Package eu.europa.esig.dss.crl

Class CRLValidity

  • Direct Known Subclasses:
    X509CRLValidity
    public class CRLValidity
extends Object
    This class encapsulates all information related to the validity of a CRL. It exposes the method isValid to check the validity.

    • Constructor Detail

      • CRLValidity

        public CRLValidity​(CRLBinary crlBinaryIdentifier)
        Default constructor

    • Method Detail

      • getCrlBinaryIdentifier

        public CRLBinary getCrlBinaryIdentifier()

      • getCrlEncoded

        public byte[] getCrlEncoded()

      • getCrlInputStream

        public InputStream getCrlInputStream()

      • getKey

        public String getKey()

      • setKey

        public void setKey​(String key)

      • setSignatureAlgorithm

        public void setSignatureAlgorithm​(SignatureAlgorithm signatureAlgorithm)

      • getNextUpdate

        public Date getNextUpdate()

      • setNextUpdate

        public void setNextUpdate​(Date nextUpdate)

      • getThisUpdate

        public Date getThisUpdate()

      • setThisUpdate

        public void setThisUpdate​(Date thisUpdate)

      • getExpiredCertsOnCRL

        public Date getExpiredCertsOnCRL()

      • setExpiredCertsOnCRL

        public void setExpiredCertsOnCRL​(Date expiredCertsOnCRL)

      • isIssuerX509PrincipalMatches

        public boolean isIssuerX509PrincipalMatches()

      • setIssuerX509PrincipalMatches

        public void setIssuerX509PrincipalMatches​(boolean issuerX509PrincipalMatches)

      • isSignatureIntact

        public boolean isSignatureIntact()

      • setSignatureIntact

        public void setSignatureIntact​(boolean signatureIntact)

      • isCrlSignKeyUsage

        public boolean isCrlSignKeyUsage()

      • setCrlSignKeyUsage

        public void setCrlSignKeyUsage​(boolean crlSignKeyUsage)

      • getSignatureInvalidityReason

        public String getSignatureInvalidityReason()

      • setSignatureInvalidityReason

        public void setSignatureInvalidityReason​(String signatureInvalidityReason)

      • getUrl

        public String getUrl()

      • setUrl

        public void setUrl​(String url)

      • setOnlyAttributeCerts

        public void setOnlyAttributeCerts​(boolean onlyAttributeCerts)

      • setOnlyCaCerts

        public void setOnlyCaCerts​(boolean onlyCaCerts)

      • setOnlyUserCerts

        public void setOnlyUserCerts​(boolean onlyUserCerts)

      • setIndirectCrl

        public void setIndirectCrl​(boolean indirectCrl)

      • setReasonFlags

        public void setReasonFlags​(org.bouncycastle.asn1.x509.ReasonFlags reasonFlags)

      • setCriticalExtensionsOid

        public void setCriticalExtensionsOid​(Collection<String> criticalExtensionsOid)

      • setUnknownCriticalExtension

        public void setUnknownCriticalExtension​(boolean unknownCriticalExtension)

      • isValid

        public boolean isValid()
        This method indicates if the CRL is valid. To be valid the CRL must full fill the following requirements: - its signature must be valid, - the issuer of the certificate for which the CRL is used must match the CRL signing certificate and - the mandatory key usage must be present.
        Returns:
        true if the CRL is valid false otherwise.

      • areCriticalExtensionsOidNotEmpty

        public boolean areCriticalExtensionsOidNotEmpty()

      • isUnknownCriticalExtension

        public boolean isUnknownCriticalExtension()

      • hashCode

        public int hashCode()
        Overrides:
        hashCode in class Object