X509CRL | java.security.cert | This class represents an X.509 CRL, which consists primarily of a set of X509CRLEntry objects. The various methods of this class provide access to the full details of the CRL, and require a complete understanding of the X.509 standard, which is beyond the scope of this reference. Use verify( ) to check the digital signature of the CRL to ensure that it does indeed originate from the the source it specifies. Use the inherited isRevoked( ) method to determine whether a given certificate has been revoked . If you are curious about the revocation date for a revoked certificate, obtain the X509CRLEntry for that certificate by calling getrevokedCertificate( ) . Call getThisUpdate( ) to obtain the date this CRL was issued. Use getNextUpdate( ) to find if the CRL has been superseded by a newer version. Use geTRevokedCertificates( ) to obtain a Set of all X509CRLEntry objects from this CRL. Obtain an X509CRL object by creating a CertificateFactory for certificate type "X.509" and then using the generateCRL( ) to parse an X.509 CRL from a stream of bytes. Finally, cast the CRL returned by this method to an X509CRL . Figure 14-73. java.security.cert.X509CRL public abstract class X509CRL extends CRL implements X509Extension { // Protected Constructors protected X509CRL ( ); // Public Instance Methods public abstract byte[ ] getEncoded ( ) throws CRLException; public abstract java.security.Principal getIssuerDN ( ); 1.4 public javax.security.auth.x500.X500Principal getIssuerX500Principal ( ); public abstract java.util.Date getNextUpdate ( ); 5.0 public X509CRLEntry getRevokedCertificate (X509Certificate certificate ); public abstract X509CRLEntry getRevokedCertificate (java.math.BigInteger serialNumber ); public abstract java.util.Set<? extends X509CRLEntry> getRevokedCertificates ( ); public abstract String getSigAlgName ( ); public abstract String getSigAlgOID ( ); public abstract byte[ ] getSigAlgParams ( ); public abstract byte[ ] getSignature ( ); public abstract byte[ ] getTBSCertList ( ) throws CRLException; public abstract java.util.Date getThisUpdate ( ); public abstract int getVersion ( ); public abstract void verify (java.security.PublicKey key ) throws CRLException, java.security.NoSuchAlgorithmException, java.security.InvalidKeyException, java.security.NoSuchProviderException, java.security.SignatureException; public abstract void verify (java.security.PublicKey key , String sigProvider ) throws CRLException, java.security.NoSuchAlgorithmException, java.security.InvalidKeyException, java.security.NoSuchProviderException, java.security.SignatureException; // Public Methods Overriding Object public boolean equals (Object other ); public int hashCode ( ); } |