#-------------------------------------------------------------------
# responder
# D'ici on créait les certificats
# les CA Key sont cachées dans notre poche normalement.
#--------

jeu. févr. 22 12:21:19 root@vps-de:/etc/swanctl # tree -ugpsh
.
+-- [drwxr-xr-x root     root     4.0K]  conf.d
+-- [drwxr-x--- root     root     4.0K]  ecdsa
+-- [drwxr-xr-x root     root     4.0K]  p12
Ś   +-- [-rw------- root     root     1.3K]  orjCert-ed25519-sign_ca-ed25519.p12
Ś   +-- [-rw------- root     root     5.4K]  orjCert-ed25519-sign_ca-falcon1024.p12
Ś   +-- [-rw------- root     root     7.5K]  orjCert-rsa3072-sign_ca-falcon1024.p12
+-- [drwxr-x--- root     root     4.0K]  pkcs12
+-- [drwxr-x--- root     root     4.0K]  pkcs8
+-- [drwxr-x--- root     root     4.0K]  private
Ś   +-- [-r-------- root     root      288]  caKey-ecdsa-384.pem
Ś   +-- [-r-------- root     root      223]  caKey-ecdsa-521.pem
Ś   +-- [-r-------- root     root      119]  caKey-ed25519.pem
Ś   +-- [-r-------- root     root      156]  caKey-ed448.pem
Ś   +-- [-r-------- root     root     5.5K]  caKey-falcon1024.pem
Ś   +-- [-r-------- root     root     2.4K]  caKey-rsa_3072.pem
Ś   +-- [-r-------- root     root      119]  orjKey-ed25519.pem
Ś   +-- [-r-------- root     root     2.4K]  orjKey-rsa3072.pem
Ś   +-- [-r-------- root     root     10.0K]  vps_de-Key-dilithium5.pem
Ś   +-- [-r-------- root     root      119]  vps_de-Key-ed25519.pem
Ś   +-- [-r-------- root     root     10.0K]  vps_uk-Key-dilithium5.pem
Ś   +-- [-r-------- root     root      119]  vps_uk-Key-ed25519.pem
+-- [-rw-r--r-- root     root      377]  psk.conf
+-- [drwxr-xr-x root     root     4.0K]  pubkey
Ś   +-- [-rw-r--r-- root     root      113]  vps_de-PubKey-ed25519.pem
Ś   +-- [-rw-r--r-- root     root      113]  vps_uk-PubKey-ed25519.pem
+-- [drwxr-x--- root     root     4.0K]  rsa
+-- [-rw-r--r-- root     root     1.1K]  swanctl.conf
+-- [drwxr-xr-x root     root     4.0K]  tmp
Ś   +-- [-rw-r--r-- root     root     1.4K]  orjReq.pem
Ś   +-- [-rw-r--r-- root     root     9.8K]  vps_de-Req.pem
Ś   +-- [-rw-r--r-- root     root      501]  vps_uk-Req.pem
+-- [-rw-r--r-- root     root     2.5K]  vps_de-vps_uk.conf
+-- [drwxr-xr-x root     root     4.0K]  x509
Ś   +-- [-rw-r--r-- root     root      550]  orjCert-ed25519-sign_ca-ed25519.pem
Ś   +-- [-rw-r--r-- root     root     2.1K]  orjCert-ed25519-sign_ca-falcon1024.pem
Ś   +-- [-rw-r--r-- root     root     2.6K]  orjCert-rsa3072-sign_ca-falcon1024.pem
Ś   +-- [-rw-r--r-- root     root     5.6K]  vps_de-Cert-dilithium5-sign_ca-falcon1024.pem
Ś   +-- [-rw-r--r-- root     root      599]  vps_de-Cert-ed25519-sign_ca-ed25519.pem
Ś   +-- [-rw-r--r-- root     root     5.6K]  vps_uk-Cert-dilithium5-sign_ca-falcon1024.pem
Ś   +-- [-rw-r--r-- root     root      441]  vps_uk-Cert-ed25519-sign_ca-ed25519.der
Ś   +-- [-rw-r--r-- root     root      652]  vps_uk-Cert-ed25519-sign_ca-ed25519.pem
+-- [drwxr-xr-x root     root     4.0K]  x509aa
+-- [drwxr-xr-x root     root     4.0K]  x509ac
+-- [drwxr-xr-x root     root     4.0K]  x509ca
Ś   +-- [-rw-r--r-- root     root      554]  caCert-ed25519.pem
Ś   +-- [-rw-r--r-- root     root     4.5K]  caCert-falcon1024.pem
Ś   +-- [-rw-r--r-- root     root     1.6K]  caCert-rsa_3072.pem
+-- [drwxr-xr-x root     root     4.0K]  x509crl
+-- [drwxr-xr-x root     root     4.0K]  x509ocsp

#-------------------------------------------------------------------

#-------------------------------------------------------------------
# initiator
# On stoke les certifs de ce serveur - et les CA
#--------

jeu. févr. 22 11:22:07 root@vps-uk:/etc/swanctl # tree -ugpsh
[drwxr-xr-x root     root     4.0K]  .
+-- [drwxr-xr-x root     root     4.0K]  conf.d
+-- [drwxr-x--- root     root     4.0K]  ecdsa
+-- [drwxr-x--- root     root     4.0K]  pkcs12
+-- [drwxr-x--- root     root     4.0K]  pkcs8
+-- [drwxr-x--- root     root     4.0K]  private
Ś   +-- [-rw-r--r-- root     root     10.0K]  vps_uk-Key-dilithium5.pem
Ś   +-- [-rw-r--r-- root     root      119]  vps_uk-Key-ed25519.pem
+-- [drwxr-xr-x root     root     4.0K]  pubkey
Ś   +-- [-rw-r--r-- root     root      113]  vps_de-PubKey-ed25519.pem
Ś   +-- [-rw-r--r-- root     root      113]  vps_uk-PubKey-ed25519.pem
+-- [drwxr-x--- root     root     4.0K]  rsa
+-- [-rw-r--r-- root     root      422]  swanctl.conf
+-- [-rw-r--r-- root     root     2.6K]  uk-de.conf
+-- [drwxr-xr-x root     root     4.0K]  x509
Ś   +-- [-rw-r--r-- root     root     5.6K]  vps_uk-Cert-dilithium5-sign_ca-falcon1024.pem
Ś   +-- [-rw-r--r-- root     root      652]  vps_uk-Cert-ed25519-sign_ca-ed25519.pem
+-- [drwxr-xr-x root     root     4.0K]  x509aa
+-- [drwxr-xr-x root     root     4.0K]  x509ac
+-- [drwxr-xr-x root     root     4.0K]  x509ca
Ś   +-- [-rw-r--r-- root     root      554]  caCert-ed25519.pem
Ś   +-- [-rw-r--r-- root     root     4.5K]  caCert-falcon1024.pem
+-- [drwxr-xr-x root     root     4.0K]  x509crl
+-- [drwxr-xr-x root     root     4.0K]  x509ocsp

#-------------------------------------------------------------------