public abstract class X509Certificate extends Certificate
This represents a standard way for accessing the attributes of X.509 v1 certificates.
Note: This package is provided only for compatibility reasons. It contains a simplified version of the java.security.cert package that was previously used by JSSE (Java SSL package). All applications that do not have to be compatible with older versions of JSSE (that is before Java SDK 1.5) should only use java.security.cert.
Constructor and Description |
---|
X509Certificate()
Creates a new
X509Certificate . |
Modifier and Type | Method and Description |
---|---|
abstract void |
checkValidity()
Checks whether the certificate is currently valid.
|
abstract void |
checkValidity(Date date)
Checks whether the certificate is valid at the specified date.
|
static X509Certificate |
getInstance(byte[] certData)
Creates a new
X509Certificate and initializes it from the
specified byte array. |
static X509Certificate |
getInstance(InputStream inStream)
Creates a new
X509Certificate and initializes it from the
specified input stream. |
abstract Principal |
getIssuerDN()
Returns the
issuer (issuer distinguished name) as an
implementation specific Principal object. |
abstract Date |
getNotAfter()
Returns the
notAfter date of the validity period of the
certificate. |
abstract Date |
getNotBefore()
Returns the
notBefore date from the validity period of the
certificate. |
abstract BigInteger |
getSerialNumber()
Returns the
serialNumber of the certificate. |
abstract String |
getSigAlgName()
Returns the name of the algorithm for the certificate signature.
|
abstract String |
getSigAlgOID()
Returns the OID of the signature algorithm from the certificate.
|
abstract byte[] |
getSigAlgParams()
Returns the parameters of the signature algorithm in DER-encoded format.
|
abstract Principal |
getSubjectDN()
Returns the
subject (subject distinguished name) as an
implementation specific Principal object. |
abstract int |
getVersion()
Returns the certificates
version (version number). |
equals, getEncoded, getPublicKey, hashCode, toString, verify, verify
public static final X509Certificate getInstance(InputStream inStream) throws CertificateException
X509Certificate
and initializes it from the
specified input stream.inStream
- input stream containing data to initialize the certificate.CertificateException
- if the certificate cannot be created or initialized.public static final X509Certificate getInstance(byte[] certData) throws CertificateException
X509Certificate
and initializes it from the
specified byte array.certData
- byte array containing data to initialize the certificate.CertificateException
- if the certificate cannot be created or initialized.public abstract void checkValidity() throws CertificateExpiredException, CertificateNotYetValidException
The validity defined in ASN.1:
validity Validity Validity ::= SEQUENCE { notBefore CertificateValidityDate, notAfter CertificateValidityDate } CertificateValidityDate ::= CHOICE { utcTime UTCTime, generalTime GeneralizedTime }
CertificateExpiredException
- if the certificate has expired.CertificateNotYetValidException
- if the certificate is not yet valid.public abstract void checkValidity(Date date) throws CertificateExpiredException, CertificateNotYetValidException
date
- the date to check the validity against.CertificateExpiredException
- if the certificate has expired.CertificateNotYetValidException
- if the certificate is not yet valid.checkValidity()
public abstract int getVersion()
version
(version number).
The version defined is ASN.1:
Version ::= INTEGER { v1(0), v2(1), v3(2) }
public abstract BigInteger getSerialNumber()
serialNumber
of the certificate.
The ASN.1 definition of serialNumber
:
CertificateSerialNumber ::= INTEGER
public abstract Principal getIssuerDN()
issuer
(issuer distinguished name) as an
implementation specific Principal
object.
The ASN.1 definition of issuer
:
issuer Name Name ::= CHOICE { RDNSequence } RDNSequence ::= SEQUENCE OF RelativeDistinguishedName RelativeDistinguishedName ::= SET OF AttributeTypeAndValue AttributeTypeAndValue ::= SEQUENCE { type AttributeType, value AttributeValue } AttributeType ::= OBJECT IDENTIFIER AttributeValue ::= ANY DEFINED BY AttributeType
issuer
as an implementation specific Principal
.public abstract Principal getSubjectDN()
subject
(subject distinguished name) as an
implementation specific Principal
object.
The ASN.1 definition of subject
:
subject Name Name ::= CHOICE { RDNSequence } RDNSequence ::= SEQUENCE OF RelativeDistinguishedName RelativeDistinguishedName ::= SET OF AttributeTypeAndValue AttributeTypeAndValue ::= SEQUENCE { type AttributeType, value AttributeValue } AttributeType ::= OBJECT IDENTIFIER AttributeValue ::= ANY DEFINED BY AttributeType
subject
(subject distinguished name).public abstract Date getNotBefore()
notBefore
date from the validity period of the
certificate.public abstract Date getNotAfter()
notAfter
date of the validity period of the
certificate.public abstract String getSigAlgName()
public abstract String getSigAlgOID()
public abstract byte[] getSigAlgParams()