class to produce an X.509 Version 2 CRL.
addCRLEntry
public void addCRLEntry(BigInteger userCertificate,
Date revocationDate,
int reason)
Reason being as indicated by ReasonFlags, i.e. ReasonFlags.keyCompromise
or 0 if ReasonFlags are not to be used
addCRLEntry
public void addCRLEntry(BigInteger userCertificate,
Date revocationDate,
int reason,
Date invalidityDate)
Add a CRL entry with an Invalidity Date extension as well as a CRLReason extension.
Reason being as indicated by ReasonFlags, i.e. ReasonFlags.keyCompromise
or 0 if ReasonFlags are not to be used
addCRLEntry
public void addCRLEntry(BigInteger userCertificate,
Date revocationDate,
X509Extensions extensions)
Add a CRL entry with extensions.
addExtension
public void addExtension(String OID,
boolean critical,
byte[] value)
add a given extension field for the standard extensions tag (tag 0)
addExtension
public void addExtension(String OID,
boolean critical,
DEREncodable value)
add a given extension field for the standard extensions tag (tag 0)
addExtension
public void addExtension(DERObjectIdentifier OID,
boolean critical,
byte[] value)
add a given extension field for the standard extensions tag (tag 0)
addExtension
public void addExtension(DERObjectIdentifier OID,
boolean critical,
DEREncodable value)
add a given extension field for the standard extensions tag (tag 0)
generateX509CRL
public X509CRL generateX509CRL(PrivateKey key)
throws SecurityException,
SignatureException,
InvalidKeyException
generate an X509 CRL, based on the current issuer and subject
using the default provider "BC".
generateX509CRL
public X509CRL generateX509CRL(PrivateKey key,
SecureRandom random)
throws SecurityException,
SignatureException,
InvalidKeyException
generate an X509 CRL, based on the current issuer and subject
using the default provider "BC" and an user defined SecureRandom object as
source of randomness.
generateX509CRL
public X509CRL generateX509CRL(PrivateKey key,
String provider)
throws NoSuchProviderException,
SecurityException,
SignatureException,
InvalidKeyException
generate an X509 certificate, based on the current issuer and subject
using the passed in provider for the signing.
generateX509CRL
public X509CRL generateX509CRL(PrivateKey key,
String provider,
SecureRandom random)
throws NoSuchProviderException,
SecurityException,
SignatureException,
InvalidKeyException
generate an X509 CRL, based on the current issuer and subject,
using the passed in provider for the signing.
getSignatureAlgNames
public Iterator getSignatureAlgNames()
Return an iterator of the signature names supported by the generator.
- an iterator containing recognised names.
reset
public void reset()
reset the generator
setIssuerDN
public void setIssuerDN(X500Principal issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the
certificate.
setIssuerDN
public void setIssuerDN(X509Name issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the
certificate.
setNextUpdate
public void setNextUpdate(Date date)
setSignatureAlgorithm
public void setSignatureAlgorithm(String signatureAlgorithm)
Set the signature algorithm. This can be either a name or an OID, names
are treated as case insensitive.
signatureAlgorithm
- string representation of the algorithm name.
setThisUpdate
public void setThisUpdate(Date date)