public class

X509V3CertificateGenerator

extends Object
java.lang.Object
   ↳ org.bouncycastle.x509.X509V3CertificateGenerator

This class is deprecated.
use org.bouncycastle.cert.X509v3CertificateBuilder.

Class Overview

class to produce an X.509 Version 3 certificate.

Summary

Public Constructors
X509V3CertificateGenerator()
Public Methods
void addExtension(String oid, boolean critical, byte[] value)
add a given extension field for the standard extensions tag (tag 3) The value parameter becomes the contents of the octet string associated with the extension.
void addExtension(DERObjectIdentifier oid, boolean critical, DEREncodable value)
add a given extension field for the standard extensions tag (tag 3)
void addExtension(String oid, boolean critical, DEREncodable value)
add a given extension field for the standard extensions tag (tag 3)
void addExtension(DERObjectIdentifier oid, boolean critical, byte[] value)
add a given extension field for the standard extensions tag (tag 3)
void copyAndAddExtension(DERObjectIdentifier oid, boolean critical, X509Certificate cert)
add a given extension field for the standard extensions tag (tag 3) copying the extension value from another certificate.
void copyAndAddExtension(String oid, boolean critical, X509Certificate cert)
add a given extension field for the standard extensions tag (tag 3) copying the extension value from another certificate.
X509Certificate generate(PrivateKey key, String provider)
generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing.
X509Certificate generate(PrivateKey key, String provider, SecureRandom random)
generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing and the supplied source of randomness, if required.
X509Certificate generate(PrivateKey key)
generate an X509 certificate, based on the current issuer and subject using the default provider.
X509Certificate generate(PrivateKey key, SecureRandom random)
generate an X509 certificate, based on the current issuer and subject using the default provider, and the passed in source of randomness (if required).
X509Certificate generateX509Certificate(PrivateKey key)
This method is deprecated. use generate(key, "BC")
X509Certificate generateX509Certificate(PrivateKey key, String provider, SecureRandom random)
This method is deprecated. use generate()
X509Certificate generateX509Certificate(PrivateKey key, SecureRandom random)
This method is deprecated. use generate(key, random, "BC")
X509Certificate generateX509Certificate(PrivateKey key, String provider)
This method is deprecated. use generate()
Iterator getSignatureAlgNames()
Return an iterator of the signature names supported by the generator.
void reset()
reset the generator
void setIssuerDN(X509Name issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.
void setIssuerDN(X500Principal issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.
void setIssuerUniqueID(boolean[] uniqueID)
Set the issuer unique ID - note: it is very rare that it is correct to do this.
void setNotAfter(Date date)
void setNotBefore(Date date)
void setPublicKey(PublicKey key)
void setSerialNumber(BigInteger serialNumber)
set the serial number for the certificate.
void setSignatureAlgorithm(String signatureAlgorithm)
Set the signature algorithm.
void setSubjectDN(X509Name subject)
Set the subject distinguished name.
void setSubjectDN(X500Principal subject)
Set the subject distinguished name.
void setSubjectUniqueID(boolean[] uniqueID)
Set the subject unique ID - note: it is very rare that it is correct to do this.
[Expand]
Inherited Methods
From class java.lang.Object

Public Constructors

public X509V3CertificateGenerator ()

Public Methods

public void addExtension (String oid, boolean critical, byte[] value)

add a given extension field for the standard extensions tag (tag 3) The value parameter becomes the contents of the octet string associated with the extension.

public void addExtension (DERObjectIdentifier oid, boolean critical, DEREncodable value)

add a given extension field for the standard extensions tag (tag 3)

public void addExtension (String oid, boolean critical, DEREncodable value)

add a given extension field for the standard extensions tag (tag 3)

public void addExtension (DERObjectIdentifier oid, boolean critical, byte[] value)

add a given extension field for the standard extensions tag (tag 3)

public void copyAndAddExtension (DERObjectIdentifier oid, boolean critical, X509Certificate cert)

add a given extension field for the standard extensions tag (tag 3) copying the extension value from another certificate.

Throws
CertificateParsingException if the extension cannot be extracted.

public void copyAndAddExtension (String oid, boolean critical, X509Certificate cert)

add a given extension field for the standard extensions tag (tag 3) copying the extension value from another certificate.

Throws
CertificateParsingException if the extension cannot be extracted.

public X509Certificate generate (PrivateKey key, String provider)

generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing.

public X509Certificate generate (PrivateKey key, String provider, SecureRandom random)

generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing and the supplied source of randomness, if required.

public X509Certificate generate (PrivateKey key)

generate an X509 certificate, based on the current issuer and subject using the default provider.

Note: this differs from the deprecated method in that the default provider is used - not "BC".

public X509Certificate generate (PrivateKey key, SecureRandom random)

generate an X509 certificate, based on the current issuer and subject using the default provider, and the passed in source of randomness (if required).

Note: this differs from the deprecated method in that the default provider is used - not "BC".

public X509Certificate generateX509Certificate (PrivateKey key)

This method is deprecated.
use generate(key, "BC")

generate an X509 certificate, based on the current issuer and subject using the default provider "BC".

public X509Certificate generateX509Certificate (PrivateKey key, String provider, SecureRandom random)

This method is deprecated.
use generate()

generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing and the supplied source of randomness, if required.

public X509Certificate generateX509Certificate (PrivateKey key, SecureRandom random)

This method is deprecated.
use generate(key, random, "BC")

generate an X509 certificate, based on the current issuer and subject using the default provider "BC", and the passed in source of randomness (if required).

public X509Certificate generateX509Certificate (PrivateKey key, String provider)

This method is deprecated.
use generate()

generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing.

public Iterator getSignatureAlgNames ()

Return an iterator of the signature names supported by the generator.

Returns
  • an iterator containing recognised names.

public void reset ()

reset the generator

public void setIssuerDN (X509Name issuer)

Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.

public void setIssuerDN (X500Principal issuer)

Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.

public void setIssuerUniqueID (boolean[] uniqueID)

Set the issuer unique ID - note: it is very rare that it is correct to do this.

public void setNotAfter (Date date)

public void setNotBefore (Date date)

public void setPublicKey (PublicKey key)

public void setSerialNumber (BigInteger serialNumber)

set the serial number for the certificate.

public void setSignatureAlgorithm (String signatureAlgorithm)

Set the signature algorithm. This can be either a name or an OID, names are treated as case insensitive.

Parameters
signatureAlgorithm string representation of the algorithm name.

public void setSubjectDN (X509Name subject)

Set the subject distinguished name. The subject describes the entity associated with the public key.

public void setSubjectDN (X500Principal subject)

Set the subject distinguished name. The subject describes the entity associated with the public key.

public void setSubjectUniqueID (boolean[] uniqueID)

Set the subject unique ID - note: it is very rare that it is correct to do this.