Class PKIXExtensions
java.lang.Object
org.mozilla.jss.netscape.security.x509.PKIXExtensions
Lists all the object identifiers of the X509 extensions of the PKIX profile.
Extensions are addiitonal attributes which can be inserted in a X509 v3 certificate. For example a "Driving License Certificate" could have the driving license number as a extension.
Extensions are represented as a sequence of the extension identifier (Object Identifier), a boolean flag stating whether the extension is to be treated as being critical and the extension value itself (this is again a DER encoding of the extension value).
- Version:
- 1.4
- See Also:
-
Field Summary
FieldsModifier and TypeFieldDescriptionprivate static final int[]
static final ObjectIdentifier
Identifies the particular public key used to sign the certificate.private static final int[]
static final ObjectIdentifier
Identifies whether the subject of the certificate is a CA and how deep a certification path may exist through that CA.private static final int[]
static final ObjectIdentifier
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.private static final int[]
static final ObjectIdentifier
Contains the sequence of policy information terms.private static final int[]
static final ObjectIdentifier
Identifies how CRL information is obtained.private static final int[]
static final ObjectIdentifier
Conveys a monotonically increasing sequence number for each CRL issued by a given CA.private static final int[]
static final ObjectIdentifier
Identifies the delta CRL.private static final int[]
static final ObjectIdentifier
Identifies how delta CRL information is obtained.private static final int[]
static final ObjectIdentifier
This extension provides a registered instruction identifier indicating the action to be taken, after encountering a certificate that has been placed on hold.private static final int[]
static final ObjectIdentifier
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.private static final int[]
static final ObjectIdentifier
Allows additional identities to be associated with the certificate issuer.private static final int[]
static final ObjectIdentifier
Identifies the CRL distribution point for a particular CRL.private static final int[]
static final ObjectIdentifier
Defines the purpose of the key contained in the certificate.private static final int[]
static final ObjectIdentifier
Provides for permitted and excluded subtrees that place restrictions on names that may be included within a certificate issued by a given CA.private static final int[]
static final ObjectIdentifier
Used to either prohibit policy mapping or limit the set of policies that can be in subsequent certificates.private static final int[]
static final ObjectIdentifier
Lists pairs of objectidentifiers of policies considered equivalent by the issuing CA to the subject CA.private static final int[]
static final ObjectIdentifier
Allows the certificate issuer to specify a different validity period for the private key than the certificate.private static final int[]
static final ObjectIdentifier
Identifies the reason for the certificate revocation.private static final int[]
static final ObjectIdentifier
Allows additional identities to be bound to the subject of the certificate.private static final int[]
static final ObjectIdentifier
Identifies additional directory attributes.private static final int[]
static final ObjectIdentifier
Identifies the particular public key used in an application. -
Constructor Summary
Constructors -
Method Summary
-
Field Details
-
AuthorityKey_data
private static final int[] AuthorityKey_data -
SubjectKey_data
private static final int[] SubjectKey_data -
KeyUsage_data
private static final int[] KeyUsage_data -
PrivateKeyUsage_data
private static final int[] PrivateKeyUsage_data -
CertificatePolicies_data
private static final int[] CertificatePolicies_data -
PolicyMappings_data
private static final int[] PolicyMappings_data -
SubjectAlternativeName_data
private static final int[] SubjectAlternativeName_data -
IssuerAlternativeName_data
private static final int[] IssuerAlternativeName_data -
SubjectDirectoryAttributes_data
private static final int[] SubjectDirectoryAttributes_data -
BasicConstraints_data
private static final int[] BasicConstraints_data -
NameConstraints_data
private static final int[] NameConstraints_data -
PolicyConstraints_data
private static final int[] PolicyConstraints_data -
CRLDistributionPoints_data
private static final int[] CRLDistributionPoints_data -
CRLNumber_data
private static final int[] CRLNumber_data -
IssuingDistributionPoint_data
private static final int[] IssuingDistributionPoint_data -
DeltaCRLIndicator_data
private static final int[] DeltaCRLIndicator_data -
ReasonCode_data
private static final int[] ReasonCode_data -
HoldInstructionCode_data
private static final int[] HoldInstructionCode_data -
InvalidityDate_data
private static final int[] InvalidityDate_data -
CertificateIssuer_data
private static final int[] CertificateIssuer_data -
FreshestCRL_data
private static final int[] FreshestCRL_data -
AuthorityKey_Id
Identifies the particular public key used to sign the certificate. -
SubjectKey_Id
Identifies the particular public key used in an application. -
KeyUsage_Id
Defines the purpose of the key contained in the certificate. -
PrivateKeyUsage_Id
Allows the certificate issuer to specify a different validity period for the private key than the certificate. -
CertificatePolicies_Id
Contains the sequence of policy information terms. -
PolicyMappings_Id
Lists pairs of objectidentifiers of policies considered equivalent by the issuing CA to the subject CA. -
SubjectAlternativeName_Id
Allows additional identities to be bound to the subject of the certificate. -
IssuerAlternativeName_Id
Allows additional identities to be associated with the certificate issuer. -
SubjectDirectoryAttributes_Id
Identifies additional directory attributes. This extension is always non-critical. -
BasicConstraints_Id
Identifies whether the subject of the certificate is a CA and how deep a certification path may exist through that CA. -
NameConstraints_Id
Provides for permitted and excluded subtrees that place restrictions on names that may be included within a certificate issued by a given CA. -
PolicyConstraints_Id
Used to either prohibit policy mapping or limit the set of policies that can be in subsequent certificates. -
CRLDistributionPoints_Id
Identifies how CRL information is obtained. -
CRLNumber_Id
Conveys a monotonically increasing sequence number for each CRL issued by a given CA. -
IssuingDistributionPoint_Id
Identifies the CRL distribution point for a particular CRL. -
DeltaCRLIndicator_Id
Identifies the delta CRL. -
ReasonCode_Id
Identifies the reason for the certificate revocation. -
HoldInstructionCode_Id
This extension provides a registered instruction identifier indicating the action to be taken, after encountering a certificate that has been placed on hold. -
InvalidityDate_Id
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid. -
CertificateIssuer_Id
Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid. -
FreshestCRL_Id
Identifies how delta CRL information is obtained.
-
-
Constructor Details
-
PKIXExtensions
public PKIXExtensions()
-