Tools, FAQ, Tutorials:
BYFN Root CA Certificates
Where are BYFN root CA (Certificate Authority) certificates are located?
✍: FYIcenter.com
Like all Hyperledger Fabric networks, BYFN is a private and permission based
hyperledger network. Access to the network are control PKI
(Public Key Infrastructure) technology.
In BYFN, each organization who manages peer nodes acts a root CA (Certificate Authority) to sign and issue X.509 certificates to control its peer nodes and systems/users who wants to interact with it peer nodes.
If your BYFN is obtained from the Hyperledger Fabric Binary Package at http://bit.ly/2ysbOFE, root CA certificates of all organizations are stored in the ./crypto-config sub-directory.
For example, the private key and the public key certificate of the first organization, org1.example.com, are stored in the ./crypto-config/peerOrganizations/org1.example.com/ca sub-directory.
$ cd ~/hyperledger-binaries/fabric-samples/first-network $ ls -l crypto-config/peerOrganizations/org1.example.com/ca -rw------- 1 fyicenter 241 Apr 1 02:00 ab90b589...3d0599d0_sk -rw-rw-r-- 1 fyicenter 863 Apr 1 02:00 ca.org1.example.com-cert.pem
The each root CA signs and issues its first certificate for the default administrator, Admin@org1.example.com, and stores it in
$ cd ~/hyperledger-binaries/fabric-samples/first-network $ more crypto-config/peerOrganizations/org1.example.com\ /peers/peer0.org1.example.com/msp/admincerts/Admin@org1.example.com-cert.pem -----BEGIN CERTIFICATE----- MIICKjCCAdCgAwIBAgIQJaIMpniwRgmBvyIdgOgrsTAKBggqhkjOPQQDAjBzMQsw .... bOtHwX2tLdc0msnvEKqFvSHNLQJM6jzav3BCJvG2 -----END CERTIFICATE-----
If you decode this certificate, you will see:
Subject: Common Name (CN): Admin@org1.example.com Organizational Unit Name (OU): client Locality Name (L): San Francisco State or Province Name (ST): California Country Name (C): US Issuer: Common Name (CN): ca.org1.example.com Organization Name (O): org1.example.com Locality Name (L): San Francisco State or Province Name (ST): California Country Name (C): US
⇒ BYFN configtx.yaml Configuration File
⇐ "cryptogen" Command - Generate Keys and Certificates
2023-07-20, ∼2074🔥, 1💬
Popular Posts:
How to read RSS validation errors at w3.org? If your RSS feed has errors, the RSS validator at w3.or...
What is Azure API Management Developer Portal? Azure API Management Developer Portal is an Azure Web...
How to start Docker Daemon, "dockerd", on CentOS systems? If you have installed Docker on your CentO...
How To Open Standard Output as a File Handle in PHP? If you want to open the standard output as a fi...
What are "*..." and "**..." Wildcard Parameters in Function Definitions? If you want to define a fun...