| AccessDescription |
The AccessDescription object. |
| Accuracy |
|
| AdditionalInformationSyntax |
Some other information of non-restrictive nature regarding the usage of this
certificate. |
| AdmissionSyntax |
Attribute to indicate admissions to certain professions. |
| Admissions |
An Admissions structure. |
| AlgorithmIdentifier |
|
| AttCertIssuer |
|
| AttCertValidityPeriod |
|
| Attribute |
|
| AttributeCertificate |
|
| AttributeCertificateInfo |
|
| AttributeTypeAndValue |
|
| Attributes |
|
| AuthEnvelopedData |
|
| AuthenticatedData |
|
| AuthenticatedSafe |
|
| AuthorityInformationAccess |
The AuthorityInformationAccess object. |
| AuthorityKeyIdentifier |
The AuthorityKeyIdentifier object. |
| BasicConstraints |
|
| BasicOCSPResponse |
|
| BiometricData |
The BiometricData object. |
| CAKeyUpdAnnContent |
|
| CAST5CBCParameters |
|
| CMPCertificate |
|
| CRLAnnContent |
|
| CRLDistPoint |
|
| CertBag |
|
| CertConfirmContent |
|
| CertHash |
ISIS-MTT PROFILE: The responder may include this extension in a response to
send the hash of the requested certificate to the responder. |
| CertID |
|
| CertId |
|
| CertOrEncCert |
|
| CertRepMessage |
|
| CertReqMessages |
|
| CertReqMsg |
|
| CertRequest |
|
| CertResponse |
|
| CertStatus |
|
| CertTemplate |
|
| CertificateList |
PKIX RFC-2459
The X.509 v2 CRL syntax is as follows. |
| CertificatePair |
This class helps to support crossCerfificatePairs in a LDAP directory
according RFC 2587
crossCertificatePairATTRIBUTE::={
WITH SYNTAX CertificatePair
EQUALITY MATCHING RULE certificatePairExactMatch
ID joint-iso-ccitt(2) ds(5) attributeType(4) crossCertificatePair(40)}
The forward elements of the crossCertificatePair attribute of a
CA's directory entry shall be used to store all, except self-issued
certificates issued to this CA. |
| CertificatePolicies |
|
| CertificationRequest |
PKCS10 Certification request object. |
| CertificationRequestInfo |
PKCS10 CertificationRequestInfo object. |
| CertifiedKeyPair |
|
| Challenge |
|
| CommitmentTypeIndication |
|
| CommitmentTypeQualifier |
Commitment type qualifiers, used in the Commitment-Type-Indication attribute (RFC3126). |
| CompleteRevocationRefs |
CompleteRevocationRefs ::= SEQUENCE OF CrlOcspRef
|
| CompressedData |
RFC 3274 - CMS Compressed Data. |
| ContentHints |
|
| ContentIdentifier |
|
| ContentInfo |
|
| Controls |
|
| CrlID |
|
| CrlIdentifier |
CrlIdentifier ::= SEQUENCE
{
crlissuer Name,
crlIssuedTime UTCTime,
crlNumber INTEGER OPTIONAL
}
|
| CrlListID |
CRLListID ::= SEQUENCE {
crls SEQUENCE OF CrlValidatedID }
|
| CrlOcspRef |
CrlOcspRef ::= SEQUENCE {
crlids [0] CRLListID OPTIONAL,
ocspids [1] OcspListID OPTIONAL,
otherRev [2] OtherRevRefs OPTIONAL
}
|
| CrlValidatedID |
CrlValidatedID ::= SEQUENCE {
crlHash OtherHash,
crlIdentifier CrlIdentifier OPTIONAL }
|
| CscaMasterList |
The CscaMasterList object. |
| DERObject |
|
| DHDomainParameters |
|
| DHParameter |
|
| DHPublicKey |
|
| DHValidationParms |
|
| DSAParameter |
|
| DataGroupHash |
The DataGroupHash object. |
| DeclarationOfMajority |
A declaration of majority. |
| DigestInfo |
The DigestInfo object. |
| DirectoryString |
|
| DisplayText |
DisplayText class, used in
CertificatePolicies X509 V3 extensions (in policy qualifiers). |
| DistributionPoint |
The DistributionPoint object. |
| DistributionPointName |
The DistributionPointName object. |
| ECGOST3410ParamSetParameters |
|
| ECPrivateKeyStructure |
the elliptic curve private key object from SEC 1
|
| ESSCertID |
|
| ESSCertIDv2 |
|
| ElGamalParameter |
|
| EncKeyWithID |
|
| EncryptedContentInfo |
|
| EncryptedData |
The EncryptedData object. |
| EncryptedKey |
|
| EncryptedPrivateKeyInfo |
|
| EncryptedValue |
|
| EnvelopedData |
|
| ErrorMsgContent |
|
| Evidence |
|
| ExtendedKeyUsage |
The extendedKeyUsage object. |
| GOST28147Parameters |
|
| GOST3410ParamSetParameters |
|
| GOST3410PublicKeyAlgParameters |
|
| GenMsgContent |
|
| GenRepContent |
|
| GeneralName |
The GeneralName object. |
| GeneralNames |
|
| GeneralSubtree |
Class for containing a restriction object subtrees in NameConstraints. |
| Holder |
The Holder object. |
| IDEACBCPar |
|
| IetfAttrSyntax |
Implementation of IetfAttrSyntax as specified by RFC3281. |
| InfoTypeAndValue |
Example InfoTypeAndValue contents include, but are not limited
to, the following (un-comment in this ASN.1 module and use as
appropriate for a given environment):
id-it-caProtEncCert OBJECT IDENTIFIER ::= {id-it 1}
CAProtEncCertValue ::= CMPCertificate
id-it-signKeyPairTypes OBJECT IDENTIFIER ::= {id-it 2}
SignKeyPairTypesValue ::= SEQUENCE OF AlgorithmIdentifier
id-it-encKeyPairTypes OBJECT IDENTIFIER ::= {id-it 3}
EncKeyPairTypesValue ::= SEQUENCE OF AlgorithmIdentifier
id-it-preferredSymmAlg OBJECT IDENTIFIER ::= {id-it 4}
PreferredSymmAlgValue ::= AlgorithmIdentifier
id-it-caKeyUpdateInfo OBJECT IDENTIFIER ::= {id-it 5}
CAKeyUpdateInfoValue ::= CAKeyUpdAnnContent
id-it-currentCRL OBJECT IDENTIFIER ::= {id-it 6}
CurrentCRLValue ::= CertificateList
id-it-unsupportedOIDs OBJECT IDENTIFIER ::= {id-it 7}
UnsupportedOIDsValue ::= SEQUENCE OF OBJECT IDENTIFIER
id-it-keyPairParamReq OBJECT IDENTIFIER ::= {id-it 10}
KeyPairParamReqValue ::= OBJECT IDENTIFIER
id-it-keyPairParamRep OBJECT IDENTIFIER ::= {id-it 11}
KeyPairParamRepValue ::= AlgorithmIdentifer
id-it-revPassphrase OBJECT IDENTIFIER ::= {id-it 12}
RevPassphraseValue ::= EncryptedValue
id-it-implicitConfirm OBJECT IDENTIFIER ::= {id-it 13}
ImplicitConfirmValue ::= NULL
id-it-confirmWaitTime OBJECT IDENTIFIER ::= {id-it 14}
ConfirmWaitTimeValue ::= GeneralizedTime
id-it-origPKIMessage OBJECT IDENTIFIER ::= {id-it 15}
OrigPKIMessageValue ::= PKIMessages
id-it-suppLangTags OBJECT IDENTIFIER ::= {id-it 16}
SuppLangTagsValue ::= SEQUENCE OF UTF8String
where
id-pkix OBJECT IDENTIFIER ::= {
iso(1) identified-organization(3)
dod(6) internet(1) security(5) mechanisms(5) pkix(7)}
and
id-it OBJECT IDENTIFIER ::= {id-pkix 4}
|
| Iso4217CurrencyCode |
The Iso4217CurrencyCode object. |
| IssuerAndSerialNumber |
|
| IssuerSerial |
|
| IssuingDistributionPoint |
IssuingDistributionPoint ::= SEQUENCE {
distributionPoint [0] DistributionPointName OPTIONAL,
onlyContainsUserCerts [1] BOOLEAN DEFAULT FALSE,
onlyContainsCACerts [2] BOOLEAN DEFAULT FALSE,
onlySomeReasons [3] ReasonFlags OPTIONAL,
indirectCRL [4] BOOLEAN DEFAULT FALSE,
onlyContainsAttributeCerts [5] BOOLEAN DEFAULT FALSE }
|
| KEKIdentifier |
|
| KEKRecipientInfo |
|
| KeyAgreeRecipientIdentifier |
|
| KeyAgreeRecipientInfo |
|
| KeyRecRepContent |
|
| KeySpecificInfo |
ASN.1 def for Diffie-Hellman key exchange KeySpecificInfo structure. |
| KeyTransRecipientInfo |
|
| LDSSecurityObject |
The LDSSecurityObject object (V1.8). |
| LDSVersionInfo |
|
| MQVuserKeyingMaterial |
|
| MacData |
|
| MessageImprint |
|
| MetaData |
|
| MonetaryLimit |
Monetary limit for transactions. |
| MonetaryValue |
The MonetaryValue object. |
| NameConstraints |
|
| NameOrPseudonym |
Structure for a name or pseudonym. |
| NamingAuthority |
Names of authorities which are responsible for the administration of title
registers. |
| NetscapeCertRequest |
Handles NetScape certificate request (KEYGEN), these are constructed as:
SignedPublicKeyAndChallenge ::= SEQUENCE {
publicKeyAndChallenge PublicKeyAndChallenge,
signatureAlgorithm AlgorithmIdentifier,
signature BIT STRING
}
PublicKey's encoded-format has to be X.509. |
| NoticeReference |
NoticeReference class, used in
CertificatePolicies X509 V3 extensions
(in policy qualifiers). |
| OCSPRequest |
|
| OCSPResponse |
|
| OOBCertHash |
|
| ObjectDigestInfo |
ObjectDigestInfo ASN.1 structure used in v2 attribute certificates. |
| OcspIdentifier |
OcspIdentifier ::= SEQUENCE {
ocspResponderID ResponderID, -- As in OCSP response data
producedAt GeneralizedTime -- As in OCSP response data
}
|
| OcspListID |
OcspListID ::= SEQUENCE {
ocspResponses SEQUENCE OF OcspResponsesID
}
|
| OcspResponsesID |
OcspResponsesID ::= SEQUENCE {
ocspIdentifier OcspIdentifier,
ocspRepHash OtherHash OPTIONAL
}
|
| OptionalValidity |
|
| OriginatorIdentifierOrKey |
|
| OriginatorInfo |
|
| OriginatorPublicKey |
|
| OtherCertID |
|
| OtherHash |
OtherHash ::= CHOICE {
sha1Hash OtherHashValue, -- This contains a SHA-1 hash
otherHash OtherHashAlgAndValue
}
|
| OtherHashAlgAndValue |
|
| OtherInfo |
ANS.1 def for Diffie-Hellman key exchange OtherInfo structure. |
| OtherKeyAttribute |
|
| OtherRecipientInfo |
|
| OtherRevRefs |
OtherRevRefs ::= SEQUENCE {
otherRevRefType OtherRevRefType,
otherRevRefs ANY DEFINED BY otherRevRefType
}
OtherRevRefType ::= OBJECT IDENTIFIER
|
| OtherRevVals |
OtherRevVals ::= SEQUENCE {
otherRevValType OtherRevValType,
otherRevVals ANY DEFINED BY OtherRevValType
}
OtherRevValType ::= OBJECT IDENTIFIER
|
| OtherSigningCertificate |
|
| PBEParameter |
|
| PBES2Parameters |
|
| PBKDF2Params |
|
| PBMParameter |
|
| PKCS12PBEParams |
|
| PKIArchiveOptions |
|
| PKIBody |
|
| PKIConfirmContent |
|
| PKIFreeText |
|
| PKIHeader |
|
| PKIMessage |
|
| PKIMessages |
|
| PKIPublicationInfo |
|
| PKIStatus |
|
| PKIStatusInfo |
|
| PKMACValue |
Password-based MAC value for use with POPOSigningKeyInput. |
| POPODecKeyChallContent |
|
| POPODecKeyRespContent |
|
| POPOPrivKey |
|
| POPOSigningKey |
|
| POPOSigningKeyInput |
|
| PasswordRecipientInfo |
|
| PersonalData |
Contains personal data for the otherName field in the subjectAltNames
extension. |
| Pfx |
the infamous Pfx from PKCS12
|
| PolicyInformation |
|
| PolicyMappings |
PolicyMappings V3 extension, described in RFC3280. |
| PolicyQualifierInfo |
Policy qualifiers, used in the X509V3 CertificatePolicies
extension. |
| PollRepContent |
|
| PollReqContent |
|
| PrivateKeyInfo |
|
| PrivateKeyUsagePeriod |
PrivateKeyUsagePeriod ::= SEQUENCE {
notBefore [0] GeneralizedTime OPTIONAL,
notAfter [1] GeneralizedTime OPTIONAL }
|
| ProcurationSyntax |
Attribute to indicate that the certificate holder may sign in the name of a
third person. |
| ProfessionInfo |
Professions, specializations, disciplines, fields of activity, etc. |
| ProofOfPossession |
|
| ProtectedPart |
|
| PublicKeyAndChallenge |
This is designed to parse
the PublicKeyAndChallenge created by the KEYGEN tag included by
Mozilla based browsers. |
| QCStatement |
The QCStatement object. |
| RC2CBCParameter |
|
| RDN |
|
| RSAESOAEPparams |
|
| RSAPrivateKeyStructure |
|
| RSAPublicKeyStructure |
|
| RSASSAPSSparams |
|
| RecipientEncryptedKey |
|
| RecipientIdentifier |
|
| RecipientInfo |
|
| RecipientKeyIdentifier |
|
| Request |
|
| RequestedCertificate |
ISIS-MTT-Optional: The certificate requested by the client by inserting the
RetrieveIfAllowed extension in the request, will be returned in this
extension. |
| ResponderID |
|
| ResponseBytes |
|
| ResponseData |
|
| Restriction |
Some other restriction regarding the usage of this certificate. |
| RevAnnContent |
|
| RevDetails |
|
| RevRepContent |
|
| RevReqContent |
|
| RevocationValues |
RevocationValues ::= SEQUENCE {
crlVals [0] SEQUENCE OF CertificateList OPTIONAL,
ocspVals [1] SEQUENCE OF BasicOCSPResponse OPTIONAL,
otherRevVals [2] OtherRevVals OPTIONAL}
|
| RevokedInfo |
|
| RoleSyntax |
Implementation of the RoleSyntax object as specified by the RFC3281. |
| SMIMECapabilities |
Handler class for dealing with S/MIME Capabilities
|
| SMIMECapability |
|
| SafeBag |
|
| SemanticsInformation |
The SemanticsInformation object. |
| ServiceLocator |
|
| SigPolicyQualifierInfo |
|
| SigPolicyQualifiers |
|
| Signature |
|
| SignaturePolicyId |
|
| SignaturePolicyIdentifier |
|
| SignedData |
a PKCS#7 signed data object. |
| SignedPublicKeyAndChallenge |
This is designed to parse the SignedPublicKeyAndChallenge created by the
KEYGEN tag included by Mozilla based browsers. |
| SignerAttribute |
|
| SignerIdentifier |
|
| SignerInfo |
a PKCS#7 signer info object. |
| SignerLocation |
Signer-Location attribute (RFC3126). |
| SigningCertificate |
|
| SigningCertificateV2 |
|
| SinglePubInfo |
|
| SingleResponse |
|
| SubjectDirectoryAttributes |
This extension may contain further X.500 attributes of the subject. |
| SubjectKeyIdentifier |
The SubjectKeyIdentifier object. |
| SubjectPublicKeyInfo |
The object that contains the public key stored in a certficate. |
| TBSCertList |
PKIX RFC-2459 - TBSCertList object. |
| TBSCertList.CRLEntry |
|
| TBSCertificateStructure |
The TBSCertificate object. |
| TBSRequest |
|
| TSTInfo |
|
| Target |
Target structure used in target information extension for attribute
certificates from RFC 3281. |
| TargetInformation |
Target information extension for attributes certificates according to RFC
3281. |
| Targets |
Targets structure used in target information extension for attribute
certificates from RFC 3281. |
| Time |
|
| TimeStampAndCRL |
|
| TimeStampReq |
|
| TimeStampResp |
|
| TimeStampTokenEvidence |
|
| TimeStampedData |
|
| TypeOfBiometricData |
The TypeOfBiometricData object. |
| UserNotice |
UserNotice class, used in
CertificatePolicies X509 extensions (in policy
qualifiers). |
| V2Form |
|
| X500Name |
Name ::= CHOICE {
RDNSequence }
RDNSequence ::= SEQUENCE OF RelativeDistinguishedName
RelativeDistinguishedName ::= SET SIZE (1..MAX) OF AttributeTypeAndValue
AttributeTypeAndValue ::= SEQUENCE {
type OBJECT IDENTIFIER,
value ANY }
|
| X509Attribute |
Class for carrying the values in an X.509 Attribute. |
| X509CertificateStructure |
an X509Certificate structure. |
| X509Extensions |
|
| X509KeyUsage |
A holding class for constructing an X509 Key Usage extension. |
| X509Name |
This class is deprecated.
use org.bouncycastle.asn1.x500.X500Name.
|
| X962Parameters |
|
| X9Curve |
ASN.1 def for Elliptic-Curve Curve structure. |
| X9ECParameters |
ASN.1 def for Elliptic-Curve ECParameters structure. |
| X9ECPoint |
class for describing an ECPoint as a DER object. |
| X9FieldElement |
class for processing an FieldElement as a DER object. |
| X9FieldID |
ASN.1 def for Elliptic-Curve Field ID structure. |
Known Direct Subclasses