class Aws::ACMPCA::Types::CsrExtensions

Describes the certificate extensions to be added to the certificate signing request (CSR).

@note When making an API call, you may pass CsrExtensions

data as a hash:

    {
      key_usage: {
        digital_signature: false,
        non_repudiation: false,
        key_encipherment: false,
        data_encipherment: false,
        key_agreement: false,
        key_cert_sign: false,
        crl_sign: false,
        encipher_only: false,
        decipher_only: false,
      },
      subject_information_access: [
        {
          access_method: { # required
            custom_object_identifier: "CustomObjectIdentifier",
            access_method_type: "CA_REPOSITORY", # accepts CA_REPOSITORY, RESOURCE_PKI_MANIFEST, RESOURCE_PKI_NOTIFY
          },
          access_location: { # required
            other_name: {
              type_id: "CustomObjectIdentifier", # required
              value: "String256", # required
            },
            rfc_822_name: "String256",
            dns_name: "String253",
            directory_name: {
              country: "CountryCodeString",
              organization: "String64",
              organizational_unit: "String64",
              distinguished_name_qualifier: "ASN1PrintableString64",
              state: "String128",
              common_name: "String64",
              serial_number: "ASN1PrintableString64",
              locality: "String128",
              title: "String64",
              surname: "String40",
              given_name: "String16",
              initials: "String5",
              pseudonym: "String128",
              generation_qualifier: "String3",
            },
            edi_party_name: {
              party_name: "String256", # required
              name_assigner: "String256",
            },
            uniform_resource_identifier: "String253",
            ip_address: "String39",
            registered_id: "CustomObjectIdentifier",
          },
        },
      ],
    }

@!attribute [rw] key_usage

Indicates the purpose of the certificate and of the key contained in
the certificate.
@return [Types::KeyUsage]

@!attribute [rw] subject_information_access

For CA certificates, provides a path to additional information
pertaining to the CA, such as revocation and policy. For more
information, see [Subject Information Access][1] in RFC 5280.

[1]: https://tools.ietf.org/html/rfc5280#section-4.2.2.2
@return [Array<Types::AccessDescription>]

@see docs.aws.amazon.com/goto/WebAPI/acm-pca-2017-08-22/CsrExtensions AWS API Documentation

Constants

SENSITIVE