Execution
Date
05 Dec 2025 13:22:31 +0000
Duration
00:00:50.80
Controller
aio1.openstack.local
User
root
Versions
Ansible
2.18.6
ara
1.7.4 / 1.7.4
Python
3.12.11
Summary
2
Hosts
72
Tasks
71
Results
7
Plays
97
Files
0
Records
Task result details
-
StatusCHANGED
-
Duration00:00:00.68
-
PlayCreate CA certificates
-
Taskpki : Sign the intermediate CA CSR for ExampleCorpIntermediate
-
Date05 Dec 2025 13:22:51 +0000
-
Module / Actioncommunity.crypto.x509_certificate (/home/zuul/src/opendev.org/openstack/ansible-role-pki/tasks/standalone/create_ca.yml:134)
-
Tags
- always
| Field | Value |
|---|---|
| ca_cert |
/etc/openstack_deploy/pki/roots/ExampleCorpRoot/certs/ExampleCorpRoot.crt |
| ca_privatekey |
/etc/openstack_deploy/pki/roots/ExampleCorpRoot/private/ExampleCorpRoot.key.pem |
| changed |
True |
| csr |
/etc/openstack_deploy/pki/roots/ExampleCorpIntermediate/csr/ca_csr-1000.csr |
| diff |
--- before +++ after @@ -1 +1,107 @@ -{} +{ + "authority_cert_issuer": null, + "authority_cert_serial_number": null, + "authority_key_identifier": "df:be:ae:91:f4:fb:4d:0c:88:32:19:29:17:3c:ef:f9:c2:0e:44:d9", + "basic_constraints": [ + "CA:TRUE", + "pathlen:0" + ], + "basic_constraints_critical": true, + "can_parse_certificate": true, + "expired": false, + "extended_key_usage": null, + "extended_key_usage_critical": false, + "extensions_by_oid": { + "2.5.29.14": { + "critical": false, + "value": "BBTaI1gjs3CeiLjoy2EdBoVEn2yJMw==" + }, + "2.5.29.15": { + "critical": false, + "value": "AwIBhg==" + }, + "2.5.29.17": { + "critical": false, + "value": "MDeCNUV4YW1wbGUgQ29ycCBPcGVuc3RhY2sgSW5mcmFzdHJ1Y3R1cmUgSW50ZXJtZWRpYXRlIENB" + }, + "2.5.29.19": { + "critical": true, + "value": "MAYBAf8CAQA=" + }, + "2.5.29.35": { + "critical": false, + "value": "MBaAFN++rpH0+00MiDIZKRc87/nCDkTZ" + } + }, + "fingerprints": { + "sha256": "2f:38:4e:ca:ff:e6:52:9f:d7:f1:b8:b5:1d:97:08:6e:05:98:7b:4b:1c:8e:79:d8:e5:8a:e1:c7:b5:c7:07:2f" + }, + "issuer": { + "commonName": "Example Corp Root CA", + "countryName": "GB", + "stateOrProvinceName": "England" + }, + "issuer_ordered": [ + [ + "countryName", + "GB" + ], + [ + "stateOrProvinceName", + "England" + ], + [ + "commonName", + "Example Corp Root CA" + ] + ], + "issuer_uri": null, + "key_usage": [ + "CRL Sign", + "Certificate Sign", + "Digital Signature" + ], + "key_usage_critical": false, + "not_after": "20351203132251Z", + "not_before": "20251205132251Z", + "ocsp_must_staple": null, + "ocsp_must_staple_critical": false, + "ocsp_uri": null, + "public_key": "-----BEGIN PUBLIC KEY-----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\nR0G3w0HT2RjI+w4ahQWQ400CAwEAAQ==\n-----END PUBLIC KEY-----\n", + "public_key_data": { + "exponent": 65537, + "modulus": 662167223349329920071450597540448115749243685868444068365137254515157048658785410596275353526840921253321785331548065230515187257206102378092367755173612166910157221489836612913941469129144066860972672388780059365904891200111213324415699837499535686461729424118767689578132931126891358191374741526911449073128850780589901044528324155836313366564193647824252347524799451189927966706301726440389320684610142721841044273923972126101102538994230023031968353104322524873399317441311098033402962478025336631959433448290297901880369545012405521582628613099812673571841605424352726383798045777573751654234196824770374921427636126580369033892876952154113556143723913981190630443766607277810338989966423167171952022442398770354609239250683337941530398844643386828689164108329798236518900908781979702933588382768515047881026740803861517653335077717027137239696403451000291227951607407087942001166026031172765241466420503673604280224295734627161504054517776875077965989347051155534358733855745466977075203476958772013220379046728425610579519937094342715499557984598501989240053151923955106173676772313901838479537232752771471783239912227203642016727734520469589464038320613558339504819662379925614978399161127785246031110294053106798205477118797, + "size": 4096 + }, + "public_key_fingerprints": { + "sha256": "17:4a:ca:87:82:b7:3e:12:79:e3:37:ee:e7:6f:ff:d8:33:59:5e:7a:03:6d:b5:4e:e2:f7:be:2f:96:ea:b5:73" + }, + "public_key_type": "RSA", + "serial_number": 91208748545943644806196185658692569636652486556, + "signature_algorithm": "sha256WithRSAEncryption", + "subject": { + "commonName": "Example Corp Openstack Infrastructure Intermediate CA", + "countryName": "GB", + "stateOrProvinceName": "England" + }, + "subject_alt_name": [ + "DNS:Example Corp Openstack Infrastructure Intermediate CA" + ], + "subject_alt_name_critical": false, + "subject_key_identifier": "da:23:58:23:b3:70:9e:88:b8:e8:cb:61:1d:06:85:44:9f:6c:89:33", + "subject_ordered": [ + [ + "countryName", + "GB" + ], + [ + "stateOrProvinceName", + "England" + ], + [ + "commonName", + "Example Corp Openstack Infrastructure Intermediate CA" + ] + ], + "version": 3 +} |
| filename |
/etc/openstack_deploy/pki/roots/ExampleCorpIntermediate/certs/ExampleCorpIntermediate-1000.crt |
| invocation |
{ "module_args": { "acme_accountkey_path": null, "acme_chain": false, "acme_challenge_path": null, "acme_directory": "https://acme-v02.api.letsencrypt.org/directory", "attributes": null, "backup": true, "csr_content": null, "csr_path": "/etc/openstack_deploy/pki/roots/ExampleCorpIntermediate/csr/ca_csr-1000.csr", "entrust_api_client_cert_key_path": null, "entrust_api_client_cert_path": null, "entrust_api_key": null, "entrust_api_specification_path": "https://cloud.entrust.net/EntrustCloud/documentation/cms-api-2.1.0.yaml", "entrust_api_user": null, "entrust_cert_type": "STANDARD_SSL", "entrust_not_after": "+365d", "entrust_requester_email": null, "entrust_requester_name": null, "entrust_requester_phone": null, "force": false, "group": null, "ignore_timestamps": true, "mode": null, "ownca_content": null, "ownca_create_authority_key_identifier": true, "ownca_create_subject_key_identifier": "create_if_not_provided", "ownca_digest": "sha256", "ownca_not_after": "+3650d", "ownca_not_before": "+0s", "ownca_path": "/etc/openstack_deploy/pki/roots/ExampleCorpRoot/certs/ExampleCorpRoot.crt", "ownca_privatekey_content": null, "ownca_privatekey_passphrase": null, "ownca_privatekey_path": "/etc/openstack_deploy/pki/roots/ExampleCorpRoot/private/ExampleCorpRoot.key.pem", "ownca_version": 3, "owner": null, "path": "/etc/openstack_deploy/pki/roots/ExampleCorpIntermediate/certs/ExampleCorpIntermediate-1000.crt", "privatekey_content": null, "privatekey_passphrase": null, "privatekey_path": null, "provider": "ownca", "return_content": false, "select_crypto_backend": "auto", "selevel": null, "selfsigned_create_subject_key_identifier": "create_if_not_provided", "selfsigned_digest": "sha256", "selfsigned_not_after": "+3650d", "selfsigned_not_before": "+0s", "selfsigned_version": 3, "serole": null, "setype": null, "seuser": null, "state": "present", "unsafe_writes": false } } |
| notAfter |
20351203132251Z |
| notBefore |
20251205132251Z |
| privatekey | None |
| serial_number |
91208748545943644806196185658692569636652486556 |