Package org.bouncycastle.asn1.x509

Support classes useful for encoding and processing X.509 certificates.

Interface Summary

X509ObjectIdentifiers

Class Summary

AccessDescription The AccessDescription object.
AlgorithmIdentifier
AttCertIssuer
AttCertValidityPeriod
Attribute
AttributeCertificate
AttributeCertificateInfo
AuthorityInformationAccess The AuthorityInformationAccess object.
AuthorityKeyIdentifier The AuthorityKeyIdentifier object.
BasicConstraints
CertificateList PKIX RFC-2459 The X.509 v2 CRL syntax is as follows.
CertificatePair This class helps to support crossCerfificatePairs in a LDAP directory according RFC 2587
     crossCertificatePairATTRIBUTE::={
       WITH SYNTAX   CertificatePair
       EQUALITY MATCHING RULE certificatePairExactMatch
       ID joint-iso-ccitt(2) ds(5) attributeType(4) crossCertificatePair(40)}
 
The forward elements of the crossCertificatePair attribute of a CA's directory entry shall be used to store all, except self-issued certificates issued to this CA.
CertificatePolicies
CertPolicyId CertPolicyId, used in the CertificatePolicies and PolicyMappings X509V3 Extensions.
CRLDistPoint
CRLNumber The CRLNumber object.
CRLReason The CRLReason enumeration.
DigestInfo The DigestInfo object.
DisplayText DisplayText class, used in CertificatePolicies X509 V3 extensions (in policy qualifiers).
DistributionPoint The DistributionPoint object.
DistributionPointName The DistributionPointName object.
DSAParameter
ExtendedKeyUsage The extendedKeyUsage object.
GeneralName The GeneralName object.
GeneralNames
GeneralSubtree Class for containing a restriction object subtrees in NameConstraints.
Holder The Holder object.
IetfAttrSyntax Implementation of IetfAttrSyntax as specified by RFC3281.
IssuerSerial
IssuingDistributionPoint IssuingDistributionPoint ::= SEQUENCE { distributionPoint [0] DistributionPointName OPTIONAL, onlyContainsUserCerts [1] BOOLEAN DEFAULT FALSE, onlyContainsCACerts [2] BOOLEAN DEFAULT FALSE, onlySomeReasons [3] ReasonFlags OPTIONAL, indirectCRL [4] BOOLEAN DEFAULT FALSE, onlyContainsAttributeCerts [5] BOOLEAN DEFAULT FALSE }
KeyPurposeId The KeyPurposeId object.
KeyUsage The KeyUsage object.
NameConstraints
NoticeReference NoticeReference class, used in CertificatePolicies X509 V3 extensions (in policy qualifiers).
ObjectDigestInfo
PolicyInformation
PolicyMappings PolicyMappings V3 extension, described in RFC3280.
PolicyQualifierId PolicyQualifierId, used in the CertificatePolicies X509V3 extension.
PolicyQualifierInfo Policy qualifiers, used in the X509V3 CertificatePolicies extension.
PrivateKeyUsagePeriod
    PrivateKeyUsagePeriod ::= SEQUENCE {
      notBefore       [0]     GeneralizedTime OPTIONAL,
      notAfter        [1]     GeneralizedTime OPTIONAL }
 
ReasonFlags The ReasonFlags object.
RoleSyntax Implementation of the RoleSyntax object as specified by the RFC3281.
RSAPublicKeyStructure
SubjectDirectoryAttributes This extension may contain further X.500 attributes of the subject.
SubjectKeyIdentifier The SubjectKeyIdentifier object.
SubjectPublicKeyInfo The object that contains the public key stored in a certficate.
TBSCertificateStructure The TBSCertificate object.
TBSCertList PKIX RFC-2459 - TBSCertList object.
TBSCertList.CRLEntry
Time
UserNotice UserNotice class, used in CertificatePolicies X509 extensions (in policy qualifiers).
V1TBSCertificateGenerator Generator for Version 1 TBSCertificateStructures.
V2AttributeCertificateInfoGenerator Generator for Version 2 AttributeCertificateInfo
 AttributeCertificateInfo ::= SEQUENCE {
       version              AttCertVersion -- version is v2,
       holder               Holder,
       issuer               AttCertIssuer,
       signature            AlgorithmIdentifier,
       serialNumber         CertificateSerialNumber,
       attrCertValidityPeriod   AttCertValidityPeriod,
       attributes           SEQUENCE OF Attribute,
       issuerUniqueID       UniqueIdentifier OPTIONAL,
       extensions           Extensions OPTIONAL
 }
 
V2Form
V2TBSCertListGenerator Generator for Version 2 TBSCertList structures.
V3TBSCertificateGenerator Generator for Version 3 TBSCertificateStructures.
X509Attributes
X509CertificateStructure an X509Certificate structure.
X509DefaultEntryConverter The default converter for X509 DN entries when going from their string value to ASN.1 strings.
X509Extension an object for the elements in the X.509 V3 extension block.
X509Extensions
X509ExtensionsGenerator Generator for X.509 extensions
X509Name
     RDNSequence ::= SEQUENCE OF RelativeDistinguishedName

     RelativeDistinguishedName ::= SET SIZE (1..MAX) OF AttributeTypeAndValue

     AttributeTypeAndValue ::= SEQUENCE {
                                   type  OBJECT IDENTIFIER,
                                   value ANY }
 
X509NameEntryConverter It turns out that the number of standard ways the fields in a DN should be encoded into their ASN.1 counterparts is rapidly approaching the number of machines on the internet.
X509NameTokenizer class for breaking up an X500 Name into it's component tokens, ala java.util.StringTokenizer.
Support classes useful for encoding and processing X.509 certificates.