Package netscape.security.x509
Class PKIXExtensions
- java.lang.Object
-
- netscape.security.x509.PKIXExtensions
-
public class PKIXExtensions extends java.lang.Object
Lists all the object identifiers of the X509 extensions of the PKIX profile.Extensions are addiitonal attributes which can be inserted in a X509 v3 certificate. For example a "Driving License Certificate" could have the driving license number as a extension.
Extensions are represented as a sequence of the extension identifier (Object Identifier), a boolean flag stating whether the extension is to be treated as being critical and the extension value itself (this is again a DER encoding of the extension value).
- Version:
- 1.4
- Author:
- Amit Kapoor, Hemma Prafullchandra
- See Also:
Extension
-
-
Field Summary
Fields Modifier and Type Field Description static ObjectIdentifier
AuthorityKey_Id
Identifies the particular public key used to sign the certificate.static ObjectIdentifier
BasicConstraints_Id
Identifies whether the subject of the certificate is a CA and how deep a certification path may exist through that CA.static ObjectIdentifier
CertificateIssuer_Id
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.static ObjectIdentifier
CertificatePolicies_Id
Contains the sequence of policy information terms.static ObjectIdentifier
CRLDistributionPoints_Id
Identifies how CRL information is obtained.static ObjectIdentifier
CRLNumber_Id
Conveys a monotonically increasing sequence number for each CRL issued by a given CA.static ObjectIdentifier
DeltaCRLIndicator_Id
Identifies the delta CRL.static ObjectIdentifier
FreshestCRL_Id
Identifies how delta CRL information is obtained.static ObjectIdentifier
HoldInstructionCode_Id
This extension provides a registered instruction identifier indicating the action to be taken, after encountering a certificate that has been placed on hold.static ObjectIdentifier
InvalidityDate_Id
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.static ObjectIdentifier
IssuerAlternativeName_Id
Allows additional identities to be associated with the certificate issuer.static ObjectIdentifier
IssuingDistributionPoint_Id
Identifies the CRL distribution point for a particular CRL.static ObjectIdentifier
KeyUsage_Id
Defines the purpose of the key contained in the certificate.static ObjectIdentifier
NameConstraints_Id
Provides for permitted and excluded subtrees that place restrictions on names that may be included within a certificate issued by a given CA.static ObjectIdentifier
PolicyConstraints_Id
Used to either prohibit policy mapping or limit the set of policies that can be in subsequent certificates.static ObjectIdentifier
PolicyMappings_Id
Lists pairs of objectidentifiers of policies considered equivalent by the issuing CA to the subject CA.static ObjectIdentifier
PrivateKeyUsage_Id
Allows the certificate issuer to specify a different validity period for the private key than the certificate.static ObjectIdentifier
ReasonCode_Id
Identifies the reason for the certificate revocation.static ObjectIdentifier
SubjectAlternativeName_Id
Allows additional identities to be bound to the subject of the certificate.static ObjectIdentifier
SubjectDirectoryAttributes_Id
Identifies additional directory attributes.static ObjectIdentifier
SubjectKey_Id
Identifies the particular public key used in an application.
-
Constructor Summary
Constructors Constructor Description PKIXExtensions()
-
-
-
Field Detail
-
AuthorityKey_Id
public static final ObjectIdentifier AuthorityKey_Id
Identifies the particular public key used to sign the certificate.
-
SubjectKey_Id
public static final ObjectIdentifier SubjectKey_Id
Identifies the particular public key used in an application.
-
KeyUsage_Id
public static final ObjectIdentifier KeyUsage_Id
Defines the purpose of the key contained in the certificate.
-
PrivateKeyUsage_Id
public static final ObjectIdentifier PrivateKeyUsage_Id
Allows the certificate issuer to specify a different validity period for the private key than the certificate.
-
CertificatePolicies_Id
public static final ObjectIdentifier CertificatePolicies_Id
Contains the sequence of policy information terms.
-
PolicyMappings_Id
public static final ObjectIdentifier PolicyMappings_Id
Lists pairs of objectidentifiers of policies considered equivalent by the issuing CA to the subject CA.
-
SubjectAlternativeName_Id
public static final ObjectIdentifier SubjectAlternativeName_Id
Allows additional identities to be bound to the subject of the certificate.
-
IssuerAlternativeName_Id
public static final ObjectIdentifier IssuerAlternativeName_Id
Allows additional identities to be associated with the certificate issuer.
-
SubjectDirectoryAttributes_Id
public static final ObjectIdentifier SubjectDirectoryAttributes_Id
Identifies additional directory attributes. This extension is always non-critical.
-
BasicConstraints_Id
public static final ObjectIdentifier BasicConstraints_Id
Identifies whether the subject of the certificate is a CA and how deep a certification path may exist through that CA.
-
NameConstraints_Id
public static final ObjectIdentifier NameConstraints_Id
Provides for permitted and excluded subtrees that place restrictions on names that may be included within a certificate issued by a given CA.
-
PolicyConstraints_Id
public static final ObjectIdentifier PolicyConstraints_Id
Used to either prohibit policy mapping or limit the set of policies that can be in subsequent certificates.
-
CRLDistributionPoints_Id
public static final ObjectIdentifier CRLDistributionPoints_Id
Identifies how CRL information is obtained.
-
CRLNumber_Id
public static final ObjectIdentifier CRLNumber_Id
Conveys a monotonically increasing sequence number for each CRL issued by a given CA.
-
IssuingDistributionPoint_Id
public static final ObjectIdentifier IssuingDistributionPoint_Id
Identifies the CRL distribution point for a particular CRL.
-
DeltaCRLIndicator_Id
public static final ObjectIdentifier DeltaCRLIndicator_Id
Identifies the delta CRL.
-
ReasonCode_Id
public static final ObjectIdentifier ReasonCode_Id
Identifies the reason for the certificate revocation.
-
HoldInstructionCode_Id
public static final ObjectIdentifier HoldInstructionCode_Id
This extension provides a registered instruction identifier indicating the action to be taken, after encountering a certificate that has been placed on hold.
-
InvalidityDate_Id
public static final ObjectIdentifier InvalidityDate_Id
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.
-
CertificateIssuer_Id
public static final ObjectIdentifier CertificateIssuer_Id
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.
-
FreshestCRL_Id
public static final ObjectIdentifier FreshestCRL_Id
Identifies how delta CRL information is obtained.
-
-