This interface defines methods for handling a set of extensions to X.509 certificates and CRLs. Each extension has a name , or OID (object identifier), that identifies the type of the extension. An extension may be marked critical or noncritical. Noncritical extensions whose OIDs are not recognized can safely be ignored. However, if a critical exception is not recognized, the Certificate or CRL should be rejected. Each extension in the set has a byte array of data as its value. The interpretation of these bytes depends on the OID of the extension, of course. Specific extensions are defined by the X.509 and related standards and their details are beyond the scope of this reference. public interface X509Extension { // Public Instance Methods java.util.Set<String> getCriticalExtensionOIDs ( ); byte[ ] getExtensionValue (String oid ); java.util.Set<String> getNonCriticalExtensionOIDs ( ); boolean hasUnsupportedCriticalExtension ( ); } ImplementationsX509Certificate , X509CRL , X509CRLEntry |