From 03962f279db7a87da605698325c062661f21b1d2 Mon Sep 17 00:00:00 2001
From: Alvaro Sedano <al_sedano@hotmail.com>
Date: Mon, 22 Jul 2019 01:05:07 +0200
Subject: [PATCH] Create result-sample

---
 result-sample | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 result-sample

diff --git a/result-sample b/result-sample
new file mode 100644
index 0000000..f7ff349
--- /dev/null
+++ b/result-sample
@@ -0,0 +1,21 @@
+
+
+Duplicated Serial Numbers (per CA)
+
+sIssuer     SerialNumber FriendlyName DnsNameList  sSubject   revokedOn
+-------     ------------ ------------ -----------  --------   ---------
+internal-ca 2F           hsanchez     {hsanchez}   hsanchez
+internal-ca 2F           city1        {city1}      city1      {revocados}
+internal-ca 30           audit03      {audit03}    audit03    {revocados}
+internal-ca 30           uaIntro      {uaIntro}    uaIntro
+internal-ca 31           city04       {city04}     city04
+internal-ca 31           uaDevice     {uaDevice}   uaDevice
+internal-ca 32           fperez       {fperez}     fperez
+internal-ca 32           uaExit       {uaExit}     uaExit
+
+This is the last part of the result returned by the script: It shows duplicated SerialNumbers 2F, 30, 31 and 32
+To avoid issues when some of this certs is revoked, you must revoked all them, and recreate new certs forevery user involved.
+
+As example: The execution result shows that the "city1" and "audit03" certs are revoked in the "revocados" CRL.
+But due to the duplicity of SerialNumbers, the openVPN tunnel that uses "revocados" as CRL also will consider revoked
+the certs "hsanchez" and "uaIntro".