const rootCACert … const selfSignedCert … const clientCNCert … const serverCert … const caWithGroups … func TestX509(t *testing.T) { … } func TestX509Verifier(t *testing.T) { … } func getDefaultVerifyOptions(t *testing.T) x509.VerifyOptions { … } func getRootCertPool(t *testing.T) *x509.CertPool { … } func getRootCertPoolFor(t *testing.T, certs ...string) *x509.CertPool { … } func getCertsFromFile(t *testing.T, names ...string) []*x509.Certificate { … } func getCert(t *testing.T, pemData string) *x509.Certificate { … } func getCerts(t *testing.T, pemData ...string) []*x509.Certificate { … } func TestCertificateIdentifier(t *testing.T) { … }