be.cardon.asn1.x509
Class AccessDescription

java.lang.Object
  org.bouncycastle.asn1.ASN1Encodable
      be.cardon.asn1.x509.AccessDescription

All Implemented Interfaces:

org.bouncycastle.asn1.DEREncodable

public class AccessDescription
extends org.bouncycastle.asn1.ASN1Encodable

The AccessDescription object.

See RFC 3280.

This class is used by the AuthorityInformationAccess and SubjectInformationAccess extension.

ASN.1 definition:

 AccessDescription  ::=  SEQUENCE {
       accessMethod          OBJECT IDENTIFIER,
       accessLocation        GeneralName  }

 id-ad OBJECT IDENTIFIER ::= { id-pkix 48 }

 id-ad-caIssuers OBJECT IDENTIFIER ::= { id-ad 2 }

 id-ad-caRepository OBJECT IDENTIFIER ::= { id-ad 5 }

 id-ad-ocsp OBJECT IDENTIFIER ::= { id-ad 1 }

 id-ad-timeStamping OBJECT IDENTIFIER ::= { id-ad 3 }
 

See Also:

AuthorityInformationAccess, SubjectInformationAccess, GeneralName

Field Summary

static org.bouncycastle.asn1.DERObjectIdentifier	id_ad_caIssuers Objet identifier of id-ad-caIssuers access method.
static org.bouncycastle.asn1.DERObjectIdentifier	id_ad_caRepository Objet identifier of id-ad-caRepository access method.
static org.bouncycastle.asn1.DERObjectIdentifier	id_ad_ocsp Objet identifier of id-ad-ocsp (online certificate status protocol) access method.
static org.bouncycastle.asn1.DERObjectIdentifier	id_ad_timeStamping Objet identifier of id-ad-timeStamping access method.

Fields inherited from class org.bouncycastle.asn1.ASN1Encodable

BER, DER

Constructor Summary

AccessDescription(org.bouncycastle.asn1.ASN1Sequence seq)
Creates a new instance from a ASN1Sequence object.

AccessDescription(org.bouncycastle.asn1.DERObjectIdentifier accessMethod, GeneralName accessLocation)
Creates a new instance with the given method access object identifier and the given location.

Method Summary

GeneralName	getAccessLocation() Returns the access location.
org.bouncycastle.asn1.DERObjectIdentifier	getAccessMethod() Returns the access method.
static AccessDescription	getInstance(java.lang.Object obj) Get an instance from a ASN1Sequence or AccessDescription object.
org.bouncycastle.asn1.DERObject	toASN1Object()

Methods inherited from class org.bouncycastle.asn1.ASN1Encodable

equals, getDEREncoded, getDERObject, getEncoded, getEncoded, hashCode

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, toString, wait, wait, wait

Field Detail

id_ad_caIssuers

public static final org.bouncycastle.asn1.DERObjectIdentifier id_ad_caIssuers

Objet identifier of id-ad-caIssuers access method.

The id-ad-caIssuers OID is used when the additional information lists CAs that have issued certificates superior to the CA that issued the certificate containing this extension. The referenced CA issuers description is intended to aid certificate users in the selection of a certification path that terminates at a point trusted by the certificate user.

When id-ad-caIssuers appears as accessMethod, the accessLocation field describes the referenced description server and the access protocol to obtain the referenced description. The accessLocation field is defined as a GeneralName, which can take several forms.

• Where the information is available via http, ftp, or ldap, accessLocation MUST be a uniformResourceIdentifier.
• Where the information is available via the Directory Access Protocol (DAP), accessLocation MUST be a directoryName. The entry for that directoryName contains CA certificates in the crossCertificatePair attribute.
• When the information is available via electronic mail, accessLocation MUST be an rfc822Name.
• The semantics of other id-ad-caIssuers accessLocation name forms are not defined.

See Also:

AuthorityInformationAccess, GeneralName

id_ad_ocsp

public static final org.bouncycastle.asn1.DERObjectIdentifier id_ad_ocsp

Objet identifier of id-ad-ocsp (online certificate status protocol) access method.

The id-ad-ocsp OID is used when revocation information for the certificate containing this extension is available using the Online Certificate Status Protocol (OCSP) [RFC 2560].

When id-ad-ocsp appears as accessMethod, the accessLocation field is the location of the OCSP responder, using the conventions defined in [RFC 2560].

See Also:

AuthorityInformationAccess, GeneralName

id_ad_timeStamping

public static final org.bouncycastle.asn1.DERObjectIdentifier id_ad_timeStamping

Objet identifier of id-ad-timeStamping access method.

The id-ad-timeStamping OID is used when the subject offers timestamping services using the Time Stamp Protocol defined in [PKIXTSA].

• Where the timestamping services are available via http or ftp, accessLocation MUST be a uniformResourceIdentifier.
• Where the timestamping services are available via electronic mail, accessLocation MUST be an rfc822Name.
• Where timestamping services are available using TCP/IP, the dNSName or ipAddress name forms may be used.
• The semantics of other name forms of accessLocation (when accessMethod is id-ad-timeStamping) are not defined by this specification.

See Also:

SubjectInformationAccess, GeneralName

id_ad_caRepository

public static final org.bouncycastle.asn1.DERObjectIdentifier id_ad_caRepository

Objet identifier of id-ad-caRepository access method.

The id-ad-caRepository OID is used when the subject is a CA, and publishes its certificates and CRLs (if issued) in a repository. The accessLocation field is defined as a GeneralName, which can take several forms.

• Where the information is available via http, ftp, or ldap, accessLocation MUST be a uniformResourceIdentifier.
• Where the information is available via the directory access protocol (dap), accessLocation MUST be a directoryName.
• When the information is available via electronic mail, accessLocation MUST be an rfc822Name.
• The semantics of other name forms of of accessLocation (when accessMethod is id-ad-caRepository) are not defined by this specification.

See Also:

SubjectInformationAccess, GeneralName

Constructor Detail

AccessDescription

public AccessDescription(org.bouncycastle.asn1.ASN1Sequence seq)

Creates a new instance from a ASN1Sequence object.

AccessDescription

public AccessDescription(org.bouncycastle.asn1.DERObjectIdentifier accessMethod,
                         GeneralName accessLocation)

Creates a new instance with the given method access object identifier and the given location.

Method Detail

getInstance

public static AccessDescription getInstance(java.lang.Object obj)

Get an instance from a ASN1Sequence or AccessDescription object.

getAccessMethod

public org.bouncycastle.asn1.DERObjectIdentifier getAccessMethod()

Returns the access method.

getAccessLocation

public GeneralName getAccessLocation()

Returns the access location.

toASN1Object

public org.bouncycastle.asn1.DERObject toASN1Object()

Specified by:

toASN1Object in class org.bouncycastle.asn1.ASN1Encodable