Package eu.europa.esig.dss.crl

Interface ICRLUtils

    • Method Summary

      Modifier and Type Method Description
      CRLValidity buildCRLValidity​(CRLBinary crlBinaryIdentifier, CertificateToken issuerToken)
      This method verifies: the signature of the CRL, the key usage of its signing certificate and the coherence between the subject names of the CRL signing certificate and the issuer name of the certificate for which the verification of the revocation data is carried out.
      X509CRLEntry getRevocationInfo​(CRLValidity crlValidity, BigInteger serialNumber)
      This method verifies the revocation status for a given serial number

    • Method Detail

      • buildCRLValidity

        CRLValidity buildCRLValidity​(CRLBinary crlBinaryIdentifier,
                             CertificateToken issuerToken)
                      throws IOException
        This method verifies: the signature of the CRL, the key usage of its signing certificate and the coherence between the subject names of the CRL signing certificate and the issuer name of the certificate for which the verification of the revocation data is carried out. A dedicated object based on CRLValidity is created and accordingly updated.
        Parameters:
        crlBinaryIdentifier - (@code CRLBinaryIdentifier) to build the CRLValidity and verify token (cannot be null)
        issuerToken - CertificateToken used to sign the X509CRL (cannot be null)
        Returns:
        CRLValidity
        Throws:
        IOException - if an IO error occurred

      • getRevocationInfo

        X509CRLEntry getRevocationInfo​(CRLValidity crlValidity,
                               BigInteger serialNumber)
        This method verifies the revocation status for a given serial number
        Parameters:
        crlValidity - the CRL Validity
        serialNumber - the certificate serial number to search
        Returns:
        the X509CRLEntry with the revocation date, the reason, or null if the serial number is not found