Class PKIXExtensions


  • public class PKIXExtensions
    extends java.lang.Object
    Lists all the object identifiers of the X509 extensions of the PKIX profile.

    Extensions are addiitonal attributes which can be inserted in a X509 v3 certificate. For example a "Driving License Certificate" could have the driving license number as a extension.

    Extensions are represented as a sequence of the extension identifier (Object Identifier), a boolean flag stating whether the extension is to be treated as being critical and the extension value itself (this is again a DER encoding of the extension value).

    Version:
    1.4
    Author:
    Amit Kapoor, Hemma Prafullchandra
    See Also:
    Extension
    • Field Detail

      • AuthorityKey_Id

        public static final ObjectIdentifier AuthorityKey_Id
        Identifies the particular public key used to sign the certificate.
      • SubjectKey_Id

        public static final ObjectIdentifier SubjectKey_Id
        Identifies the particular public key used in an application.
      • KeyUsage_Id

        public static final ObjectIdentifier KeyUsage_Id
        Defines the purpose of the key contained in the certificate.
      • PrivateKeyUsage_Id

        public static final ObjectIdentifier PrivateKeyUsage_Id
        Allows the certificate issuer to specify a different validity period for the private key than the certificate.
      • CertificatePolicies_Id

        public static final ObjectIdentifier CertificatePolicies_Id
        Contains the sequence of policy information terms.
      • PolicyMappings_Id

        public static final ObjectIdentifier PolicyMappings_Id
        Lists pairs of objectidentifiers of policies considered equivalent by the issuing CA to the subject CA.
      • SubjectAlternativeName_Id

        public static final ObjectIdentifier SubjectAlternativeName_Id
        Allows additional identities to be bound to the subject of the certificate.
      • IssuerAlternativeName_Id

        public static final ObjectIdentifier IssuerAlternativeName_Id
        Allows additional identities to be associated with the certificate issuer.
      • SubjectDirectoryAttributes_Id

        public static final ObjectIdentifier SubjectDirectoryAttributes_Id
        Identifies additional directory attributes. This extension is always non-critical.
      • BasicConstraints_Id

        public static final ObjectIdentifier BasicConstraints_Id
        Identifies whether the subject of the certificate is a CA and how deep a certification path may exist through that CA.
      • NameConstraints_Id

        public static final ObjectIdentifier NameConstraints_Id
        Provides for permitted and excluded subtrees that place restrictions on names that may be included within a certificate issued by a given CA.
      • PolicyConstraints_Id

        public static final ObjectIdentifier PolicyConstraints_Id
        Used to either prohibit policy mapping or limit the set of policies that can be in subsequent certificates.
      • CRLDistributionPoints_Id

        public static final ObjectIdentifier CRLDistributionPoints_Id
        Identifies how CRL information is obtained.
      • CRLNumber_Id

        public static final ObjectIdentifier CRLNumber_Id
        Conveys a monotonically increasing sequence number for each CRL issued by a given CA.
      • IssuingDistributionPoint_Id

        public static final ObjectIdentifier IssuingDistributionPoint_Id
        Identifies the CRL distribution point for a particular CRL.
      • DeltaCRLIndicator_Id

        public static final ObjectIdentifier DeltaCRLIndicator_Id
        Identifies the delta CRL.
      • ReasonCode_Id

        public static final ObjectIdentifier ReasonCode_Id
        Identifies the reason for the certificate revocation.
      • HoldInstructionCode_Id

        public static final ObjectIdentifier HoldInstructionCode_Id
        This extension provides a registered instruction identifier indicating the action to be taken, after encountering a certificate that has been placed on hold.
      • InvalidityDate_Id

        public static final ObjectIdentifier InvalidityDate_Id
        Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.
      • CertificateIssuer_Id

        public static final ObjectIdentifier CertificateIssuer_Id
        Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.
      • FreshestCRL_Id

        public static final ObjectIdentifier FreshestCRL_Id
        Identifies how delta CRL information is obtained.
    • Constructor Detail

      • PKIXExtensions

        public PKIXExtensions()