|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object | +--com.rsa.certj.cert.extensions.X509V3Extension | +--com.rsa.certj.cert.extensions.PrivateKeyUsagePeriod
This class builds and holds the
PrivateKeyUsagePeriod
extension. It
allows the certificate issuer to specify a different
validity period for the private key than the
certificate. This extension is intended for use with
digital signature keys. This extension consists of two
optional components; notBefore
and
notAfter
. The private key associated with
the certificate should not be used to sign objects
before or after the times specified by the two
components, respectively. CAs conforming to this
profile must not generate certificates with private
key usage period extensions unless at least one of the
two components is present.
privateKeyUsagePeriod EXTENSION ::= { SYNTAX PrivateKeyUsagePeriod IDENTIFIED BY id-ce-privateKeyUsagePeriod } PrivateKeyUsagePeriod ::= SEQUENCE { notBefore [0] GeneralizedTime OPTIONAL, notAfter [1] GeneralizedTime OPTIONAL } ( WITH COMPONENTS {..., notBefore PRESENT} | WITH COMPONENTS {..., notAfter PRESENT} ) |
notBefore
component indicates the earliest date and time
at which the private key can be used for signing.
The notAfter
component indicates the latest date and time
at which the private key can be used for signing.
Copyright © RSA Security Inc., 1999-2001. All rights reserved.
See Also
Constructor Summary |
|
PrivateKeyUsagePeriod()
Constructs an empty |
|
PrivateKeyUsagePeriod(Date notBefore,
Date notAfter,
boolean criticality)
Constructs a |
Method Summary |
|
clone()
Overrides the default |
|
void |
decodeValue(byte[] valueBER,
int offset)
Decode the value. |
int |
derEncodeValue(byte[] encoding,
int offset)
Place the encoding of the value into encoding, beginning at offset. |
int |
derEncodeValueInit()
Initialize for encoding the value. |
getNotAfter()
Gets the notAfter value. |
|
getNotBefore()
Gets the notBefore value. |
|
void |
setNotAfter(Date theTime)
Sets the notAfter value. |
void |
setNotBefore(Date theTime)
Sets the notBefore value. |
Methods inherited from class com.rsa.certj.cert.extensions.X509V3Extension |
extend, getCriticality, getDEREncoding, getDERLen, getExtensionType, getExtensionTypeString, getInstance, getNextBEROffset, isExtensionType, setCriticality, setEncoding, setSpecialOID, setStandardOID |
Methods inherited from class java.lang.Object |
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
public PrivateKeyUsagePeriod()
PrivateKeyUsagePeriod
object.public PrivateKeyUsagePeriod(Date notBefore, Date notAfter, boolean criticality)
PrivateKeyUsagePeriod
object and
initializes it with the given values.Parameters
notBefore | A | ||
notAfter | A | ||
criticality | The user-specified criticality. |
Method Detail |
public void decodeValue(byte[] valueBER, int offset) throws CertificateException
Overrides
decodeValue
in class X509V3Extension
Parameters
valueBER | The BER encoding of the extension's value. | ||
offset | The offset into valueBER where the encoding begins. |
Throws
CertificateException
- If the encoding is invalid for this
extension.public void setNotBefore(Date theTime)
Parameters
theTime | A |
public Date getNotBefore()
Returns
Date
that indicates the earliest date and time
at which the private key can be used for signing.public void setNotAfter(Date theTime)
Parameters
theTime | A |
public Date getNotAfter()
Returns
Date
that indicates the latest date and time
at which the private key can be used for signing.public int derEncodeValueInit()
Overrides
derEncodeValueInit
in class X509V3Extension
Returns
public int derEncodeValue(byte[] encoding, int offset)
Overrides
derEncodeValue
in class X509V3Extension
Parameters
encoding | The byte array into which the result will be placed. | ||
offset | The offest into encoding where the writing is to begin. |
Returns
public Object clone() throws CloneNotSupportedException
clone
method
to get a deeper clone.
Overrides
clone
in class X509V3Extension
Returns
PrivateKeyUsagePeriod
object,
a copy of this object.
Throws
CloneNotSupportedException
- If the cloning operation
is not successful.
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |