Starting from the previous document  I'm going to describe a more complex configuration.
Basically I'm adding a certification authority (faked by a third oracle wallet) to sign the client and server X509 certificates.

I'm even introducing more complex DNs.