rpki.x509.X509 Class Reference

Inherits rpki::x509::DER_object.

List of all members.

Public Member Functions

def cross_certify
def expired
def get_DER
def get_POW
def get_POWpkix
def getIssuer
def getNotAfter
def getNotBefore
def getPublicKey
def getSerial
def getSubject
def issue
def normalize_chain

Public Attributes

 DER
 DER value of this object.
 POW
 POWpkix

Static Public Attributes

tuple formats = ("DER", "POW", "POWpkix")
 Formats supported in this object.
tuple pem_converter = PEM_converter("CERTIFICATE")
 PEM converter for this object.

Detailed Description

X.509 certificates.

This class is designed to hold all the different representations of
X.509 certs we're using and convert between them.  X.509 support in
Python a nasty maze of half-cooked stuff (except perhaps for
cryptlib, which is just different).  Users of this module should not
have to care about this implementation nightmare.

Definition at line 327 of file x509.py.


Member Function Documentation

def rpki.x509.X509.cross_certify (   self,
  keypair,
  source_cert,
  serial,
  notAfter,
  now = None,
  pathLenConstraint = 0 
)
Issue a certificate with values taking from an existing certificate.
This is used to construct some kinds oF BPKI certificates.

Definition at line 459 of file x509.py.

def rpki.x509.X509.expired (   self  ) 
Test whether this certificate has expired.

Definition at line 400 of file x509.py.

def rpki.x509.X509.get_DER (   self  ) 
Get the DER value of this certificate.

Reimplemented from rpki.x509.DER_object.

Definition at line 341 of file x509.py.

def rpki.x509.X509.get_POW (   self  ) 
Get the POW value of this certificate.

Definition at line 356 of file x509.py.

def rpki.x509.X509.get_POWpkix (   self  ) 
Get the POW.pkix value of this certificate.

Definition at line 365 of file x509.py.

def rpki.x509.X509.getIssuer (   self  ) 
Get the issuer of this certificate.

Definition at line 376 of file x509.py.

def rpki.x509.X509.getNotAfter (   self  ) 
Get the expiration time of this certificate.

Definition at line 388 of file x509.py.

def rpki.x509.X509.getNotBefore (   self  ) 
Get the inception time of this certificate.

Definition at line 384 of file x509.py.

def rpki.x509.X509.getPublicKey (   self  ) 
Extract the public key from this certificate.

Definition at line 396 of file x509.py.

def rpki.x509.X509.getSerial (   self  ) 
Get the serial number of this certificate.

Definition at line 392 of file x509.py.

def rpki.x509.X509.getSubject (   self  ) 
Get the subject of this certificate.

Definition at line 380 of file x509.py.

def rpki.x509.X509.issue (   self,
  keypair,
  subject_key,
  serial,
  sia,
  aia,
  crldp,
  notAfter,
  cn = None,
  resources = None,
  is_ca = True 
)
Issue a certificate.

Definition at line 404 of file x509.py.

def rpki.x509.X509.normalize_chain (   cls,
  chain 
)
Normalize a chain of certificates into a tuple of X509 objects.
Given all the glue certificates needed for BPKI cross
certification, it's easiest to allow sloppy arguments to the HTTPS
and CMS validation methods and provide a single method that
normalizes the allowed cases.  So this method allows X509, None,
lists, and tuples, and returns a tuple of X509 objects.

Definition at line 488 of file x509.py.


Member Data Documentation

DER value of this object.

Reimplemented from rpki.x509.DER_object.

Definition at line 349 of file x509.py.

tuple rpki.x509.X509.formats = ("DER", "POW", "POWpkix") [static]

Formats supported in this object.

Reimplemented from rpki.x509.DER_object.

Definition at line 338 of file x509.py.

tuple rpki.x509.X509.pem_converter = PEM_converter("CERTIFICATE") [static]

PEM converter for this object.

Reimplemented from rpki.x509.DER_object.

Definition at line 339 of file x509.py.

Definition at line 362 of file x509.py.

Definition at line 373 of file x509.py.


The documentation for this class was generated from the following file:

Generated on Tue Jan 12 07:56:03 2010 for RPKI Engine by  doxygen 1.6.1