Skip to content

Instantly share code, notes, and snippets.

@titanous

titanous/opensc.txt Secret

Created August 6, 2016 20:15
Show Gist options
  • Save titanous/57a8993894d457cadf8d2057f036d112 to your computer and use it in GitHub Desktop.
Save titanous/57a8993894d457cadf8d2057f036d112 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
opensc.txt
$ pkcs11-tool -O
Using slot 0 with a present token (0x0)
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 044104de4c4ae2068470008461ded85ed5363d338327c013032335c496a23a7807754e0c980245c763c9bc04628f17cd5c1e4df43947363e966047349501ba76d7ce28
EC_PARAMS: 06082a8648ce3d030107
label: PIV AUTH pubkey
ID: 01
Usage: verify
Certificate Object, type = X.509 cert
label: Certificate for PIV Authentication
ID: 01
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 04410474bbfbc246deaa4941ac50f8b1b85467f808edd91db23a4983481fb00c6cb1fd5cd09cd0f0452adfa1488327bd9d3a0d003bd2a054a86803fe94c4cb1486464e
EC_PARAMS: 06082a8648ce3d030107
label: SIGN pubkey
ID: 02
Usage: verify
Certificate Object, type = X.509 cert
label: Certificate for Digital Signature
ID: 02
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 044104a86b1e5f9d821fa50b172d44c23c91bd41b9e42ed595f4a47dab82d1b86b166d64546ba79c17206bb708edce15ff211d0603cada94818eb609c5634d1e2907f3
EC_PARAMS: 06082a8648ce3d030107
label: KEY MAN pubkey
ID: 03
Usage: none
Certificate Object, type = X.509 cert
label: Certificate for Key Management
ID: 03
Certificate Object, type = X.509 cert
label: Certificate for Card Authentication
ID: 04
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 0441042cb5e216f8f0956e6657a1500d56cba12a4fc7e12c3ce218c141c1fefbdced450e03003087285fc88010ef67fd46f4fe7933d43b06f3124c4e15e9d847c2f885
EC_PARAMS: 06082a8648ce3d030107
label: CARD AUTH pubkey
ID: 04
Usage: verify
Private Key Object; EC
label: CARD AUTH key
ID: 04
Usage: sign
Data object 2059532464
label: 'Card Capability Container'
application: 'Card Capability Container'
app_id: 2.16.840.1.101.3.7.1.219.0
flags: <empty>
Data object 2059532560
label: 'Card Holder Unique Identifier'
application: 'Card Holder Unique Identifier'
app_id: 2.16.840.1.101.3.7.2.48.0
flags: <empty>
Data object 2059532656
label: 'Unsigned Card Holder Unique Identifier'
application: 'Unsigned Card Holder Unique Identifier'
app_id: 2.16.840.1.101.3.7.2.48.2
flags: <empty>
Data object 2059535632
label: 'X.509 Certificate for PIV Authentication'
application: 'X.509 Certificate for PIV Authentication'
app_id: 2.16.840.1.101.3.7.2.1.1
flags: <empty>
Data object 2059536016
label: 'X.509 Certificate for Digital Signature'
application: 'X.509 Certificate for Digital Signature'
app_id: 2.16.840.1.101.3.7.2.1.0
flags: <empty>
Data object 2059536112
label: 'X.509 Certificate for Key Management'
application: 'X.509 Certificate for Key Management'
app_id: 2.16.840.1.101.3.7.2.1.2
flags: <empty>
Data object 2059536208
label: 'X.509 Certificate for Card Authentication'
application: 'X.509 Certificate for Card Authentication'
app_id: 2.16.840.1.101.3.7.2.5.0
flags: <empty>
Data object 2059536304
label: 'Security Object'
application: 'Security Object'
app_id: 2.16.840.1.101.3.7.2.144.0
flags: <empty>
Data object 2059536400
label: 'Discovery Object'
application: 'Discovery Object'
app_id: 2.16.840.1.101.3.7.2.96.80
flags: <empty>
Raw
ykcs11.txt
$ pkcs11-tool --module /usr/local/lib/libykcs11.1.dylib -O
Using slot 0 with a present token (0x0)
Data object 0
label: 'X.509 Certificate for PIV Authentication'
application: 'X.509 Certificate for PIV Authentication'
app_id: 2.16.840.1.101.3.7.2.1.1
flags: <empty>
Data object 1
label: 'X.509 Certificate for Card Authentication'
application: 'X.509 Certificate for Card Authentication'
app_id: 2.16.840.1.101.3.7.2.5.0
flags: <empty>
Data object 2
label: 'X.509 Certificate for Digital Signature'
application: 'X.509 Certificate for Digital Signature'
app_id: 2.16.840.1.101.3.7.2.1.0
flags: <empty>
Data object 3
label: 'X.509 Certificate for Key Management'
application: 'X.509 Certificate for Key Management'
app_id: 2.16.840.1.101.3.7.2.1.2
flags: <empty>
Data object 4
label: 'X.509 Certificate for Retired Key 1'
application: 'X.509 Certificate for Retired Key 1'
app_id: 2.16.840.1.101.3.7.2.16.1
flags: <empty>
Data object 5
label: 'X.509 Certificate for Retired Key 2'
application: 'X.509 Certificate for Retired Key 2'
app_id: 2.16.840.1.101.3.7.2.16.2
flags: <empty>
Data object 6
label: 'X.509 Certificate for Retired Key 3'
application: 'X.509 Certificate for Retired Key 3'
app_id: 2.16.840.1.101.3.7.2.16.3
flags: <empty>
Data object 7
label: 'X.509 Certificate for Retired Key 4'
application: 'X.509 Certificate for Retired Key 4'
app_id: 2.16.840.1.101.3.7.2.16.4
flags: <empty>
Data object 8
label: 'X.509 Certificate for Retired Key 5'
application: 'X.509 Certificate for Retired Key 5'
app_id: 2.16.840.1.101.3.7.2.16.5
flags: <empty>
Data object 9
label: 'X.509 Certificate for Retired Key 6'
application: 'X.509 Certificate for Retired Key 6'
app_id: 2.16.840.1.101.3.7.2.16.6
flags: <empty>
Data object 10
label: 'X.509 Certificate for Retired Key 7'
application: 'X.509 Certificate for Retired Key 7'
app_id: 2.16.840.1.101.3.7.2.16.7
flags: <empty>
Data object 11
label: 'X.509 Certificate for Retired Key 8'
application: 'X.509 Certificate for Retired Key 8'
app_id: 2.16.840.1.101.3.7.2.16.8
flags: <empty>
Data object 12
label: 'X.509 Certificate for Retired Key 9'
application: 'X.509 Certificate for Retired Key 9'
app_id: 2.16.840.1.101.3.7.2.16.9
flags: <empty>
Data object 13
label: 'X.509 Certificate for Retired Key 10'
application: 'X.509 Certificate for Retired Key 10'
app_id: 2.16.840.1.101.3.7.2.16.10
flags: <empty>
Data object 14
label: 'X.509 Certificate for Retired Key 11'
application: 'X.509 Certificate for Retired Key 11'
app_id: 2.16.840.1.101.3.7.2.16.11
flags: <empty>
Data object 15
label: 'X.509 Certificate for Retired Key 12'
application: 'X.509 Certificate for Retired Key 12'
app_id: 2.16.840.1.101.3.7.2.16.12
flags: <empty>
Data object 16
label: 'X.509 Certificate for Retired Key 13'
application: 'X.509 Certificate for Retired Key 13'
app_id: 2.16.840.1.101.3.7.2.16.13
flags: <empty>
Data object 17
label: 'X.509 Certificate for Retired Key 14'
application: 'X.509 Certificate for Retired Key 14'
app_id: 2.16.840.1.101.3.7.2.16.14
flags: <empty>
Data object 18
label: 'X.509 Certificate for Retired Key 15'
application: 'X.509 Certificate for Retired Key 15'
app_id: 2.16.840.1.101.3.7.2.16.15
flags: <empty>
Data object 19
label: 'X.509 Certificate for Retired Key 16'
application: 'X.509 Certificate for Retired Key 16'
app_id: 2.16.840.1.101.3.7.2.16.16
flags: <empty>
Data object 20
label: 'X.509 Certificate for Retired Key 17'
application: 'X.509 Certificate for Retired Key 17'
app_id: 2.16.840.1.101.3.7.2.16.17
flags: <empty>
Data object 21
label: 'X.509 Certificate for Retired Key 18'
application: 'X.509 Certificate for Retired Key 18'
app_id: 2.16.840.1.101.3.7.2.16.18
flags: <empty>
Data object 22
label: 'X.509 Certificate for Retired Key 19'
application: 'X.509 Certificate for Retired Key 19'
app_id: 2.16.840.1.101.3.7.2.16.19
flags: <empty>
Data object 23
label: 'X.509 Certificate for Retired Key 20'
application: 'X.509 Certificate for Retired Key 20'
app_id: 2.16.840.1.101.3.7.2.16.20
flags: <empty>
Data object 24
label: 'Card Capability Container'
application: 'Card Capability Container'
app_id: 2.16.840.1.101.3.7.1.219.0
flags: <empty>
Data object 25
label: 'Card Holder Unique Identifier'
application: 'Card Holder Unique Identifier'
app_id: 2.16.840.1.101.3.7.2.48.0
flags: <empty>
Data object 27
label: 'Security Object'
application: 'Security Object'
app_id: 2.16.840.1.101.3.7.2.144.0
flags: <empty>
Certificate Object, type = X.509 cert
label: X.509 Certificate for PIV Authentication
ID: 00
Certificate Object, type = X.509 cert
label: X.509 Certificate for Card Authentication
ID: 01
Certificate Object, type = X.509 cert
label: X.509 Certificate for Digital Signature
ID: 02
Certificate Object, type = X.509 cert
label: X.509 Certificate for Key Management
ID: 03
Certificate Object, type = X.509 cert
label: X.509 Certificate for Retired Key 2
ID: 05
Certificate Object, type = X.509 cert
label: X.509 Certificate for Retired Key 20
ID: 17
Private Key Object; EC
label: Private key for Card Authentication
ID: 01
Usage: decrypt, sign
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 044104de4c4ae2068470008461ded85ed5363d338327c013032335c496a23a7807754e0c980245c763c9bc04628f17cd5c1e4df43947363e966047349501ba76d7ce28
EC_PARAMS: 06082a8648ce3d030107
label: Public key for PIV Authentication
ID: 00
Usage: encrypt, verify
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 0441042cb5e216f8f0956e6657a1500d56cba12a4fc7e12c3ce218c141c1fefbdced450e03003087285fc88010ef67fd46f4fe7933d43b06f3124c4e15e9d847c2f885
EC_PARAMS: 06082a8648ce3d030107
label: Public key for Card Authentication
ID: 01
Usage: encrypt, verify
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 04410474bbfbc246deaa4941ac50f8b1b85467f808edd91db23a4983481fb00c6cb1fd5cd09cd0f0452adfa1488327bd9d3a0d003bd2a054a86803fe94c4cb1486464e
EC_PARAMS: 06082a8648ce3d030107
label: Public key for Digital Signature
ID: 02
Usage: encrypt, verify
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 044104a86b1e5f9d821fa50b172d44c23c91bd41b9e42ed595f4a47dab82d1b86b166d64546ba79c17206bb708edce15ff211d0603cada94818eb609c5634d1e2907f3
EC_PARAMS: 06082a8648ce3d030107
label: Public key for Key Management
ID: 03
Usage: encrypt, verify
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 04410451b747798a2eb57c2b7fd24f6463e7edbe59b5b6d23115db0d22ae9e442e0e54e4bbbcf931b2ecc54fccd5b1f38f6d650209aa02e0cb7a1be8400dfd5af67e6d
EC_PARAMS: 06082a8648ce3d030107
label: Public key for Retired Key 2
ID: 05
Usage: encrypt, verify
Public Key Object; EC EC_POINT 256 bits
EC_POINT: 04410468f9960c9ef7a36d2019be4aa652d0e800efafb01289967ff99a5ac253c402ac0160452e80f223ec872af519ebf6e4233eecb30a0eb1e21a812497d5c461b90d
EC_PARAMS: 06082a8648ce3d030107
label: Public key for Retired Key 20
ID: 17
Usage: encrypt, verify
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment