Team LiB
Previous Section Next Section

X509CRLjava.security.cert
Java 1.2

This class represents an X.509 CRL, which consists primarily of a set of X509CRLEntry objects. The various methods of this class provide access to the full details of the CRL, and require a complete understanding of the X.509 standard, which is beyond the scope of this reference. Use verify( ) to check the digital signature of the CRL to ensure that it does indeed originate from the the source it specifies. Use the inherited isRevoked( ) method to determine whether a given certificate has been revoked. If you are curious about the revocation date for a revoked certificate, obtain the X509CRLEntry for that certificate by calling getrevokedCertificate( ). Call getThisUpdate( ) to obtain the date this CRL was issued. Use getNextUpdate( ) to find if the CRL has been superseded by a newer version. Use geTRevokedCertificates( ) to obtain a Set of all X509CRLEntry objects from this CRL.

Obtain an X509CRL object by creating a CertificateFactory for certificate type "X.509" and then using the generateCRL( ) to parse an X.509 CRL from a stream of bytes. Finally, cast the CRL returned by this method to an X509CRL.

Figure 14-73. java.security.cert.X509CRL


public abstract class X509CRL extends CRL implements X509Extension {
// Protected Constructors
     protected X509CRL( );  
// Public Instance Methods
     public abstract byte[ ] getEncoded( ) throws CRLException;  
     public abstract java.security.Principal getIssuerDN( );  
1.4  public javax.security.auth.x500.X500Principal getIssuerX500Principal( );  
     public abstract java.util.Date getNextUpdate( );  
5.0  public X509CRLEntry getRevokedCertificate(X509Certificate certificate);  
     public abstract X509CRLEntry 
        getRevokedCertificate(java.math.BigInteger serialNumber);  
     public abstract java.util.Set<? extends X509CRLEntry> 
        getRevokedCertificates( );  
     public abstract String getSigAlgName( );  
     public abstract String getSigAlgOID( );  
     public abstract byte[ ] getSigAlgParams( );  
     public abstract byte[ ] getSignature( );  
     public abstract byte[ ] getTBSCertList( ) throws CRLException;  
     public abstract java.util.Date getThisUpdate( );  
     public abstract int getVersion( );  
     public abstract void verify(java.security.PublicKey key) 
        throws CRLException, java.security.NoSuchAlgorithmException, 
        java.security.InvalidKeyException, java.security.NoSuchProviderException, java.security.SignatureException;  
     public abstract void verify(java.security.PublicKey key, String sigProvider)
        throws CRLException, 
        java.security.NoSuchAlgorithmException, java.security.InvalidKeyException, 
        java.security.NoSuchProviderException, java.security.SignatureException;  
// Public Methods Overriding Object
     public boolean equals(Object other);  
     public int hashCode( );  
}

    Team LiB
    Previous Section Next Section