Reimplementation of BouncyCastle's AuthorityKeyIdentifier to allow keyID to be set. More...
Public Member Functions | |
AuthorityKeyIdentifier (ASN1Sequence seq) | |
AuthorityKeyIdentifier (byte[] keyID, GeneralNames issuerName, BigInteger issuerSerial) | |
AuthorityKeyIdentifier (byte[] keyID) | |
byte[] | getKeyIdentifier () |
void | setKeyIdentifier (byte[] keyID) |
GeneralNames | getIssuerName () |
void | setIssuerName (GeneralNames name) |
void | setIssuerName (URI uri) |
BigInteger | getIssuerSerialNumber () |
void | setIssuerSerialNumber (BigInteger serial) |
DERObject | getDERObject () |
String | toString () |
Static Public Member Functions | |
static AuthorityKeyIdentifier | getInstance (ASN1TaggedObject obj, boolean explicit) |
static AuthorityKeyIdentifier | getInstance (Object obj) |
Static Public Attributes | |
static final int | tag_KeyIdentifier = 0 |
static final int | tag_IssuerName = 1 |
static final int | tag_issuerSerialNumber = 2 |
Protected Attributes | |
ASN1OctetString | _keyIdentifier = null |
GeneralNames | _issuerName = null |
DERInteger | _issuerSerial = null |
Reimplementation of BouncyCastle's AuthorityKeyIdentifier to allow keyID to be set.
We must take authority key id from subject key id field of issuer's certificate if present; algorithm is not required by the standard so may not match.
id-ce-authorityKeyIdentifier OBJECT IDENTIFIER ::= { id-ce 35 }
AuthorityKeyIdentifier ::= SEQUENCE { keyIdentifier [0] IMPLICIT KeyIdentifier OPTIONAL, authorityCertIssuer [1] IMPLICIT GeneralNames OPTIONAL, authorityCertSerialNumber [2] IMPLICIT CertificateSerialNumber OPTIONAL }
KeyIdentifier ::= OCTET STRING
DERObject org.ccnx.ccn.impl.security.crypto.util.AuthorityKeyIdentifier.getDERObject | ( | ) |
AuthorityKeyIdentifier ::= SEQUENCE { keyIdentifier [0] IMPLICIT KeyIdentifier OPTIONAL, authorityCertIssuer [1] IMPLICIT GeneralNames OPTIONAL, authorityCertSerialNumber [2] IMPLICIT CertificateSerialNumber OPTIONAL }
KeyIdentifier ::= OCTET STRING