Package org.gudy.bouncycastle.asn1.x509
Class CertificatePair
- java.lang.Object
-
- org.gudy.bouncycastle.asn1.ASN1Encodable
-
- org.gudy.bouncycastle.asn1.x509.CertificatePair
-
- All Implemented Interfaces:
DEREncodable
public class CertificatePair extends ASN1Encodable
This class helps to support crossCerfificatePairs in a LDAP directory according RFC 2587crossCertificatePairATTRIBUTE::={ WITH SYNTAX CertificatePair EQUALITY MATCHING RULE certificatePairExactMatch ID joint-iso-ccitt(2) ds(5) attributeType(4) crossCertificatePair(40)}
The forward elements of the crossCertificatePair attribute of a CA's directory entry shall be used to store all, except self-issued certificates issued to this CA. Optionally, the reverse elements of the crossCertificatePair attribute, of a CA's directory entry may contain a subset of certificates issued by this CA to other CAs. When both the forward and the reverse elements are present in a single attribute value, issuer name in one certificate shall match the subject name in the other and vice versa, and the subject public key in one certificate shall be capable of verifying the digital signature on the other certificate and vice versa. When a reverse element is present, the forward element value and the reverse element value need not be stored in the same attribute value; in other words, they can be stored in either a single attribute value or two attribute values.
CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- }
-
-
Field Summary
Fields Modifier and Type Field Description private X509CertificateStructure
forward
private X509CertificateStructure
reverse
-
Fields inherited from class org.gudy.bouncycastle.asn1.ASN1Encodable
BER, DER
-
-
Constructor Summary
Constructors Modifier Constructor Description private
CertificatePair(ASN1Sequence seq)
Constructor from ASN1Sequence.CertificatePair(X509CertificateStructure forward, X509CertificateStructure reverse)
Constructor from a given details.
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description X509CertificateStructure
getForward()
static CertificatePair
getInstance(java.lang.Object obj)
X509CertificateStructure
getReverse()
DERObject
toASN1Object()
Produce an object suitable for an ASN1OutputStream.-
Methods inherited from class org.gudy.bouncycastle.asn1.ASN1Encodable
equals, getDEREncoded, getDERObject, getEncoded, getEncoded, hashCode
-
-
-
-
Field Detail
-
forward
private X509CertificateStructure forward
-
reverse
private X509CertificateStructure reverse
-
-
Constructor Detail
-
CertificatePair
private CertificatePair(ASN1Sequence seq)
Constructor from ASN1Sequence. The sequence is of type CertificatePair:CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- }
- Parameters:
seq
- The ASN.1 sequence.
-
CertificatePair
public CertificatePair(X509CertificateStructure forward, X509CertificateStructure reverse)
Constructor from a given details.- Parameters:
forward
- Certificates issued to this CA.reverse
- Certificates issued by this CA to other CAs.
-
-
Method Detail
-
getInstance
public static CertificatePair getInstance(java.lang.Object obj)
-
toASN1Object
public DERObject toASN1Object()
Produce an object suitable for an ASN1OutputStream. Returns:CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- }
- Specified by:
toASN1Object
in classASN1Encodable
- Returns:
- a DERObject
-
getForward
public X509CertificateStructure getForward()
- Returns:
- Returns the forward.
-
getReverse
public X509CertificateStructure getReverse()
- Returns:
- Returns the reverse.
-
-