github.com/letsencrypt/boulder@v0.20251208.0/tools/nameid/README.md

github.com/letsencrypt/boulder@v0.20251208.0/tools/nameid/README.md (about)

     1  # Overview
     2  
     3  The `nameid` tool displays a statistically-unique small ID which can be computed
     4  from both CA and end-entity certs to link them together into a validation chain.
     5  It is computed as a truncated hash over the issuer Subject Name bytes. It should
     6  only be used on issuer certificates e.g. [when the CA boolean is
     7  asserted](https://www.rfc-editor.org/rfc/rfc5280#section-4.2.1.9) which in the
     8  `//crypto/x509` `Certificate` struct is `IsCA: true`.
     9  
    10  For implementation details, please see the `//issuance` package
    11  [here](https://github.com/letsencrypt/boulder/blob/30c6e592f7f6825c2782b6a7d5da566979445674/issuance/issuer.go#L79-L83).
    12  
    13  # Usage
    14  
    15  ```
    16  # Display help
    17  go run ./tools/nameid/nameid.go -h
    18  
    19  # Output the certificate path and nameid, one per line
    20  go run ./tools/nameid/nameid.go /path/to/cert1.pem /path/to/cert2.pem ...
    21  
    22  # Output just the nameid, one per line
    23  go run ./tools/nameid/nameid.go -s /path/to/cert1.pem /path/to/cert2.pem ...
    24  ```