re_sign(expired_certificate, private_key, age = ONE_YEAR, extensions = EXTENSIONS) Class Public methods Signs expired_certificate with private_key if the keys match and the expired certificate was self-signed.

email_to_name(email_address) Class Public methods Turns email_address into an OpenSSL::X509::Name

create_key(length = KEY_LENGTH, algorithm = KEY_ALGORITHM) Class Public methods Creates a new key pair of the specified length and algorithm. The default is a 2048 bit RSA key.

create_cert_self_signed(subject, key, age = ONE_YEAR, extensions = EXTENSIONS, serial = 1) Class Public methods Creates a self-signed certificate with an issuer and subject of subject and the given extensions for the key.

create_cert_email(email, key, age = ONE_YEAR, extensions = EXTENSIONS) Class Public methods Creates a self-signed certificate with an issuer and subject from email, a subject alternative name of email and the given extensions for the key.

create_cert(subject, key, age = ONE_YEAR, extensions = EXTENSIONS, serial = 1) Class Public methods Creates an unsigned certificate for subject and key. The lifetime of the key is from the current time to age which defaults to one year. The extensions restrict the key to the indicated uses.

alt_name_or_x509_entry(certificate, x509_entry) Class Public methods

verify() Instance Public methods Make sure the trust directory exists. If it does exist, make sure it's actually a directory. If not, then create it with the appropriate permissions.

trust_cert(certificate) Instance Public methods Add a certificate to trusted certificate list.

name_path(name) Instance Public methods Returns the path to the trusted certificate with the given ASN.1 name