public class PKIXExtensions
extends java.lang.Object
Extensions are addiitonal attributes which can be inserted in a X509 v3 certificate. For example a "Driving License Certificate" could have the driving license number as a extension.
Extensions are represented as a sequence of the extension identifier (Object Identifier), a boolean flag stating whether the extension is to be treated as being critical and the extension value itself (this is again a DER encoding of the extension value).
Extension
Modifier and Type | Field and Description |
---|---|
static ObjectIdentifier |
AuthorityKey_Id
Identifies the particular public key used to sign the certificate.
|
static ObjectIdentifier |
BasicConstraints_Id
Identifies whether the subject of the certificate is a CA and how deep
a certification path may exist through that CA.
|
static ObjectIdentifier |
CertificateIssuer_Id
Identifies the date on which it is known or suspected that the private
key was compromised or that the certificate otherwise became invalid.
|
static ObjectIdentifier |
CertificatePolicies_Id
Contains the sequence of policy information terms.
|
static ObjectIdentifier |
CRLDistributionPoints_Id
Identifies how CRL information is obtained.
|
static ObjectIdentifier |
CRLNumber_Id
Conveys a monotonically increasing sequence number for each CRL
issued by a given CA.
|
static ObjectIdentifier |
DeltaCRLIndicator_Id
Identifies the delta CRL.
|
static ObjectIdentifier |
FreshestCRL_Id
Identifies how delta CRL information is obtained.
|
static ObjectIdentifier |
HoldInstructionCode_Id
This extension provides a registered instruction identifier indicating
the action to be taken, after encountering a certificate that has been
placed on hold.
|
static ObjectIdentifier |
InvalidityDate_Id
Identifies the date on which it is known or suspected that the private
key was compromised or that the certificate otherwise became invalid.
|
static ObjectIdentifier |
IssuerAlternativeName_Id
Allows additional identities to be associated with the certificate issuer.
|
static ObjectIdentifier |
IssuingDistributionPoint_Id
Identifies the CRL distribution point for a particular CRL.
|
static ObjectIdentifier |
KeyUsage_Id
Defines the purpose of the key contained in the certificate.
|
static ObjectIdentifier |
NameConstraints_Id
Provides for permitted and excluded subtrees that place restrictions
on names that may be included within a certificate issued by a given CA.
|
static ObjectIdentifier |
PolicyConstraints_Id
Used to either prohibit policy mapping or limit the set of policies
that can be in subsequent certificates.
|
static ObjectIdentifier |
PolicyMappings_Id
Lists pairs of objectidentifiers of policies considered equivalent by the
issuing CA to the subject CA.
|
static ObjectIdentifier |
PrivateKeyUsage_Id
Allows the certificate issuer to specify a different validity period
for the private key than the certificate.
|
static ObjectIdentifier |
ReasonCode_Id
Identifies the reason for the certificate revocation.
|
static ObjectIdentifier |
SubjectAlternativeName_Id
Allows additional identities to be bound to the subject of the certificate.
|
static ObjectIdentifier |
SubjectDirectoryAttributes_Id
Identifies additional directory attributes.
|
static ObjectIdentifier |
SubjectKey_Id
Identifies the particular public key used in an application.
|
Constructor and Description |
---|
PKIXExtensions() |
public static final ObjectIdentifier AuthorityKey_Id
public static final ObjectIdentifier SubjectKey_Id
public static final ObjectIdentifier KeyUsage_Id
public static final ObjectIdentifier PrivateKeyUsage_Id
public static final ObjectIdentifier CertificatePolicies_Id
public static final ObjectIdentifier PolicyMappings_Id
public static final ObjectIdentifier SubjectAlternativeName_Id
public static final ObjectIdentifier IssuerAlternativeName_Id
public static final ObjectIdentifier SubjectDirectoryAttributes_Id
public static final ObjectIdentifier BasicConstraints_Id
public static final ObjectIdentifier NameConstraints_Id
public static final ObjectIdentifier PolicyConstraints_Id
public static final ObjectIdentifier CRLDistributionPoints_Id
public static final ObjectIdentifier CRLNumber_Id
public static final ObjectIdentifier IssuingDistributionPoint_Id
public static final ObjectIdentifier DeltaCRLIndicator_Id
public static final ObjectIdentifier ReasonCode_Id
public static final ObjectIdentifier HoldInstructionCode_Id
public static final ObjectIdentifier InvalidityDate_Id
public static final ObjectIdentifier CertificateIssuer_Id
public static final ObjectIdentifier FreshestCRL_Id