[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PKIXML session. Was: PKIX WG tentative agenda

To: "'PKIX'" <ietf-pkix@xxxxxxx>
Subject: Re: PKIXML session. Was: PKIX WG tentative agenda
From: Aram Perez <aram@xxxxxxxxxxx>
Date: Thu, 07 Dec 2000 18:29:28 -0800
In-reply-to: <>
User-agent: Microsoft-Outlook-Express-Macintosh-Edition/5.02.2022

Hi Steven,

I should have stated, "I've attached the PKIX example #1 certificate
converted from BER/DER to XML.

Regards,
Aram Perez

> From: Steven Legg <steven.legg@adacel.com.au>
> Reply-To: steven.legg@adacel.com.au
> Date: Fri, 08 Dec 2000 13:18:15 +1100
> To: 'Aram Perez' <aram@pacbell.net>, 'PKIX' <ietf-pkix@imc.org>
> Subject: RE: PKIXML session.  Was: PKIX WG tentative agenda
> 
> 
> 
>> -----Original Message-----
>> From: Aram Perez [mailto:aram@pacbell.net]
>> Sent: Friday, 8 December 2000 4:25
>> To: PKIX
>> Subject: FW: PKIXML session. Was: PKIX WG tentative agenda
>> 
>> 
>> Just for fun, I've attached the PKIX example #1 certificate
>> converted from
>> ASN.1 to XML.
>> 
>> Enjoy,
>> Aram Perez
> 
> That's one way to encode a certificate in XML, but not a method I find
> particularly appealing. The following XML encoding of the same certificate
> is my best guess (possibly way off) at what represents current thinking on
> the ASN.1 group's XML encoding rules mailing list. I would name the elements
> in a SET OF or SEQUENCE OF differently, but that is an argument for a
> different forum.
> 
> <Certificate>
> <toBeSigned>
> <version>
> v3
> </version>
> <serialNumber>
> 17
> </serialNumber>
> <signature>
> <algorithm>
> { 1 2 840 10040 4 3 }
> </algorithm>
> </signature>
> <issuer>
> <rdnSequence>
> <RelativeDistinguishedName>
> <AttributeTypeAndValue>
> <type>{ 2 5 4 6 }</type>
> <value>US</value>
> </AttributeTypeAndValue>
> </RelativeDistinguishedName>
> <RelativeDistinguishedName>
> <AttributeTypeAndValue>
> <type>{ 2 5 4 10 }</type>
> <value>gov</value>
> </AttributeTypeAndValue>
> </RelativeDistinguishedName>
> <RelativeDistinguishedName>
> <AttributeTypeAndValue>
> <type>{ 2 5 4 11 }</type>
> <value>nist</value>
> </AttributeTypeAndValue>
> </RelativeDistinguishedName>
> </rdnSequence>
> </issuer>
> <validity>
> <notBefore>
> 970630000000Z
> </notBefore>
> <notAfter>
> 971231000000Z
> </notAfter>
> </validity>
> <subject>
> <rdnSequence>
> <RelativeDistinguishedName>
> <AttributeTypeAndValue>
> <type>{ 2 5 4 6 }</type>
> <value>US</value>
> </AttributeTypeAndValue>
> </RelativeDistinguishedName>
> <RelativeDistinguishedName>
> <AttributeTypeAndValue>
> <type>{ 2 5 4 10 }</type>
> <value>gov</value>
> </AttributeTypeAndValue>
> </RelativeDistinguishedName>
> <RelativeDistinguishedName>
> <AttributeTypeAndValue>
> <type>{ 2 5 4 11 }</type>
> <value>nist</value>
> </AttributeTypeAndValue>
> </RelativeDistinguishedName>
> </rdnSequence>
> </subject>
> <subjectPublicKeyInfo>
> <algorithm>
> <algorithm>{ 1 2 840 10040 4 1 }</algorithm>
> <parameters>
> <p>
> d43802c5357bd50ba17e5d72596355d3
> 4556eae2251a6bc5a4abaa0bd462b4d2
> 21b195a2c601c9c3fa016f7986833d03
> 61e1f192acbc034e89a3c9534af7e2a6
> 48cf421e21b15c2b3a7fbabe6b5af70a
> 26d88e1bebecbf1e5a3f45c0bd3123be
> 6971a7c290fea5d680b524dc449ceb4d
> f9daf0c8e8a24c99075c8e352b7d578d
> </p>
> <q>
> a7839bf3bd2c2007fc4ce7e89ff33983510ddcdd
> </q>
> <g>
> 0e3b46318a0a58864084e3a1220d88ca
> 908857649f0121e01505942482e21090
> d9e14e105ce7546bd40c2b1b590aa0b5
> a17db507e3657cea90d88e3042e485bb
> acfa4e764b780edf6ce5a6e1bd59777d
> a69759c529a7b33f953e9df1592df742
> 87623ff1b86fc73d4bb88d74c4ca4490
> cf67dbde1460974ad1f76d9e0994c40d
> </g>
> </parameters>
> </algorithm>
> <subjectPublicKey>
> 028180aa98ea1394a2dbf15b7f982f78
> e7d8e3b97186f6802f4039c3da3b4b13
> 4626ee0d56c5a33a39b77d33c26b5c77
> 92f255659039cd1a3c86e132eb25bc91
> c4ff804f3661bdcce26104e07e6013ca
> c09cdde0ea41de33c1f144a9bc71decf
> 59d46eda44993c2164e478549dd07bba
> 4ef5184d5e3930bfe0d1f6f483254f14
> aa71e1
> </subjectPublicKey>
> </subjectPublicKeyInfo>
> <extensions>
> <Extension>
> <extnId>
> { 2 5 29 19 }
> </extnId>
> <critical>
> TRUE
> </critical>
> <extnValue>
> 30030101ff
> </extnValue>
> </Extension>
> <Extension>
> <extnId>
> { 2 5 29 14 }
> </extnId>
> <extnValue>
> 0414e726c554cd5ba36f356895aad5ff1c21e42275d6
> </extnValue>
> </Extension>
> </extensions>
> </toBeSigned>
> <algorithmIdentifier>
> <algorithm>
> { 1 2 840 10040 4 3 }
> </algorithm>
> </algorithmIdentifier>
> <encrypted>
> 302c0214a066c176339913518d93642f
> ca1373de791a7d3302145d90f6ce924a
> bf2911248028a65a8e73b6760268
> </encrypted>
> </Certificate>
> 
> Regards,
> Steven
>

References:
- RE: PKIXML session. Was: PKIX WG tentative agenda
  - From: Steven Legg

Prev by Date: RE: PKIXML session. Was: PKIX WG tentative agenda
Next by Date: Re: two good points, Re: PKIXML session. Was: PKIX WGtentative agenda
Previous by thread: RE: PKIXML session. Was: PKIX WG tentative agenda
Next by thread: Re: PKIXML session. Was: PKIX WG tentative agenda
Index(es):
- Date
- Thread