Which keys can I use to test gpgsm?

Benedikt Wildenhain Benedikt Wildenhain <reply@benedikt-wildenhain.de>
Fri Jan 3 02:49:01 2003


--0eh6TmSyL6TZE2Uz
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hello,

I successfully installed gpgsm 0.9.4 and now want to test it. I used one
from the web.de ag. I could import their publich keys without
problems, gpgsm
--fin says:

/home/aegypten/.gnupg/pubring.kbx
---------------------------------
Serial number: 00
       Issuer: /CN=3DWEB.DE/OU=3Dhttp:\x2f\x2fweb.de/O=3DCinetic Medientech=
nik GmbH/L=3DKarlsruhe/ST=3DGermany/C=3DDE/EMail=3Dca@web.de
      Subject: /CN=3DWEB.DE/OU=3Dhttp:\x2f\x2fweb.de/O=3DCinetic Medientech=
nik GmbH/L=3DKarlsruhe/ST=3DGermany/C=3DDE/EMail=3Dca@web.de
     validity: 1998-08-12 14:01:07 Z through 2008-08-09 14:01:07 Z
    key usage: [error: No Value]
 chain length: [error: No Value]
  fingerprint: 7E:CD:E8:38:95:8E:8C:2B:2A:EA:F1:7C:69:3A:7C:87:EF:6A:4A:B5

Serial number: 01
       Issuer: /CN=3DWEB.DE TrustCenter/OU=3DTrustCenter/O=3DWEB.DE AG/L=3D=
D-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.de
      Subject: /CN=3DWEB.DE TrustCenter/OU=3DTrustCenter/O=3DWEB.DE AG/L=3D=
D-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.de
     validity: 1999-06-23 09:19:54 Z through 2009-06-20 09:19:54 Z
     policies: 2.16.840.1.113733.1.7.1.1:N:
 chain length: unlimited
  fingerprint: 42:82:EA:8C:F2:3E:DD:56:37:D7:D0:11:93:AD:F7:10:95:2C:57:4A

Serial number: 02
       Issuer: /CN=3DWEB.DE TrustCenter/OU=3DTrustCenter/O=3DWEB.DE AG/L=3D=
D-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.de
      Subject: /CN=3DWEB.DE TrustCenter vorlaeufige Zertifikate/OU=3DTrustC=
enter TrialCA/O=3DWEB.DE AG/L=3DD-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.=
de
     validity: 1999-06-23 11:13:22 Z through 2004-06-21 11:13:22 Z
     policies: 2.16.840.1.113733.1.7.1.1:N:
 chain length: unlimited
  fingerprint: 93:7D:AA:D1:5A:C8:4E:C3:C6:8F:BD:6F:4D:A9:5A:EA:B3:8B:03:E1

Serial number: 04
       Issuer: /CN=3DWEB.DE TrustCenter/OU=3DTrustCenter/O=3DWEB.DE AG/L=3D=
D-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.de
      Subject: /CN=3DWEB.DE TrustCenter EMail-Zertifikate/OU=3DTrust Center=
/O=3DWEB.DE AG/L=3DD-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.de
     validity: 2002-12-01 00:00:00 Z through 2009-06-19 23:59:59 Z
     policies: 2.16.840.1.113733.1.7.1.1:N:
 chain length: unlimited
  fingerprint: 6F:75:C4:D6:71:25:11:81:88:18:8B:40:74:E4:13:AC:F0:26:64:F9

Serial number: 03
       Issuer: /CN=3DWEB.DE TrustCenter/OU=3DTrustCenter/O=3DWEB.DE AG/L=3D=
D-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.de
      Subject: /CN=3DWEB.DE TrustCenter Voll-Zertifikate/OU=3DTrustCenter C=
A/O=3DWEB.DE AG/L=3DD-76227 Karlsruhe/C=3DDE/EMail=3Dtrust@web.de
     validity: 1999-06-23 11:47:31 Z through 2004-06-21 11:47:31 Z
     policies: 2.16.840.1.113733.1.7.1.1:N:
 chain length: unlimited
  fingerprint: B5:11:E1:C0:0A:BB:AA:DF:9D:70:30:A7:56:59:3D:D8:52:5A:2D:FB

However, when trying to import my key, 'gpgsm -vv --import $filename' outpu=
ts:
gpgsm: no issuer found in certificate
gpgsm: basic certificate checks failed - not imported
loaded digest 2

Where is the problem? Is this key usuable at all?
Btw. I do not want to use a key which also can be used by an company.
How can I create my own secure keys?

--=20
Benedikt Wildenhain
May the tux be with you.
:wq 73

--0eh6TmSyL6TZE2Uz
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+FOxUAtbtIeMsT0sRAg02AKCoiwIzTz1Q7hWLDLlBezaQ4w8tOgCfc/hm
3te5k7dGTKoU7AEsvpl4TkA=
=VtN4
-----END PGP SIGNATURE-----

--0eh6TmSyL6TZE2Uz--