com.unboundid.util.ssl.cert.X509CertificateExtension

com.unboundid.util.ssl.cert.CRLDistributionPointsExtension

All Implemented Interfaces:: Serializable

@NotMutable @ThreadSafety(level=COMPLETELY_THREADSAFE) public final class CRLDistributionPointsExtension extends X509CertificateExtension

This class provides an implementation of the CRL distribution points X.509 certificate extension as described in RFC 5280 section 4.2.1.13. This can be used to provide information about the location of certificate revocation lists (CRLs) that can be examined to check the validity of this certificate.

The OID for this extension is 2.5.29.31 and the value has the following encoding:

   CRLDistributionPoints ::= SEQUENCE SIZE (1..MAX) OF DistributionPoint

   DistributionPoint ::= SEQUENCE {
        distributionPoint       [0]     DistributionPointName OPTIONAL,
        reasons                 [1]     ReasonFlags OPTIONAL,
        cRLIssuer               [2]     GeneralNames OPTIONAL }

   DistributionPointName ::= CHOICE {
        fullName                [0]     GeneralNames,
        nameRelativeToCRLIssuer [1]     RelativeDistinguishedName }

   ReasonFlags ::= BIT STRING {
        unused                  (0),
        keyCompromise           (1),
        cACompromise            (2),
        affiliationChanged      (3),
        superseded              (4),
        cessationOfOperation    (5),
        certificateHold         (6),
        privilegeWithdrawn      (7),
        aACompromise            (8) }

See Also:

Field Summary

Fields

Modifier and Type

Field

Description

static final OID

CRL_DISTRIBUTION_POINTS_OID

The OID (2.5.29.31) for CRL distribution points extensions.
Method Summary

Modifier and Type

Method

Description

List<CRLDistributionPoint>

getCRLDistributionPoints()

Retrieves the list of CRL distribution points included in this extension.

String

getExtensionName()

Retrieves the name for this extension.

void

toString(StringBuilder buffer)

Appends a string representation of this certificate extension to the provided buffer.

Methods inherited from class com.unboundid.util.ssl.cert.X509CertificateExtension
getOID, getValue, isCritical, toString

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Details
- CRL_DISTRIBUTION_POINTS_OID
  
  @NotNull public static final OID CRL_DISTRIBUTION_POINTS_OID
  
  The OID (2.5.29.31) for CRL distribution points extensions.
Method Details
- getCRLDistributionPoints
  
  @NotNull public List<CRLDistributionPoint> getCRLDistributionPoints()
  
  Retrieves the list of CRL distribution points included in this extension.
  
  Returns:
  
  The list of CRL distribution points included in this extension.
- getExtensionName
  
  @NotNull public String getExtensionName()
  
  Retrieves the name for this extension.
  
  Overrides:
  
  getExtensionName in class X509CertificateExtension
  
  Returns:
  
  The name for this extension.
- toString
  
  public void toString(@NotNull StringBuilder buffer)
  
  Appends a string representation of this certificate extension to the provided buffer.
  
  Overrides:
  
  toString in class X509CertificateExtension
  
  Parameters:
  
  buffer - The buffer to which the information should be appended.

Class CRLDistributionPointsExtension

Field Summary

Method Summary

Methods inherited from class com.unboundid.util.ssl.cert.X509CertificateExtension

Methods inherited from class java.lang.Object

Field Details

CRL_DISTRIBUTION_POINTS_OID

Method Details

getCRLDistributionPoints

getExtensionName

toString