[Root5CA]

database        = index.txt				# index file.
new_certs_dir   = .						# new certs dir
 
certificate     = ../root5ca.pem		# The CA cert
serial          = serial				# serial no file
private_key     = ../root5ca_key.pem		# CA private key
RANDFILE        = rand  	  			# random number file
 
default_days    = 365							# how long to certify for
default_crl_days= 30					# how long before next CRL
default_md      = md5					# md to use

policy          = policy_any			# default policy
email_in_dn     = no					# Don't add the email into cert DN

name_opt        = ca_default			# Subject name display option
cert_opt        = ca_default			# Certificate display option
copy_extensions = none					# Don't copy extensions from request

[policy_any]
countryName            = supplied
stateOrProvinceName    = optional
organizationName       = optional
organizationalUnitName = optional
commonName             = supplied
emailAddress           = optional

[ca_policy]
organizationName       = supplied
commonName             = supplied

[Signing_Extensions] 
extendedKeyUsage=codeSigning