{"id":44722,"date":"2022-12-10T12:18:59","date_gmt":"2024-03-10T11:08:43","guid":{"rendered":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/"},"modified":"2024-04-29T04:35:03","modified_gmt":"2024-04-28T20:35:03","slug":"golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91","status":"publish","type":"post","link":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/","title":{"rendered":"Golang PKI\u5165\u95e8 &#8211; 6 \u7528\u4e2d\u6587\u7ffb\u8bd1"},"content":{"rendered":"<h1>\u8fd9\u7bc7\u6587\u7ae0\u7684\u5bf9\u8c61<\/h1>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">Golang \u3067 DN (Subject \u3084 Issuer) \u3092\u6271\u3044\u305f\u3044\u4eba<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">Golang \u3067 DN (Subject \u3084 Issuer) \u3092\u6271\u3046\u30e9\u30a4\u30d6\u30e9\u30ea\u3092\u63a2\u3057\u3066\u3044\u308b\u4eba<\/ul>\n<h1>DN\u6307\u7684\u662f\u4ec0\u4e48\uff1f<\/h1>\n<p>\u5728X.500\u548cX.501\u5b9a\u4e49\u7684\u76ee\u5f55\u670d\u52a1\u6a21\u578b\u4e2d\uff0cDN\uff08\u53ef\u5206\u8fa8\u540d\uff09\u662f\u7528\u4e8e\u552f\u4e00\u6807\u8bc6\u5bf9\u8c61\u7684\u8bc6\u522b\u540d\u79f0\u3002\u7531\u4e8eX.509 PKI\u91c7\u7528\u4e86\u76ee\u5f55\u670d\u52a1\u6a21\u578b\uff0c\u4f5c\u4e3a\u5176\u4e2d\u4e00\u4e2a\u5bf9\u8c61\u7684\u4e3b\u4f53\uff08Subject\uff09\u548c\u53d1\u884c\u8005\uff08Issuer\uff09\u4e5f\u901a\u8fc7DN\u8868\u793a\u3002\u5728\u76ee\u5f55\u4e2d\uff0c\u5bf9\u8c61\u4ee5\u57fa\u4e8e\u5bf9\u8c61\u7c7b\u7684\u6761\u76ee\u5f62\u5f0f\u8868\u793a\u3002\u76ee\u5f55\u7531\u6761\u76ee\u7ec4\u6210\u7684\u6811\u72b6\u7ed3\u6784\u6784\u6210\uff0c\u8fd9\u68f5\u6811\u88ab\u79f0\u4e3aDIT\uff08\u76ee\u5f55\u4fe1\u606f\u6811\uff09\u3002\u6761\u76ee\u57fa\u4e8e\u7c7b\u5177\u6709\u591a\u4e2a\u5c5e\u6027\uff0c\u5c5e\u6027\u5177\u6709\u5c5e\u6027\u7c7b\u578b\u548c\u5c5e\u6027\u503c\u3002RDN\uff08\u76f8\u5bf9\u53ef\u5206\u8fa8\u540d\uff09\u7528\u4e8e\u5728DIT\u4e2d\u7684\u540c\u4e00\u5c42\u7ea7\u5185\uff08\u4ece\u4e0a\u5c42\u6761\u76ee\u7684\u89c6\u89d2\uff09\u552f\u4e00\u6807\u8bc6\u8be5\u6761\u76ee\uff0c\u800cDN\u5219\u7528\u4e8e\u5728DIT\u4e2d\u552f\u4e00\u6807\u8bc6\u6761\u76ee\u3002RDN\u7531\u4e00\u4e2a\u6216\u591a\u4e2a\u5c5e\u6027\u7684\u96c6\u5408\uff08\u65e0\u987a\u5e8f\uff09\u8868\u793a\u3002\u4f5c\u4e3a\u4e00\u4e2a\u6761\u76ee\u7684RDN\uff0c\u5176\u4f5c\u4e3a\u201c\u5c5e\u6027\u96c6\u5408\u201d\u7684RDN\u4e0d\u80fd\u4e0e\u540c\u4e00\u5c42\u7ea7\u5185\u5176\u4ed6\u6761\u76ee\u7684RDN\u91cd\u53e0\u3002RDN\u5728\u540c\u4e00\u5c42\u7ea7\u5185\u53ef\u4f5c\u4e3a\u6761\u76ee\u7684\u552f\u4e00\u6807\u8bc6\u7b26\u7684\u201c\u5c5e\u6027\u96c6\u5408\u201d\u4f7f\u7528\u3002DN\u7531\u8868\u793a\u8be5\u5bf9\u8c61\u6761\u76ee\u7684RDN\u4ee5\u53ca\u6240\u6709\u4e0a\u5c42\u6761\u76ee\u7684RDN\u5e8f\u5217\uff08\u6709\u5e8f\uff09\u8868\u793a\u3002\u7531\u4e8eDN\u662f\u5728DIT\u4e2d\u6bcf\u4e2a\u5c42\u7ea7\u4e2d\u552f\u4e00\u7684RDN\u5e8f\u5217\uff0c\u5b83\u6210\u4e3a\u4e86\u6807\u8bc6DIT\u5185\u552f\u4e00\u6761\u76ee\u7684\u6807\u8bc6\u7b26\u3002\u6709\u5173DN\u548cRDN\u7684\u8be6\u7ec6\u4fe1\u606f\uff0c\u8bf7\u53c2\u8003X.501\u3002<\/p>\n<p>DN\u901a\u8fc7\u4ee5\u4e0b\u7684\u65b9\u5f0f\u6765\u5b9a\u4e49\u3002<br \/>\nCN=hoge@example.com,O=example,C=JP<br \/>\nDN\u662f\u7531RDN\u5e8f\u5217\uff08\u6709\u987a\u5e8f\uff09\u7ec4\u6210\u7684\u3002RDN\u7531\u591a\u4e2a\u65e0\u5e8f\u5c5e\u6027\uff08AttributeTypeAndValue\uff09\u7ec4\u6210\u3002\u5c5e\u6027\uff08AttributeTypeAndValue\uff09\u7531\u5c5e\u6027\u7c7b\u578b\uff08AttributeType\uff09\u548c\u5c5e\u6027\u503c\uff08AttributeValue\uff09\u7ec4\u6210\u3002<\/p>\n<p>\u4ee5\u524d\u8ff0\u7684\u4f8b\u5b50\u4e3a\u4f8b\uff0cDN: CN=hoge@example.com,O=example,C=JP\u4ee3\u8868\u4e86\u4e00\u4e2a\u75313\u4e2a\u5c42\u7ea7\u6761\u76ee\u7ec4\u6210\u7684\u5bf9\u8c61\u3002CN=hoge@example.com\u8868\u793a\u672b\u7aef\u6761\u76ee\u7684RDN\uff0cO=example\u8868\u793a\u4e2d\u95f4\u6761\u76ee\u7684RDN\uff0cC=JP\u8868\u793a\u6839\u6761\u76ee\u7684RDN\u3002\u8fd9\u4e9bRDN\u7684\u987a\u5e8f\u5f62\u6210\u4e86\u8be5\u5bf9\u8c61\u7684\u5e8f\u5217\uff08\u4ee5\u6811\u7684\u6839\u8282\u70b9\u7684RDN\u4e3a\u9996\uff09\uff0c\u8fd9\u5c31\u662f\u8be5\u5bf9\u8c61\u7684DN\u3002<\/p>\n<p>\u5728\u6b64\u4f8b\u4e2d\uff0c\u4ee5RDN C=JP\u4e3a\u4f8b\uff0cC=JP\u662f\u4e00\u4e2a\u5177\u6709\u5c5e\u6027\u7c7b\u578b\u548c\u5c5e\u6027\u503c\u5bf9\u7684\u5c5e\u6027\u503c\uff08AttributeTypeAndValue\uff09\uff0c\u5176\u5c5e\u6027\u7c7b\u578b\u662fC\uff08CountryName\uff09\uff0c\u5c5e\u6027\u503c\u662fJP\u3002<\/p>\n<p>\u7531\u4e8eRDN\u53ef\u4ee5\u5305\u542b\u591a\u4e2a\u5c5e\u6027\uff0c\u56e0\u6b64\u4e5f\u53ef\u4ee5\u5b9a\u4e49\u5177\u6709\u591a\u4e2a\u5c5e\u6027\u7684RDN\uff0c\u4f8b\u5982\uff1a<br \/>\nOU=Sales + OU=Dev<br \/>\n\u8fd9\u8868\u793a\u4e00\u4e2aRDN\u4e2d\u5305\u542b\u4e24\u4e2a\u5c5e\u6027\uff08OU=Sales\u548cOU=Dev\uff09\u3002\u8bf7\u6ce8\u610f\uff0c\u4ee5\u4e0b\u4e24\u4e2a\u4f5c\u4e3aDN\u7684\u60c5\u51b5\u662f\u4e0d\u540c\u7684\u3002<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>CN=hoge@example.com,OU=Sales,OU=Dev,O=example,C=JP<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>DN\u5177\u67095\u4e2aRDN\u5e8f\u5217\uff0c\u6bcf\u4e2aRDN\u90fd\u5177\u6709\u4e00\u4e2a\u5c5e\u6027\u3002<\/ol>\n<\/li>\n<\/ol>\n<p>CN=hoge@example.com,OU=Sales + OU=Dev,O=example,C=JP<br \/>\nDN\u5177\u67094\u4e2aRDN\u5e8f\u5217\uff0c\u5176\u4e2d3\u4e2aRDN\u5206\u522b\u5177\u6709\u4e00\u4e2a\u5c5e\u6027\uff0c\u800c1\u4e2aRDN\u5177\u6709\u4e24\u4e2a\u5c5e\u6027\u3002(\u591a\u503cRDN)<\/p>\n<p>\u5728RFC 5280\u4e2d\uff0c\u5c06DN\u5b9a\u4e49\u4e3a\u4ee5\u4e0bASN.1\u7ed3\u6784\u4f53\u3002<\/p>\n<pre class=\"post-pre\"><code>   Name ::= CHOICE { -- only one possibility for now --\r\n     rdnSequence  RDNSequence }\r\n\r\n   RDNSequence ::= SEQUENCE OF RelativeDistinguishedName\r\n\r\n   RelativeDistinguishedName ::=\r\n     SET SIZE (1..MAX) OF AttributeTypeAndValue\r\n\r\n   AttributeTypeAndValue ::= SEQUENCE {\r\n     type     AttributeType,\r\n     value    AttributeValue }\r\n\r\n   AttributeType ::= OBJECT IDENTIFIER\r\n\r\n   AttributeValue ::= ANY -- DEFINED BY AttributeType\r\n<\/code><\/pre>\n<p>\u8fd9\u662f\u4e00\u4e2aDistinguished name\u7c7b\u578b\uff0c\u5b83\u62e5\u6709Name\u7c7b\u578b\u7684\u4fe1\u606f\u8981\u7d20rdnSequence\u3002<br \/>\nRDNSequence\u7c7b\u578b\u662f\u4e00\u4e2aRelativeDistinguishedName\u7c7b\u578b\u7684SEQUENCE\u7c7b\u578b\u3002<br \/>\nRelativeDistinguishedName\u7c7b\u578b\u662f\u4e00\u4e2aAttributeTypeAndValue\u7c7b\u578b\u7684SET\u7c7b\u578b\u3002<br \/>\nAttributeTypeAndValue\u7c7b\u578b\u662f\u4e00\u4e2aSEQUENCE\u7c7b\u578b\uff0c\u5b83\u5305\u542b\u4e24\u4e2a\u4fe1\u606f\u8981\u7d20\uff0c\u5373AttributeType\u7c7b\u578b\u7684type\u548cAttributeValue\u7c7b\u578b\u7684value\u3002<br \/>\nAttributeType\u7c7b\u578b\u662fOBJECT IDENTIFIER\u7c7b\u578b\u3002<br \/>\nAttributeValue\u7c7b\u578b\u662f\u4e0eOBJECT IDENTIFIER\u7c7b\u578b\u5bf9\u5e94\u7684\u4efb\u610f\u7c7b\u578b\u3002<\/p>\n<h1>3. \u5728\u4f7f\u7528Golang\u5904\u7406DN\u65f6\u7684\u6311\u6218\u3002<\/h1>\n<p>\u53ea\u6709\u5728\u521b\u5efaCSR\u3001\u8bc1\u4e66\u6216CRL\u65f6\uff0c\u624d\u9700\u8981\u5904\u7406Golang\u4e2d\u7684Issuer\u6216Subject\u7b49DN\u3002\u5728\u8fd9\u79cd\u60c5\u51b5\u4e0b\uff0cGolang\u53ef\u4ee5\u7528\u6765\u5904\u7406DN\u3002<\/p>\n<p>pkix.Name \u69cb\u9020\u4f53<\/p>\n<p>pkix.RDNSequence \u69cb\u9020\u4f53<\/p>\n<p>\u6709\u4e24\u79cd\u4f7f\u7528\u65b9\u6cd5\u3002\u65e0\u8bba\u4f7f\u7528\u54ea\u79cd\u7ed3\u6784\u4f53\uff0c\u90fd\u4f1a\u5b58\u5728\u95ee\u9898\u3002<\/p>\n<h3>\u4f7f\u7528pkix.Name\u7ed3\u6784\u4f53\u7684\u6311\u6218<\/h3>\n<p>\u5982\u679c\u4f7f\u7528pkix.Name\u7ed3\u6784\u4f53\uff0c\u5c06\u4f1a\u9047\u5230\u4ee5\u4e0b\u4e09\u4e2a\u95ee\u9898\u3002<\/p>\n<h4>\u6839\u636e\u5305\u542b\u5728RDN\u4e2d\u7684AttributeTypeAndValue\u7684AttributeType\u51b3\u5b9a\u751f\u6210\u7684DN\u7684RDN\u987a\u5e8f\u3002<\/h4>\n<p>\u4f7f\u7528pkix.Name\u7ed3\u6784\uff0c\u6839\u636eRDN\u4e2d\u5305\u542b\u7684AttributeTypeAndValue\u7684AttributeType\u786e\u5b9aRDN\u7684\u987a\u5e8f\u3002\u56e0\u6b64\uff0c\u65e0\u6cd5\u6307\u5b9aRDN\u7684\u987a\u5e8f\u3002<\/p>\n<h4>RDN \u4e2d\u5305\u542b\u7684 AttributeTypeAndValue\u7684 AttributeType \u4e0d\u80fd\u6709\u76f8\u540c\u7684 RDN\u3002<\/h4>\n<p>AttributeType\u4e0d\u53ef\u4ee5\u62e5\u6709\u76f8\u540c\u7684RDN\u3002(\u53ef\u4ee5\u62e5\u6709Multi Value RDN)<br \/>\n\u5177\u4f53\u6765\u8bf4\uff0c\u4e0d\u80fd\u521b\u5efa\u4ee5\u4e0b\u7c7b\u4f3c\u7684\uff08\u5177\u6709\u4e24\u4e2aOU\u7684\uff09DN\uff1a<br \/>\nC=JP\uff0cO=example\uff0cOU=Sales\uff0cOU=Dev\uff0cCN=hoge@example.com<\/p>\n<h4>\u5728 AttributeValue \u4e2d\u65e0\u6cd5\u6307\u5b9a\u7f16\u7801\u65b9\u5f0f\u3002<\/h4>\n<p>\u7531\u4e8e\u7f16\u7801\u7684\u5c5e\u6027\u503c\uff08ASN.1 \u5b57\u7b26\u7c7b\u578b\uff09\u662f\u6839\u636e\u5206\u914d\u7684\u5b57\u7b26\u7c7b\u578b\u81ea\u52a8\u786e\u5b9a\u7684\uff0c\u56e0\u6b64\u65e0\u6cd5\u6307\u5b9a\u3002<\/p>\n<h3>pkix.RDNSequence \u662f\u4e00\u4e2a\u6570\u636e\u7ed3\u6784\u3002<\/h3>\n<p>\u5f53\u4f7f\u7528pkix.RDNSequence\u7ed3\u6784\u4f53\u65f6\uff0c\u53ef\u4ee5\u81ea\u7531\u8bbe\u7f6eRDN\u7684\u7ed3\u6784\u548c\u987a\u5e8f\u3002\u7136\u800c\uff0c\u5728AttributeValue\u4e2d\u6307\u5b9a\u7f16\u7801\u5b58\u5728\u6311\u6218\u3002<\/p>\n<h4>\u7528 AttributeValue \u8bbe\u7f6e\u7f16\u7801\u89c4\u8303\u5f88\u9ebb\u70e6\u3002<\/h4>\n<p>\u5728 pkix.RDNSequence \u7ed3\u6784\u4e2d\uff0c\u65e0\u6cd5\u76f4\u63a5\u7b80\u5355\u5730\u4e3a AttributeValue \u8fdb\u884c\u7f16\u7801\u8bbe\u7f6e\u3002\u5982\u679c\u4ec5\u4ec5\u5c06\u5b57\u7b26\u4e32\u8d4b\u503c\u7ed9 AttributeValue\uff0c\u5c31\u50cf\u5728 pkix.Name \u7ed3\u6784\u4e2d\u4e00\u6837\uff0c\u6839\u636e\u5b57\u7b26\u4e32\u4e2d\u4f7f\u7528\u7684\u5b57\u7b26\u7c7b\u578b\uff0c\u5c06\u81ea\u52a8\u786e\u5b9a AttributeValue \u7684\u7f16\u7801\uff0c\u5e76\u65e0\u6cd5\u8fdb\u884c\u6307\u5b9a\u3002<\/p>\n<p>\u8981\u660e\u786e\u6307\u5b9a\u7f16\u7801\uff0c\u9700\u8981\u5c06\u6240\u9700\u7684 ASN.1 \u5b57\u7b26\u7c7b\u578b\u7684 asn1.RawValue \u5b9e\u4f8b\u8d4b\u503c\u7ed9 AttributeValue \u7ed3\u6784\u4f53\u3002\uff08\u7531\u4e8e\u53ef\u80fd\u4e0d\u592a\u6e05\u6670\uff0c\u5efa\u8bae\u67e5\u770b\u793a\u4f8b\u4ee3\u7801\uff09<\/p>\n<pre class=\"post-pre\"><code>\t<span class=\"k\">var<\/span> <span class=\"n\">b<\/span> <span class=\"p\">[]<\/span><span class=\"kt\">byte<\/span>\r\n\t<span class=\"n\">st<\/span> <span class=\"o\">:=<\/span> <span class=\"s\">\"\u3042\"<\/span>\r\n\t<span class=\"n\">b<\/span><span class=\"p\">,<\/span> <span class=\"n\">err<\/span> <span class=\"o\">:=<\/span> <span class=\"n\">asn1<\/span><span class=\"o\">.<\/span><span class=\"n\">MarshalWithParams<\/span><span class=\"p\">(<\/span><span class=\"n\">st<\/span><span class=\"p\">,<\/span> <span class=\"s\">\"utf8\"<\/span><span class=\"p\">)<\/span> <span class=\"c\">\/\/\"\u3042\"\u3092UTF8String \u3067\u30a8\u30f3\u30b3\u30fc\u30c9\u3002\u7bc4\u56f2\u5916\u3067\u3042\u308c\u3070\u30a8\u30e9\u30fc<\/span>\r\n\t<span class=\"k\">if<\/span> <span class=\"n\">err<\/span> <span class=\"o\">!=<\/span> <span class=\"no\">nil<\/span> <span class=\"p\">{<\/span>\r\n\t\t<span class=\"n\">log<\/span><span class=\"o\">.<\/span><span class=\"n\">Fatalf<\/span><span class=\"p\">(<\/span><span class=\"s\">\"ERROR:%v<\/span><span class=\"se\">\\n<\/span><span class=\"s\">\"<\/span><span class=\"p\">,<\/span> <span class=\"n\">err<\/span><span class=\"p\">)<\/span>\r\n\t<span class=\"p\">}<\/span>\r\n\t<span class=\"n\">atv1<\/span> <span class=\"o\">:=<\/span> <span class=\"n\">pkix<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span>\r\n\t\t<span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">asn1<\/span><span class=\"o\">.<\/span><span class=\"n\">ObjectIdentifier<\/span><span class=\"p\">{<\/span><span class=\"m\">2<\/span><span class=\"p\">,<\/span> <span class=\"m\">5<\/span><span class=\"p\">,<\/span> <span class=\"m\">4<\/span><span class=\"p\">,<\/span> <span class=\"m\">3<\/span><span class=\"p\">},<\/span> <span class=\"c\">\/\/CommonName<\/span>\r\n\t\t<span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">asn1<\/span><span class=\"o\">.<\/span><span class=\"n\">RawValue<\/span><span class=\"p\">{<\/span>\r\n\t\t\t<span class=\"n\">Tag<\/span><span class=\"o\">:<\/span>       <span class=\"n\">asn1<\/span><span class=\"o\">.<\/span><span class=\"n\">TagUTF8String<\/span><span class=\"p\">,<\/span> <span class=\"c\">\/\/UTF8String \u306e ObjectIdentifier<\/span>\r\n\t\t\t<span class=\"n\">FullBytes<\/span><span class=\"o\">:<\/span> <span class=\"n\">b<\/span><span class=\"p\">,<\/span> <span class=\"c\">\/\/UTF8String \u3067\u30a8\u30f3\u30b3\u30fc\u30c9\u3055\u308c\u305f\u30d0\u30a4\u30ca\u30ea<\/span>\r\n\t\t<span class=\"p\">},<\/span>\r\n\t<span class=\"p\">}<\/span>\r\n    <span class=\"c\">\/\/CN=\u3042\u3000\u306e DN<\/span>\r\n\t<span class=\"n\">dn1<\/span> <span class=\"o\">:=<\/span> <span class=\"n\">pkix<\/span><span class=\"o\">.<\/span><span class=\"n\">RDNSequence<\/span><span class=\"p\">{<\/span><span class=\"n\">pkix<\/span><span class=\"o\">.<\/span><span class=\"n\">RelativeDistinguishedNameSET<\/span><span class=\"p\">{<\/span><span class=\"n\">atv1<\/span><span class=\"p\">}}<\/span>\r\n<\/code><\/pre>\n<h1>4. \u89e3\u51b3\u65b9\u6848 &#8216;\u00e0n)<\/h1>\n<p>\u7ecf\u8fc7\u5b9e\u8df5\u53d1\u73b0\uff0c\u5982\u679c\u5728Golang\u4e2d\u5904\u7406DN\uff08Distinguished Name\uff09\uff0c\u4f20\u7edf\u7684\u65b9\u6cd5\u5b58\u5728\u4e00\u4e9b\u95ee\u9898\u3002\u56e0\u6b64\uff0c\u6211\u4eec\u5f00\u53d1\u4e86\u4e00\u4e2a\u540d\u4e3adnutil\u7684\u5e93\u6765\u89e3\u51b3\u8fd9\u4e9b\u95ee\u9898\u3002\u4f7f\u7528\u8fd9\u4e2a\u5e93\uff0c\u60a8\u53ef\u4ee5\u81ea\u7531\u5730\u521b\u5efa\u590d\u6742\u7ed3\u6784\u7684DN\uff0c\u5e76\u4e14\u53ef\u4ee5\u8f7b\u677e\u5730\u6307\u5b9a\u6bcf\u4e2aRDN\uff08Relative Distinguished Name\uff09\u7684AttributeValue\u7684\u7f16\u7801\u65b9\u5f0f\u3002<\/p>\n<h1>5. \u4f7f\u7528 dnutil \u7684\u65b9\u6cd5<\/h1>\n<p>\u5728 dnutil \u4e2d\u521b\u5efa DN \u662f\u5f88\u7b80\u5355\u7684\u3002\u5982\u679c\u60f3\u8981\u521b\u5efa\u4ee5\u4e0b\u7c7b\u578b\u7684 DN\uff0c\u5728Chinese\u7684\u4fee\u9970\u4e0b\uff0c\u8fd9\u6837\u505a\u5c31\u53ef\u4ee5\uff1a<\/p>\n<pre class=\"post-pre\"><code>C=JP,O=example,OU=Ext,OU=Dev+OU=Sales,CN=ex+E=ex@example.com\r\nAttributeType: ASN.1\u6587\u5b57\u578b\r\nC: PrintableString\r\nO: UTF8String\r\nOU=Ext: UTF8String\r\nOU=Dev: UTF8String\r\nOU=Sales: UTF8String\r\nCN:UTF8String\r\nE(ElectronicMailAddress):IA5String\r\n<\/code><\/pre>\n<p>\u53ea\u9700\u8981\u6309\u4ee5\u4e0b\u65b9\u5f0f\u5b9e\u4f8b\u5316 DN \u7ed3\u6784\u4f53\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"k\">var<\/span> <span class=\"n\">d<\/span> <span class=\"o\">=<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">DN<\/span><span class=\"p\">{<\/span>\r\n\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">RDN<\/span><span class=\"p\">{<\/span><span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">CountryName<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Encoding<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">PrintableString<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"s\">\"JP\"<\/span><span class=\"p\">}}},<\/span>\r\n\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">RDN<\/span><span class=\"p\">{<\/span><span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">OrganizationName<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Encoding<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">UTF8String<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"s\">\"example\"<\/span><span class=\"p\">}}},<\/span>\r\n\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">RDN<\/span><span class=\"p\">{<\/span><span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">OrganizationalUnit<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Encoding<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">UTF8String<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"s\">\"Ext\"<\/span><span class=\"p\">}}},<\/span>\r\n\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">RDN<\/span><span class=\"p\">{<\/span>\r\n\t\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">OrganizationalUnit<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Encoding<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">UTF8String<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"s\">\"Dev\"<\/span><span class=\"p\">}},<\/span>\r\n\t\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">OrganizationalUnit<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Encoding<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">UTF8String<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"s\">\"Sales\"<\/span><span class=\"p\">}},},<\/span>\r\n\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">RDN<\/span><span class=\"p\">{<\/span>\r\n\t\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">CommonName<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Encoding<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">UTF8String<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"s\">\"ex\"<\/span><span class=\"p\">}},<\/span>\r\n\t\t<span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeTypeAndValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Type<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">ElectronicMailAddress<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">AttributeValue<\/span><span class=\"p\">{<\/span><span class=\"n\">Encoding<\/span><span class=\"o\">:<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">IA5String<\/span><span class=\"p\">,<\/span> <span class=\"n\">Value<\/span><span class=\"o\">:<\/span> <span class=\"s\">\"ex@example.com\"<\/span><span class=\"p\">}}},<\/span>\r\n<span class=\"p\">}<\/span>\r\n<\/code><\/pre>\n<p>\u8981\u4ece\u521b\u5efa\u7684DN\u5b9e\u4f8b\u4e2d\u521b\u5efa\u4e00\u4e2aASN.1 DER\u683c\u5f0f\u7684DN\uff0c\u53ef\u4ee5\u4f7f\u7528MarshalDN()\u51fd\u6570\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"n\">b<\/span><span class=\"p\">,<\/span> <span class=\"n\">err<\/span> <span class=\"o\">:=<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">MarshalDN<\/span><span class=\"p\">(<\/span><span class=\"n\">d<\/span><span class=\"p\">)<\/span>\r\n<\/code><\/pre>\n<p>\u6211\u5c06\u521b\u5efa\u7684DN\u8f6c\u6362\u4e3aPEM\u683c\u5f0f\u5e76\u8f93\u51fa\uff0c\u5e76\u4f7f\u7528openssl\u8fdb\u884c\u4e86\u5185\u5bb9\u786e\u8ba4\u3002\u53ef\u4ee5\u770b\u5230\u5b83\u5df2\u7ecf\u53d8\u6210\u4e86\u76ee\u6807\u7684DN\u5f62\u5f0f\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nv\">$ <\/span>openssl asn1parse <span class=\"nt\">-in<\/span> dn01.pem\r\n    0:d<span class=\"o\">=<\/span>0  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span> 115 cons: SEQUENCE\r\n    2:d<span class=\"o\">=<\/span>1  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  11 cons: SET\r\n    4:d<span class=\"o\">=<\/span>2  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   9 cons: SEQUENCE\r\n    6:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: OBJECT            :countryName\r\n   11:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   2 prim: PRINTABLESTRING   :JP\r\n   15:d<span class=\"o\">=<\/span>1  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  16 cons: SET\r\n   17:d<span class=\"o\">=<\/span>2  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  14 cons: SEQUENCE\r\n   19:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: OBJECT            :organizationName\r\n   24:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   7 prim: UTF8STRING        :example\r\n   33:d<span class=\"o\">=<\/span>1  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  12 cons: SET\r\n   35:d<span class=\"o\">=<\/span>2  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  10 cons: SEQUENCE\r\n   37:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: OBJECT            :organizationalUnitName\r\n   42:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: UTF8STRING        :Ext\r\n   47:d<span class=\"o\">=<\/span>1  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  26 cons: SET\r\n   49:d<span class=\"o\">=<\/span>2  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  10 cons: SEQUENCE\r\n   51:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: OBJECT            :organizationalUnitName\r\n   56:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: UTF8STRING        :Dev\r\n   61:d<span class=\"o\">=<\/span>2  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  12 cons: SEQUENCE\r\n   63:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: OBJECT            :organizationalUnitName\r\n   68:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   5 prim: UTF8STRING        :Sales\r\n   75:d<span class=\"o\">=<\/span>1  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  40 cons: SET\r\n   77:d<span class=\"o\">=<\/span>2  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   9 cons: SEQUENCE\r\n   79:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   3 prim: OBJECT            :commonName\r\n   84:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   2 prim: UTF8STRING        :ex\r\n   88:d<span class=\"o\">=<\/span>2  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  27 cons: SEQUENCE\r\n   90:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>   9 prim: OBJECT            :emailAddress\r\n  101:d<span class=\"o\">=<\/span>3  <span class=\"nv\">hl<\/span><span class=\"o\">=<\/span>2 <span class=\"nv\">l<\/span><span class=\"o\">=<\/span>  14 prim: IA5STRING         :ex@example.com\r\n\r\n\r\n<\/code><\/pre>\n<p>\u5982\u679c\u60f3\u8981\u4eceASN.1\u7684DER\u683c\u5f0f\u7684DN\u4e2d\u521b\u5efaDN\u5b9e\u4f8b\uff0c\u53ef\u4ee5\u4f7f\u7528ParseDERDN()\u51fd\u6570\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"c\">\/\/CN=abc (UTF8String)<\/span>\r\n<span class=\"n\">b<\/span> <span class=\"o\">:=<\/span> <span class=\"p\">[]<\/span><span class=\"kt\">byte<\/span><span class=\"p\">{<\/span><span class=\"m\">0x30<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x0e<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x31<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x0c<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x30<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x0a<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x06<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x03<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x55<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x04<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x03<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x0c<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x03<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x61<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x62<\/span><span class=\"p\">,<\/span> <span class=\"m\">0x63<\/span><span class=\"p\">}<\/span>\r\n<span class=\"n\">dn<\/span><span class=\"p\">,<\/span> <span class=\"n\">err<\/span> <span class=\"o\">:=<\/span> <span class=\"n\">dnutil<\/span><span class=\"o\">.<\/span><span class=\"n\">ParseDERDn<\/span><span class=\"p\">(<\/span><span class=\"n\">b<\/span><span class=\"p\">)<\/span>\r\n<\/code><\/pre>\n<p>\u6211\u7528dnutil\u521b\u5efa\u4e86\u4e00\u4e2a\u521b\u5efaASN1\u7684DER\u683c\u5f0f\u7684DN\u548cCSR\u7684\u4ee3\u7801\u793a\u4f8b\u3002\u6709\u5174\u8da3\u7684\u4eba\u53ef\u4ee5\u5c1d\u8bd5\u4e00\u4e0b\u3002<\/p>\n<h1>5. \u9650\u5236\u4e8b\u9879<\/h1>\n<p>\u4ee5\u4e0b\u662f AttributeValue \u53ef\u7528\u7684 ASN.1 \u7f16\u7801\u6709\u4e09\u79cd\u3002\u5728 DirectoryString \u4e2d\uff0c\u4e0d\u652f\u6301 TeletexString\u3001UniversalString \u548c BMPString\u3002<\/p>\n<pre class=\"post-pre\"><code>  PrintableString \r\n  UTF8String\r\n  IA5String\r\n<\/code><\/pre>\n<p>\u4ee5\u4e0b\u5217\u51fa\u4e86\u53ef\u5728AttributeType\u4e2d\u4f7f\u7528\u7684\u9009\u9879\u3002<\/p>\n<pre class=\"post-pre\"><code>2.5.4.6  CountryName\r\n2.5.4.10  OrganizationName\r\n2.5.4.11  OrganizationalUnit\r\n2.5.4.46  DnQualifier\r\n2.5.4.8  StateOrProvinceName\r\n2.5.4.3  CommonName\r\n2.5.4.5  SerialNumber\r\n2.5.4.7  LocalityName\r\n2.5.4.12  Title\r\n2.5.4.4  Surname\r\n2.5.4.42  GivenName\r\n2.5.4.43  Initials\r\n2.5.4.65  Pseudonym\r\n2.5.4.44  GenerationQualifier\r\n1.2.840.113549.1.9.1  ElectronicMailAddress\r\n0.9.2342.19200300.100.1.25  DomainComponent\r\n<\/code><\/pre>\n<p>\u4e0d\u540c\u7684 AttributeType \u53ef\u4ee5\u4f7f\u7528\u76f8\u5e94\u7684 AttributeValue \u5728 ASN.1 \u4e2d\u8fdb\u884c\u7f16\u7801\uff0c\u5177\u4f53\u5982\u4e0b\uff1a<\/p>\n<pre class=\"post-pre\"><code>  CountryName : PrintableString\r\n  OrganizationName : PrintableString or UTF8String\r\n  OrganizationalUnit : PrintableString or UTF8String\r\n  DnQualifier : PrintableString\r\n  StateOrProvinceName : PrintableString or UTF8String\r\n  CommonName : PrintableString or UTF8String\r\n  SerialNumber : PrintableString\r\n  LocalityName : PrintableString or UTF8String\r\n  Title : PrintableString or UTF8String\r\n  Surname : PrintableString or UTF8String\r\n  GivenName : PrintableString or UTF8String\r\n  Initials : PrintableString or UTF8String\r\n  Pseudonym : PrintableString or UTF8String\r\n  GenerationQualifier : PrintableString or UTF8String\r\n  ElectronicMailAddress : IA5String\r\n  DomainComponent : IA5String\r\n<\/code><\/pre>\n<h1>5. \u8bb8\u53ef\u8bc1<\/h1>\n<p>dnutil \u7684\u8bb8\u53ef\u8bc1\u662f BSD 3-Clause\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u8fd9\u7bc7\u6587\u7ae0\u7684\u5bf9\u8c61 Golang \u3067 DN (Subject \u3084 Issuer) \u3092\u6271\u3044\u305f\u3044\u4eba &nbsp; Go [&hellip;]<\/p>\n","protected":false},"author":7,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-44722","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v21.5 (Yoast SEO v21.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Golang PKI\u5165\u95e8 - 6 \u7528\u4e2d\u6587\u7ffb\u8bd1 - Blog - Silicon Cloud<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki\u5165\u95e8-6-\u7528\u4e2d\u6587\u7ffb\u8bd1\/\" \/>\n<meta property=\"og:locale\" content=\"zh_CN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Golang PKI\u5165\u95e8 - 6 \u7528\u4e2d\u6587\u7ffb\u8bd1\" \/>\n<meta property=\"og:description\" content=\"\u8fd9\u7bc7\u6587\u7ae0\u7684\u5bf9\u8c61 Golang \u3067 DN (Subject \u3084 Issuer) \u3092\u6271\u3044\u305f\u3044\u4eba &nbsp; Go [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki\u5165\u95e8-6-\u7528\u4e2d\u6587\u7ffb\u8bd1\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog - Silicon Cloud\" \/>\n<meta property=\"article:published_time\" content=\"2024-03-10T11:08:43+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-04-28T20:35:03+00:00\" \/>\n<meta name=\"author\" content=\"\u79d1, \u9896\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"\u79d1, \u9896\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 \u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/\",\"name\":\"Golang PKI\u5165\u95e8 - 6 \u7528\u4e2d\u6587\u7ffb\u8bd1 - Blog - Silicon Cloud\",\"isPartOf\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\"},\"datePublished\":\"2024-03-10T11:08:43+00:00\",\"dateModified\":\"2024-04-28T20:35:03+00:00\",\"author\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/#breadcrumb\"},\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9875\",\"item\":\"https:\/\/www.silicloud.com\/zh\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Golang PKI\u5165\u95e8 &#8211; 6 \u7528\u4e2d\u6587\u7ffb\u8bd1\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/\",\"name\":\"Blog - Silicon Cloud\",\"description\":\"\",\"inLanguage\":\"zh-Hans\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e\",\"name\":\"\u79d1, \u9896\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g\",\"caption\":\"\u79d1, \u9896\"},\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/author\/keying\/\"},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/#local-main-organization-logo\",\"url\":\"\",\"contentUrl\":\"\",\"caption\":\"Blog - Silicon Cloud\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Golang PKI\u5165\u95e8 - 6 \u7528\u4e2d\u6587\u7ffb\u8bd1 - Blog - Silicon Cloud","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki\u5165\u95e8-6-\u7528\u4e2d\u6587\u7ffb\u8bd1\/","og_locale":"zh_CN","og_type":"article","og_title":"Golang PKI\u5165\u95e8 - 6 \u7528\u4e2d\u6587\u7ffb\u8bd1","og_description":"\u8fd9\u7bc7\u6587\u7ae0\u7684\u5bf9\u8c61 Golang \u3067 DN (Subject \u3084 Issuer) \u3092\u6271\u3044\u305f\u3044\u4eba &nbsp; Go [&hellip;]","og_url":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki\u5165\u95e8-6-\u7528\u4e2d\u6587\u7ffb\u8bd1\/","og_site_name":"Blog - Silicon Cloud","article_published_time":"2024-03-10T11:08:43+00:00","article_modified_time":"2024-04-28T20:35:03+00:00","author":"\u79d1, \u9896","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"\u79d1, \u9896","\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4":"4 \u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/","url":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/","name":"Golang PKI\u5165\u95e8 - 6 \u7528\u4e2d\u6587\u7ffb\u8bd1 - Blog - Silicon Cloud","isPartOf":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website"},"datePublished":"2024-03-10T11:08:43+00:00","dateModified":"2024-04-28T20:35:03+00:00","author":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e"},"breadcrumb":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/#breadcrumb"},"inLanguage":"zh-Hans","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9875","item":"https:\/\/www.silicloud.com\/zh\/blog\/"},{"@type":"ListItem","position":2,"name":"Golang PKI\u5165\u95e8 &#8211; 6 \u7528\u4e2d\u6587\u7ffb\u8bd1"}]},{"@type":"WebSite","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website","url":"https:\/\/www.silicloud.com\/zh\/blog\/","name":"Blog - Silicon Cloud","description":"","inLanguage":"zh-Hans"},{"@type":"Person","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/8ca01ba7f7362ad4edb7da206a12f29e","name":"\u79d1, \u9896","image":{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8a6fb3cc7ba2f69d2189ba532aec4633ea7ed75ac0af162ec367cb3abc0fb2af?s=96&d=mm&r=g","caption":"\u79d1, \u9896"},"url":"https:\/\/www.silicloud.com\/zh\/blog\/author\/keying\/"},{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/golang-pki%e5%85%a5%e9%97%a8-6-%e7%94%a8%e4%b8%ad%e6%96%87%e7%bf%bb%e8%af%91\/#local-main-organization-logo","url":"","contentUrl":"","caption":"Blog - Silicon Cloud"}]}},"_links":{"self":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/44722","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/comments?post=44722"}],"version-history":[{"count":2,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/44722\/revisions"}],"predecessor-version":[{"id":82191,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/44722\/revisions\/82191"}],"wp:attachment":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/media?parent=44722"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/categories?post=44722"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/tags?post=44722"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}