--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/cryptoservices/certificateandkeymgmt/tder/example/root5ca/openssl.config	Wed Jul 08 11:25:26 2009 +0100
@@ -0,0 +1,35 @@
+[Root5CA]
+
+database        = index.txt				# index file.
+new_certs_dir   = .						# new certs dir
+ 
+certificate     = ../root5ca.pem		# The CA cert
+serial          = serial				# serial no file
+private_key     = ../root5ca_key.pem		# CA private key
+RANDFILE        = rand  	  			# random number file
+ 
+default_days    = 365							# how long to certify for
+default_crl_days= 30					# how long before next CRL
+default_md      = md5					# md to use
+
+policy          = policy_any			# default policy
+email_in_dn     = no					# Don't add the email into cert DN
+
+name_opt        = ca_default			# Subject name display option
+cert_opt        = ca_default			# Certificate display option
+copy_extensions = none					# Don't copy extensions from request
+
+[policy_any]
+countryName            = supplied
+stateOrProvinceName    = optional
+organizationName       = optional
+organizationalUnitName = optional
+commonName             = supplied
+emailAddress           = optional
+
+[ca_policy]
+organizationName       = supplied
+commonName             = supplied
+
+[Signing_Extensions] 
+extendedKeyUsage=codeSigning