@@ Line 12: / Line 12: @@
 |-
 | 2
-| Cert ID
+| u8 certID
 |}
@@ Line 65: / Line 65: @@
 B:57:53:3F:31:AC:77:71:F1:FD:4A:E6:0F:43:B0:D5:55:41:9F:D2
          ...
-|
+| "Nintendo CA"
 |-
 | 0x2
@@ Line 90: / Line 90: @@
 :A7:A1:9F:81:5C:73:C9:64:10:83:7F:B6:1E:1E:87:B7:E1:33:11
          ...
-|
+| "Nintendo CA - G2"
 |-
 | 0x3
@@ Line 115: / Line 115: @@
 :D3:DE:D3:FD:F0:C8:EB:C2:59:92:87:FB:1F:D7:3E:72:F8:ED:F9
          ...
-| "NINTENDO_CA_G3"
+| "Nintendo CA - G3"
 |-
 | 0x4
@@ Line 140: / Line 140: @@
                  CB:40:16:7C:B1:37:2B:26:5A:35:DE:BE:F1:5B:50:8A:8D:0C:D4:BD
          ...
-|
+| "Nintendo Class 2 CA"
 |-
 | 0x5
@@ Line 165: / Line 165: @@
 :72:FA:4D:B3:DA:66:4A:B9:37:7B:AD:64:9E:9C:89:90:DA:D3:33
          ...
-|
+| "Nintendo Class 2 CA - G2"
 |-
 | 0x6
@@ Line 190: / Line 190: @@
                  F7:C6:0A:7C:72:7C:2C:C4:BC:93:28:41:E4:EE:70:F0:03:A0:BB:B7
          ...
-| "NINTENDO_CLASS2_CA_G3"
+| "Nintendo Class 2 CA - G3"
 |-
 | 0x7
 |
-|
+ Certificate:
+    Data:
+        Version: 1 (0x0)
+        Serial Number: 421 (0x1a5)
+    Signature Algorithm: md5WithRSAEncryption
+        Issuer: C=US, O=GTE Corporation, OU=GTE CyberTrust Solutions, Inc., CN=GTE CyberTrust Global Root
+        Validity
+            Not Before: Aug 13 00:29:00 1998 GMT
+            Not After : Aug 13 23:59:00 2018 GMT
+        Subject: C=US, O=GTE Corporation, OU=GTE CyberTrust Solutions, Inc., CN=GTE CyberTrust Global Root
+        Subject Public Key Info:
+            Public Key Algorithm: rsaEncryption
+                Public-Key: (1024 bit)
+                Modulus:
+:95:0f:a0:b6:f0:50:9c:e8:7a:c7:88:cd:dd:17:
+e:2e:b0:94:d0:1b:3d:0e:f6:94:c0:8a:94:c7:06:
+                    c8:90:97:c8:b8:64:1a:7a:7e:6c:3c:53:e1:37:28:
+:60:7f:b2:97:53:07:9f:53:f9:6d:58:94:d2:af:
+d:6d:88:67:80:e6:ed:b2:95:cf:72:31:ca:a5:1c:
+:ba:5c:02:e7:64:42:e7:f9:a9:2c:d6:3a:0d:ac:
+d:42:aa:24:01:39:e6:9c:3f:01:85:57:0d:58:87:
+:f8:d3:85:aa:93:69:26:85:70:48:80:3f:12:15:
+                    c7:79:b4:1f:05:2f:3b:62:99
+                Exponent: 65537 (0x10001)
+    Signature Algorithm: md5WithRSAEncryption
+d:eb:1b:09:e9:5e:d9:51:db:67:22:61:a4:2a:3c:48:77:e3:
+         ...
+| "GTE CyberTrust Global Root"
 |-
 | 0x8
 |
-|
+ Certificate:
+    Data:
+        Version: 3 (0x2)
+        Serial Number: 1 (0x1)
+    Signature Algorithm: sha1WithRSAEncryption
+        Issuer: C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root
+        Validity
+            Not Before: May 30 10:48:38 2000 GMT
+            Not After : May 30 10:48:38 2020 GMT
+        Subject: C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root
+        Subject Public Key Info:
+            Public Key Algorithm: rsaEncryption
+                Public-Key: (2048 bit)
+                Modulus:
+:b7:f7:1a:33:e6:f2:00:04:2d:39:e0:4e:5b:ed:
+                    ...
+                Exponent: 65537 (0x10001)
+        X509v3 extensions:
+            X509v3 Subject Key Identifier:
+                AD:BD:98:7A:34:B4:26:F7:FA:C4:26:54:EF:03:BD:E0:24:CB:54:1A
+            X509v3 Key Usage:
+                Certificate Sign, CRL Sign
+            X509v3 Basic Constraints: critical
+                CA:TRUE
+            X509v3 Authority Key Identifier:
+                keyid:AD:BD:98:7A:34:B4:26:F7:FA:C4:26:54:EF:03:BD:E0:24:CB:54:1A
+                DirName:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
+                serial:01
+    Signature Algorithm: sha1WithRSAEncryption
+         b0:9b:e0:85:25:c2:d6:23:e2:0f:96:06:92:9d:41:98:9c:d9:
+         ...
+| "AddTrust External CA Root"
 |-
 | 0x9
 |
-|
+ Certificate:
+    Data:
+        Version: 3 (0x2)
+        Serial Number:
+c:aa:f9:ca:db:63:6f:e0:1f:f7:4e:d8:5b:03:86:9d
+    Signature Algorithm: sha384WithRSAEncryption
+        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority
+        Validity
+            Not Before: Jan 19 00:00:00 2010 GMT
+            Not After : Jan 18 23:59:59 2038 GMT
+        Subject: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority
+        Subject Public Key Info:
+            Public Key Algorithm: rsaEncryption
+                Public-Key: (4096 bit)
+                Modulus:
+:91:e8:54:92:d2:0a:56:b1:ac:0d:24:dd:c5:cf:
+                    ...
+                Exponent: 65537 (0x10001)
+        X509v3 extensions:
+            X509v3 Subject Key Identifier:
+                BB:AF:7E:02:3D:FA:A6:F1:3C:84:8E:AD:EE:38:98:EC:D9:32:32:D4
+            X509v3 Key Usage: critical
+                Certificate Sign, CRL Sign
+            X509v3 Basic Constraints: critical
+                CA:TRUE
+    Signature Algorithm: sha384WithRSAEncryption
+a:f1:d5:46:84:b7:ae:51:bb:6c:b2:4d:41:14:00:93:4c:9c:
+         ...
+| "COMODO RSA Certification Authority"
 |-
 | 0xA
 |
-|
+ Certificate:
+    Data:
+        Version: 3 (0x2)
+        Serial Number:
+:fd:6d:30:fc:a3:ca:51:a8:1b:bc:64:0e:35:03:2d
+    Signature Algorithm: sha384WithRSAEncryption
+        Issuer: C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
+        Validity
+            Not Before: Feb  1 00:00:00 2010 GMT
+            Not After : Jan 18 23:59:59 2038 GMT
+        Subject: C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
+        Subject Public Key Info:
+            Public Key Algorithm: rsaEncryption
+                Public-Key: (4096 bit)
+                Modulus:
+:80:12:65:17:36:0e:c3:db:08:b3:d0:ac:57:0d:
+                    ...
+                Exponent: 65537 (0x10001)
+        X509v3 extensions:
+            X509v3 Subject Key Identifier:
+:79:BF:5A:AA:2B:4A:CF:54:80:E1:D8:9B:C0:9D:F2:B2:03:66:CB
+            X509v3 Key Usage: critical
+                Certificate Sign, CRL Sign
+            X509v3 Basic Constraints: critical
+                CA:TRUE
+    Signature Algorithm: sha384WithRSAEncryption
+c:d4:7c:0d:cf:f7:01:7d:41:99:65:0c:73:c5:52:9f:cb:f8:
+         ...
+| "USERTrust RSA Certification Authority"
 |-
 | 0xB
 |
-|
+ Certificate:
+    Data:
+        Version: 3 (0x2)
+        Serial Number:
+:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
+    Signature Algorithm: sha1WithRSAEncryption
+        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA
+        Validity
+            Not Before: Nov 10 00:00:00 2006 GMT
+            Not After : Nov 10 00:00:00 2031 GMT
+        Subject: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA
+        Subject Public Key Info:
+            Public Key Algorithm: rsaEncryption
+                Public-Key: (2048 bit)
+                Modulus:
+:c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:
+                    ...
+                Exponent: 65537 (0x10001)
+        X509v3 extensions:
+            X509v3 Key Usage: critical
+                Digital Signature, Certificate Sign, CRL Sign
+            X509v3 Basic Constraints: critical
+                CA:TRUE
+            X509v3 Subject Key Identifier:
+                B1:3E:C3:69:03:F8:BF:47:01:D4:98:26:1A:08:02:EF:63:64:2B:C3
+            X509v3 Authority Key Identifier:
+                keyid:B1:3E:C3:69:03:F8:BF:47:01:D4:98:26:1A:08:02:EF:63:64:2B:C3
+    Signature Algorithm: sha1WithRSAEncryption
+c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:21:47:
+         ...
+| "DigiCert High Assurance EV Root CA"
 |}
 =Description=
 This adds the specified builtin root CA to the specified root-CA chain. When it's not already loaded, the DER cert is loaded from SSL module .data. Otherwise, already-loaded cert data is used for adding to the RootCertChain.

SSLC:RootCertChainAddDefaultCert: Difference between revisions