Examples of iaik.x509.X509Certificate

net.rim.device.api.crypto.certificate.x509.X509Certificate

Implements a X.509v3 certificate according to the following ASN.1 data structure:

 Certificate  ::=  SEQUENCE  { tbsCertificate			TBSCertificate, signatureAlgorithm		AlgorithmIdentifier, signatureValue      	BIT STRING }

If you want to create a certificate, follow these steps:

create a {@link X509TBSCertificate X509TBSCertificate} object and fillit with sensible data

call the {@link #X509Certificate(X509TBSCertificate)} constructor andpass the tbsCertificate as an argument

call {@link #setSignature(byte[]) setSignature} with a pre-computedsignature of the tbsCertificate

{@link #getEncoded() getEncoded()} will return the DER-encodedcertificate as a Byte array.

Example:

 PrivateKey CASigningKey = ...; X509Certificate CASignatureCert = ...; PublicKey subjectPublicKey = ...; Name issuerDN = new Name("cn=My CA, c=DE"); Name subjectDN = new Name("cn=Myself, c=DE"); Calendar validFrom = ...; Calendar validUntil = ...; X509TBSCertificate tbs = new X509TBSCertificate(); tbs.setSerialNumber(new BigInteger("1")); tbs.setSubjectPublicKey(subjectPublicKey); tbs.setSubjectDN(subjectDN); tbs.setIssuerDN(issuerDN); tbs.setNotBefore(validFrom); tbs.setNotAfter(validUntil); X509Certificate theCert = new X509Certificate(tbs); Signature mySig = Signature.getInstance(...); mySig.initSign(CASigningKey); theCert.sign(mySig, CASignatureCert);

@author Markus Tak

      /*
       * If this certificate is to be used by an ssl server, 
       * then add the following:
       */


      cert.addExtension(new NetscapeSSLServerName(
        getEntry("host name of server", "*.eng.sun.com")));


      String comment = getEntry("A comment for the certificate user", "");
      if (!comment.equals("")) {
    cert.addExtension(new NetscapeComment(comment));

            // For this sample we use a hard coded certificate contained below.
            // This encoding would be extracted from the card using a series of
            // APDU commands.
            Certificate certificate = null;
            try {
                certificate = new X509Certificate(CERTIFICATE_ENCODING);
            } catch (final CertificateParsingException e) {
                // Should not happen.
            }


            stepProgressDialog(1);

Related Classes of iaik.x509.X509Certificate

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.