Class RevokedCertImpl

All Implemented Interfaces:
Serializable, X509Extension

public class RevokedCertImpl extends RevokedCertificate implements Serializable

Abstract class for a revoked certificate in a CRL. This class is for each entry in the revokedCertificates, so it deals with the inner SEQUENCE. The ASN.1 definition for this is:

 revokedCertificates    SEQUENCE OF SEQUENCE  {
     userCertificate    CertificateSerialNumber,
     revocationDate     ChoiceOfTime,
     crlEntryExtensions Extensions OPTIONAL
                        -- if present, must be v2
 }  OPTIONAL

 CertificateSerialNumber  ::=  INTEGER

 Extensions  ::=  SEQUENCE SIZE (1..MAX) OF Extension

 Extension  ::=  SEQUENCE  {
     extnId        OBJECT IDENTIFIER,
     critical      BOOLEAN DEFAULT FALSE,
     extnValue     OCTET STRING
                   -- contains a DER encoding of a value
                   -- of the type registered for use with
                   -- the extnId object identifier value
 }
 
See Also:
  • Constructor Details

    • RevokedCertImpl

      public RevokedCertImpl()
      Default constructor.
    • RevokedCertImpl

      public RevokedCertImpl(BigInteger num, Date date)
      Constructs a revoked certificate entry using the serial number and revocation date.
      Parameters:
      num - the serial number of the revoked certificate.
      date - the Date on which revocation took place.
    • RevokedCertImpl

      public RevokedCertImpl(BigInteger num, Date date, CRLExtensions crlEntryExts)
      Constructs a revoked certificate entry using the serial number, revocation date and the entry extensions.
      Parameters:
      num - the serial number of the revoked certificate.
      date - the Date on which revocation took place.
      crlEntryExts - the extensions for this entry.
    • RevokedCertImpl

      public RevokedCertImpl(byte[] revokedCert) throws CRLException, X509ExtensionException
      Unmarshals a revoked certificate from its encoded form.
      Parameters:
      revokedCert - the encoded bytes.
      Throws:
      CRLException - on parsing errors.
      X509ExtensionException - on extension handling errors.
    • RevokedCertImpl

      public RevokedCertImpl(DerValue derValue) throws CRLException, X509ExtensionException
      Unmarshals a revoked certificate from its encoded form.
      Parameters:
      derValue - the DER value containing the revoked certificate.
      Throws:
      CRLException - on parsing errors.
      X509ExtensionException - on extension handling errors.
  • Method Details

    • getEncoded

      public byte[] getEncoded() throws CRLException
      Specified by:
      getEncoded in class X509CRLEntry
      Throws:
      CRLException
    • hasUnsupportedCriticalExtension

      public boolean hasUnsupportedCriticalExtension()
      Specified by:
      hasUnsupportedCriticalExtension in interface X509Extension
    • setExtensions

      public void setExtensions(CRLExtensions crlEntryExts)
      Sets extensions for this impl.
      Parameters:
      crlEntryExts - CRLExtensions
    • hasExtensions

      public boolean hasExtensions()
      Returns true if this revoked certificate entry has extensions, otherwise false.
      Specified by:
      hasExtensions in class RevokedCertificate
      Returns:
      true if this CRL entry has extensions, otherwise false.
    • decode

      public void decode(InputStream inStrm) throws CRLException, X509ExtensionException
      Decode a revoked certificate from an input stream.
      Parameters:
      inStrm - an input stream holding at least one revoked certificate
      Throws:
      CRLException - on parsing errors.
      X509ExtensionException - on extension handling errors.
    • encode

      public void encode(DerOutputStream outStrm) throws CRLException, X509ExtensionException
      Encodes the revoked certificate to an output stream.
      Parameters:
      outStrm - an output stream to which the encoded revoked certificate is written.
      Throws:
      CRLException - on encoding errors.
      X509ExtensionException - on extension handling errors.
    • getSerialNumber

      public BigInteger getSerialNumber()
      Gets the serial number for this RevokedCertificate, the userCertificate.
      Specified by:
      getSerialNumber in class RevokedCertificate
      Returns:
      the serial number.
    • getRevocationDate

      public Date getRevocationDate()
      Gets the revocation date for this RevokedCertificate, the revocationDate.
      Specified by:
      getRevocationDate in class RevokedCertificate
      Returns:
      the revocation date.
    • getExtensions

      public CRLExtensions getExtensions()
      Returns extensions for this impl.
      Specified by:
      getExtensions in class RevokedCertificate
      Returns:
      the CRLExtensions
    • toString

      public String toString()
      Returns a printable string of this revoked certificate.
      Specified by:
      toString in class RevokedCertificate
      Returns:
      value of this revoked certificate in a printable form.
    • getCriticalExtensionOIDs

      public Set<String> getCriticalExtensionOIDs()
      Gets a Set of the extension(s) marked CRITICAL in the RevokedCertificate by OID strings.
      Specified by:
      getCriticalExtensionOIDs in interface X509Extension
      Returns:
      a set of the extension oid strings in the Object that are marked critical.
    • getNonCriticalExtensionOIDs

      public Set<String> getNonCriticalExtensionOIDs()
      Gets a Set of the extension(s) marked NON-CRITICAL in the RevokedCertificate by OID strings.
      Specified by:
      getNonCriticalExtensionOIDs in interface X509Extension
      Returns:
      a set of the extension oid strings in the Object that are marked critical.
    • getExtensionValue

      public byte[] getExtensionValue(String oid)
      Gets the DER encoded OCTET string for the extension value (extnValue) identified by the passed in oid String. The oid string is represented by a set of positive whole number separated by ".", that means,
      <positive whole number>.<positive whole number>.<positive whole number>.<...>
      Specified by:
      getExtensionValue in interface X509Extension
      Parameters:
      oid - the Object Identifier value for the extension.
      Returns:
      the DER encoded octet string of the extension value.