1.organizationName = Second Organization Name (eg, company)
#1.organizationName_default = World Wide Web Pty Ltd
organizationalUnitName = Organizational Unit Name (eg, section)
#organizationalUnitName_default =
commonName = Common Name (eg, your name or your server\'s hostname)
commonName_max = 64
name = Name
name_max = 64
emailAddress = Email Address
emailAddress_default = $ENV::KEY_EMAIL
emailAddress_max = 40
# JY -- added for batch mode
organizationalUnitName_default = $ENV::KEY_OU
commonName_default = $ENV::KEY_CN
name_default = $ENV::KEY_NAME
# SET-ex3 = SET extension number 3
[ req_attributes ]
challengePassword = A challenge password
challengePassword_min = 4
challengePassword_max = 20
unstructuredName = An optional company name
[ usr_cert ]
# These extensions are added when 'ca' signs a request.
# This goes against PKIX guidelines but some CAs do it and some software
# requires this to avoid interpreting an end user certificate as a CA.
basicConstraints=CA:FALSE
# Here are some examples of the usage of nsCertType. If it is omitted
# the certificate can be used for anything *except* object signing.
# This is OK for an SSL server.
# nsCertType = server
# For an object signing certificate this would be used.
# nsCertType = objsign
# For normal client use this is typical
# nsCertType = client, email
# and for everything including object signing:
# nsCertType = client, email, objsign
# This is typical in keyUsage for a client certificate.
# keyUsage = nonRepudiation, digitalSignature, keyEncipherment
# This will be displayed in Netscape's comment listbox.
nsComment = "Easy-RSA Generated Certificate"
# PKIX recommendations harmless if included in all certificates.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=clientAuth
keyUsage = digitalSignature
# This stuff is for subjectAltName and issuerAltname.
# Import the email address.
# subjectAltName=email:copy
subjectAltName=$ENV::KEY_ALTNAMES
# Copy subject details
# issuerAltName=issuer:copy
#nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem
#nsBaseUrl
#nsRevocationUrl
#nsRenewalUrl
#nsCaPolicyUrl
#nsSslServerName
[ server ]
# JY ADDED -- Make a cert with nsCertType set to "server"
basicConstraints=CA:FALSE
nsCertType = server
nsComment = "Easy-RSA Generated Server Certificate"
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
extendedKeyUsage=serverAuth
keyUsage = digitalSignature, keyEncipherment
subjectAltName=$ENV::KEY_ALTNAMES
[ v3_req ]
# Extensions to add to a certificate request
basicConstraints = CA:FALSE
keyUsage = nonRepudiation, digitalSignature, keyEncipherment
[ v3_ca ]
# Extensions for a typical CA
# PKIX recommendation.
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid:always,issuer:always
# This is what PKIX recommends but some broken software chokes on critical
# extensions.
#basicConstraints = critical,CA:true
# So we do this instead.
basicConstraints = CA:true
# Key usage: this is typical for a CA certificate. However since it will
# prevent it being used as an test self-signed certificate it is best
# left out by default.
# keyUsage = cRLSign, keyCertSign
# Some might want this also
# nsCertType = sslCA, emailCA
# Include email address in subject alt name: another PKIX recommendation
# subjectAltName=email:copy
# Copy issuer details
# issuerAltName=issuer:copy
# DER hex encoding of an extension: beware experts only!
# obj=DER:02:03
# Where 'obj' is a standard or added object
# You can even override a supported extension:
# basicConstraints= critical, DER:30:03:01:01:FF
[ crl_ext ]
# CRL extensions.
# Only issuerAltName and authorityKeyIdentifier make any sense in a CRL.
# issuerAltName=issuer:copy
authorityKeyIdentifier=keyid:always,issuer:always
[ engine_section ]
#
# If you are using PKCS#11
# Install engine_pkcs11 of opensc (www.opensc.org)
# And uncomment the following
# verify that dynamic_path points to the correct location
#
#pkcs11 = pkcs11_section
[ pkcs11_section ]
engine_id = pkcs11
dynamic_path = /usr/lib/engines/engine_pkcs11.so
MODULE_PATH = $ENV::PKCS11_MODULE_PATH
PIN = $ENV::PKCS11_PIN
init = 0

1
AKB/openvpn/akb/easy-rsa/openssl.cnf Symbolic link
View File

@ -0,0 +1 @@
/etc/openvpn/akb/easy-rsa/openssl-1.0.0.cnf

1
AKB/openvpn/akb/easy-rsa/pkitool Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/pkitool

1
AKB/openvpn/akb/easy-rsa/revoke-full Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/revoke-full

1
AKB/openvpn/akb/easy-rsa/sign-req Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/sign-req

96
AKB/openvpn/akb/easy-rsa/vars Normal file
View File

@ -0,0 +1,96 @@
# easy-rsa parameter settings
# NOTE: If you installed from an RPM,
# don't edit this file in place in
# /usr/share/openvpn/easy-rsa --
# instead, you should copy the whole
# easy-rsa directory to another location
# (such as /etc/openvpn) so that your
# edits will not be wiped out by a future
# OpenVPN package upgrade.
# This variable should point to
# the top level of the easy-rsa
# tree.
##export EASY_RSA="`pwd`"
export BASE_DIR="/etc/openvpn/akb"
export EASY_RSA="$BASE_DIR/easy-rsa"
#
# This variable should point to
# the requested executables
#
export OPENSSL="openssl"
export PKCS11TOOL="pkcs11-tool"
export GREP="grep"
# This variable should point to
# the openssl.cnf file included
# with easy-rsa.
export KEY_CONFIG=`$EASY_RSA/whichopensslcnf $EASY_RSA`
# Edit this variable to point to
# your soon-to-be-created key
# directory.
#
# WARNING: clean-all will do
# a rm -rf on this directory
# so make sure you define
# it correctly!
##export KEY_DIR="$EASY_RSA/keys"
export KEY_DIR="$BASE_DIR/keys"
# Issue rm -rf warning
echo NOTE: If you run ./clean-all, I will be doing a rm -rf on $KEY_DIR
# PKCS11 fixes
export PKCS11_MODULE_PATH="dummy"
export PKCS11_PIN="dummy"
# Increase this to 2048 if you
# are paranoid. This will slow
# down TLS negotiation performance
# as well as the one-time DH parms
# generation process.
##export KEY_SIZE=2048
export KEY_SIZE=4096
# In how many days should the root CA key expire?
##export CA_EXPIRE=3650
export CA_EXPIRE=11688
# In how many days should certificates expire?
##export KEY_EXPIRE=3650
export KEY_EXPIRE=7305
# These are the default values for fields
# which will be placed in the certificate.
# Don't leave any of these fields blank.
##export KEY_COUNTRY="US"
export KEY_COUNTRY="DE"
##export KEY_PROVINCE="CA"
export KEY_PROVINCE="Berlin"
##export KEY_CITY="SanFrancisco"
export KEY_CITY="Berlin"
##export KEY_ORG="Fort-Funston"
export KEY_ORG="o.open"
##export KEY_EMAIL="me@myhost.mydomain"
export KEY_EMAIL="argus@oopen.de"
##export KEY_OU="MyOrganizationalUnit"
export KEY_OU="Network Services"
# X509 Subject Field
##export KEY_NAME="EasyRSA"
export KEY_NAME="VPN AKB"
# PKCS11 Smart Card
# export PKCS11_MODULE_PATH="/usr/lib/changeme.so"
# export PKCS11_PIN=1234
# If you'd like to sign all keys with the same Common Name, uncomment the KEY_CN export below
# You will also need to make sure your OpenVPN server config has the duplicate-cn option set
## export KEY_CN="CommonName"
export KEY_CN="VPN-AKB"
export KEY_ALTNAMES="VPN AKB"

80
AKB/openvpn/akb/easy-rsa/vars.2018-02-05-2108 Normal file
View File

@ -0,0 +1,80 @@
# easy-rsa parameter settings
# NOTE: If you installed from an RPM,
# don't edit this file in place in
# /usr/share/openvpn/easy-rsa --
# instead, you should copy the whole
# easy-rsa directory to another location
# (such as /etc/openvpn) so that your
# edits will not be wiped out by a future
# OpenVPN package upgrade.
# This variable should point to
# the top level of the easy-rsa
# tree.
export EASY_RSA="`pwd`"
#
# This variable should point to
# the requested executables
#
export OPENSSL="openssl"
export PKCS11TOOL="pkcs11-tool"
export GREP="grep"
# This variable should point to
# the openssl.cnf file included
# with easy-rsa.
export KEY_CONFIG=`$EASY_RSA/whichopensslcnf $EASY_RSA`
# Edit this variable to point to
# your soon-to-be-created key
# directory.
#
# WARNING: clean-all will do
# a rm -rf on this directory
# so make sure you define
# it correctly!
export KEY_DIR="$EASY_RSA/keys"
# Issue rm -rf warning
echo NOTE: If you run ./clean-all, I will be doing a rm -rf on $KEY_DIR
# PKCS11 fixes
export PKCS11_MODULE_PATH="dummy"
export PKCS11_PIN="dummy"
# Increase this to 2048 if you
# are paranoid. This will slow
# down TLS negotiation performance
# as well as the one-time DH parms
# generation process.
export KEY_SIZE=2048
# In how many days should the root CA key expire?
export CA_EXPIRE=3650
# In how many days should certificates expire?
export KEY_EXPIRE=3650
# These are the default values for fields
# which will be placed in the certificate.
# Don't leave any of these fields blank.
export KEY_COUNTRY="US"
export KEY_PROVINCE="CA"
export KEY_CITY="SanFrancisco"
export KEY_ORG="Fort-Funston"
export KEY_EMAIL="me@myhost.mydomain"
export KEY_OU="MyOrganizationalUnit"
# X509 Subject Field
export KEY_NAME="EasyRSA"
# PKCS11 Smart Card
# export PKCS11_MODULE_PATH="/usr/lib/changeme.so"
# export PKCS11_PIN=1234
# If you'd like to sign all keys with the same Common Name, uncomment the KEY_CN export below
# You will also need to make sure your OpenVPN server config has the duplicate-cn option set
# export KEY_CN="CommonName"

1
AKB/openvpn/akb/easy-rsa/whichopensslcnf Symbolic link
View File

@ -0,0 +1 @@
/usr/share/easy-rsa/whichopensslcnf

1
AKB/openvpn/akb/ipp.txt Normal file
View File

@ -0,0 +1 @@
VPN-AKB-chris,10.0.82.2

257
AKB/openvpn/akb/jonas.conf Normal file
View File

@ -0,0 +1,257 @@
##############################################
# Sample client-side OpenVPN 2.0 config file #
# for connecting to multi-client server. #
# #
# This configuration can be used by multiple #
# clients, however each client should have #
# its own cert and key files. #
# #
# On Windows, you might want to rename this #
# file so it has a .ovpn extension #
##############################################
# Specify that we are a client and that we
# will be pulling certain config file directives
# from the server.
client
# Use the same setting as you are using on
# the server.
# On most systems, the VPN will not function
# unless you partially or fully disable
# the firewall for the TUN/TAP interface.
;dev tap
dev tun
# Are we connecting to a TCP or
# UDP server? Use the same setting as
# on the server
proto udp
# The hostname/IP and port of the server.
# You can have multiple remote entries
# to load balance between the servers.
remote gw-akb.oopen.de 1194
topology subnet
# Keep trying indefinitely to resolve the
# host name of the OpenVPN server. Very useful
# on machines which are not permanently connected
# to the internet such as laptops.
resolv-retry infinite
# Most clients don't need to bind to
# a specific local port number.
nobind
# Try to preserve some state across restarts.
persist-key
persist-tun
# Server CA
<ca>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</ca>
# Client Certificate
<cert>
-----BEGIN CERTIFICATE-----
MIIHLDCCBRSgAwIBAgIBAzANBgkqhkiG9w0BAQsFADCBoDELMAkGA1UEBhMCREUx
DzANBgNVBAgTBkJlcmxpbjEPMA0GA1UEBxMGQmVybGluMQ8wDQYDVQQKEwZvLm9w
ZW4xGTAXBgNVBAsTEE5ldHdvcmsgU2VydmljZXMxEDAOBgNVBAMTB1ZQTi1BS0Ix
EDAOBgNVBCkTB1ZQTiBBS0IxHzAdBgkqhkiG9w0BCQEWEHN1cHBvcnRAb29wZW4u
ZGUwHhcNMTgwMjA1MjMzMTQwWhcNMzgwMjA1MjMzMTQwWjCBpDELMAkGA1UEBhMC
REUxDzANBgNVBAgTBkJlcmxpbjEPMA0GA1UEBxMGQmVybGluMQ8wDQYDVQQKEwZv
Lm9wZW4xGTAXBgNVBAsTEE5ldHdvcmsgU2VydmljZXMxFjAUBgNVBAMTDVZQTi1B
S0Itam9uYXMxEDAOBgNVBCkTB1ZQTiBBS0IxHTAbBgkqhkiG9w0BCQEWDmFyZ3Vz
QG9vcGVuLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqovMLNan
xEAfA8t1G1koWpwj2ChPyycBJtpBEfxS10v3q6m+9rb79QygN9md4sx+/hTm2WOl
T0ycGts2MkqcCsjcQlCbBZpwtmV7mXpkIVfXGxBbpo4KZbyHHjYwigWI6ozxXnZa
Jl8VY16+3udpdmH/Z4EgcgPbnPa+EIp2SeytA+hIkIHrhf2h/EV9reP37kGoVjsa
1N8Rew6oaJP9WUjsc3Ew/8e4d/WJ8DLo61TjP+0gysA1bJOFUA3mvcFKFwOEpNjo
4ZyMHJUwYiMgS1h+UYV0Y4tBKHjw7o/5XcWYrmaSXD/b+fHT+eJSYEke4wSlo9Py
mz+fPMcZ0cStCirQ8bR1nU5N09XyWgtfz7k/g1+C2m/yEzztocsNpZdYyI9l0iO5
EfuEO31P1Y7O6DDKFnCj7nPCBjTZNLXRLKraer+XNZne6mzez5uOX2RX4kTbp8UF
ZIBKvqsxdlu76dw2SBzJpCAWlAeZLlpXq0Z0aMAn7Yvoi+HupOX39UzfBCBHanAR
fDcFTaXu7DyRPb5FZjWtvqfh9TFWjZZeVt8dw77E5T45/phKdAbhjdC0KnXhwNLq
XtzlBXJj6WrM7bx26F8ZxpBxpRD9/7h9vHq7DIh+HvwpMV2sdtX4pEIlQ4OVS2Wk
AVYx/8lWf9eOQq1tPJ/ma+M5FsiHRLWlNU0CAwEAAaOCAWkwggFlMAkGA1UdEwQC
MAAwLQYJYIZIAYb4QgENBCAWHkVhc3ktUlNBIEdlbmVyYXRlZCBDZXJ0aWZpY2F0
ZTAdBgNVHQ4EFgQUURuGhZkh2Nl9GdRhNQgoTLfOQHUwgdUGA1UdIwSBzTCByoAU
JI/+S7CmNXouQlbqZPH7oD/8Si6hgaakgaMwgaAxCzAJBgNVBAYTAkRFMQ8wDQYD
VQQIEwZCZXJsaW4xDzANBgNVBAcTBkJlcmxpbjEPMA0GA1UEChMGby5vcGVuMRkw
FwYDVQQLExBOZXR3b3JrIFNlcnZpY2VzMRAwDgYDVQQDEwdWUE4tQUtCMRAwDgYD
VQQpEwdWUE4gQUtCMR8wHQYJKoZIhvcNAQkBFhBzdXBwb3J0QG9vcGVuLmRlggkA
1HMStsHmudQwEwYDVR0lBAwwCgYIKwYBBQUHAwIwCwYDVR0PBAQDAgeAMBAGA1Ud
EQQJMAeCBWpvbmFzMA0GCSqGSIb3DQEBCwUAA4ICAQBvmYiaKfP9VijApcK3XChU
0xXt5SmhLphtKdqNUJiO6JTxLDxdDWPR4eMMDxCTcdyoWHR+l2zgfz//Qbw6T/On
Kj5+4MFDszJsAlU8LSdR/PsU2eG5gw00QTiV7cNM/fLuHoRp09pWYde5wtz7OrqD
+1DEGX0sq+Gx33HzI1vHfZl1ISwRQssuX1D7FT8SchEEDgjWNx1kWS3p4Jal1OWl
0vFOjN3MOsbeon1U5jEKgqPqYpMJpkxyxwyXY5Syi8EBRbwbhIL94TrqxrCu7Bf8
FVOrEflhzuGMYCtyEJpyq1P/2L6Nx1xh+T+cvWw4EH/uqgwHwHLtPmjg5PtVGl/s
pdmDkbaU21nT4pgszY/jyUrkSALiAd2KM0LPadPlxHvjKhqUfN07nYywBc2xvYLp
LkoL0MJpNAMTws9tPrGTyVu73zCLTnzY3f2E5DYnbSo+rFeqN1pHauDLeWCYamDu
yupSPS1F83NYAMv5l6McKR7KmlTLPVJuKntJa/lhE0Z/lQeRfV4YIcj2/Ojy7ShN
pOOm9av03cEtHce0Mhpg1mCujbI9/DdLF725nX++sIQ/FxuRiuHGyPwdkffBrn/1
f0uSZXHytyl/5wpSxsSm1Dkz3hTDuZLLkr1dRole1Nr4InGnunx30Ol2ez916FE+
89j0tYGjeV9QVWdArXoN0A==
-----END CERTIFICATE-----
</cert>
# Client Key
<key>
-----BEGIN ENCRYPTED PRIVATE KEY-----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-----END ENCRYPTED PRIVATE KEY-----
</key>
# Verify server certificate by checking
# that the certicate has the nsCertType
# field set to "server". This is an
# important precaution to protect against
# a potential attack discussed here:
# http://openvpn.net/howto.html#mitm
#
# To use this feature, you will need to generate
# your server certificates with the nsCertType
# field set to "server". The build-key-serve
ns-cert-type server
# If a tls-auth key is used on the server
# then every client must also have the key.
#
# Don't forget to set the 'key-direction' Parameter if using
# Inline Key. Usualy , sever has key direction '0', while client
# has ke direction '1'.
#
key-direction 1
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
5b91b2a91925f7503bb408768cb5053b
80a9d011f37c13df8297549c485d787b
6450a5341cd9b5079bf4993cd7724c91
8ae6953503cf30565dc75025061990c7
44348470db2143ff80b8ed281d822a69
a2d67538439c1f04f73df867848f618f
cc096eb98252e5c7e01a7921803ca4fe
18a0df2a99aaf15839f598fc5a3f24b9
17afcfd477d49792ffe450a18b8ad0f2
a9b1e5bc658e066e461472b2439ad423
1be921f71ac59a050bc751f681fcd553
60c4274c640dc56b0e140d5e9e062349
12bfaa7450b615bbc898f822dd5eb6bc
f3023bbcd87fb2a18c651dbae4bfbbcb
5797d4b6c01f0bd700681b308e19b239
53cfefa995eb4bf57ee985194e814548
-----END OpenVPN Static key V1-----
</tls-auth>
# Select a cryptographic cipher.
# If the cipher option is used on the server
# then you must also specify it here.
# Enable compression on the VPN link.
# Don't enable this unless it is also
# enabled in the server config file.
comp-lzo
# Verbosity level.
# 0 -- quiet except for fatal errors.
# 1 -- mostly quiet, but display non-fatal network errors.
# 3 -- medium output, good for normal operation.
# 9 -- verbose, good for troubleshooting
verb 1
# Setting 'pull' on the client takes care to get the 'push' durectives
# from the server
pull

12
AKB/openvpn/akb/keys-created.txt Normal file
View File

@ -0,0 +1,12 @@
key...............: chris.key
common name.......: VPN-AKB-chris
password..........: dbddhkpuka.&EadGl15E.
key...............: jonas.key
common name.......: VPN-AKB-jonas
password..........: DGD9Xn5V9Z
key...............: maica.key
common name.......: VPN-AKB-maica
password..........: LrnZ4_NTz3

141
AKB/openvpn/akb/keys/01.pem Normal file
View File

@ -0,0 +1,141 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1 (0x1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 20:24:02 2018 GMT
Not After : Feb 5 20:24:02 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-server/name=VPN AKB/emailAddress=support@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:ce:a6:fe:62:1a:c1:eb:a0:ae:49:9a:9d:e5:28:
eb:91:f1:2c:5a:d7:24:ba:eb:55:86:9a:0b:bc:92:
51:70:e5:c7:19:64:83:e9:9d:c8:6b:f1:67:02:d8:
b2:33:65:e1:11:46:d5:81:4d:ae:cd:df:4e:0d:1c:
67:95:59:39:e2:d8:5b:5e:24:fe:1d:c4:dc:ea:6e:
e4:b5:d4:5b:f4:5b:2b:a5:82:b4:69:36:25:a1:47:
3d:18:1f:b2:1b:03:a3:ab:1d:d6:58:1f:28:fd:25:
c7:a3:92:8c:b6:cf:12:f1:23:18:1a:32:03:e6:36:
e4:bc:f8:61:b8:fc:70:03:87:35:a0:f6:25:26:e3:
2e:9a:e5:5c:a6:89:3e:03:1b:c4:23:e1:75:65:ed:
ac:1a:3f:ee:78:5f:6f:d6:90:28:b5:78:e2:71:0b:
f4:cb:56:99:bd:29:c6:1a:bd:fa:34:e2:94:a9:88:
39:1c:9e:75:c8:58:0e:e9:31:59:0e:e2:d0:df:93:
0d:bf:93:85:25:05:3a:32:8a:19:11:f0:7f:8b:a7:
b1:bb:74:77:bd:69:d6:03:fe:6a:94:31:93:22:b2:
c3:02:be:61:62:e3:73:4b:73:32:48:c1:3d:01:41:
a1:2b:df:dc:00:86:ca:af:d7:20:54:87:7c:b3:ad:
63:fc:9d:f1:b8:14:23:de:6b:8c:63:2e:4b:45:52:
5c:b7:6a:86:68:59:ea:ba:fc:0b:3e:37:51:63:f2:
30:86:eb:2a:43:92:e4:7c:80:44:5c:6b:dc:ab:f0:
c0:13:4d:c1:e1:c8:e8:9e:c0:6c:57:3a:31:be:c5:
83:a0:86:5c:e1:f7:27:f4:b9:0d:fb:29:24:9e:dd:
cb:31:2a:6f:5c:63:f7:57:ae:96:be:66:54:6a:13:
be:c5:70:cd:0c:8d:99:a5:f3:90:46:f5:cd:ff:c7:
cc:39:c5:34:4f:53:c7:31:bd:7a:be:eb:3c:50:21:
7d:46:ae:00:e2:e1:26:51:ab:06:e3:17:82:c8:81:
f4:0d:6d:81:6c:72:4b:03:e5:31:aa:3e:ea:e3:99:
f0:18:98:a6:10:b9:95:97:fa:b0:66:12:68:fc:29:
60:c2:80:83:41:71:1d:b7:a8:05:2b:85:a8:b4:27:
bb:26:24:71:85:e8:1a:c5:9f:24:2f:7e:98:09:25:
4d:c2:88:66:92:f0:a9:19:35:6a:bd:6e:45:de:2a:
7f:5b:4e:f1:4d:f6:e7:12:66:87:42:f2:74:a0:78:
1f:27:10:58:43:2f:75:e4:17:91:d9:42:5c:37:79:
4a:77:43:5d:3e:7a:d5:f1:e1:92:a9:20:1e:55:6d:
37:e5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Cert Type:
SSL Server
Netscape Comment:
Easy-RSA Generated Server Certificate
X509v3 Subject Key Identifier:
35:5A:98:2E:5D:84:EF:EA:D7:DD:16:4F:4C:E0:18:39:DB:65:2F:18
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Digital Signature, Key Encipherment
X509v3 Subject Alternative Name:
DNS:server
Signature Algorithm: sha256WithRSAEncryption
51:b9:6d:4d:8c:8c:00:56:8e:b7:81:d7:c4:59:bb:bc:b9:89:
77:e9:de:7f:c0:88:b2:4c:12:c0:e1:4c:5c:7c:6b:aa:94:95:
3e:16:ac:fb:e8:de:f2:a1:93:08:6c:8a:17:d1:d1:a1:3b:d0:
98:05:35:00:7e:34:98:1e:b9:da:cd:ce:67:11:a9:d4:43:ca:
fc:f0:23:09:ec:19:03:99:de:40:d2:61:42:b6:91:c7:29:26:
ee:f5:91:a2:e5:75:4c:50:2f:22:95:37:53:ce:46:21:cf:04:
d1:93:9c:ad:0e:5c:00:f8:00:f2:b1:f8:02:3f:fe:b3:15:3e:
9b:a4:fb:19:d6:81:b7:f4:06:89:cb:16:9c:e0:2f:60:00:69:
dd:ac:41:e8:23:29:19:5e:48:62:26:97:84:7e:5e:f2:50:3d:
e1:51:68:18:17:4d:0b:d5:0b:98:8e:d6:99:df:bb:79:ad:2d:
14:4f:48:6a:21:a4:42:2d:b8:a3:70:cd:24:df:1a:23:be:f0:
d1:f8:c2:a8:02:e1:03:88:d5:ea:7c:71:e6:96:95:02:34:8f:
c6:81:15:79:a9:a4:dc:11:5d:d6:97:f1:9c:d5:1f:4f:85:d9:
30:3b:bd:31:ac:48:d7:b2:08:63:1b:87:80:4b:1e:4f:e5:29:
85:f1:28:55:c1:7f:ca:d8:c3:51:eb:2c:98:2b:31:4e:27:e4:
90:a4:4e:bb:87:5f:43:d8:76:57:6e:d7:0b:5c:11:61:99:7b:
b7:49:29:1f:6f:b0:9f:46:1c:e8:3d:0f:b7:40:c8:77:69:5f:
48:03:a3:db:8c:46:b1:e3:cc:39:7e:87:f2:48:f2:f9:90:7d:
98:01:3c:cb:53:ca:42:ef:c0:20:e4:f9:cd:a9:b2:44:13:66:
4a:d6:6d:e4:2e:4c:29:7f:7f:c4:23:06:93:56:e1:c8:01:30:
3f:79:22:87:38:88:a9:1a:ae:b7:c9:b6:bf:37:3b:eb:d8:d5:
fc:ad:ae:a1:2b:bb:20:c9:28:67:cf:8f:73:00:7a:4b:4b:91:
82:2d:c3:bb:9c:86:28:17:30:55:23:62:c2:87:00:e2:c9:b4:
d6:e2:dc:83:37:22:09:47:f8:e2:51:18:51:fb:97:a1:7c:2b:
54:7f:ab:0d:ca:cd:8a:87:dd:8c:a5:af:2d:7f:a1:ea:e6:db:
8f:84:ef:ff:83:60:80:78:5a:21:a1:01:7c:1a:a7:ef:b7:2b:
20:5d:d3:bf:b9:82:2f:75:ec:2e:49:7b:61:90:85:62:1a:c5:
ff:de:32:57:b5:3c:b7:a9:52:dd:ce:e6:94:ab:2a:1f:3f:a5:
e7:64:ce:9b:a7:ad:fc:c0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

139
AKB/openvpn/akb/keys/02.pem Normal file
View File

@ -0,0 +1,139 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 23:23:46 2018 GMT
Not After : Feb 5 23:23:46 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-chris/name=VPN AKB/emailAddress=argus@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:de:2d:6f:e4:7d:d7:ad:ca:99:98:88:36:25:2b:
69:59:78:24:ea:ef:20:b2:fc:71:b9:1c:5c:65:4d:
ff:bf:aa:be:58:f7:e3:0d:ea:19:e9:a8:fe:0c:93:
e1:49:5d:f9:24:d6:e6:90:90:9f:c8:bd:23:39:fe:
5d:6d:80:82:7f:ad:2a:dc:a4:5c:92:8d:9b:09:98:
e9:d8:6e:1e:8d:47:0a:f6:9f:f0:e7:d8:a3:9d:a3:
75:1a:9c:9a:66:ee:cb:c0:47:d5:71:a3:6a:23:e2:
e4:c1:bf:ac:a7:52:b4:1c:90:f7:ba:0a:c6:c0:30:
d4:c8:5a:3f:42:1d:a8:e9:2d:d5:6c:63:84:ff:eb:
99:70:c3:29:34:14:4a:88:65:a0:0d:7b:99:24:6d:
92:56:00:88:d9:b7:93:f9:6f:51:28:d3:2a:bd:fa:
b9:c8:96:5e:98:21:d4:32:30:1d:c3:c2:62:ac:b9:
2f:97:bd:d7:56:33:4c:52:07:45:a3:15:c4:ce:61:
8e:23:72:0f:be:8d:d1:64:ae:aa:47:63:a9:03:eb:
75:72:a9:fd:dd:a4:aa:91:45:92:0f:d0:3b:e1:a8:
9c:6d:92:d6:a4:02:61:25:fc:bb:35:b6:dd:2b:5f:
83:2e:9f:18:1d:21:de:a1:34:9e:f0:c9:b3:f5:56:
a7:7b:58:f0:79:7c:3a:9d:cd:99:a8:67:90:13:87:
59:1e:48:4b:06:5a:fd:6e:95:db:da:1a:84:88:c1:
2d:ed:c0:7c:14:b9:af:a7:e7:7b:3d:c2:62:cc:4e:
ba:3d:83:86:9a:6b:32:35:3c:12:cc:44:40:e9:a6:
47:85:af:0f:98:a3:9e:ac:28:82:6d:c5:24:bc:4f:
23:fc:ca:bf:36:fd:a3:74:7a:33:c3:04:02:dd:52:
56:54:9a:2a:a6:7a:c8:1f:21:e8:08:0a:d9:55:fb:
af:c8:ca:87:56:54:82:5f:3c:4d:73:51:42:94:93:
e9:35:8a:c5:89:2a:63:d1:42:76:5c:77:ab:a8:fa:
51:28:eb:64:24:56:c6:f9:3a:f2:41:ae:97:4e:e7:
7c:02:16:dc:c0:e0:25:2b:c2:4e:05:29:03:d9:c7:
06:bf:3e:75:c4:bf:68:0b:de:93:0a:6c:22:ea:d7:
cd:ab:e9:a1:b0:df:45:b5:72:84:d2:1b:58:4a:83:
f2:cc:bc:48:54:37:79:b6:3c:55:7f:9e:0f:2c:4c:
a2:de:77:90:ba:fd:0d:a4:a6:b4:12:ae:d7:c9:72:
d5:b3:94:0e:fd:a3:bc:22:b4:5e:2b:aa:d7:53:63:
17:fd:ab:41:9f:81:79:da:c1:f4:00:07:cb:7c:4e:
fa:e0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
Easy-RSA Generated Certificate
X509v3 Subject Key Identifier:
63:DA:41:7D:CB:BF:08:55:90:4B:6C:52:20:60:57:AA:18:94:0A:6E
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Client Authentication
X509v3 Key Usage:
Digital Signature
X509v3 Subject Alternative Name:
DNS:chris
Signature Algorithm: sha256WithRSAEncryption
ca:52:78:14:c0:a7:3e:d4:02:a1:71:ab:f5:6e:dc:9a:73:e8:
95:40:fa:a8:5b:ae:a6:fd:27:b5:6a:ed:d9:0d:86:26:50:3b:
0b:b0:a9:6d:af:25:39:0a:8f:35:fb:b7:db:51:44:8b:f6:73:
c7:b8:41:a1:96:a2:86:a3:dc:9a:13:f5:a2:e0:ad:65:76:73:
9c:42:67:68:2a:9d:3c:59:6a:b9:19:35:57:1d:72:72:04:e6:
ce:15:7a:0f:57:c4:88:c1:89:6c:ee:23:7e:8e:b3:f1:90:de:
eb:51:fb:c1:3a:6d:bb:b0:bf:6b:40:fd:17:fd:64:0c:e4:1d:
2b:af:c0:c4:fa:e5:85:d7:8d:7e:1b:2d:e4:a7:71:d0:d6:99:
94:fa:21:36:70:d0:18:31:1b:a9:24:53:6e:08:96:3d:61:eb:
09:23:6a:32:f1:02:37:66:93:a6:bf:dd:bc:99:9e:d5:54:0f:
1f:2a:21:ce:1e:b4:22:0e:be:b2:fe:1d:78:24:62:da:c1:50:
45:7a:05:f2:ca:9a:a6:e4:dd:cb:df:84:f7:62:c7:16:df:4b:
9b:80:4d:7a:66:4f:c6:c2:a4:c4:bb:a2:a1:d5:37:fb:38:15:
d6:6c:08:cd:29:00:96:8d:ed:2c:99:39:79:0d:77:7b:d2:35:
23:6d:5f:f8:7d:a1:b3:2d:57:62:7d:a8:55:c2:be:25:4d:8d:
6d:de:67:ec:82:29:45:d0:34:c7:07:0f:63:25:db:89:28:4b:
00:3b:ea:4f:d8:ae:28:cb:ef:7f:49:15:71:56:c9:b9:9a:b7:
12:77:b9:60:c0:de:49:18:20:46:f3:96:85:c4:67:55:6e:1e:
b5:80:42:c2:8b:bc:42:cf:e6:a3:c7:a8:ef:de:c2:b9:6f:0b:
7f:d4:71:4c:9d:02:4c:d3:1a:db:6f:8d:a9:ed:11:74:a3:ed:
f4:69:d4:d8:be:4c:91:1e:f4:97:15:57:ef:d1:86:cc:ab:4d:
bc:70:2a:24:36:a8:1d:d0:80:03:36:95:de:c8:ef:49:2e:02:
5f:7d:77:80:f8:5b:5f:22:9b:72:04:83:e6:85:58:7b:b6:f0:
7b:8e:22:54:cd:6c:13:3a:80:73:a2:01:dd:d5:a1:fb:6f:a2:
55:a9:b6:80:1d:dd:23:8e:99:ba:69:5a:d4:a7:91:32:29:f0:
7f:ac:84:0d:41:ce:10:85:7d:df:e1:12:25:5b:88:34:c4:2c:
d1:74:37:29:6d:a0:9a:11:e0:a4:7f:bd:cb:d7:b0:78:06:6d:
bf:de:b1:99:e6:d3:90:8a:62:43:46:20:03:f4:a0:0d:33:0f:
37:89:d8:23:8d:c0:9c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

139
AKB/openvpn/akb/keys/03.pem Normal file
View File

@ -0,0 +1,139 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 23:31:40 2018 GMT
Not After : Feb 5 23:31:40 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-jonas/name=VPN AKB/emailAddress=argus@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:aa:8b:cc:2c:d6:a7:c4:40:1f:03:cb:75:1b:59:
28:5a:9c:23:d8:28:4f:cb:27:01:26:da:41:11:fc:
52:d7:4b:f7:ab:a9:be:f6:b6:fb:f5:0c:a0:37:d9:
9d:e2:cc:7e:fe:14:e6:d9:63:a5:4f:4c:9c:1a:db:
36:32:4a:9c:0a:c8:dc:42:50:9b:05:9a:70:b6:65:
7b:99:7a:64:21:57:d7:1b:10:5b:a6:8e:0a:65:bc:
87:1e:36:30:8a:05:88:ea:8c:f1:5e:76:5a:26:5f:
15:63:5e:be:de:e7:69:76:61:ff:67:81:20:72:03:
db:9c:f6:be:10:8a:76:49:ec:ad:03:e8:48:90:81:
eb:85:fd:a1:fc:45:7d:ad:e3:f7:ee:41:a8:56:3b:
1a:d4:df:11:7b:0e:a8:68:93:fd:59:48:ec:73:71:
30:ff:c7:b8:77:f5:89:f0:32:e8:eb:54:e3:3f:ed:
20:ca:c0:35:6c:93:85:50:0d:e6:bd:c1:4a:17:03:
84:a4:d8:e8:e1:9c:8c:1c:95:30:62:23:20:4b:58:
7e:51:85:74:63:8b:41:28:78:f0:ee:8f:f9:5d:c5:
98:ae:66:92:5c:3f:db:f9:f1:d3:f9:e2:52:60:49:
1e:e3:04:a5:a3:d3:f2:9b:3f:9f:3c:c7:19:d1:c4:
ad:0a:2a:d0:f1:b4:75:9d:4e:4d:d3:d5:f2:5a:0b:
5f:cf:b9:3f:83:5f:82:da:6f:f2:13:3c:ed:a1:cb:
0d:a5:97:58:c8:8f:65:d2:23:b9:11:fb:84:3b:7d:
4f:d5:8e:ce:e8:30:ca:16:70:a3:ee:73:c2:06:34:
d9:34:b5:d1:2c:aa:da:7a:bf:97:35:99:de:ea:6c:
de:cf:9b:8e:5f:64:57:e2:44:db:a7:c5:05:64:80:
4a:be:ab:31:76:5b:bb:e9:dc:36:48:1c:c9:a4:20:
16:94:07:99:2e:5a:57:ab:46:74:68:c0:27:ed:8b:
e8:8b:e1:ee:a4:e5:f7:f5:4c:df:04:20:47:6a:70:
11:7c:37:05:4d:a5:ee:ec:3c:91:3d:be:45:66:35:
ad:be:a7:e1:f5:31:56:8d:96:5e:56:df:1d:c3:be:
c4:e5:3e:39:fe:98:4a:74:06:e1:8d:d0:b4:2a:75:
e1:c0:d2:ea:5e:dc:e5:05:72:63:e9:6a:cc:ed:bc:
76:e8:5f:19:c6:90:71:a5:10:fd:ff:b8:7d:bc:7a:
bb:0c:88:7e:1e:fc:29:31:5d:ac:76:d5:f8:a4:42:
25:43:83:95:4b:65:a4:01:56:31:ff:c9:56:7f:d7:
8e:42:ad:6d:3c:9f:e6:6b:e3:39:16:c8:87:44:b5:
a5:35:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
Easy-RSA Generated Certificate
X509v3 Subject Key Identifier:
51:1B:86:85:99:21:D8:D9:7D:19:D4:61:35:08:28:4C:B7:CE:40:75
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Client Authentication
X509v3 Key Usage:
Digital Signature
X509v3 Subject Alternative Name:
DNS:jonas
Signature Algorithm: sha256WithRSAEncryption
6f:99:88:9a:29:f3:fd:56:28:c0:a5:c2:b7:5c:28:54:d3:15:
ed:e5:29:a1:2e:98:6d:29:da:8d:50:98:8e:e8:94:f1:2c:3c:
5d:0d:63:d1:e1:e3:0c:0f:10:93:71:dc:a8:58:74:7e:97:6c:
e0:7f:3f:ff:41:bc:3a:4f:f3:a7:2a:3e:7e:e0:c1:43:b3:32:
6c:02:55:3c:2d:27:51:fc:fb:14:d9:e1:b9:83:0d:34:41:38:
95:ed:c3:4c:fd:f2:ee:1e:84:69:d3:da:56:61:d7:b9:c2:dc:
fb:3a:ba:83:fb:50:c4:19:7d:2c:ab:e1:b1:df:71:f3:23:5b:
c7:7d:99:75:21:2c:11:42:cb:2e:5f:50:fb:15:3f:12:72:11:
04:0e:08:d6:37:1d:64:59:2d:e9:e0:96:a5:d4:e5:a5:d2:f1:
4e:8c:dd:cc:3a:c6:de:a2:7d:54:e6:31:0a:82:a3:ea:62:93:
09:a6:4c:72:c7:0c:97:63:94:b2:8b:c1:01:45:bc:1b:84:82:
fd:e1:3a:ea:c6:b0:ae:ec:17:fc:15:53:ab:11:f9:61:ce:e1:
8c:60:2b:72:10:9a:72:ab:53:ff:d8:be:8d:c7:5c:61:f9:3f:
9c:bd:6c:38:10:7f:ee:aa:0c:07:c0:72:ed:3e:68:e0:e4:fb:
55:1a:5f:ec:a5:d9:83:91:b6:94:db:59:d3:e2:98:2c:cd:8f:
e3:c9:4a:e4:48:02:e2:01:dd:8a:33:42:cf:69:d3:e5:c4:7b:
e3:2a:1a:94:7c:dd:3b:9d:8c:b0:05:cd:b1:bd:82:e9:2e:4a:
0b:d0:c2:69:34:03:13:c2:cf:6d:3e:b1:93:c9:5b:bb:df:30:
8b:4e:7c:d8:dd:fd:84:e4:36:27:6d:2a:3e:ac:57:aa:37:5a:
47:6a:e0:cb:79:60:98:6a:60:ee:ca:ea:52:3d:2d:45:f3:73:
58:00:cb:f9:97:a3:1c:29:1e:ca:9a:54:cb:3d:52:6e:2a:7b:
49:6b:f9:61:13:46:7f:95:07:91:7d:5e:18:21:c8:f6:fc:e8:
f2:ed:28:4d:a4:e3:a6:f5:ab:f4:dd:c1:2d:1d:c7:b4:32:1a:
60:d6:60:ae:8d:b2:3d:fc:37:4b:17:bd:b9:9d:7f:be:b0:84:
3f:17:1b:91:8a:e1:c6:c8:fc:1d:91:f7:c1:ae:7f:f5:7f:4b:
92:65:71:f2:b7:29:7f:e7:0a:52:c6:c4:a6:d4:39:33:de:14:
c3:b9:92:cb:92:bd:5d:46:89:5e:d4:da:f8:22:71:a7:ba:7c:
77:d0:e9:76:7b:3f:75:e8:51:3e:f3:d8:f4:b5:81:a3:79:5f:
50:55:67:40:ad:7a:0d:d0
-----BEGIN CERTIFICATE-----
MIIHLDCCBRSgAwIBAgIBAzANBgkqhkiG9w0BAQsFADCBoDELMAkGA1UEBhMCREUx
DzANBgNVBAgTBkJlcmxpbjEPMA0GA1UEBxMGQmVybGluMQ8wDQYDVQQKEwZvLm9w
ZW4xGTAXBgNVBAsTEE5ldHdvcmsgU2VydmljZXMxEDAOBgNVBAMTB1ZQTi1BS0Ix
EDAOBgNVBCkTB1ZQTiBBS0IxHzAdBgkqhkiG9w0BCQEWEHN1cHBvcnRAb29wZW4u
ZGUwHhcNMTgwMjA1MjMzMTQwWhcNMzgwMjA1MjMzMTQwWjCBpDELMAkGA1UEBhMC
REUxDzANBgNVBAgTBkJlcmxpbjEPMA0GA1UEBxMGQmVybGluMQ8wDQYDVQQKEwZv
Lm9wZW4xGTAXBgNVBAsTEE5ldHdvcmsgU2VydmljZXMxFjAUBgNVBAMTDVZQTi1B
S0Itam9uYXMxEDAOBgNVBCkTB1ZQTiBBS0IxHTAbBgkqhkiG9w0BCQEWDmFyZ3Vz
QG9vcGVuLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqovMLNan
xEAfA8t1G1koWpwj2ChPyycBJtpBEfxS10v3q6m+9rb79QygN9md4sx+/hTm2WOl
T0ycGts2MkqcCsjcQlCbBZpwtmV7mXpkIVfXGxBbpo4KZbyHHjYwigWI6ozxXnZa
Jl8VY16+3udpdmH/Z4EgcgPbnPa+EIp2SeytA+hIkIHrhf2h/EV9reP37kGoVjsa
1N8Rew6oaJP9WUjsc3Ew/8e4d/WJ8DLo61TjP+0gysA1bJOFUA3mvcFKFwOEpNjo
4ZyMHJUwYiMgS1h+UYV0Y4tBKHjw7o/5XcWYrmaSXD/b+fHT+eJSYEke4wSlo9Py
mz+fPMcZ0cStCirQ8bR1nU5N09XyWgtfz7k/g1+C2m/yEzztocsNpZdYyI9l0iO5
EfuEO31P1Y7O6DDKFnCj7nPCBjTZNLXRLKraer+XNZne6mzez5uOX2RX4kTbp8UF
ZIBKvqsxdlu76dw2SBzJpCAWlAeZLlpXq0Z0aMAn7Yvoi+HupOX39UzfBCBHanAR
fDcFTaXu7DyRPb5FZjWtvqfh9TFWjZZeVt8dw77E5T45/phKdAbhjdC0KnXhwNLq
XtzlBXJj6WrM7bx26F8ZxpBxpRD9/7h9vHq7DIh+HvwpMV2sdtX4pEIlQ4OVS2Wk
AVYx/8lWf9eOQq1tPJ/ma+M5FsiHRLWlNU0CAwEAAaOCAWkwggFlMAkGA1UdEwQC
MAAwLQYJYIZIAYb4QgENBCAWHkVhc3ktUlNBIEdlbmVyYXRlZCBDZXJ0aWZpY2F0
ZTAdBgNVHQ4EFgQUURuGhZkh2Nl9GdRhNQgoTLfOQHUwgdUGA1UdIwSBzTCByoAU
JI/+S7CmNXouQlbqZPH7oD/8Si6hgaakgaMwgaAxCzAJBgNVBAYTAkRFMQ8wDQYD
VQQIEwZCZXJsaW4xDzANBgNVBAcTBkJlcmxpbjEPMA0GA1UEChMGby5vcGVuMRkw
FwYDVQQLExBOZXR3b3JrIFNlcnZpY2VzMRAwDgYDVQQDEwdWUE4tQUtCMRAwDgYD
VQQpEwdWUE4gQUtCMR8wHQYJKoZIhvcNAQkBFhBzdXBwb3J0QG9vcGVuLmRlggkA
1HMStsHmudQwEwYDVR0lBAwwCgYIKwYBBQUHAwIwCwYDVR0PBAQDAgeAMBAGA1Ud
EQQJMAeCBWpvbmFzMA0GCSqGSIb3DQEBCwUAA4ICAQBvmYiaKfP9VijApcK3XChU
0xXt5SmhLphtKdqNUJiO6JTxLDxdDWPR4eMMDxCTcdyoWHR+l2zgfz//Qbw6T/On
Kj5+4MFDszJsAlU8LSdR/PsU2eG5gw00QTiV7cNM/fLuHoRp09pWYde5wtz7OrqD
+1DEGX0sq+Gx33HzI1vHfZl1ISwRQssuX1D7FT8SchEEDgjWNx1kWS3p4Jal1OWl
0vFOjN3MOsbeon1U5jEKgqPqYpMJpkxyxwyXY5Syi8EBRbwbhIL94TrqxrCu7Bf8
FVOrEflhzuGMYCtyEJpyq1P/2L6Nx1xh+T+cvWw4EH/uqgwHwHLtPmjg5PtVGl/s
pdmDkbaU21nT4pgszY/jyUrkSALiAd2KM0LPadPlxHvjKhqUfN07nYywBc2xvYLp
LkoL0MJpNAMTws9tPrGTyVu73zCLTnzY3f2E5DYnbSo+rFeqN1pHauDLeWCYamDu
yupSPS1F83NYAMv5l6McKR7KmlTLPVJuKntJa/lhE0Z/lQeRfV4YIcj2/Ojy7ShN
pOOm9av03cEtHce0Mhpg1mCujbI9/DdLF725nX++sIQ/FxuRiuHGyPwdkffBrn/1
f0uSZXHytyl/5wpSxsSm1Dkz3hTDuZLLkr1dRole1Nr4InGnunx30Ol2ez916FE+
89j0tYGjeV9QVWdArXoN0A==
-----END CERTIFICATE-----

139
AKB/openvpn/akb/keys/04.pem Normal file
View File

@ -0,0 +1,139 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 23:35:19 2018 GMT
Not After : Feb 5 23:35:19 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-maica/name=VPN AKB/emailAddress=argus@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:9d:6a:fd:00:74:30:e3:36:ce:0b:5a:3c:2d:e8:
52:f8:6b:81:51:65:cd:75:1f:65:d9:50:4b:b7:12:
a5:39:0d:58:3a:3e:4d:e0:47:c6:7b:bb:db:ee:1b:
da:b1:63:e0:86:83:56:b1:40:d0:95:5c:45:45:3d:
21:3d:5a:b1:41:02:6c:67:f1:ac:78:0e:87:09:db:
57:c6:ac:c9:20:5b:97:45:c1:f7:e7:33:38:1f:23:
32:f8:c1:7e:2f:b6:be:ec:32:ec:99:ab:94:fe:32:
92:69:8c:4a:0b:4d:7f:b3:46:87:ae:fd:89:bc:96:
25:fc:a9:c3:60:33:94:6e:50:89:71:1a:b0:10:e2:
a4:cb:c6:c9:28:27:54:e3:61:5c:9c:ec:a7:7d:03:
5a:3e:22:62:eb:52:37:bb:16:52:8b:b5:f3:c0:92:
42:d5:c8:5a:a1:ca:68:03:e6:c5:5d:1d:89:bd:7b:
f5:0c:ff:c4:97:2f:0c:bf:95:2d:4c:96:85:a0:1a:
8f:44:63:0f:d4:98:f8:3f:a0:84:5c:b9:ec:85:55:
aa:a0:a2:2a:f9:25:b6:95:db:36:ce:b8:0f:54:b5:
b1:12:cf:21:8f:3d:da:31:f0:50:cc:77:d6:28:49:
27:f3:81:44:03:65:37:da:09:37:21:dd:b6:87:ff:
55:76:e9:c7:b8:d2:4a:fc:18:6c:6c:53:02:7e:2f:
e8:84:6d:ca:1b:a8:85:c0:5b:3d:a8:95:76:a4:3a:
5f:85:d7:58:92:3f:92:8d:67:75:60:52:a3:62:60:
e8:9f:20:98:37:c7:f0:31:97:5a:f2:08:64:a0:c0:
89:cd:a6:69:b5:23:d6:25:b8:ec:42:49:c7:1d:bc:
22:bf:aa:0b:da:f5:76:68:c2:b5:8d:20:a8:25:f1:
62:e2:e5:fb:34:46:bd:e7:bb:a4:30:cb:32:26:81:
39:6f:68:f1:35:c3:f6:38:65:32:4b:7e:9c:31:e7:
10:9a:61:a6:65:0d:42:a0:6d:41:0f:97:70:61:f2:
5b:6d:10:4e:c3:fb:53:9e:71:0b:20:4d:3e:96:66:
76:dd:20:8d:50:5d:2b:e0:c0:d4:bd:bb:02:72:af:
bb:25:1d:e8:49:f1:08:1d:a8:52:fb:18:c9:14:91:
c2:2e:d9:e7:2f:2a:c9:ac:eb:d5:bd:f1:82:e4:e1:
3b:67:c9:b7:3f:f5:38:8f:65:bc:6d:4a:ee:f2:00:
75:5f:a0:33:c8:02:9d:f4:36:4f:f9:aa:11:91:64:
11:b0:02:67:44:15:f6:4e:94:3c:3c:10:a3:28:dc:
b1:94:56:ee:7b:04:0f:78:9d:43:d6:f3:0f:3c:6c:
e6:70:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
Easy-RSA Generated Certificate
X509v3 Subject Key Identifier:
03:92:4E:3C:2E:76:22:8B:F3:9C:EC:9F:B2:24:1F:9C:6B:E6:FC:62
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Client Authentication
X509v3 Key Usage:
Digital Signature
X509v3 Subject Alternative Name:
DNS:maica
Signature Algorithm: sha256WithRSAEncryption
3a:db:1b:c8:93:e4:01:0a:d5:e8:6c:49:a4:1b:87:2f:8c:21:
98:25:71:fd:25:16:92:e6:c5:34:67:54:c2:81:16:0e:23:7b:
bc:7d:86:e3:a4:8c:af:02:80:2a:69:af:96:98:cf:c5:21:5c:
5d:4c:ad:64:e9:bd:fa:ff:60:19:9f:a6:53:47:99:52:f9:76:
0b:3d:fb:07:fe:56:7a:70:b9:45:30:5f:5e:9d:2c:e0:0c:d2:
7a:1a:2a:2b:5b:30:e3:88:09:c7:69:23:2c:41:bb:c2:6c:85:
70:d1:b9:28:5c:fc:4e:67:d8:a7:3b:f7:f9:d6:46:c9:2d:5b:
3f:3e:7b:82:59:bc:0d:b0:f3:c6:c3:8e:6d:27:27:6c:d5:ed:
dd:47:0f:9b:3b:11:aa:2d:99:e4:71:de:eb:f0:6e:82:55:4d:
17:c1:8d:55:c9:fd:05:36:f8:e7:03:ad:46:62:1e:bf:c2:b2:
f5:7b:4a:e5:ca:19:c6:04:55:a2:28:df:59:a9:a4:77:6a:72:
46:25:97:68:93:46:3c:ee:ae:12:f7:5a:94:2d:e5:45:f6:7b:
c9:66:b4:e8:70:11:a4:12:7d:8d:f1:c0:b1:06:00:3e:be:f9:
1a:c6:0a:35:99:df:5e:c3:ae:c1:ad:f9:f8:ed:bd:e2:9e:2d:
8a:68:15:ee:9a:61:b2:99:7c:96:6c:c7:75:3b:d3:28:d6:e4:
51:f1:2a:0e:ba:3a:be:d2:eb:15:a4:57:53:ad:50:9e:6d:02:
5e:b1:8f:24:3d:60:90:12:d0:40:7c:34:50:48:1d:13:52:41:
26:28:7e:f2:d9:57:00:98:f5:7d:69:bd:ed:d2:30:ce:74:bf:
0b:fd:b9:d8:15:88:d4:59:77:c6:b4:7f:90:bd:d8:ed:00:3a:
8c:c0:6d:c1:05:db:50:17:9f:53:49:dc:cc:7c:95:e6:ef:81:
98:e9:b0:e6:39:a3:64:41:77:cd:dd:18:41:79:00:c8:fa:77:
85:9c:dd:85:65:dd:a7:9f:a7:77:a8:8e:a7:6c:7c:2f:0e:92:
c4:b5:a6:28:dc:f4:98:b2:1b:22:53:2c:7e:78:05:a3:21:25:
1b:d2:68:9f:36:c8:06:12:7c:69:2d:f9:09:24:45:9c:74:a6:
45:f5:f9:20:1e:72:ad:cf:0b:52:43:7f:2a:92:2a:20:13:aa:
fc:63:8c:9c:02:85:78:bd:57:4b:c9:0a:01:1d:77:72:7b:4f:
1f:b5:7f:89:8f:63:9a:7c:c1:7a:38:dd:6a:11:76:d4:8a:86:
93:0b:ed:3b:be:a1:39:38:b7:63:44:9b:b9:f4:52:8f:f5:40:
2b:db:d1:41:38:60:db:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

39
AKB/openvpn/akb/keys/ca.crt Normal file
View File

@ -0,0 +1,39 @@
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

52
AKB/openvpn/akb/keys/ca.key Normal file
View File

@ -0,0 +1,52 @@
-----BEGIN PRIVATE KEY-----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-----END PRIVATE KEY-----

139
AKB/openvpn/akb/keys/chris.crt Normal file
View File

@ -0,0 +1,139 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 23:23:46 2018 GMT
Not After : Feb 5 23:23:46 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-chris/name=VPN AKB/emailAddress=argus@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:de:2d:6f:e4:7d:d7:ad:ca:99:98:88:36:25:2b:
69:59:78:24:ea:ef:20:b2:fc:71:b9:1c:5c:65:4d:
ff:bf:aa:be:58:f7:e3:0d:ea:19:e9:a8:fe:0c:93:
e1:49:5d:f9:24:d6:e6:90:90:9f:c8:bd:23:39:fe:
5d:6d:80:82:7f:ad:2a:dc:a4:5c:92:8d:9b:09:98:
e9:d8:6e:1e:8d:47:0a:f6:9f:f0:e7:d8:a3:9d:a3:
75:1a:9c:9a:66:ee:cb:c0:47:d5:71:a3:6a:23:e2:
e4:c1:bf:ac:a7:52:b4:1c:90:f7:ba:0a:c6:c0:30:
d4:c8:5a:3f:42:1d:a8:e9:2d:d5:6c:63:84:ff:eb:
99:70:c3:29:34:14:4a:88:65:a0:0d:7b:99:24:6d:
92:56:00:88:d9:b7:93:f9:6f:51:28:d3:2a:bd:fa:
b9:c8:96:5e:98:21:d4:32:30:1d:c3:c2:62:ac:b9:
2f:97:bd:d7:56:33:4c:52:07:45:a3:15:c4:ce:61:
8e:23:72:0f:be:8d:d1:64:ae:aa:47:63:a9:03:eb:
75:72:a9:fd:dd:a4:aa:91:45:92:0f:d0:3b:e1:a8:
9c:6d:92:d6:a4:02:61:25:fc:bb:35:b6:dd:2b:5f:
83:2e:9f:18:1d:21:de:a1:34:9e:f0:c9:b3:f5:56:
a7:7b:58:f0:79:7c:3a:9d:cd:99:a8:67:90:13:87:
59:1e:48:4b:06:5a:fd:6e:95:db:da:1a:84:88:c1:
2d:ed:c0:7c:14:b9:af:a7:e7:7b:3d:c2:62:cc:4e:
ba:3d:83:86:9a:6b:32:35:3c:12:cc:44:40:e9:a6:
47:85:af:0f:98:a3:9e:ac:28:82:6d:c5:24:bc:4f:
23:fc:ca:bf:36:fd:a3:74:7a:33:c3:04:02:dd:52:
56:54:9a:2a:a6:7a:c8:1f:21:e8:08:0a:d9:55:fb:
af:c8:ca:87:56:54:82:5f:3c:4d:73:51:42:94:93:
e9:35:8a:c5:89:2a:63:d1:42:76:5c:77:ab:a8:fa:
51:28:eb:64:24:56:c6:f9:3a:f2:41:ae:97:4e:e7:
7c:02:16:dc:c0:e0:25:2b:c2:4e:05:29:03:d9:c7:
06:bf:3e:75:c4:bf:68:0b:de:93:0a:6c:22:ea:d7:
cd:ab:e9:a1:b0:df:45:b5:72:84:d2:1b:58:4a:83:
f2:cc:bc:48:54:37:79:b6:3c:55:7f:9e:0f:2c:4c:
a2:de:77:90:ba:fd:0d:a4:a6:b4:12:ae:d7:c9:72:
d5:b3:94:0e:fd:a3:bc:22:b4:5e:2b:aa:d7:53:63:
17:fd:ab:41:9f:81:79:da:c1:f4:00:07:cb:7c:4e:
fa:e0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
Easy-RSA Generated Certificate
X509v3 Subject Key Identifier:
63:DA:41:7D:CB:BF:08:55:90:4B:6C:52:20:60:57:AA:18:94:0A:6E
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Client Authentication
X509v3 Key Usage:
Digital Signature
X509v3 Subject Alternative Name:
DNS:chris
Signature Algorithm: sha256WithRSAEncryption
ca:52:78:14:c0:a7:3e:d4:02:a1:71:ab:f5:6e:dc:9a:73:e8:
95:40:fa:a8:5b:ae:a6:fd:27:b5:6a:ed:d9:0d:86:26:50:3b:
0b:b0:a9:6d:af:25:39:0a:8f:35:fb:b7:db:51:44:8b:f6:73:
c7:b8:41:a1:96:a2:86:a3:dc:9a:13:f5:a2:e0:ad:65:76:73:
9c:42:67:68:2a:9d:3c:59:6a:b9:19:35:57:1d:72:72:04:e6:
ce:15:7a:0f:57:c4:88:c1:89:6c:ee:23:7e:8e:b3:f1:90:de:
eb:51:fb:c1:3a:6d:bb:b0:bf:6b:40:fd:17:fd:64:0c:e4:1d:
2b:af:c0:c4:fa:e5:85:d7:8d:7e:1b:2d:e4:a7:71:d0:d6:99:
94:fa:21:36:70:d0:18:31:1b:a9:24:53:6e:08:96:3d:61:eb:
09:23:6a:32:f1:02:37:66:93:a6:bf:dd:bc:99:9e:d5:54:0f:
1f:2a:21:ce:1e:b4:22:0e:be:b2:fe:1d:78:24:62:da:c1:50:
45:7a:05:f2:ca:9a:a6:e4:dd:cb:df:84:f7:62:c7:16:df:4b:
9b:80:4d:7a:66:4f:c6:c2:a4:c4:bb:a2:a1:d5:37:fb:38:15:
d6:6c:08:cd:29:00:96:8d:ed:2c:99:39:79:0d:77:7b:d2:35:
23:6d:5f:f8:7d:a1:b3:2d:57:62:7d:a8:55:c2:be:25:4d:8d:
6d:de:67:ec:82:29:45:d0:34:c7:07:0f:63:25:db:89:28:4b:
00:3b:ea:4f:d8:ae:28:cb:ef:7f:49:15:71:56:c9:b9:9a:b7:
12:77:b9:60:c0:de:49:18:20:46:f3:96:85:c4:67:55:6e:1e:
b5:80:42:c2:8b:bc:42:cf:e6:a3:c7:a8:ef:de:c2:b9:6f:0b:
7f:d4:71:4c:9d:02:4c:d3:1a:db:6f:8d:a9:ed:11:74:a3:ed:
f4:69:d4:d8:be:4c:91:1e:f4:97:15:57:ef:d1:86:cc:ab:4d:
bc:70:2a:24:36:a8:1d:d0:80:03:36:95:de:c8:ef:49:2e:02:
5f:7d:77:80:f8:5b:5f:22:9b:72:04:83:e6:85:58:7b:b6:f0:
7b:8e:22:54:cd:6c:13:3a:80:73:a2:01:dd:d5:a1:fb:6f:a2:
55:a9:b6:80:1d:dd:23:8e:99:ba:69:5a:d4:a7:91:32:29:f0:
7f:ac:84:0d:41:ce:10:85:7d:df:e1:12:25:5b:88:34:c4:2c:
d1:74:37:29:6d:a0:9a:11:e0:a4:7f:bd:cb:d7:b0:78:06:6d:
bf:de:b1:99:e6:d3:90:8a:62:43:46:20:03:f4:a0:0d:33:0f:
37:89:d8:23:8d:c0:9c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

29
AKB/openvpn/akb/keys/chris.csr Normal file
View File

@ -0,0 +1,29 @@
-----BEGIN CERTIFICATE REQUEST-----
MIIE6jCCAtICAQAwgaQxCzAJBgNVBAYTAkRFMQ8wDQYDVQQIEwZCZXJsaW4xDzAN
BgNVBAcTBkJlcmxpbjEPMA0GA1UEChMGby5vcGVuMRkwFwYDVQQLExBOZXR3b3Jr
IFNlcnZpY2VzMRYwFAYDVQQDEw1WUE4tQUtCLWNocmlzMRAwDgYDVQQpEwdWUE4g
QUtCMR0wGwYJKoZIhvcNAQkBFg5hcmd1c0Bvb3Blbi5kZTCCAiIwDQYJKoZIhvcN
AQEBBQADggIPADCCAgoCggIBAN4tb+R9163KmZiINiUraVl4JOrvILL8cbkcXGVN
/7+qvlj34w3qGemo/gyT4Uld+STW5pCQn8i9Izn+XW2Agn+tKtykXJKNmwmY6dhu
Ho1HCvaf8OfYo52jdRqcmmbuy8BH1XGjaiPi5MG/rKdStByQ97oKxsAw1MhaP0Id
qOkt1WxjhP/rmXDDKTQUSohloA17mSRtklYAiNm3k/lvUSjTKr36uciWXpgh1DIw
HcPCYqy5L5e911YzTFIHRaMVxM5hjiNyD76N0WSuqkdjqQPrdXKp/d2kqpFFkg/Q
O+GonG2S1qQCYSX8uzW23Stfgy6fGB0h3qE0nvDJs/VWp3tY8Hl8Op3NmahnkBOH
WR5ISwZa/W6V29oahIjBLe3AfBS5r6fnez3CYsxOuj2DhpprMjU8EsxEQOmmR4Wv
D5ijnqwogm3FJLxPI/zKvzb9o3R6M8MEAt1SVlSaKqZ6yB8h6AgK2VX7r8jKh1ZU
gl88TXNRQpST6TWKxYkqY9FCdlx3q6j6USjrZCRWxvk68kGul07nfAIW3MDgJSvC
TgUpA9nHBr8+dcS/aAvekwpsIurXzavpobDfRbVyhNIbWEqD8sy8SFQ3ebY8VX+e
DyxMot53kLr9DaSmtBKu18ly1bOUDv2jvCK0Xiuq11NjF/2rQZ+BedrB9AAHy3xO
+uDlAgMBAAGgADANBgkqhkiG9w0BAQsFAAOCAgEAlNDQFzw62oe1Sy17o4XmNXh+
BjHp3MV6yfsK30/mlmZ9PGy5WtKlmyGzTuflsUr5Lyd9U7h6jLeLyMxRRv2jX6Gh
yMgIWhiETV8wazaGEMFuRdklVjPvxP+hlIql+n1iecKxpjfTidPMDD9oIu3ICmzP
swDYMGwXuWR3NjsJGxClDtq2yZYVGV2qgeyDDkhd7ECQJkRdo39TzhEbh5UsrUbY
kuuqh4oL0J0jAAL1r44RmsXnQDy0lNwMUGQfHHpIwELuZTLISUkzZHb5oLHUbnV1
SHOPBMY/2U7gJ2U1eaf47yO5eBYiE8DjlebWW+EYZSt4YiKO5M5z1Tk24wqPiOm5
jrWyHvowiDH8aSR+32Mkxhy9jxyWcLFNS+S8mqrAii+wLTP1kbnhZ0IesA8a4b4A
JTfoZZWHO4zTfY6Mzp92no6iJGnozs3rCbA0/ITsAP3ii794CNvfN4wOXyzHgEsM
KZRGeS7qXkmaxdfbV5kuu/F+enmdaZqDQ/NcqwNLfEAG4/L7dS0YSZfqAIxBIkMj
CX/ae3Y0L8xU0wD8mgoFX8clJQtmYsWlQaxgNzasEsebyKw3m0MZHsHmTTH5vAsT
y5cet4Wpf4op4jHQ+QBbgHBgDO7Khuu726NDOPd5sYPPgI3mN180iRu2iTkCFVjy
pGFkd7TEq9rbmArGYW4=
-----END CERTIFICATE REQUEST-----

54
AKB/openvpn/akb/keys/chris.key Normal file
View File

@ -0,0 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY-----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-----END ENCRYPTED PRIVATE KEY-----

1
AKB/openvpn/akb/keys/crl.pem Symbolic link
View File

@ -0,0 +1 @@
../crl.pem

13
AKB/openvpn/akb/keys/dh4096.pem Normal file
View File

@ -0,0 +1,13 @@
-----BEGIN DH PARAMETERS-----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-----END DH PARAMETERS-----

4
AKB/openvpn/akb/keys/index.txt Normal file
View File

@ -0,0 +1,4 @@
V 380205202402Z 01 unknown /C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB-server/name=VPN AKB/emailAddress=support@oopen.de
V 380205232346Z 02 unknown /C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB-chris/name=VPN AKB/emailAddress=argus@oopen.de
V 380205233140Z 03 unknown /C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB-jonas/name=VPN AKB/emailAddress=argus@oopen.de
V 380205233519Z 04 unknown /C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB-maica/name=VPN AKB/emailAddress=argus@oopen.de

1
AKB/openvpn/akb/keys/index.txt.attr Normal file
View File

@ -0,0 +1 @@
unique_subject = yes

1
AKB/openvpn/akb/keys/index.txt.attr.old Normal file
View File

@ -0,0 +1 @@
unique_subject = yes

3
AKB/openvpn/akb/keys/index.txt.old Normal file
View File

@ -0,0 +1,3 @@
V 380205202402Z 01 unknown /C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB-server/name=VPN AKB/emailAddress=support@oopen.de
V 380205232346Z 02 unknown /C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB-chris/name=VPN AKB/emailAddress=argus@oopen.de
V 380205233140Z 03 unknown /C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB-jonas/name=VPN AKB/emailAddress=argus@oopen.de

139
AKB/openvpn/akb/keys/jonas.crt Normal file
View File

@ -0,0 +1,139 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 23:31:40 2018 GMT
Not After : Feb 5 23:31:40 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-jonas/name=VPN AKB/emailAddress=argus@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:aa:8b:cc:2c:d6:a7:c4:40:1f:03:cb:75:1b:59:
28:5a:9c:23:d8:28:4f:cb:27:01:26:da:41:11:fc:
52:d7:4b:f7:ab:a9:be:f6:b6:fb:f5:0c:a0:37:d9:
9d:e2:cc:7e:fe:14:e6:d9:63:a5:4f:4c:9c:1a:db:
36:32:4a:9c:0a:c8:dc:42:50:9b:05:9a:70:b6:65:
7b:99:7a:64:21:57:d7:1b:10:5b:a6:8e:0a:65:bc:
87:1e:36:30:8a:05:88:ea:8c:f1:5e:76:5a:26:5f:
15:63:5e:be:de:e7:69:76:61:ff:67:81:20:72:03:
db:9c:f6:be:10:8a:76:49:ec:ad:03:e8:48:90:81:
eb:85:fd:a1:fc:45:7d:ad:e3:f7:ee:41:a8:56:3b:
1a:d4:df:11:7b:0e:a8:68:93:fd:59:48:ec:73:71:
30:ff:c7:b8:77:f5:89:f0:32:e8:eb:54:e3:3f:ed:
20:ca:c0:35:6c:93:85:50:0d:e6:bd:c1:4a:17:03:
84:a4:d8:e8:e1:9c:8c:1c:95:30:62:23:20:4b:58:
7e:51:85:74:63:8b:41:28:78:f0:ee:8f:f9:5d:c5:
98:ae:66:92:5c:3f:db:f9:f1:d3:f9:e2:52:60:49:
1e:e3:04:a5:a3:d3:f2:9b:3f:9f:3c:c7:19:d1:c4:
ad:0a:2a:d0:f1:b4:75:9d:4e:4d:d3:d5:f2:5a:0b:
5f:cf:b9:3f:83:5f:82:da:6f:f2:13:3c:ed:a1:cb:
0d:a5:97:58:c8:8f:65:d2:23:b9:11:fb:84:3b:7d:
4f:d5:8e:ce:e8:30:ca:16:70:a3:ee:73:c2:06:34:
d9:34:b5:d1:2c:aa:da:7a:bf:97:35:99:de:ea:6c:
de:cf:9b:8e:5f:64:57:e2:44:db:a7:c5:05:64:80:
4a:be:ab:31:76:5b:bb:e9:dc:36:48:1c:c9:a4:20:
16:94:07:99:2e:5a:57:ab:46:74:68:c0:27:ed:8b:
e8:8b:e1:ee:a4:e5:f7:f5:4c:df:04:20:47:6a:70:
11:7c:37:05:4d:a5:ee:ec:3c:91:3d:be:45:66:35:
ad:be:a7:e1:f5:31:56:8d:96:5e:56:df:1d:c3:be:
c4:e5:3e:39:fe:98:4a:74:06:e1:8d:d0:b4:2a:75:
e1:c0:d2:ea:5e:dc:e5:05:72:63:e9:6a:cc:ed:bc:
76:e8:5f:19:c6:90:71:a5:10:fd:ff:b8:7d:bc:7a:
bb:0c:88:7e:1e:fc:29:31:5d:ac:76:d5:f8:a4:42:
25:43:83:95:4b:65:a4:01:56:31:ff:c9:56:7f:d7:
8e:42:ad:6d:3c:9f:e6:6b:e3:39:16:c8:87:44:b5:
a5:35:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
Easy-RSA Generated Certificate
X509v3 Subject Key Identifier:
51:1B:86:85:99:21:D8:D9:7D:19:D4:61:35:08:28:4C:B7:CE:40:75
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Client Authentication
X509v3 Key Usage:
Digital Signature
X509v3 Subject Alternative Name:
DNS:jonas
Signature Algorithm: sha256WithRSAEncryption
6f:99:88:9a:29:f3:fd:56:28:c0:a5:c2:b7:5c:28:54:d3:15:
ed:e5:29:a1:2e:98:6d:29:da:8d:50:98:8e:e8:94:f1:2c:3c:
5d:0d:63:d1:e1:e3:0c:0f:10:93:71:dc:a8:58:74:7e:97:6c:
e0:7f:3f:ff:41:bc:3a:4f:f3:a7:2a:3e:7e:e0:c1:43:b3:32:
6c:02:55:3c:2d:27:51:fc:fb:14:d9:e1:b9:83:0d:34:41:38:
95:ed:c3:4c:fd:f2:ee:1e:84:69:d3:da:56:61:d7:b9:c2:dc:
fb:3a:ba:83:fb:50:c4:19:7d:2c:ab:e1:b1:df:71:f3:23:5b:
c7:7d:99:75:21:2c:11:42:cb:2e:5f:50:fb:15:3f:12:72:11:
04:0e:08:d6:37:1d:64:59:2d:e9:e0:96:a5:d4:e5:a5:d2:f1:
4e:8c:dd:cc:3a:c6:de:a2:7d:54:e6:31:0a:82:a3:ea:62:93:
09:a6:4c:72:c7:0c:97:63:94:b2:8b:c1:01:45:bc:1b:84:82:
fd:e1:3a:ea:c6:b0:ae:ec:17:fc:15:53:ab:11:f9:61:ce:e1:
8c:60:2b:72:10:9a:72:ab:53:ff:d8:be:8d:c7:5c:61:f9:3f:
9c:bd:6c:38:10:7f:ee:aa:0c:07:c0:72:ed:3e:68:e0:e4:fb:
55:1a:5f:ec:a5:d9:83:91:b6:94:db:59:d3:e2:98:2c:cd:8f:
e3:c9:4a:e4:48:02:e2:01:dd:8a:33:42:cf:69:d3:e5:c4:7b:
e3:2a:1a:94:7c:dd:3b:9d:8c:b0:05:cd:b1:bd:82:e9:2e:4a:
0b:d0:c2:69:34:03:13:c2:cf:6d:3e:b1:93:c9:5b:bb:df:30:
8b:4e:7c:d8:dd:fd:84:e4:36:27:6d:2a:3e:ac:57:aa:37:5a:
47:6a:e0:cb:79:60:98:6a:60:ee:ca:ea:52:3d:2d:45:f3:73:
58:00:cb:f9:97:a3:1c:29:1e:ca:9a:54:cb:3d:52:6e:2a:7b:
49:6b:f9:61:13:46:7f:95:07:91:7d:5e:18:21:c8:f6:fc:e8:
f2:ed:28:4d:a4:e3:a6:f5:ab:f4:dd:c1:2d:1d:c7:b4:32:1a:
60:d6:60:ae:8d:b2:3d:fc:37:4b:17:bd:b9:9d:7f:be:b0:84:
3f:17:1b:91:8a:e1:c6:c8:fc:1d:91:f7:c1:ae:7f:f5:7f:4b:
92:65:71:f2:b7:29:7f:e7:0a:52:c6:c4:a6:d4:39:33:de:14:
c3:b9:92:cb:92:bd:5d:46:89:5e:d4:da:f8:22:71:a7:ba:7c:
77:d0:e9:76:7b:3f:75:e8:51:3e:f3:d8:f4:b5:81:a3:79:5f:
50:55:67:40:ad:7a:0d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

29
AKB/openvpn/akb/keys/jonas.csr Normal file
View File

@ -0,0 +1,29 @@
-----BEGIN CERTIFICATE REQUEST-----
MIIE6jCCAtICAQAwgaQxCzAJBgNVBAYTAkRFMQ8wDQYDVQQIEwZCZXJsaW4xDzAN
BgNVBAcTBkJlcmxpbjEPMA0GA1UEChMGby5vcGVuMRkwFwYDVQQLExBOZXR3b3Jr
IFNlcnZpY2VzMRYwFAYDVQQDEw1WUE4tQUtCLWpvbmFzMRAwDgYDVQQpEwdWUE4g
QUtCMR0wGwYJKoZIhvcNAQkBFg5hcmd1c0Bvb3Blbi5kZTCCAiIwDQYJKoZIhvcN
AQEBBQADggIPADCCAgoCggIBAKqLzCzWp8RAHwPLdRtZKFqcI9goT8snASbaQRH8
UtdL96upvva2+/UMoDfZneLMfv4U5tljpU9MnBrbNjJKnArI3EJQmwWacLZle5l6
ZCFX1xsQW6aOCmW8hx42MIoFiOqM8V52WiZfFWNevt7naXZh/2eBIHID25z2vhCK
dknsrQPoSJCB64X9ofxFfa3j9+5BqFY7GtTfEXsOqGiT/VlI7HNxMP/HuHf1ifAy
6OtU4z/tIMrANWyThVAN5r3BShcDhKTY6OGcjByVMGIjIEtYflGFdGOLQSh48O6P
+V3FmK5mklw/2/nx0/niUmBJHuMEpaPT8ps/nzzHGdHErQoq0PG0dZ1OTdPV8loL
X8+5P4Nfgtpv8hM87aHLDaWXWMiPZdIjuRH7hDt9T9WOzugwyhZwo+5zwgY02TS1
0Syq2nq/lzWZ3ups3s+bjl9kV+JE26fFBWSASr6rMXZbu+ncNkgcyaQgFpQHmS5a
V6tGdGjAJ+2L6Ivh7qTl9/VM3wQgR2pwEXw3BU2l7uw8kT2+RWY1rb6n4fUxVo2W
XlbfHcO+xOU+Of6YSnQG4Y3QtCp14cDS6l7c5QVyY+lqzO28duhfGcaQcaUQ/f+4
fbx6uwyIfh78KTFdrHbV+KRCJUODlUtlpAFWMf/JVn/XjkKtbTyf5mvjORbIh0S1
pTVNAgMBAAGgADANBgkqhkiG9w0BAQsFAAOCAgEAlfVXFhOc7KJDqfCa8ULKA3SE
zt45qOTWRSDzjtWZtebyQhFGYYISGuX0QTxBckyITKg11eQ+KLgmIbuo4RZEae/V
aFMwvurWEw6hInChaRbd8oWzcOv0hZpFvrXcUlEpmFVliwcae5a/kC4JwRP0Y3eI
Up2jmjCzuve/wrXiW2B1HAoYx5hYrjjg1WWCTsVFF/tIaGDL5xnQ/8G22ZiRwsEH
AEqKK0jnnFrR8fR/P7pY6azISvZMOfTMBOxV8HNYjQqMSA2pbnvctcz9umof2GJP
DPp5FWjYSuJucBshl/QN8hKvgArY31q+CvQolbHbPywevlAPEl6FhON7BqL8Xa2N
UiYBZ+OSVvpuujkDnfI44snlCJ6REgo8D67QHo2CCdtZL2wae4Cpjlsg/WKbZrZ0
58J4oKw1ozhJ4LzeV/HoTHhEoLQ+dlbom47ZZXg3r20r6GGpXPao27jlo7k61CaJ
Nz771mCB/NuzZezSDHnoo/NtLjSuvvBv+kJgXqh+VwrOtWoS3FT5DKYQ6d8ZEUE7
fOMcPu/VGOBvTkzAO8FSCOmGVQghiFnI4F96VpTLVlkfij5R7loiVCSU8fYstCnF
2srV0hlV8MCvV3kNECra+ZX+A3evERazLUvE+RU7Bi37hRJCUIT0WE5bIKkIks7d
7qBGEu4I2dW3JNpi+jY=
-----END CERTIFICATE REQUEST-----

54
AKB/openvpn/akb/keys/jonas.key Normal file
View File

@ -0,0 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY-----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-----END ENCRYPTED PRIVATE KEY-----

139
AKB/openvpn/akb/keys/maica.crt Normal file
View File

@ -0,0 +1,139 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 23:35:19 2018 GMT
Not After : Feb 5 23:35:19 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-maica/name=VPN AKB/emailAddress=argus@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:9d:6a:fd:00:74:30:e3:36:ce:0b:5a:3c:2d:e8:
52:f8:6b:81:51:65:cd:75:1f:65:d9:50:4b:b7:12:
a5:39:0d:58:3a:3e:4d:e0:47:c6:7b:bb:db:ee:1b:
da:b1:63:e0:86:83:56:b1:40:d0:95:5c:45:45:3d:
21:3d:5a:b1:41:02:6c:67:f1:ac:78:0e:87:09:db:
57:c6:ac:c9:20:5b:97:45:c1:f7:e7:33:38:1f:23:
32:f8:c1:7e:2f:b6:be:ec:32:ec:99:ab:94:fe:32:
92:69:8c:4a:0b:4d:7f:b3:46:87:ae:fd:89:bc:96:
25:fc:a9:c3:60:33:94:6e:50:89:71:1a:b0:10:e2:
a4:cb:c6:c9:28:27:54:e3:61:5c:9c:ec:a7:7d:03:
5a:3e:22:62:eb:52:37:bb:16:52:8b:b5:f3:c0:92:
42:d5:c8:5a:a1:ca:68:03:e6:c5:5d:1d:89:bd:7b:
f5:0c:ff:c4:97:2f:0c:bf:95:2d:4c:96:85:a0:1a:
8f:44:63:0f:d4:98:f8:3f:a0:84:5c:b9:ec:85:55:
aa:a0:a2:2a:f9:25:b6:95:db:36:ce:b8:0f:54:b5:
b1:12:cf:21:8f:3d:da:31:f0:50:cc:77:d6:28:49:
27:f3:81:44:03:65:37:da:09:37:21:dd:b6:87:ff:
55:76:e9:c7:b8:d2:4a:fc:18:6c:6c:53:02:7e:2f:
e8:84:6d:ca:1b:a8:85:c0:5b:3d:a8:95:76:a4:3a:
5f:85:d7:58:92:3f:92:8d:67:75:60:52:a3:62:60:
e8:9f:20:98:37:c7:f0:31:97:5a:f2:08:64:a0:c0:
89:cd:a6:69:b5:23:d6:25:b8:ec:42:49:c7:1d:bc:
22:bf:aa:0b:da:f5:76:68:c2:b5:8d:20:a8:25:f1:
62:e2:e5:fb:34:46:bd:e7:bb:a4:30:cb:32:26:81:
39:6f:68:f1:35:c3:f6:38:65:32:4b:7e:9c:31:e7:
10:9a:61:a6:65:0d:42:a0:6d:41:0f:97:70:61:f2:
5b:6d:10:4e:c3:fb:53:9e:71:0b:20:4d:3e:96:66:
76:dd:20:8d:50:5d:2b:e0:c0:d4:bd:bb:02:72:af:
bb:25:1d:e8:49:f1:08:1d:a8:52:fb:18:c9:14:91:
c2:2e:d9:e7:2f:2a:c9:ac:eb:d5:bd:f1:82:e4:e1:
3b:67:c9:b7:3f:f5:38:8f:65:bc:6d:4a:ee:f2:00:
75:5f:a0:33:c8:02:9d:f4:36:4f:f9:aa:11:91:64:
11:b0:02:67:44:15:f6:4e:94:3c:3c:10:a3:28:dc:
b1:94:56:ee:7b:04:0f:78:9d:43:d6:f3:0f:3c:6c:
e6:70:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
Easy-RSA Generated Certificate
X509v3 Subject Key Identifier:
03:92:4E:3C:2E:76:22:8B:F3:9C:EC:9F:B2:24:1F:9C:6B:E6:FC:62
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Client Authentication
X509v3 Key Usage:
Digital Signature
X509v3 Subject Alternative Name:
DNS:maica
Signature Algorithm: sha256WithRSAEncryption
3a:db:1b:c8:93:e4:01:0a:d5:e8:6c:49:a4:1b:87:2f:8c:21:
98:25:71:fd:25:16:92:e6:c5:34:67:54:c2:81:16:0e:23:7b:
bc:7d:86:e3:a4:8c:af:02:80:2a:69:af:96:98:cf:c5:21:5c:
5d:4c:ad:64:e9:bd:fa:ff:60:19:9f:a6:53:47:99:52:f9:76:
0b:3d:fb:07:fe:56:7a:70:b9:45:30:5f:5e:9d:2c:e0:0c:d2:
7a:1a:2a:2b:5b:30:e3:88:09:c7:69:23:2c:41:bb:c2:6c:85:
70:d1:b9:28:5c:fc:4e:67:d8:a7:3b:f7:f9:d6:46:c9:2d:5b:
3f:3e:7b:82:59:bc:0d:b0:f3:c6:c3:8e:6d:27:27:6c:d5:ed:
dd:47:0f:9b:3b:11:aa:2d:99:e4:71:de:eb:f0:6e:82:55:4d:
17:c1:8d:55:c9:fd:05:36:f8:e7:03:ad:46:62:1e:bf:c2:b2:
f5:7b:4a:e5:ca:19:c6:04:55:a2:28:df:59:a9:a4:77:6a:72:
46:25:97:68:93:46:3c:ee:ae:12:f7:5a:94:2d:e5:45:f6:7b:
c9:66:b4:e8:70:11:a4:12:7d:8d:f1:c0:b1:06:00:3e:be:f9:
1a:c6:0a:35:99:df:5e:c3:ae:c1:ad:f9:f8:ed:bd:e2:9e:2d:
8a:68:15:ee:9a:61:b2:99:7c:96:6c:c7:75:3b:d3:28:d6:e4:
51:f1:2a:0e:ba:3a:be:d2:eb:15:a4:57:53:ad:50:9e:6d:02:
5e:b1:8f:24:3d:60:90:12:d0:40:7c:34:50:48:1d:13:52:41:
26:28:7e:f2:d9:57:00:98:f5:7d:69:bd:ed:d2:30:ce:74:bf:
0b:fd:b9:d8:15:88:d4:59:77:c6:b4:7f:90:bd:d8:ed:00:3a:
8c:c0:6d:c1:05:db:50:17:9f:53:49:dc:cc:7c:95:e6:ef:81:
98:e9:b0:e6:39:a3:64:41:77:cd:dd:18:41:79:00:c8:fa:77:
85:9c:dd:85:65:dd:a7:9f:a7:77:a8:8e:a7:6c:7c:2f:0e:92:
c4:b5:a6:28:dc:f4:98:b2:1b:22:53:2c:7e:78:05:a3:21:25:
1b:d2:68:9f:36:c8:06:12:7c:69:2d:f9:09:24:45:9c:74:a6:
45:f5:f9:20:1e:72:ad:cf:0b:52:43:7f:2a:92:2a:20:13:aa:
fc:63:8c:9c:02:85:78:bd:57:4b:c9:0a:01:1d:77:72:7b:4f:
1f:b5:7f:89:8f:63:9a:7c:c1:7a:38:dd:6a:11:76:d4:8a:86:
93:0b:ed:3b:be:a1:39:38:b7:63:44:9b:b9:f4:52:8f:f5:40:
2b:db:d1:41:38:60:db:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

29
AKB/openvpn/akb/keys/maica.csr Normal file
View File

@ -0,0 +1,29 @@
-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----

54
AKB/openvpn/akb/keys/maica.key Normal file
View File

@ -0,0 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY-----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-----END ENCRYPTED PRIVATE KEY-----

1
AKB/openvpn/akb/keys/serial Normal file
View File

@ -0,0 +1 @@
05

1
AKB/openvpn/akb/keys/serial.old Normal file
View File

@ -0,0 +1 @@
04

141
AKB/openvpn/akb/keys/server.crt Normal file
View File

@ -0,0 +1,141 @@
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1 (0x1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
Validity
Not Before: Feb 5 20:24:02 2018 GMT
Not After : Feb 5 20:24:02 2038 GMT
Subject: C=DE, ST=Berlin, L=Berlin, O=o.open, OU=Network Services, CN=VPN-AKB-server/name=VPN AKB/emailAddress=support@oopen.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:ce:a6:fe:62:1a:c1:eb:a0:ae:49:9a:9d:e5:28:
eb:91:f1:2c:5a:d7:24:ba:eb:55:86:9a:0b:bc:92:
51:70:e5:c7:19:64:83:e9:9d:c8:6b:f1:67:02:d8:
b2:33:65:e1:11:46:d5:81:4d:ae:cd:df:4e:0d:1c:
67:95:59:39:e2:d8:5b:5e:24:fe:1d:c4:dc:ea:6e:
e4:b5:d4:5b:f4:5b:2b:a5:82:b4:69:36:25:a1:47:
3d:18:1f:b2:1b:03:a3:ab:1d:d6:58:1f:28:fd:25:
c7:a3:92:8c:b6:cf:12:f1:23:18:1a:32:03:e6:36:
e4:bc:f8:61:b8:fc:70:03:87:35:a0:f6:25:26:e3:
2e:9a:e5:5c:a6:89:3e:03:1b:c4:23:e1:75:65:ed:
ac:1a:3f:ee:78:5f:6f:d6:90:28:b5:78:e2:71:0b:
f4:cb:56:99:bd:29:c6:1a:bd:fa:34:e2:94:a9:88:
39:1c:9e:75:c8:58:0e:e9:31:59:0e:e2:d0:df:93:
0d:bf:93:85:25:05:3a:32:8a:19:11:f0:7f:8b:a7:
b1:bb:74:77:bd:69:d6:03:fe:6a:94:31:93:22:b2:
c3:02:be:61:62:e3:73:4b:73:32:48:c1:3d:01:41:
a1:2b:df:dc:00:86:ca:af:d7:20:54:87:7c:b3:ad:
63:fc:9d:f1:b8:14:23:de:6b:8c:63:2e:4b:45:52:
5c:b7:6a:86:68:59:ea:ba:fc:0b:3e:37:51:63:f2:
30:86:eb:2a:43:92:e4:7c:80:44:5c:6b:dc:ab:f0:
c0:13:4d:c1:e1:c8:e8:9e:c0:6c:57:3a:31:be:c5:
83:a0:86:5c:e1:f7:27:f4:b9:0d:fb:29:24:9e:dd:
cb:31:2a:6f:5c:63:f7:57:ae:96:be:66:54:6a:13:
be:c5:70:cd:0c:8d:99:a5:f3:90:46:f5:cd:ff:c7:
cc:39:c5:34:4f:53:c7:31:bd:7a:be:eb:3c:50:21:
7d:46:ae:00:e2:e1:26:51:ab:06:e3:17:82:c8:81:
f4:0d:6d:81:6c:72:4b:03:e5:31:aa:3e:ea:e3:99:
f0:18:98:a6:10:b9:95:97:fa:b0:66:12:68:fc:29:
60:c2:80:83:41:71:1d:b7:a8:05:2b:85:a8:b4:27:
bb:26:24:71:85:e8:1a:c5:9f:24:2f:7e:98:09:25:
4d:c2:88:66:92:f0:a9:19:35:6a:bd:6e:45:de:2a:
7f:5b:4e:f1:4d:f6:e7:12:66:87:42:f2:74:a0:78:
1f:27:10:58:43:2f:75:e4:17:91:d9:42:5c:37:79:
4a:77:43:5d:3e:7a:d5:f1:e1:92:a9:20:1e:55:6d:
37:e5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Cert Type:
SSL Server
Netscape Comment:
Easy-RSA Generated Server Certificate
X509v3 Subject Key Identifier:
35:5A:98:2E:5D:84:EF:EA:D7:DD:16:4F:4C:E0:18:39:DB:65:2F:18
X509v3 Authority Key Identifier:
keyid:24:8F:FE:4B:B0:A6:35:7A:2E:42:56:EA:64:F1:FB:A0:3F:FC:4A:2E
DirName:/C=DE/ST=Berlin/L=Berlin/O=o.open/OU=Network Services/CN=VPN-AKB/name=VPN AKB/emailAddress=support@oopen.de
serial:D4:73:12:B6:C1:E6:B9:D4
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Digital Signature, Key Encipherment
X509v3 Subject Alternative Name:
DNS:server
Signature Algorithm: sha256WithRSAEncryption
51:b9:6d:4d:8c:8c:00:56:8e:b7:81:d7:c4:59:bb:bc:b9:89:
77:e9:de:7f:c0:88:b2:4c:12:c0:e1:4c:5c:7c:6b:aa:94:95:
3e:16:ac:fb:e8:de:f2:a1:93:08:6c:8a:17:d1:d1:a1:3b:d0:
98:05:35:00:7e:34:98:1e:b9:da:cd:ce:67:11:a9:d4:43:ca:
fc:f0:23:09:ec:19:03:99:de:40:d2:61:42:b6:91:c7:29:26:
ee:f5:91:a2:e5:75:4c:50:2f:22:95:37:53:ce:46:21:cf:04:
d1:93:9c:ad:0e:5c:00:f8:00:f2:b1:f8:02:3f:fe:b3:15:3e:
9b:a4:fb:19:d6:81:b7:f4:06:89:cb:16:9c:e0:2f:60:00:69:
dd:ac:41:e8:23:29:19:5e:48:62:26:97:84:7e:5e:f2:50:3d:
e1:51:68:18:17:4d:0b:d5:0b:98:8e:d6:99:df:bb:79:ad:2d:
14:4f:48:6a:21:a4:42:2d:b8:a3:70:cd:24:df:1a:23:be:f0:
d1:f8:c2:a8:02:e1:03:88:d5:ea:7c:71:e6:96:95:02:34:8f:
c6:81:15:79:a9:a4:dc:11:5d:d6:97:f1:9c:d5:1f:4f:85:d9:
30:3b:bd:31:ac:48:d7:b2:08:63:1b:87:80:4b:1e:4f:e5:29:
85:f1:28:55:c1:7f:ca:d8:c3:51:eb:2c:98:2b:31:4e:27:e4:
90:a4:4e:bb:87:5f:43:d8:76:57:6e:d7:0b:5c:11:61:99:7b:
b7:49:29:1f:6f:b0:9f:46:1c:e8:3d:0f:b7:40:c8:77:69:5f:
48:03:a3:db:8c:46:b1:e3:cc:39:7e:87:f2:48:f2:f9:90:7d:
98:01:3c:cb:53:ca:42:ef:c0:20:e4:f9:cd:a9:b2:44:13:66:
4a:d6:6d:e4:2e:4c:29:7f:7f:c4:23:06:93:56:e1:c8:01:30:
3f:79:22:87:38:88:a9:1a:ae:b7:c9:b6:bf:37:3b:eb:d8:d5:
fc:ad:ae:a1:2b:bb:20:c9:28:67:cf:8f:73:00:7a:4b:4b:91:
82:2d:c3:bb:9c:86:28:17:30:55:23:62:c2:87:00:e2:c9:b4:
d6:e2:dc:83:37:22:09:47:f8:e2:51:18:51:fb:97:a1:7c:2b:
54:7f:ab:0d:ca:cd:8a:87:dd:8c:a5:af:2d:7f:a1:ea:e6:db:
8f:84:ef:ff:83:60:80:78:5a:21:a1:01:7c:1a:a7:ef:b7:2b:
20:5d:d3:bf:b9:82:2f:75:ec:2e:49:7b:61:90:85:62:1a:c5:
ff:de:32:57:b5:3c:b7:a9:52:dd:ce:e6:94:ab:2a:1f:3f:a5:
e7:64:ce:9b:a7:ad:fc:c0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

29
AKB/openvpn/akb/keys/server.csr Normal file
View File

@ -0,0 +1,29 @@
-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----

52
AKB/openvpn/akb/keys/server.key Normal file
View File

@ -0,0 +1,52 @@
-----BEGIN PRIVATE KEY-----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-----END PRIVATE KEY-----

21
AKB/openvpn/akb/keys/ta.key Normal file
View File

@ -0,0 +1,21 @@
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
5b91b2a91925f7503bb408768cb5053b
80a9d011f37c13df8297549c485d787b
6450a5341cd9b5079bf4993cd7724c91
8ae6953503cf30565dc75025061990c7
44348470db2143ff80b8ed281d822a69
a2d67538439c1f04f73df867848f618f
cc096eb98252e5c7e01a7921803ca4fe
18a0df2a99aaf15839f598fc5a3f24b9
17afcfd477d49792ffe450a18b8ad0f2
a9b1e5bc658e066e461472b2439ad423
1be921f71ac59a050bc751f681fcd553
60c4274c640dc56b0e140d5e9e062349
12bfaa7450b615bbc898f822dd5eb6bc
f3023bbcd87fb2a18c651dbae4bfbbcb
5797d4b6c01f0bd700681b308e19b239
53cfefa995eb4bf57ee985194e814548
-----END OpenVPN Static key V1-----

257
AKB/openvpn/akb/maica.conf Normal file
View File

@ -0,0 +1,257 @@
##############################################
# Sample client-side OpenVPN 2.0 config file #
# for connecting to multi-client server. #
# #
# This configuration can be used by multiple #
# clients, however each client should have #
# its own cert and key files. #
# #
# On Windows, you might want to rename this #
# file so it has a .ovpn extension #
##############################################
# Specify that we are a client and that we
# will be pulling certain config file directives
# from the server.
client
# Use the same setting as you are using on
# the server.
# On most systems, the VPN will not function
# unless you partially or fully disable
# the firewall for the TUN/TAP interface.
;dev tap
dev tun
# Are we connecting to a TCP or
# UDP server? Use the same setting as
# on the server
proto udp
# The hostname/IP and port of the server.
# You can have multiple remote entries
# to load balance between the servers.
remote gw-akb.oopen.de 1194
topology subnet
# Keep trying indefinitely to resolve the
# host name of the OpenVPN server. Very useful
# on machines which are not permanently connected
# to the internet such as laptops.
resolv-retry infinite
# Most clients don't need to bind to
# a specific local port number.
nobind
# Try to preserve some state across restarts.
persist-key
persist-tun
# Server CA
<ca>
-----BEGIN CERTIFICATE-----
MIIG0jCCBLqgAwIBAgIJANRzErbB5rnUMA0GCSqGSIb3DQEBCwUAMIGgMQswCQYD
VQQGEwJERTEPMA0GA1UECBMGQmVybGluMQ8wDQYDVQQHEwZCZXJsaW4xDzANBgNV
BAoTBm8ub3BlbjEZMBcGA1UECxMQTmV0d29yayBTZXJ2aWNlczEQMA4GA1UEAxMH
VlBOLUFLQjEQMA4GA1UEKRMHVlBOIEFLQjEfMB0GCSqGSIb3DQEJARYQc3VwcG9y
dEBvb3Blbi5kZTAgFw0xODAyMDUyMDExMjJaGA8yMDUwMDIwNTIwMTEyMlowgaAx
CzAJBgNVBAYTAkRFMQ8wDQYDVQQIEwZCZXJsaW4xDzANBgNVBAcTBkJlcmxpbjEP
MA0GA1UEChMGby5vcGVuMRkwFwYDVQQLExBOZXR3b3JrIFNlcnZpY2VzMRAwDgYD
VQQDEwdWUE4tQUtCMRAwDgYDVQQpEwdWUE4gQUtCMR8wHQYJKoZIhvcNAQkBFhBz
dXBwb3J0QG9vcGVuLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA
4LBz66a5R/hS5Cygl8cPy63TMx10yjy8vJyToEUZCjGS8O5MgwKFWpf6CBKf8jrp
kcY9JvvlDD11N+LU5kivRsZRf8Pbj2SuqUg2Rq1fCkVFDl9MshyWBnX1BntyLEQi
A1X9bqKew/upZ09bSf8RB/9tsWBDi6m4xlnnojgGXbZnOXKzL442Qu0f+w1M9HoL
mp8DXCevpbWSp6WLevQVe2VzDC+lGp1pw7Ea0raOD84u0mVKbBSCAaw0OG0+lkHR
Ya3WVezkXVH2PQieqrSlWLmHqNQ5U77DYKYBZ7yhMDO+8Hkj6aN2JB8DglJVG79H
GfWTrtFr3Bt80TZJi+GGdCg5u182V9s9Fhm//bKs5thJmS5dROBk1W4p/ZBQ2nQA
+wA59vILAF49u1+wY1dryw3JIXTSP4VY8enkhjeKCxpGJd13xF8M5Ci2w8pOyttw
NVppDPZItbxPeswzK95VgrEOQaIEANeTMje95Qf3/gPhkMzwPRh9VfZNQMn1AKfn
Irc2fb2iGhVzQAVhtBIKm2d24rHK6NCDe89uyfRZV4ZukcUgRt+nn6bnC67VW2Az
NhonvzsAjtwwt5KUakKHmq7uMW2bFPy0OoktsP60yWB/Weg/wWliHpudvTq48pLS
oQpd/lsJ1K8SXLFqRlWHlJDcelfnj3r58VQpp/82LbECAwEAAaOCAQkwggEFMB0G
A1UdDgQWBBQkj/5LsKY1ei5CVupk8fugP/xKLjCB1QYDVR0jBIHNMIHKgBQkj/5L
sKY1ei5CVupk8fugP/xKLqGBpqSBozCBoDELMAkGA1UEBhMCREUxDzANBgNVBAgT
BkJlcmxpbjEPMA0GA1UEBxMGQmVybGluMQ8wDQYDVQQKEwZvLm9wZW4xGTAXBgNV
BAsTEE5ldHdvcmsgU2VydmljZXMxEDAOBgNVBAMTB1ZQTi1BS0IxEDAOBgNVBCkT
B1ZQTiBBS0IxHzAdBgkqhkiG9w0BCQEWEHN1cHBvcnRAb29wZW4uZGWCCQDUcxK2
wea51DAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBCwUAA4ICAQBGKBoiGLJHTXMW
9JZIWPQBlyJXvnGp2y1O58GhMEdE+Ahy6bRepLRpcULlCDEXYPJhc8pYMOTa0VAM
Ps6lwQH5WQRv6fkdYSMCos0NKpp/0fvrxYTWnFrvU26Pveg+Z3COkVHMI6bJ70IP
QpBtBmj3CRqD66vnN1sc0q52hEAkubFI0mD+eqY5rTRE5Eea31KipY5/n93cmlb0
E2ORT/PwawgD2To5qd0THSPYJUiXQntbs4axBrU1S9RO44QZb4Ov71kqATc9u6ri
0bPfeQtTCkCi+mCLA1WbzJTGg6rd0ce3rdSI0uNmMT+cWhh52tMhEKcdDxMahGTx
SWdTogb7QqJxMj5GTVDzZsjzsAc6lXgSOL/Ffp/HjKQL1aPxGMlHLju++B/fo7kp
meD5g8x4FaVN2dE0oBQ/uaAo2JS5/mSQIYlM2fnyx9ZwXcVgRYeavSIDfA9ASYJA
w5is0PUOLr91dS++fBs8NWg7dtcBvZuvtGWO4tk9iWY7Gw4MC7ez4+E7nJrhBkMg
1ySbg3/aJ4/E41K0k3zfkyOHhNVR37YN63e7xDdvGwm3fk8QFOAn+gVyfjnNhGJr
JDh4YYK+cbK8E9PLV7eb1DvUNjUo19KToQBhaNNMt/n0niE6iU4ph997tlrG7MHu
mj3n4HOYonYqpUwVlkIlCk11Sz/qnw==
-----END CERTIFICATE-----
</ca>
# Client Certificate
<cert>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</cert>
# Client Key
<key>
-----BEGIN ENCRYPTED PRIVATE KEY-----
MIIJpDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIFeT4JOL9pXsCAggA
MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECITrZqSnxTbhBIIJUOJXOGNmXjBJ
V4IOyYpGU0sEtp4A9P/3/cJg7s0AT5R7ULE91IxBBTCDfY7KZNgwgHjAVzL1xpD7
SsA3JW7D5NT0XX3eWMyCtuLpriyH5qSXUehyn8+AXrdCcafIdhDnM1+FfTUWe7KW
RGlhznt4J0AYR0v0jSxCXF6fbKV9f5ZYKRsGOUCbWKBco6eu15Jp+LLXbrjpIcyb
ufWl1X7KllSlPw03FdHP4puTcGHu+VgB3PXF6154ltkR3Lc+fDwCyroKh19Y4ww4
M6EpqPZ6g9A2GeKkyCe0wxuda9twUFmgr1EolwYF0jjnpW8itLeUvcDztpXklrLY
JVt9l87xUALaRHC5tZ65c0Urv6NFa9R2pe1RFku+ObzHKRwWEcVnecLQhzr35/D5
uPEsC6Qk5aVVLDiPSXi42C1ekiN+5MqDLql12aDYapMkSl5gbrDZhTnV3vBIwwuj
57yd92N9mP07rlgTCkOPJWiqFdsc7wId4zNLX/8pg8mDxnTg0J5XGtEHQwm3ytPT
oF3ity+wm650hRXlvsMzKnCHpJhYX6z6PXFrin0pZQkUEXPicX4WKMfr8DADoCAH
nbxXTTsiKLAAtC1u+vrqw7XDerHN7ceF/SglzgyShjc5PF2mIPBDVG9bSUqc2cXT
xTtlhYAVRaHXowOBahMyzKZFIxogp1mEcVCYmTjxtrQGBuiwL1gArBZeAt36iTmI
JOvsnibHg4zZHKC+Cbh5pbSXdXQ1zAtRlAVWSFrLyVxTRu0dkqbd85TmtnoQZDUz
7T8Qy9TxMkXnKrp+6S/7ia0LyMdV6VWEkRXks1NnxHNxNqpG2KNoaAqX6vK7vStU
qOxaSbGuYoL+sqrppSdHDABtgoV+olZ4cDi/7UFYwwT4+DaU2jTj1y9ZtXrc88m/
hdRE5HYBXa9vCy2pQGMq0QimQ8zx6FtD+z4rBVNFh4boh8+XKSKPru2T0/DLgVtV
oS5U6JwzJrir0U8RWz1NkNztvxVHz5D1gHwNvYpUegkTt4j9ohoboPcspW/4ICJY
mOvx9THXUcxCPZN7DBS8GaRa1EpyaI2cdEra3uh3G6siQB1At3KSHKf5+tsUuVsb
/TFjnogKy8L5YeFCHxzOJPfnbYXdy7ESQe4AEodO+YAAQUAbafoyk5Pq4I3CVpzd
aAhPpPA1SjDCCHXZkJ/AgbwDBLtN1iazN1r5WdDvafVEBbaoPXtZFi8/0i69W8qG
cdG5p/pPkG9OeoB17jtwWxJaA87F96lhTxFZk5e5CvM4xrpF9EPz981d05/xvD6c
Q7mbjvjyx66yVnoFSPrXda/d+phL0wx9228UXZ4IiGx5zxDr+b6ly3bO33wiXRCV
owZ9lFkQBrxDcO9JNe8koAIOtTP+4Z+gtbGxR5meV6JpdcImGahNMSsUiwguYnjt
dyFgUQcoxR5+m9bQPpyhkDEqmF1X1nujR8h9PkM6p8uQvCZNrq0clBudJdKDOp+o
mXn2o7KawVEna6GvGJONZie4VeMROlse2yNAsxrKzMGWDKGtXbM3P51AFkvnV/fa
Ap83yrjj9Xmpm0mRUZw3EN2j4Aw5ZRfI19AgMrfjSUBRSRldXSirT6O/NQhMfAV+
+g0uzwzo8xtkmzopUii//aWng1OJL9j8/CFFlqf2m+lg3bk80jj+QJthgR7OOsQB
fH6S8G/t7r8f0NC629RRZ6KM/2KepQZ+WFzRyEeYQRDW1ca0+BwIXQNilZtAbhsr
sCLXlZKcNqczfWmLHND+Gg/3W6FN1DXGHPp+3MyawEcAo7VduLb3bBfbmMZcv9y1
JRbXWsTM5XekIOesqz1WsUcR6MYmiWm+m74GoNuGMWiDMy4UIILSx9V3uEABeQio
yCOsR0RGFS1MfjX6YAzA4ZrgA88UCHW4tru+K7pRw7L6CVPb4IMPuHWvcmpp+vSq
hMBh0LSgHOmvjlSk7c5zKsRipR7Y4cPbL/wpNTfJwOBYHxb4xVPhkOWCsQg/ywz2
JkG5VbmsLxunYFONuV1h5r75+akQwuESnkyOBPLn2mnNThmWEgtEoQEfz6n74Vwc
mr7LW/9dt7WIc/Ra1iworbv+n9LqhnOJZmkl3hP7KJLb71NDjTk10PRvkNJ0vDqw
zYklUm4q8ptr6nUrZd9yVf/bXwWrrf/NSEYFQnLiTht1+aJvlUvc1314YALtYG1d
e6rUXBr+a4blG5WVkaglC5gvPTw3ZdDeZgQ/ipUWxENnGgG24PK75/dJLZPECLRL
UK0mmNb09jr3XV4yIanfkEYqtqwEWPRm4eLJWVWnwptdHVvdRPBHbwiD25PPMUWk
8ObIpvaTA1m73xDJea/YkQNO0hKw2i9+wDMeTtSoK6VF077rt03rZrGoHlDYMrO8
0iLYdf87fU11GQ367w+n9j6qNLbT5LHRIZP5FE9YY81qYl2DoDzBHf78IH5Uut7x
Y+FbajrBVUwOhmawhVD0Pu8CaRw8rNKmhHabtFSXJCprtEXqinEmTE4L0EOuIi5C
5IjAuJGAKBVzyt2NrwWazeoHHrYKktE3tUVkvi+sse/wp3PLGxbYvEIQgb8k3HGW
z18BMj4YfqOsjoR9PQUkG+Wm1yh4YNo5AZLVfXkfTGJcNQhgKqmj2YBdLpxZonlH
s/rbae2GWz0ePb1gCNvWX6cIl+g02jThGkRNyhn7HFbj/Rex8rdDk8g7NMroytur
P3o7l3i7KUSpW1utpDrE+PudJg/+mqe2vkKqlatUbMOUmtQM7AMPGRjOTESH4T8o
j5P0YDrsqDnwfTZ/pWAla6x1SuLceneAqBBoeK3S90D26OXLImMBdgjcX1oBHz/Z
+CfJAz3yKfkD3EWQi7OHAyjdD5KDFhD3YNmFQpxfZX+Zi09Losd+UA7EGalK4ERW
lmtCvSpcSnQmw5bq+w0bAmvF9P3EIH0OYig8r61/nEqGmvFjB2Yp1vosvjRF/dna
pxLZVz0fLXkQPgAIsQOMW/iGPX47Fqb05zTLu/PtZYQR3QXsdvtbO3vJHhalY32v
H45dwbPP5olUeoj6NnxlVOmXn3/zqj935dNxmDJIBLAbtu/uGcXuNNkebAElDHek
p740XqNjn7Bu/55jtTKsryUdMb8os+IO3iysxHyBvX7Stc7A/HcOJHz956dhZ99h
lMAktW8kgbpVqVrwhB64ibcp2PU2GV/2
-----END ENCRYPTED PRIVATE KEY-----
</key>
# Verify server certificate by checking
# that the certicate has the nsCertType
# field set to "server". This is an
# important precaution to protect against
# a potential attack discussed here:
# http://openvpn.net/howto.html#mitm
#
# To use this feature, you will need to generate
# your server certificates with the nsCertType
# field set to "server". The build-key-serve
ns-cert-type server
# If a tls-auth key is used on the server
# then every client must also have the key.
#
# Don't forget to set the 'key-direction' Parameter if using
# Inline Key. Usualy , sever has key direction '0', while client
# has ke direction '1'.
#
key-direction 1
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
5b91b2a91925f7503bb408768cb5053b
80a9d011f37c13df8297549c485d787b
6450a5341cd9b5079bf4993cd7724c91
8ae6953503cf30565dc75025061990c7
44348470db2143ff80b8ed281d822a69
a2d67538439c1f04f73df867848f618f
cc096eb98252e5c7e01a7921803ca4fe
18a0df2a99aaf15839f598fc5a3f24b9
17afcfd477d49792ffe450a18b8ad0f2
a9b1e5bc658e066e461472b2439ad423
1be921f71ac59a050bc751f681fcd553
60c4274c640dc56b0e140d5e9e062349
12bfaa7450b615bbc898f822dd5eb6bc
f3023bbcd87fb2a18c651dbae4bfbbcb
5797d4b6c01f0bd700681b308e19b239
53cfefa995eb4bf57ee985194e814548
-----END OpenVPN Static key V1-----
</tls-auth>
# Select a cryptographic cipher.
# If the cipher option is used on the server
# then you must also specify it here.
# Enable compression on the VPN link.
# Don't enable this unless it is also
# enabled in the server config file.
comp-lzo
# Verbosity level.
# 0 -- quiet except for fatal errors.
# 1 -- mostly quiet, but display non-fatal network errors.
# 3 -- medium output, good for normal operation.
# 9 -- verbose, good for troubleshooting
verb 1
# Setting 'pull' on the client takes care to get the 'push' durectives
# from the server
pull