ASN1ApplicationSpecificParser |
|
ASN1Boolean |
|
ASN1Encodable |
Base class for objects which can be written directly to ASN.1 output streams. |
ASN1Enumerated |
|
ASN1GeneralizedTime |
|
ASN1Integer |
|
ASN1Null |
A NULL object. |
ASN1Object |
|
ASN1ObjectIdentifier |
|
ASN1OctetString |
|
ASN1OctetStringParser |
|
ASN1Sequence |
|
ASN1SequenceParser |
|
ASN1Set |
|
ASN1SetParser |
|
ASN1TaggedObject |
ASN.1 TaggedObject - in ASN.1 notation this is any object preceded by
a [n] where n is some number - these are assumed to follow the construction
rules (as with sequences). |
ASN1TaggedObjectParser |
|
ASN1UTCTime |
|
AccessDescription |
The AccessDescription object. |
Accuracy |
|
AdditionalInformationSyntax |
Some other information of non-restrictive nature regarding the usage of this
certificate. |
AdmissionSyntax |
Attribute to indicate admissions to certain professions. |
Admissions |
An Admissions structure. |
AlgorithmIdentifier |
|
AttCertIssuer |
|
AttCertValidityPeriod |
|
Attribute |
|
AttributeCertificate |
|
AttributeCertificateInfo |
|
AttributeTypeAndValue |
|
Attributes |
|
AuthEnvelopedData |
|
AuthenticatedData |
|
AuthenticatedSafe |
|
AuthorityInformationAccess |
The AuthorityInformationAccess object. |
AuthorityKeyIdentifier |
The AuthorityKeyIdentifier object. |
AuthorityKeyIdentifierStructure |
A high level authority key identifier. |
BERApplicationSpecific |
|
BERApplicationSpecificParser |
|
BERConstructedOctetString |
|
BERNull |
A BER NULL object. |
BEROctetStringParser |
|
BERSequence |
|
BERSequenceParser |
|
BERSet |
|
BERSetParser |
|
BERTaggedObject |
BER TaggedObject - in ASN.1 notation this is any object preceded by
a [n] where n is some number - these are assumed to follow the construction
rules (as with sequences). |
BERTaggedObjectParser |
|
BasicConstraints |
|
BasicOCSPResponse |
|
BiometricData |
The BiometricData object. |
CAKeyUpdAnnContent |
|
CAST5CBCParameters |
|
CMPCertificate |
|
CRLAnnContent |
|
CRLDistPoint |
|
CRLNumber |
The CRLNumber object. |
CRLReason |
The CRLReason enumeration. |
CertBag |
|
CertConfirmContent |
|
CertHash |
ISIS-MTT PROFILE: The responder may include this extension in a response to
send the hash of the requested certificate to the responder. |
CertID |
|
CertId |
|
CertOrEncCert |
|
CertPolicyId |
CertPolicyId, used in the CertificatePolicies and PolicyMappings
X509V3 Extensions. |
CertRepMessage |
|
CertReqMessages |
|
CertReqMsg |
|
CertRequest |
|
CertResponse |
|
CertStatus |
|
CertTemplate |
|
CertificateList |
PKIX RFC-2459
The X.509 v2 CRL syntax is as follows. |
CertificatePair |
This class helps to support crossCerfificatePairs in a LDAP directory
according RFC 2587
crossCertificatePairATTRIBUTE::={
WITH SYNTAX CertificatePair
EQUALITY MATCHING RULE certificatePairExactMatch
ID joint-iso-ccitt(2) ds(5) attributeType(4) crossCertificatePair(40)}
The forward elements of the crossCertificatePair attribute of a
CA's directory entry shall be used to store all, except self-issued
certificates issued to this CA. |
CertificatePolicies |
|
CertificationRequest |
PKCS10 Certification request object. |
CertificationRequestInfo |
PKCS10 CertificationRequestInfo object. |
CertifiedKeyPair |
|
Challenge |
|
CommitmentTypeIndication |
|
CommitmentTypeQualifier |
Commitment type qualifiers, used in the Commitment-Type-Indication attribute (RFC3126). |
CompleteRevocationRefs |
CompleteRevocationRefs ::= SEQUENCE OF CrlOcspRef
|
CompressedData |
RFC 3274 - CMS Compressed Data. |
ContentHints |
|
ContentIdentifier |
|
ContentInfo |
|
Controls |
|
CrlID |
|
CrlIdentifier |
CrlIdentifier ::= SEQUENCE
{
crlissuer Name,
crlIssuedTime UTCTime,
crlNumber INTEGER OPTIONAL
}
|
CrlListID |
CRLListID ::= SEQUENCE {
crls SEQUENCE OF CrlValidatedID }
|
CrlOcspRef |
CrlOcspRef ::= SEQUENCE {
crlids [0] CRLListID OPTIONAL,
ocspids [1] OcspListID OPTIONAL,
otherRev [2] OtherRevRefs OPTIONAL
}
|
CrlValidatedID |
CrlValidatedID ::= SEQUENCE {
crlHash OtherHash,
crlIdentifier CrlIdentifier OPTIONAL }
|
CscaMasterList |
The CscaMasterList object. |
DERApplicationSpecific |
Base class for an application specific object
|
DERBMPString |
DER BMPString object. |
DERBitString |
|
DERBoolean |
|
DEREnumerated |
|
DERExternal |
Class representing the DER-type External
|
DERExternalParser |
|
DERGeneralString |
|
DERGeneralizedTime |
Generalized time object. |
DERIA5String |
DER IA5String object - this is an ascii string. |
DERInteger |
|
DERNull |
A NULL object. |
DERNumericString |
DER NumericString object - this is an ascii string of characters {0,1,2,3,4,5,6,7,8,9, }. |
DERObject |
|
DERObjectIdentifier |
|
DEROctetString |
|
DEROctetStringParser |
|
DERPrintableString |
DER PrintableString object. |
DERSequence |
|
DERSequenceParser |
|
DERSet |
A DER encoded set object
|
DERSetParser |
|
DERT61String |
DER T61String (also the teletex string)
|
DERTaggedObject |
DER TaggedObject - in ASN.1 notation this is any object preceded by
a [n] where n is some number - these are assumed to follow the construction
rules (as with sequences). |
DERUTCTime |
UTC time object. |
DERUTF8String |
DER UTF8String object. |
DERUniversalString |
DER UniversalString object. |
DERUnknownTag |
We insert one of these when we find a tag we don't recognise. |
DERVisibleString |
DER VisibleString object. |
DHDomainParameters |
|
DHParameter |
|
DHPublicKey |
|
DHValidationParms |
|
DSAParameter |
|
DataGroupHash |
The DataGroupHash object. |
DeclarationOfMajority |
A declaration of majority. |
DigestInfo |
The DigestInfo object. |
DirectoryString |
|
DisplayText |
DisplayText class, used in
CertificatePolicies X509 V3 extensions (in policy qualifiers). |
DistributionPoint |
The DistributionPoint object. |
DistributionPointName |
The DistributionPointName object. |
ECGOST3410ParamSetParameters |
|
ECPrivateKeyStructure |
the elliptic curve private key object from SEC 1
|
ESSCertID |
|
ESSCertIDv2 |
|
ElGamalParameter |
|
EncKeyWithID |
|
EncryptedContentInfo |
|
EncryptedData |
The EncryptedData object. |
EncryptedKey |
|
EncryptedPrivateKeyInfo |
|
EncryptedValue |
|
EncryptionScheme |
|
EnvelopedData |
|
ErrorMsgContent |
|
Evidence |
|
ExtendedKeyUsage |
The extendedKeyUsage object. |
GOST28147Parameters |
|
GOST3410ParamSetParameters |
|
GOST3410PublicKeyAlgParameters |
|
GenMsgContent |
|
GenRepContent |
|
GeneralName |
The GeneralName object. |
GeneralNames |
|
GeneralSubtree |
Class for containing a restriction object subtrees in NameConstraints. |
Holder |
The Holder object. |
IDEACBCPar |
|
IetfAttrSyntax |
Implementation of IetfAttrSyntax as specified by RFC3281. |
InfoTypeAndValue |
Example InfoTypeAndValue contents include, but are not limited
to, the following (un-comment in this ASN.1 module and use as
appropriate for a given environment):
id-it-caProtEncCert OBJECT IDENTIFIER ::= {id-it 1}
CAProtEncCertValue ::= CMPCertificate
id-it-signKeyPairTypes OBJECT IDENTIFIER ::= {id-it 2}
SignKeyPairTypesValue ::= SEQUENCE OF AlgorithmIdentifier
id-it-encKeyPairTypes OBJECT IDENTIFIER ::= {id-it 3}
EncKeyPairTypesValue ::= SEQUENCE OF AlgorithmIdentifier
id-it-preferredSymmAlg OBJECT IDENTIFIER ::= {id-it 4}
PreferredSymmAlgValue ::= AlgorithmIdentifier
id-it-caKeyUpdateInfo OBJECT IDENTIFIER ::= {id-it 5}
CAKeyUpdateInfoValue ::= CAKeyUpdAnnContent
id-it-currentCRL OBJECT IDENTIFIER ::= {id-it 6}
CurrentCRLValue ::= CertificateList
id-it-unsupportedOIDs OBJECT IDENTIFIER ::= {id-it 7}
UnsupportedOIDsValue ::= SEQUENCE OF OBJECT IDENTIFIER
id-it-keyPairParamReq OBJECT IDENTIFIER ::= {id-it 10}
KeyPairParamReqValue ::= OBJECT IDENTIFIER
id-it-keyPairParamRep OBJECT IDENTIFIER ::= {id-it 11}
KeyPairParamRepValue ::= AlgorithmIdentifer
id-it-revPassphrase OBJECT IDENTIFIER ::= {id-it 12}
RevPassphraseValue ::= EncryptedValue
id-it-implicitConfirm OBJECT IDENTIFIER ::= {id-it 13}
ImplicitConfirmValue ::= NULL
id-it-confirmWaitTime OBJECT IDENTIFIER ::= {id-it 14}
ConfirmWaitTimeValue ::= GeneralizedTime
id-it-origPKIMessage OBJECT IDENTIFIER ::= {id-it 15}
OrigPKIMessageValue ::= PKIMessages
id-it-suppLangTags OBJECT IDENTIFIER ::= {id-it 16}
SuppLangTagsValue ::= SEQUENCE OF UTF8String
where
id-pkix OBJECT IDENTIFIER ::= {
iso(1) identified-organization(3)
dod(6) internet(1) security(5) mechanisms(5) pkix(7)}
and
id-it OBJECT IDENTIFIER ::= {id-pkix 4}
|
Iso4217CurrencyCode |
The Iso4217CurrencyCode object. |
IssuerAndSerialNumber |
|
IssuerSerial |
|
IssuingDistributionPoint |
IssuingDistributionPoint ::= SEQUENCE {
distributionPoint [0] DistributionPointName OPTIONAL,
onlyContainsUserCerts [1] BOOLEAN DEFAULT FALSE,
onlyContainsCACerts [2] BOOLEAN DEFAULT FALSE,
onlySomeReasons [3] ReasonFlags OPTIONAL,
indirectCRL [4] BOOLEAN DEFAULT FALSE,
onlyContainsAttributeCerts [5] BOOLEAN DEFAULT FALSE }
|
KEKIdentifier |
|
KEKRecipientInfo |
|
KeyAgreeRecipientIdentifier |
|
KeyAgreeRecipientInfo |
|
KeyDerivationFunc |
|
KeyPurposeId |
The KeyPurposeId object. |
KeyRecRepContent |
|
KeySpecificInfo |
ASN.1 def for Diffie-Hellman key exchange KeySpecificInfo structure. |
KeyTransRecipientInfo |
|
KeyUsage |
The KeyUsage object. |
LDSSecurityObject |
The LDSSecurityObject object (V1.8). |
LDSVersionInfo |
|
LazyDERSequence |
|
MQVuserKeyingMaterial |
|
MacData |
|
MessageImprint |
|
MetaData |
|
MonetaryLimit |
Monetary limit for transactions. |
MonetaryValue |
The MonetaryValue object. |
NameConstraints |
|
NameOrPseudonym |
Structure for a name or pseudonym. |
NamingAuthority |
Names of authorities which are responsible for the administration of title
registers. |
NetscapeCertRequest |
Handles NetScape certificate request (KEYGEN), these are constructed as:
SignedPublicKeyAndChallenge ::= SEQUENCE {
publicKeyAndChallenge PublicKeyAndChallenge,
signatureAlgorithm AlgorithmIdentifier,
signature BIT STRING
}
PublicKey's encoded-format has to be X.509. |
NetscapeCertType |
The NetscapeCertType object. |
NetscapeRevocationURL |
|
NoticeReference |
NoticeReference class, used in
CertificatePolicies X509 V3 extensions
(in policy qualifiers). |
OCSPRequest |
|
OCSPResponse |
|
OCSPResponseStatus |
|
OOBCertHash |
|
ObjectDigestInfo |
ObjectDigestInfo ASN.1 structure used in v2 attribute certificates. |
OcspIdentifier |
OcspIdentifier ::= SEQUENCE {
ocspResponderID ResponderID, -- As in OCSP response data
producedAt GeneralizedTime -- As in OCSP response data
}
|
OcspListID |
OcspListID ::= SEQUENCE {
ocspResponses SEQUENCE OF OcspResponsesID
}
|
OcspResponsesID |
OcspResponsesID ::= SEQUENCE {
ocspIdentifier OcspIdentifier,
ocspRepHash OtherHash OPTIONAL
}
|
OptionalValidity |
|
OriginatorIdentifierOrKey |
|
OriginatorInfo |
|
OriginatorPublicKey |
|
OtherCertID |
|
OtherHash |
OtherHash ::= CHOICE {
sha1Hash OtherHashValue, -- This contains a SHA-1 hash
otherHash OtherHashAlgAndValue
}
|
OtherHashAlgAndValue |
|
OtherInfo |
ANS.1 def for Diffie-Hellman key exchange OtherInfo structure. |
OtherKeyAttribute |
|
OtherRecipientInfo |
|
OtherRevRefs |
OtherRevRefs ::= SEQUENCE {
otherRevRefType OtherRevRefType,
otherRevRefs ANY DEFINED BY otherRevRefType
}
OtherRevRefType ::= OBJECT IDENTIFIER
|
OtherRevVals |
OtherRevVals ::= SEQUENCE {
otherRevValType OtherRevValType,
otherRevVals ANY DEFINED BY OtherRevValType
}
OtherRevValType ::= OBJECT IDENTIFIER
|
OtherSigningCertificate |
|
PBEParameter |
|
PBES2Algorithms |
This class is deprecated.
- use AlgorithmIdentifier and PBES2Parameters
|
PBES2Parameters |
|
PBKDF2Params |
|
PBMParameter |
|
PKCS10CertificationRequest |
A class for verifying and creating PKCS10 Certification requests. |
PKCS12PBEParams |
|
PKIArchiveOptions |
|
PKIBody |
|
PKIConfirmContent |
|
PKIFailureInfo |
PKIFailureInfo ::= BIT STRING {
badAlg (0),
-- unrecognized or unsupported Algorithm Identifier
badMessageCheck (1), -- integrity check failed (e.g., signature did not verify)
badRequest (2),
-- transaction not permitted or supported
badTime (3), -- messageTime was not sufficiently close to the system time, as defined by local policy
badCertId (4), -- no certificate could be found matching the provided criteria
badDataFormat (5),
-- the data submitted has the wrong format
wrongAuthority (6), -- the authority indicated in the request is different from the one creating the response token
incorrectData (7), -- the requester's data is incorrect (for notary services)
missingTimeStamp (8), -- when the timestamp is missing but should be there (by policy)
badPOP (9) -- the proof-of-possession failed
certRevoked (10),
certConfirmed (11),
wrongIntegrity (12),
badRecipientNonce (13),
timeNotAvailable (14),
-- the TSA's time source is not available
unacceptedPolicy (15),
-- the requested TSA policy is not supported by the TSA
unacceptedExtension (16),
-- the requested extension is not supported by the TSA
addInfoNotAvailable (17)
-- the additional information requested could not be understood
-- or is not available
badSenderNonce (18),
badCertTemplate (19),
signerNotTrusted (20),
transactionIdInUse (21),
unsupportedVersion (22),
notAuthorized (23),
systemUnavail (24),
systemFailure (25),
-- the request cannot be handled due to system failure
duplicateCertReq (26)
|
PKIFreeText |
|
PKIHeader |
|
PKIMessage |
|
PKIMessages |
|
PKIPublicationInfo |
|
PKIStatus |
|
PKIStatusInfo |
|
PKMACValue |
Password-based MAC value for use with POPOSigningKeyInput. |
POPODecKeyChallContent |
|
POPODecKeyRespContent |
|
POPOPrivKey |
|
POPOSigningKey |
|
POPOSigningKeyInput |
|
PasswordRecipientInfo |
|
PersonalData |
Contains personal data for the otherName field in the subjectAltNames
extension. |
Pfx |
the infamous Pfx from PKCS12
|
PolicyInformation |
|
PolicyMappings |
PolicyMappings V3 extension, described in RFC3280. |
PolicyQualifierId |
PolicyQualifierId, used in the CertificatePolicies
X509V3 extension. |
PolicyQualifierInfo |
Policy qualifiers, used in the X509V3 CertificatePolicies
extension. |
PollRepContent |
|
PollReqContent |
|
PrivateKeyInfo |
|
PrivateKeyUsagePeriod |
PrivateKeyUsagePeriod ::= SEQUENCE {
notBefore [0] GeneralizedTime OPTIONAL,
notAfter [1] GeneralizedTime OPTIONAL }
|
ProcurationSyntax |
Attribute to indicate that the certificate holder may sign in the name of a
third person. |
ProfessionInfo |
Professions, specializations, disciplines, fields of activity, etc. |
ProofOfPossession |
|
ProtectedPart |
|
PublicKeyAndChallenge |
This is designed to parse
the PublicKeyAndChallenge created by the KEYGEN tag included by
Mozilla based browsers. |
QCStatement |
The QCStatement object. |
RC2CBCParameter |
|
RDN |
|
RSAESOAEPparams |
|
RSAPrivateKeyStructure |
|
RSAPublicKeyStructure |
|
RSASSAPSSparams |
|
ReasonFlags |
The ReasonFlags object. |
RecipientEncryptedKey |
|
RecipientIdentifier |
|
RecipientInfo |
|
RecipientKeyIdentifier |
|
Request |
|
RequestedCertificate |
ISIS-MTT-Optional: The certificate requested by the client by inserting the
RetrieveIfAllowed extension in the request, will be returned in this
extension. |
ResponderID |
|
ResponseBytes |
|
ResponseData |
|
Restriction |
Some other restriction regarding the usage of this certificate. |
RevAnnContent |
|
RevDetails |
|
RevRepContent |
|
RevReqContent |
|
RevocationValues |
RevocationValues ::= SEQUENCE {
crlVals [0] SEQUENCE OF CertificateList OPTIONAL,
ocspVals [1] SEQUENCE OF BasicOCSPResponse OPTIONAL,
otherRevVals [2] OtherRevVals OPTIONAL}
|
RevokedInfo |
|
RoleSyntax |
Implementation of the RoleSyntax object as specified by the RFC3281. |
SMIMECapabilities |
Handler class for dealing with S/MIME Capabilities
|
SMIMECapabilitiesAttribute |
|
SMIMECapability |
|
SMIMEEncryptionKeyPreferenceAttribute |
The SMIMEEncryptionKeyPreference object. |
SafeBag |
|
SemanticsInformation |
The SemanticsInformation object. |
ServiceLocator |
|
SigPolicyQualifierInfo |
|
SigPolicyQualifiers |
|
Signature |
|
SignaturePolicyId |
|
SignaturePolicyIdentifier |
|
SignedData |
a PKCS#7 signed data object. |
SignedPublicKeyAndChallenge |
This is designed to parse the SignedPublicKeyAndChallenge created by the
KEYGEN tag included by Mozilla based browsers. |
SignerAttribute |
|
SignerIdentifier |
|
SignerInfo |
a PKCS#7 signer info object. |
SignerLocation |
Signer-Location attribute (RFC3126). |
SigningCertificate |
|
SigningCertificateV2 |
|
SinglePubInfo |
|
SingleResponse |
|
SubjectDirectoryAttributes |
This extension may contain further X.500 attributes of the subject. |
SubjectKeyIdentifier |
The SubjectKeyIdentifier object. |
SubjectKeyIdentifierStructure |
A high level subject key identifier. |
SubjectPublicKeyInfo |
The object that contains the public key stored in a certficate. |
SubsequentMessage |
|
TBSCertList |
PKIX RFC-2459 - TBSCertList object. |
TBSCertList.CRLEntry |
|
TBSCertificateStructure |
The TBSCertificate object. |
TBSRequest |
|
TSTInfo |
|
Target |
Target structure used in target information extension for attribute
certificates from RFC 3281. |
TargetInformation |
Target information extension for attributes certificates according to RFC
3281. |
Targets |
Targets structure used in target information extension for attribute
certificates from RFC 3281. |
Time |
|
TimeStampAndCRL |
|
TimeStampReq |
|
TimeStampResp |
|
TimeStampTokenEvidence |
|
TimeStampedData |
|
TypeOfBiometricData |
The TypeOfBiometricData object. |
UserNotice |
UserNotice class, used in
CertificatePolicies X509 extensions (in policy
qualifiers). |
V2Form |
|
VerisignCzagExtension |
|
X500Name |
Name ::= CHOICE {
RDNSequence }
RDNSequence ::= SEQUENCE OF RelativeDistinguishedName
RelativeDistinguishedName ::= SET SIZE (1..MAX) OF AttributeTypeAndValue
AttributeTypeAndValue ::= SEQUENCE {
type OBJECT IDENTIFIER,
value ANY }
|
X509Attribute |
Class for carrying the values in an X.509 Attribute. |
X509CertificateStructure |
an X509Certificate structure. |
X509Extensions |
|
X509KeyUsage |
A holding class for constructing an X509 Key Usage extension. |
X509Name |
This class is deprecated.
use org.bouncycastle.asn1.x500.X500Name.
|
X509Principal |
a general extension of X509Name with a couple of extra methods and
constructors. |
X962Parameters |
|
X9Curve |
ASN.1 def for Elliptic-Curve Curve structure. |
X9ECParameters |
ASN.1 def for Elliptic-Curve ECParameters structure. |
X9ECPoint |
class for describing an ECPoint as a DER object. |
X9FieldElement |
class for processing an FieldElement as a DER object. |
X9FieldID |
ASN.1 def for Elliptic-Curve Field ID structure. |