Package org.bouncycastle.cert

Class X509CRLHolder

java.lang.Object
org.bouncycastle.cert.X509CRLHolder
All Implemented Interfaces:
Serializable, org.bouncycastle.util.Encodable
Direct Known Subclasses:
JcaX509CRLHolder
public class X509CRLHolder extends Object implements org.bouncycastle.util.Encodable, Serializable
Holding class for an X.509 CRL structure.
See Also:

  • Constructor Details

    • X509CRLHolder

      public X509CRLHolder(byte[] crlEncoding) throws IOException
      Create a X509CRLHolder from the passed in bytes.
      Parameters:
      crlEncoding - BER/DER encoding of the CRL
      Throws:
      IOException - in the event of corrupted data, or an incorrect structure.

    • X509CRLHolder

      public X509CRLHolder(InputStream crlStream) throws IOException
      Create a X509CRLHolder from the passed in InputStream.
      Parameters:
      crlStream - BER/DER encoded InputStream of the CRL
      Throws:
      IOException - in the event of corrupted data, or an incorrect structure.

    • X509CRLHolder

      public X509CRLHolder(org.bouncycastle.asn1.x509.CertificateList x509CRL)
      Create a X509CRLHolder from the passed in ASN.1 structure.
      Parameters:
      x509CRL - an ASN.1 CertificateList structure.

  • Method Details

    • getEncoded

      public byte[] getEncoded() throws IOException
      Return the ASN.1 encoding of this holder's CRL.
      Specified by:
      getEncoded in interface org.bouncycastle.util.Encodable
      Returns:
      a DER encoded byte array.
      Throws:
      IOException - if an encoding cannot be generated.

    • getIssuer

      public org.bouncycastle.asn1.x500.X500Name getIssuer()
      Return the issuer of this holder's CRL.
      Returns:
      the CRL issuer.

    • getThisUpdate

      public Date getThisUpdate()

    • getNextUpdate

      public Date getNextUpdate()

    • getRevokedCertificate

      public X509CRLEntryHolder getRevokedCertificate(BigInteger serialNumber)

    • getRevokedCertificates

      public Collection getRevokedCertificates()
      Return a collection of X509CRLEntryHolder objects, giving the details of the revoked certificates that appear on this CRL.
      Returns:
      the revoked certificates as a collection of X509CRLEntryHolder objects.

    • hasExtensions

      public boolean hasExtensions()
      Return whether or not the holder's CRL contains extensions.
      Returns:
      true if extension are present, false otherwise.

    • getExtension

      public org.bouncycastle.asn1.x509.Extension getExtension(org.bouncycastle.asn1.ASN1ObjectIdentifier oid)
      Look up the extension associated with the passed in OID.
      Parameters:
      oid - the OID of the extension of interest.
      Returns:
      the extension if present, null otherwise.

    • getExtensions

      public org.bouncycastle.asn1.x509.Extensions getExtensions()
      Return the extensions block associated with this CRL if there is one.
      Returns:
      the extensions block, null otherwise.

    • getExtensionOIDs

      public List getExtensionOIDs()
      Returns a list of ASN1ObjectIdentifier objects representing the OIDs of the extensions contained in this holder's CRL.
      Returns:
      a list of extension OIDs.

    • getCriticalExtensionOIDs

      public Set getCriticalExtensionOIDs()
      Returns a set of ASN1ObjectIdentifier objects representing the OIDs of the critical extensions contained in this holder's CRL.
      Returns:
      a set of critical extension OIDs.

    • getNonCriticalExtensionOIDs

      public Set getNonCriticalExtensionOIDs()
      Returns a set of ASN1ObjectIdentifier objects representing the OIDs of the non-critical extensions contained in this holder's CRL.
      Returns:
      a set of non-critical extension OIDs.

    • toASN1Structure

      public org.bouncycastle.asn1.x509.CertificateList toASN1Structure()
      Return the underlying ASN.1 structure for the CRL in this holder.
      Returns:
      a CertificateList object.

    • isSignatureValid

      public boolean isSignatureValid(ContentVerifierProvider verifierProvider) throws CertException
      Validate the signature on the CRL.
      Parameters:
      verifierProvider - a ContentVerifierProvider that can generate a verifier for the signature.
      Returns:
      true if the signature is valid, false otherwise.
      Throws:
      CertException - if the signature cannot be processed or is inappropriate.

    • isAlternativeSignatureValid

      public boolean isAlternativeSignatureValid(ContentVerifierProvider verifierProvider) throws CertException
      Throws:
      CertException

    • equals

      public boolean equals(Object o)
      Overrides:
      equals in class Object

    • hashCode

      public int hashCode()
      Overrides:
      hashCode in class Object