instance creation).

        :returns: Private key.

        """

        if self._algorithm == "rsa":

    :type subject_dn: cryptography.x509.Name

    :param signing_key: Private key belonging to entity associated with passed-in issuer_dn. Used for signing the certificate data.

    :param public_key: Public key belonging to entity associated with passed-in subject_dn. Used as part of certificate to denote its owner.

    :param not_before: Beginning of certifiate validity.

    :type datetime.datetime.:

    :type base_name: str

    :param key_generator: Callable for generating private keys.

    :returns: List of CA private key and certificate pairs, starting with the level 1 (root) CA, and ending with the leaf CA.

    :rtype: list[(cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKey or

    :type name: str

    :param public_key: Public key of the server end entity.

    :param issuer_private_key: Private key of the issuer to use for signing the server certificate structure.

    :param issuer_certificate: Certificate of certificate issuer. Naming and validity constraints will be applied based on its content.

    :type issuer_certificate: cryptography.x509.Certificate

    :type name: str

    :param public_key: Public key of the server end entity.

    :param issuer_private_key: Private key of the issuer to use for signing the client certificate structure.

    :param issuer_certificate: Certificate of certificate issuer. Naming and validity constraints will be applied based on its content.

    :type issuer_certificate: cryptography.x509.Certificate

    :type old_certificate: cryptography.x509.Certificate

    :param public_key: Public key to use in resulting certificate. Allows replacement of public key in new certificate.

    :param issuer_private_key: Private key of the issuer to use for signing the certificate structure.

    :param issuer_certificate: Certificate of certificate issuer. Naming and validity constraints will be applied based on its content.

    :type issuer_certificate: cryptography.x509.Certificate

    :type name: str or cryptography.x509.Name

    :param private_key: Private key of end entity to use for signing the CSR.

    :returns: Certificate signing request with specified naming signed with passed-in private key.

    :rtype: cryptography.x509.CertificateSigningRequest

    from the passed-in public key. Key specification can be used for

    generating the private keys via KeyGenerator instances.

    :returns: Key algorithm and parameter(s) for generating same type of keys as the passed-in public key.

    :raises ValueError: If algorithm/parameters could not be derived from the passed-in public key.

    """

    The private key is written without any encryption.

    :param private_key: Private key that should be written.

    :param path: File path where the key should be written.

    :type path: str

    :type ca_directory: str

    :returns: List of private key/certificate pairs, starting with the level 1 CA and moving down the chain to leaf CA.

    """

    ca_hierarchy = []

    :type private_key_path: str

    :returns: Private key object read from the specified file.

    """

    with open(private_key_path, 'rb') as private_key_file: