public abstract class X509CRL extends CRL implements X509Extension
More information regarding CRL can be found in RFC 2459, "Internet X.509 Public Key Infrastructure Certificate and CRL Profile" at http://www.ietf.org/rfc/rfc2459.txt .
Modifier | Constructor and Description |
---|---|
protected |
X509CRL()
Creates a new
X509CRL instance. |
Modifier and Type | Method and Description |
---|---|
boolean |
equals(Object other)
Returns whether the specified object equals to this instance.
|
abstract byte[] |
getEncoded()
Returns this CRL in ASN.1 DER encoded form.
|
abstract Principal |
getIssuerDN()
Do not use, use
getIssuerX500Principal() instead. |
X500Principal |
getIssuerX500Principal()
Returns the issuer distinguished name of this CRL.
|
abstract Date |
getNextUpdate()
Returns the
nextUpdate value of this CRL. |
abstract X509CRLEntry |
getRevokedCertificate(BigInteger serialNumber)
Returns the CRL entry with the specified certificate serial number.
|
X509CRLEntry |
getRevokedCertificate(X509Certificate certificate)
Returns the CRL entry for the specified certificate.
|
abstract Set<? extends X509CRLEntry> |
getRevokedCertificates()
Returns the set of revoked certificates.
|
abstract String |
getSigAlgName()
Returns the name of the signature algorithm.
|
abstract String |
getSigAlgOID()
Returns the OID of the signature algorithm.
|
abstract byte[] |
getSigAlgParams()
Returns the parameters of the signature algorithm in DER encoded form.
|
abstract byte[] |
getSignature()
Returns the signature bytes of this CRL.
|
abstract byte[] |
getTBSCertList()
Returns the
tbsCertList information of this CRL in DER encoded
form. |
abstract Date |
getThisUpdate()
Returns the
thisUpdate value of this CRL. |
abstract int |
getVersion()
Returns the version number of this CRL.
|
int |
hashCode()
Returns the hashcode of this CRL instance.
|
abstract void |
verify(PublicKey key)
Verifies this CRL by verifying that this CRL was signed with the
corresponding private key to the specified public key.
|
abstract void |
verify(PublicKey key,
String sigProvider)
Verifies this CRL by verifying that this CRL was signed with the
corresponding private key to the specified public key.
|
clone, finalize, getClass, notify, notifyAll, wait, wait, wait
getCriticalExtensionOIDs, getExtensionValue, getNonCriticalExtensionOIDs, hasUnsupportedCriticalExtension
public boolean equals(Object other)
equals
in class Object
other
- the object to compare.true
if the specified object is equal to this, otherwise
false
.Object.hashCode()
public int hashCode()
hashCode
in class Object
Object.equals(java.lang.Object)
public abstract byte[] getEncoded() throws CRLException
CRLException
- if encoding fails.public abstract void verify(PublicKey key) throws CRLException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
key
- the public key to verify this CRL with.CRLException
- if encoding or decoding fails.NoSuchAlgorithmException
- if a needed algorithm is not present.InvalidKeyException
- if the specified key is invalid.NoSuchProviderException
- if no provider can be found.SignatureException
- if errors occur on signatures.public abstract void verify(PublicKey key, String sigProvider) throws CRLException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
key
- the public key to verify this CRL with.sigProvider
- the name of the provider for the signature algorithm.CRLException
- if encoding decoding fails.NoSuchAlgorithmException
- if a needed algorithm is not present.InvalidKeyException
- if the specified key is invalid.NoSuchProviderException
- if the specified provider cannot be found.SignatureException
- if errors occur on signatures.public abstract int getVersion()
public abstract Principal getIssuerDN()
getIssuerX500Principal()
instead. Returns
the issuer as an implementation specific Principal object.public X500Principal getIssuerX500Principal()
public abstract Date getThisUpdate()
thisUpdate
value of this CRL.thisUpdate
value of this CRL.public abstract Date getNextUpdate()
nextUpdate
value of this CRL.nextUpdate
value of this CRL, or null
if none
is present.public abstract X509CRLEntry getRevokedCertificate(BigInteger serialNumber)
serialNumber
- the certificate serial number to search for a CRL entry.null
if not found.public X509CRLEntry getRevokedCertificate(X509Certificate certificate)
certificate
- the certificate to search a CRL entry for.null
if not
found.public abstract Set<? extends X509CRLEntry> getRevokedCertificates()
null
if no revoked
certificates are in this CRL.public abstract byte[] getTBSCertList() throws CRLException
tbsCertList
information of this CRL in DER encoded
form.CRLException
- if encoding fails.public abstract byte[] getSignature()
public abstract String getSigAlgName()
public abstract String getSigAlgOID()
public abstract byte[] getSigAlgParams()
null
if not present.