private AuthorityKeyIdentifier getAKI() throws HFCACertificateException { if (x509Cert == null) { throw new HFCACertificateException("Certificate is null"); } byte[] fullExtValue = x509Cert.getExtensionValue(Extension.authorityKeyIdentifier.getId()); byte[] extValue = ASN1OctetString.getInstance(fullExtValue).getOctets(); return AuthorityKeyIdentifier.getInstance(extValue); } }
String aki = DatatypeConverter.printHexBinary(AuthorityKeyIdentifier.getInstance(akiOc.getOctets()).getKeyIdentifier());
public static AuthorityKeyIdentifier getInstance( ASN1TaggedObject obj, boolean explicit) { return getInstance(ASN1Sequence.getInstance(obj, explicit)); }
public static AuthorityKeyIdentifier getInstance( ASN1TaggedObject obj, boolean explicit) { return getInstance(ASN1Sequence.getInstance(obj, explicit)); }
public static AuthorityKeyIdentifier fromExtensions(Extensions extensions) { return AuthorityKeyIdentifier.getInstance(extensions.getExtensionParsedValue(Extension.authorityKeyIdentifier)); }
public static AuthorityKeyIdentifier fromExtensions(Extensions extensions) { return AuthorityKeyIdentifier.getInstance(extensions.getExtensionParsedValue(Extension.authorityKeyIdentifier)); }
private String authorityKeyIdentifierExtractor(ASN1Primitive primitive) { AuthorityKeyIdentifier authorityKeyIdentifier = AuthorityKeyIdentifier.getInstance(primitive); return Hex.toHexString(authorityKeyIdentifier.getKeyIdentifier()); }
/** * Reads the value of the <code>AuthorityKeyIdentifier</code> extension field of the certificate. * * @return Authority key identifier. * * @throws EncodingException On certificate field parse errors. */ public AuthorityKeyIdentifier readAuthorityKeyIdentifier() throws EncodingException { try { return AuthorityKeyIdentifier.getInstance(read(ExtensionType.AuthorityKeyIdentifier)); } catch (RuntimeException e) { throw new EncodingException("AuthorityKeyIdentifier parse error", e); } }
public static byte[] extractAki(X509Certificate cert) throws CertificateEncodingException { byte[] extValue = getCoreExtValue(cert, Extension.authorityKeyIdentifier); if (extValue == null) { return null; } try { AuthorityKeyIdentifier aki = AuthorityKeyIdentifier.getInstance(extValue); return aki.getKeyIdentifier(); } catch (IllegalArgumentException ex) { throw new CertificateEncodingException("invalid extension AuthorityKeyIdentifier: " + ex.getMessage()); } }
private static byte[] extractAki(X509Certificate cert) throws CertificateEncodingException { byte[] extValue = getCoreExtValue(cert, Extension.authorityKeyIdentifier); if (extValue == null) { return null; } try { AuthorityKeyIdentifier aki = AuthorityKeyIdentifier.getInstance(extValue); return aki.getKeyIdentifier(); } catch (IllegalArgumentException ex) { throw new CertificateEncodingException( "invalid extension AuthorityKeyIdentifier: " + ex.getMessage()); } }
public static byte[] extractAki(final X509Certificate cert) throws CertificateEncodingException { byte[] extValue = getCoreExtValue(cert, Extension.authorityKeyIdentifier); if (extValue == null) { return null; } try { AuthorityKeyIdentifier aki = AuthorityKeyIdentifier.getInstance(extValue); return aki.getKeyIdentifier(); } catch (IllegalArgumentException ex) { throw new CertificateEncodingException("invalid extension AuthorityKeyIdentifier: " + ex.getMessage()); } }
AuthorityKeyIdentifier authorityKeyIdentifier = AuthorityKeyIdentifier.getInstance(value);
public static byte[] getAuthorityKeyIdentifierBytes(X509Certificate cert) { byte[] extensionValue = cert.getExtensionValue("2.5.29.35"); //NOPMD if (extensionValue != null) { byte[] octets = ASN1OctetString.getInstance(extensionValue).getOctets(); AuthorityKeyIdentifier authorityKeyIdentifier = AuthorityKeyIdentifier.getInstance(octets); return authorityKeyIdentifier.getKeyIdentifier(); } return null; }
private void prepopulateWithValue(byte[] value) throws IOException { AuthorityKeyIdentifier authorityKeyIdentifier = AuthorityKeyIdentifier.getInstance(value); if (authorityKeyIdentifier.getKeyIdentifier() != null) { jkiKeyIdentifier.setKeyIdentifier(authorityKeyIdentifier.getKeyIdentifier()); } GeneralNames authorityCertIssuer = authorityKeyIdentifier.getAuthorityCertIssuer(); if (authorityCertIssuer != null) { jgnAuthorityCertIssuer.setGeneralNames(authorityCertIssuer); } BigInteger authorityCertSerialNumber = authorityKeyIdentifier.getAuthorityCertSerialNumber(); if (authorityCertSerialNumber != null) { jtfAuthorityCertSerialNumber.setText("" + authorityCertSerialNumber.longValue()); jtfAuthorityCertSerialNumber.setCaretPosition(0); } }
private AuthorityKeyIdentifier getAKI() throws HFCACertificateException { if (x509Cert == null) { throw new HFCACertificateException("Certificate is null"); } byte[] fullExtValue = x509Cert.getExtensionValue(Extension.authorityKeyIdentifier.getId()); byte[] extValue = ASN1OctetString.getInstance(fullExtValue).getOctets(); return AuthorityKeyIdentifier.getInstance(extValue); } }
@Test public void getSelfSigned_generatesACertificateWithTheRightValues() throws Exception { final X509Certificate generatedCertificate = subject.getSelfSigned(generatedCertificateKeyPair, certificateGenerationParameters); assertThat(generatedCertificate.getIssuerDN().getName(), containsString("CN=my cert name")); assertThat(generatedCertificate.getSubjectDN().toString(), containsString("CN=my cert name")); generatedCertificate.verify(generatedCertificateKeyPair.getPublic()); final byte[] authorityKeyIdDer = generatedCertificate.getExtensionValue(Extension.authorityKeyIdentifier.getId()); final AuthorityKeyIdentifier authorityKeyIdentifier = AuthorityKeyIdentifier.getInstance(parseExtensionValue(authorityKeyIdDer)); final byte[] authorityKeyId = authorityKeyIdentifier.getKeyIdentifier(); expectedSubjectKeyIdentifier = jcaX509ExtensionUtils.createSubjectKeyIdentifier(generatedCertificateKeyPair.getPublic()).getKeyIdentifier(); assertThat(authorityKeyId, equalTo(expectedSubjectKeyIdentifier)); assertThat(generatedCertificate.getSerialNumber(), equalTo(BigInteger.valueOf(1337))); }
@Test public void getSignedByIssuer_withSubjectKeyIdentifier_setsAuthorityKeyIdentifier() throws Exception { when(serialNumberGenerator.generate()) .thenReturn(BigInteger.valueOf(1337)) .thenReturn(BigInteger.valueOf(666)); final X509Certificate generatedCertificate = subject.getSignedByIssuer(generatedCertificateKeyPair, certificateGenerationParameters, certificateAuthorityWithSubjectKeyId, issuerKey.getPrivate()); final byte[] authorityKeyIdDer = generatedCertificate.getExtensionValue(Extension.authorityKeyIdentifier.getId()); final AuthorityKeyIdentifier authorityKeyIdentifier = AuthorityKeyIdentifier.getInstance(parseExtensionValue(authorityKeyIdDer)); assertThat(authorityKeyIdentifier.getKeyIdentifier(), equalTo(caSubjectKeyIdentifier.getKeyIdentifier())); }
private String getCertificateAKI(String alias, KeyStore keyStore) throws CryptoException, KeyStoreException { X509Certificate x509Cert = getCertificate(alias, keyStore); try { byte[] akiValue = x509Cert.getExtensionValue(Extension.authorityKeyIdentifier.getId()); byte[] octets = DEROctetString.getInstance(akiValue).getOctets(); byte[] akiBytes = AuthorityKeyIdentifier.getInstance(octets).getKeyIdentifier(); return HexUtil.getHexString(akiBytes); } catch (Exception e) { return "-"; } }
/** * Creates a {@link AuthorityKeyIdentifier} object from DER data. * * @param enc DER encoded authority key identifier data. * * @return Authority key identifier. */ public static AuthorityKeyIdentifier createAuthorityKeyIdentifier( final DEREncodable enc) { final org.bouncycastle.asn1.x509.AuthorityKeyIdentifier aki = org.bouncycastle.asn1.x509.AuthorityKeyIdentifier.getInstance(enc); KeyIdentifier keyIdentifier = null; if (aki.getKeyIdentifier() != null) { keyIdentifier = new KeyIdentifier(aki.getKeyIdentifier()); } GeneralNameList issuerNames = null; if (aki.getAuthorityCertIssuer() != null) { issuerNames = createGeneralNameList(aki.getAuthorityCertIssuer()); } Integer issuerSerial = null; if (aki.getAuthorityCertSerialNumber() != null) { issuerSerial = aki.getAuthorityCertSerialNumber().intValue(); } return new AuthorityKeyIdentifier(keyIdentifier, issuerNames, issuerSerial); }
final AuthorityKeyIdentifier aki = AuthorityKeyIdentifier.getInstance(exValue);