Skip to content

KRA Key Database

Endi S. Dewata edited this page Mar 19, 2024 · 6 revisions

Key Container

dn: ou=keyRepository,ou=kra,dc=kra,dc=pki,dc=example,dc=com
serialno: 010
ou: keyRepository
objectClass: top
objectClass: repository
nextRange: 1000000001

Key Record

LDAP Attribute Description Indexed Searchable Examples

cn

Serial number in decimal

Yes

Yes

2977370597218063630139246774453254924

serialno

2-digit length + serial number in decimal

372977370597218063630139246774453254924

ownerName

Key owner

UID=testuser, BCF9D2DDC9820F4D30CC:testuser

Examples

Key record generated by caDualCert profile

dn: cn=2977370597218063630139246774453254924,ou=keyRepository,ou=kra,dc=kra,dc
 =pki,dc=example,dc=com
objectClass: top
objectClass: keyRecord
keyState: VALID
serialno: 372977370597218063630139246774453254924
ownerName: UID=testuser
keySize: 2048
algorithm: 1.2.840.113549.1.1.1
privateKeyData:: MIIF2ASCAQAu8rokMlBFelfblrSetiw66KkPF3Ps3KOXa/XyWeznhVR9R+G4+
 gx/332qZjLsJXUxihCLrZj3xPXTKGpBN7mU77Wxghok0w0wBbkluBxsgo7n5bHW8puGxriboXiFLu
 l77OLNGyAfpEUDTv0RxVOHtzw4KXVwmRzYqBoI5tgldbSusalBiSCaiBgFE14VMsi96e6mFdbUxvx
 4DNVKFHtBy9b3taYSfmrtLdgJnzQvaEf2hJZn+tMT5G72VWRct/24xPCBcRYPMkEf5+8nfK/AoQf+
 yOOl3IZVnGIA10vS2KcVqiCLQpctuFvGOgN/6CBPCxpPLhDsmhPwL1wpahcoBIIE0KIGBO1LuGPuW
 FLnH+N1Z9sKcN+gbQGI8qnH3VrICoAsbsyL3vhIuRtifkQ4ysVKc6tiKv4nhyNB1PxkwOfGI4/b10
 fqHw13V6c7MqSpNGrrBJqIj0dEle9so+KmjoCKC7TWBDAi5FFzpL0CcKdASpEGqwkLknIJ49uZm6V
 GzDPg7WhIsNkaJfurkwsIvSbFtTyWb8rKAG8sHtxSQeP9FSUxZytFKgpUjTUozCbmfeoDdHQTPqWA
 H2cyGryJSyj1y8nnBmoYSrEM1iKuCw9Dl8aQYPqVTlqVPKhiSwqxcFW6ykICnDxAAIv+x813r5V0o
 eg1Dn/9doXpbJf4MGiZ4Z7SwYrO7IOHuSNKVdiQeR95kP/iYlv5ovGJ1SiayKYXo8ci/6GELmmKEC
 h82jJndq9IPq/MJmCw6roiIAZxnmcBa+C36ORLec2PA3aDzbzY8dIMM6639m8XaqnXBosMwQbz09Y
 2e4lzdcVfE2693MEiuZQAOaUrEGfyiUnWmtz0mddYR6/8l3uvyqw1mhrENoRRQNQBEpj8+RdP3Uan
 51uCDiBEw1Js4c6n9EV86xjWgNLihJPveXnJR1Ydsl4nTozOYAw/PFDwEb7aCDt0cSpJpcFFjlhNo
 +5QmhxUt2zVQig7PR+MuTI9gzGuE7afTE9wT1M0EpJBMdcEvoEkM5i+jeh2KhulkhGtXq7nZt2nBJ
 6BB2DGDjEkUWOLGzE5Ytzj4bqXemXWFiXegKk2buZm4qX3AkYPbbyQdRsTSjLoz2ZstDwo3/0JDlw
 B2/toxPhWGgon9BF5cfFIEftjApMDMvDA9GTRPcNEyOf1eVSuF8ocDMj3qwqdH5rp0yuejMVRo/Dz
 D5IQz6ydUVGfvln0+u+EEKLi+lfEeDIm9EfC5pgriOy51hVbSSB8wk1p68mmOZloD2b2DeJUe3tor
 +v6yhf+JDNmdI/EiRuGJTJ33QW2kpX1Htc2ch4A9kguvkfrftfZdcaA1ME1ySuqHjrmlRep2GfKku
 uhE0z7FkBqarTMoYZYDnz+mYxibW+PNUU6P3rRGtsXR/OumwzdqiggJc5IiawtHxLrzNYnwHn0QW/
 bz8c25dvndscrZHThdNiKAZvwgdz1Howqzt47xhyqKmYUutqvEZYKNsqzHMzER04pl6KvhDXbcgUZ
 qr6N8OZtR+7a4YLUHQ+14DEOrjr9r7qVHD3H/icAP7mXcg/UoQuJ+0GZohLplTJ43zUXc33qQd4L5
 paXOY14wIpBeNRyTJH12yWDvcYxGUXc2lvC+fuw4PcNHD5nQ1h7hWnGZvp+PDYwvUbuQ5oB86PRkY
 jLHfFxv81+aq8v+74UVQb02OwTPTv1XPtt/XrY3aQ4UXJp5x0a3r6fNpBE3EEMPgfB0uMKUFvemmt
 FCZmw3HT6Koo8IZTGkQfJ5yOVZ+aAIcIu5YmpF3AQ6YQ5cFhjfr49VePp8zgPmkiFvkMN+VcrYV8C
 03c41I9zBkDfXtnAcjFL2dDmiz/Xf7zRkhlCCQjbQ0lF8j34bJf48nMlHZS5LvHWvvcTPdpr2/A0O
 CsVCEbQR2OdvD6h0kqOluTNeXaCQ5dRxao1jodz7VPpQ9XeeWzs1e4cmglxsEEuZI2Vjbbwjaohq7
 zc4FqZCIis/gVy
publicKeyData:: MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4A8LaVy6hqFvHA3puj
 sVZNCqi3pDRDp+YzTf8vgPcRgNPMulWDXH7aEE4vpRX2WldUkQI/inJFqhgd46LSCiZaRotJSM8wn
 MvLZEwvEK4x1eFx2ZAcwlqrUG/MZYI6ZRqMve00maqP2+0C6qY6aqYO2stayTOCLzBAP1WPT/fWcJ
 +K9jSZM6BMp1Yx5JfEyicRKrgcal0gmsYQfnD6HKHSq5CFZueyD4aZENEc4+AF5DYaITz1v5YniSb
 OqbzH5DlRyxZ8NY1F3ShcYI1uIyaIX+xortPYLLebqqjJC48Qfzre8Aq3ly/u8zXBwah0xg3cZANA
 RiSDzPFLzKLzMrvwIDAQAB
metaInfo: sessionKeyWrapAlgorithm:RSA
metaInfo: payloadEncrypted:false
metaInfo: sessionKeyKeyGenAlgorithm:AES
metaInfo: sessionKeyType:AES
metaInfo: sessionKeyLength:128
metaInfo: payloadEncryptionOID:2.16.840.1.101.3.4.1.2
metaInfo: payloadEncryptionIV:BFokzHqbGXs87ieM/fyoJg==
metaInfo: payloadWrapAlgorithm:AES KeyWrap/Padding
dateOfCreate: 20221010112809Z
dateOfModify: 20221010112809Z
archivedBy: CA-localhost.localdomain-8443
cn: 2977370597218063630139246774453254924

Key record generated by TPS token enrollment

dn: cn=245835708768193091176169074366114010399,ou=keyRepository,ou=kra,dc=kra,
 dc=pki,dc=example,dc=com
objectClass: top
objectClass: keyRecord
keyState: VALID
serialno: 39245835708768193091176169074366114010399
ownerName: BCF9D2DDC9820F4D30CC:testuser
keySize: 1024
algorithm: RSA
privateKeyData:: MIIDkASCAQB5yNj3+kWsQszgOKb82c/5KGUHVu61sAVC+41USvfij17InTSK2
 ugtbAogU9DQaDBFgyOi7ccUnKZFPUBSmjYLqoA0YgupsCbESg6IIbbkSCuwVSLuXlwz/+dkCVAm7t
 WJx90Rmdv2c+s/2tUPMX8Fs/Nx4j9jySBjmYujgN/2y8v5VjlLOFqzN1VWUcgLFD2UX6qTuQo0iJX
 Dn+fCJV1Z/btdwW13KFRghiL3LMo+OwCnP70+5qt1iMi1qAz6jdfeyPfU3QsmcJnXVXJEvRm24/2Q
 maRsqlFi1uOPfIOiDv+etPnz+Ql4HrbXh3mygfX65rPK9dZFhuf39YxPiKKLBIICiHGLjIddTDRwv
 AJw5+LWctRxL9XIqFEsXI5oPsjWbYUF+uUIrAoo5gz43Dq6oJts8a2X0oEp5v7U9pnqOYGvDb0IEI
 EKFZWYa0qJCAP61NWXlO/5aRD0hWVxcOvMyW0/2VSpy6nx/joNoYqemxLiqrJJqW1GSAZmwmVMu7v
 mnan0eKYUKIyLhYvBjYW8cPRrJ7ZbPASdgT4dzgMT1D0s3yzcVwJ0zQuPgfWYCPaEXXWVyY7EotsI
 Lcz2ZVbJwPhMxZgqJJCSLwYV7C9shbj7V+qE/L6g0IA/1ftaVjurv2D5pUAp9wSgbEWBrxcte/0fN
 EWs9lqQMS4goPoMMSRurlcfHaHNPoHv2dr0Qo97uCgDNCZcdookrS5VucP2YlC0QisddVRQPTwDsM
 wXmQz6JkP/GDCEHfSeeDdNYA0Ew3W0jkDGUvK8JGorVuzZgE2FL0EXGjozjp/PijN/l0R+QE+JGss
 6rGzFQHJpbqFGOq4UQ7YtoQeG3ipeWVCylgWJ0mXR2wz5wQ/DzR+ClCy2ChU2D8Dme7y88cUhZVL1
 pcJik4QZnXB7joINQja/x1ZPXKfYoW1qL4QDwVgaKHmC/LPOM/rFlSn35fr4j/ro7XFtgifUm1gIL
 /UjnadPjeVLvSRcN0+WcqX1zO4YUm9UOx9WHpT/y46h8VBXIYTyDzTkT3WsZEn2bKW9XDcI7HCvsc
 IP0Pq25Q9yNSSaKVMt3SnxuW+nMNMb1hcVJc3tZoK855VLHXyxd8iy7n3LU8wZoVfRbwrzU13Ibpv
 10zapJ4qze3C5iPKgyre2EeoZjzyCFreHStg/MHw6aAwUQNzUYG1A/ulAHLQtlSRIjg0cBHNVyKVZ
 zc0ySw==
publicKeyData:: MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPJ9RlK3fKiN7ZRq7FCFofOS
 V9jNAou5fJf26kYFSF2PpUbCingLzQ7rF24vyTZXNzidsZ/CRXl7mZ29Q6SvHSoMOKWYf7tmzmLKs
 rk4qzneEuHT3WcoVopolHVQBjGlPKmq5GmivKhRRF80zjtQBBi3pmZKc+mqBua6KG0ctuLwIDAQAB
metaInfo: sessionKeyWrapAlgorithm:RSA
metaInfo: payloadEncrypted:false
metaInfo: sessionKeyKeyGenAlgorithm:AES
metaInfo: sessionKeyType:AES
metaInfo: sessionKeyLength:128
metaInfo: payloadEncryptionOID:2.16.840.1.101.3.4.1.2
metaInfo: payloadWrapAlgorithm:AES KeyWrap/Padding
dateOfCreate: 20221010152106Z
dateOfModify: 20221010152106Z
archivedBy: CA-localhost.localdomain-8443
cn: 245835708768193091176169074366114010399

Key record generated by symmetric key generation

dn: cn=90424714132443573452866290506742965666,ou=keyRepository,ou=kra,dc=kra,d
 c=pki,dc=example,dc=com
objectClass: top
objectClass: keyRecord
keyState: VALID
serialno: 3890424714132443573452866290506742965666
ownerName: kraadmin
keySize: 256
algorithm: AES
privateKeyData:: MIIBNgSCAQC9ZAMCeOG9C4qE2zlaymtmxWt+v+njvTJ12ZxMISTWFwchngCou
 MvTEegzvaHxMmybMyPKNkyBC5axR2pewbBm1sEuK+ys+1BfKoo7ZLIauz+CRLQRW9/XCmcd+lSzKs
 N1HMyH4M2LHMNGMbBOiMU/FlKZ7hNCWoFV7s6pL2LuB31ms4TVXPpAVMW4dFGEjY9JFcJ8rfpSmLc
 xb5nzrYeitb/sEUcJHzMnDZMEaK07J6+pfWwAppoC2aoaWQM5DkHJq/lDwIwIzfo8i/lpo9mxX6uQ
 x77SQ3Rt5O+T+QpCDwOZB/+HWOmVAqQdKEOuumg1iC/rMq8/L5JPRsDLdnNCBDBa5FsLxgItik7cv
 2PRCg2qUbeZCQWjmED5zg3u+iRSb98U5UsE35LEoQqkdbZHUuw=
metaInfo: sessionKeyWrapAlgorithm:RSA
metaInfo: payloadEncrypted:false
metaInfo: sessionKeyKeyGenAlgorithm:AES
metaInfo: sessionKeyType:AES
metaInfo: sessionKeyLength:128
metaInfo: payloadEncryptionOID:2.16.840.1.101.3.4.1.2
metaInfo: payloadEncryptionIV:iETyY4RXvUd3Es3VHuyJzQ==
metaInfo: payloadWrapAlgorithm:AES KeyWrap/Padding
dateOfCreate: 20240319000939Z
dateOfModify: 20240319000939Z
archivedBy: kraadmin
clientId: testkey
status: active
dataType: symmetricKey
cn: 90424714132443573452866290506742965666

Key record generated by asymmetric key generation

dn: cn=196643718199962579936556285760282162665,ou=keyRepository,ou=kra,dc=kra,
 dc=pki,dc=example,dc=com
objectClass: top
objectClass: keyRecord
keyState: VALID
serialno: 39196643718199962579936556285760282162665
ownerName: kraadmin
keySize: 2048
algorithm: RSA
privateKeyData:: MIIF2ASCAQA2n7wcMVSJrGIkKYIDKE3V/+E6j5R4DguQUzXMLd+Rr6VPv95fZ
 LqLA8/egT+iaRz2ghfKKIXM0J/wGPMIJuxxRtwEP+D8y2BcQM/ei29HRMcvgzDolbk1lVMcH1iQMi
 /qNdFvbfLZL7lEyEie1VNptbwfXeWXVObxe/Ua2zPs4U7SuG2q2Ys5e1aVSDTAjBp8E7POeT83yH1
 R502fdUEUlsQptQWU8RyioDL41FPcYyzoWWgrogmLHm3uxNsJAH1ItnQeC52vBn6cF3+ctLF0U2+X
 fY9X4FDM1we8RaMaBxZxFnsWjuz93+SbDh9QptNiMqVCo/7pAd8w2QPdRSY0BIIE0KwUj2FxH///V
 wclTZONvzFuwePnZlpq5Nle1jJgycxhnjmK5CXPim3dmDuzkufipVhkoYc5b3k/jhZ6lwDorT3gcG
 xtINKN508sqZdqOzci4Eq82yT2yqySzevXLLIu2mcb7z6WhN0P9xNLNx0T9gQAYRhXArjloCOGEVX
 pY68upb+A8pDd2Tj7uYtEgvj28mJpjLQGG3z6VNsatsHtnNM5WcfyxzhAR2Q+k8Ve8oMMhlpRE1pF
 Emoyw9BJaBIJ55+ZwsW+DFB86G5QUjThnNojpxwr8ZRYibzDw7JywjUBfzQ8++0JKlzTIYsQE549W
 p4CqBc2OJL4xIs8WkIN1Byoq0smpJi/JzctG7P0m6G3pEh1+k+SI4ANe31SswwrGjAJMGUA9fDR/Y
 SA034q3YXdPuTR744oId6wVr2F/O8MKXXk1UTUV+Qm64EGbR8/R2/jddc5M2Z3341YWpEI7pf32FI
 b+DDOvZV5XYP9hcXFC0+GNEP+eA/V34NAeD/sqKYv06uLgIAibZNRdkpn0AABKgFp21+PMTR2rl1v
 QBwyYXfcLQqqsGylqiO/tKoYz4neqLycVuw8LnrA71cN2+608Tr61hfZoR/fBrFbBiVuAkd3J5N9O
 gEdw0tDDU9Rs+MAXKwJmm97qUPPD3ICmomVEGUkUoSlBC1XlWhCpgw9B/LSm65xAo+Wl/zMsXLt4o
 BI96ZMY/JmYXu3yDrpvIKJp9DVK5sK3L/noFqktbMRwo4OoU5YkPkEIHEFfQMdmoYEzzjiUQ8SKNs
 xCzQHYIjVPIId9ZS+cGnoF8FvEYZ5dxsicD0Cq7GtcDIFV38Co7w6T2IWIN7reCeZ7Sb/V25O24nq
 B4ztopjw28VtsfrrUz+FAG2U/8teiWFhLaLxGHEnorZm6nMiUTXsvhUxvGuV0HS3rxrnfs7UULfeg
 iRzDSkH+jRDGd1clvCBaHa04HAwmHH1rmic/BSN3UcTdpwV56x3CV+0KblGqSwjT0Y9oNDc8OZPD6
 08tReYLrUoP7oBwC5ZfEGUmOgBIUwOaAMdooEdXeXV6cDX41bjZ/nYCr0c/u8DoDbyZpVsx2WThiE
 XTLx1iNgiBCFBdclHJh7eBcGCSP8/UXM/1BL8Hp+1VQOgluE+iiHFQXM6niySX9CnAfgVQyJ3mJph
 0cjfzFkZA8ousbc4+pzhqdme+VPivjC/5fVXUaD04lkmtV0jwTq1ZmJXEEr2Ntga1etdtVxDu4ZsZ
 0bhUUfXYPYMim52CH5ubgKdGtwSGVStVAYgB5aQ+LFIcy1XG0WMJbEgQD6151wq925/XR4LVIyv7h
 ZU0KnJKPr2irqhsNjMj9z6chO5dk+0alQj5DiDaaOww4XNU7V+vOVJGccFYC5uOfvROMj90tquHJS
 NtFKtaQtt8dRVuNfCs+ILUEC1rVcI5zMVJv7JeraJsy1UDxwfF8dxAJI5hwOrwIBLRIHu80btxpnF
 xaUExHs6//WnUu0GPo4iOrBVe+cI+ex0HRmQmV9fCl/CLqH8K7VO8sdoAi3dzjTDwqUSMJb2iFjPS
 AYRGOHQNyhhiNGdO1nIBxapJoG/IxB6S26D2aiJAszogHkboXk5h/yAlvJiJtqEbscA6flttJxosb
 Qfz2S6qwq2Xk02
publicKeyData:: MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6RdgFSoIx/T3XXPLJ
 2QFdKD1GYIHgP1Uj95sxKCe9qy71UQ09d2rui7VQ+zQXfTXU/MGXfha3zpJSMrPmxHJwxOgBurwe8
 OsQUCrG49nDfZzTBh1ectgoazVn3uOM0+KcAZqnM+8LmSbYUxAzKaWxEUqtQJDhc5VRZ2MhdQl8t8
 GKSD5WuhLFmrNdf9xsUTEzkMaPJLbXQycUbxe68SnY0se1SoYm5XcudtDbuWkP/RbEYjJbhC27RKv
 nqrRPTRt8DA40lr4kcV/Qh2SvvFBG6ykWn++1Fg8ZzsSpwSneYTv0uMfQ6jaZVSFNHl1OeXnrBUSe
 8EObXZITHCszUcQwIDAQAB
metaInfo: sessionKeyWrapAlgorithm:RSA
metaInfo: payloadEncrypted:false
metaInfo: sessionKeyKeyGenAlgorithm:AES
metaInfo: sessionKeyType:AES
metaInfo: sessionKeyLength:128
metaInfo: payloadEncryptionOID:2.16.840.1.101.3.4.1.2
metaInfo: payloadEncryptionIV:SOuWpNF6aSRU20rAWx+/6w==
metaInfo: payloadWrapAlgorithm:AES KeyWrap/Padding
dateOfCreate: 20240319001621Z
dateOfModify: 20240319001621Z
archivedBy: kraadmin
clientId: testkey
status: active
dataType: asymmetricKey
cn: 196643718199962579936556285760282162665
Clone this wiki locally