Graphical certification authority project is a graphical user interface to OpenSSL, RSA/DSA public keys, certificates, signing requests and revokation lists.
The keys have an internal counter, counting its use to avoid a duplicate use of a key for creating a certificate or request.
The Keys are of course encrypted in the db file.
Xca supports next to the usual PEM and DER format of certificates the import and export of PKCS#12 (aka *.pfx) files and the Certificate import from PKCS#7 files.
Certificates can be created by self signing it, by signing it by an other (usually CA) certificate or by signing a PKCS#10 request. Netscape SPKAC is supported since version 0.4.6. The validity dates and x509.v3 extensions can be adjusted to fit ones needs. The use of multiple certificates in CA chains is supported and a tree view of the certificates reflects the dependencies. The application takes care to not create duplicate certificates by checking the serial number(s) on import and creation of certificates.
Certificate Templates can be used to preset the input dialog with reasonable values and to simplify the process of creating certificates and requests.
Issued certificates can be revoked and the revokation list can be created and exported. External revokation lists can be imported and examined.
What's New in This Release: [ read full changelog ]
· fix string conversion from QString to ASN1