1PLAINRSA-GEN(8) BSD System Manager's Manual PLAINRSA-GEN(8)
2
4 plainrsa-gen — generator for Plain RSA keys
5
7 plainrsa-gen [-b bits] [-e pubexp] [-f outfile] [-h]
8
10 plainrsa-gen can be used to generate Plain RSA keys for authentication
11 purposes. Using Plain RSA keys is optional. Other possibilities are
12 Pre-shared keys or X.509 certificates.
13
14 -b bits
15 bit length of the key. Default is 1024, recommended length is
16 2048 or even 4096 bits. Note that generating longer keys takes
17 more time.
18
19 -e pubexp
20 value of the RSA public exponent. Default is 0x3. Don't change
21 this unless you really know what you are doing!
22
23 -f outfile
24 write the resulting key to outfile instead of stdout. If the
25 file already exists it won't be overwritten. You wouldn't like
26 to lose your private key by accident, would you?
27
29 This is the secret private key that should never leave your computer:
30
31 : RSA {
32 # RSA 1024 bits
33 # pubkey=0sAQOrWlcwbAIdNSMhDt...
34 Modulus: 0xab5a57306c021d3523...
35 PublicExponent: 0x03
36 PrivateExponent: 0x723c3a2048...
37 Prime1: 0xd309b30e6adf9d85c01...
38 Prime2: 0xcfdc2a8aa5b2b3c90e3...
39 Exponent1: 0x8cb122099c9513ae...
40 Exponent2: 0x8a92c7071921cd30...
41 Coefficient: 0x722751305eafe9...
42 }
43
44 The line pubkey=0sAQOrW... of the private key contains a public key that
45 should be stored in the other peer's configuration in this format:
46
47 : PUB 0sAQOrWlcwbAIdNSMhDt...
48
49 You can also specify from and to addresses for which the key is valid:
50
51 0.0.0.0/0 10.20.30.0/24 : PUB 0sAQOrWlcwbAIdNSMhDt...
52
54 racoon.conf(5), racoon(8)
55
57 plainrsa-gen was written by Michal Ludvig <michal@logix.cz> and first
58 appeared in ipsec-tools 0.4.
59
60BSD June 14, 2004 BSD