Certificate template structure
The Template body defines the parameters of certificates issued using that template. The body is coded in JSON format and includes guidelines for the following items:
Issue types: Defines the purpose of certificates issued using this template, like client authentication, server authentication, or email authentication.
Key generation: Defines the supported key types and sizes along with the rules for generating them.
Signature algorithm: Defines the supported combinations of signature and secure hash algorithms. Also allows for a default value.
Subject: Defines the certificate owner attributes that can be entered while requesting a certificate using this template.
Validity: Defines the supported validity periods or date ranges for the certificates requested using this template.
Extensions: Defines all the extensions available for this template, like key usage, extended key usage, policies, and constraints.