PKIXExtensions (kona-pkix 1.0.7.1 API)

java.lang.Object
- com.tencent.kona.sun.security.x509.PKIXExtensions

```
public class PKIXExtensions
extends java.lang.Object
```
Lists all the object identifiers of the X509 extensions of the PKIX profile.
Extensions are additional attributes which can be inserted in a X509 v3 certificate. For example a "Driving License Certificate" could have the driving license number as an extension.
Extensions are represented as a sequence of the extension identifier (Object Identifier), a boolean flag stating whether the extension is to be treated as being critical and the extension value itself (this is again a DER encoding of the extension value).

See Also:

Extension

Field Summary

Fields
Modifier and Type	Field and Description
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`AuthInfoAccess_Id` This extension indicates how to access CA information and services for the issuer of the certificate in which the extension appears.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`AuthorityKey_Id` Identifies the particular public key used to sign the certificate.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`BasicConstraints_Id` Identifies whether the subject of the certificate is a CA and how deep a certification path may exist through that CA.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`CertificateIssuer_Id` Identifies the certificate issuer associated with an entry in an indirect CRL.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`CertificatePolicies_Id` Contains the sequence of policy information terms.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`CRLDistributionPoints_Id` Identifies how CRL information is obtained.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`CRLNumber_Id` Conveys a monotonically increasing sequence number for each CRL issued by a given CA.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`DeltaCRLIndicator_Id` Identifies the delta CRL.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`ExtendedKeyUsage_Id` Identifies one or more purposes for which the certified public key may be used, in addition to or in place of the basic purposes indicated in the key usage extension field.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`FreshestCRL_Id` Identifies how delta CRL information is obtained.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`HoldInstructionCode_Id` This extension provides a registered instruction identifier indicating the action to be taken, after encountering a certificate that has been placed on hold.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`InhibitAnyPolicy_Id` Specifies whether any-policy policy OID is permitted
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`InvalidityDate_Id` Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`IssuerAlternativeName_Id` Allows additional identities to be associated with the certificate issuer.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`IssuingDistributionPoint_Id` Identifies the CRL distribution point for a particular CRL.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`KeyUsage_Id` Defines the purpose of the key contained in the certificate.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`NameConstraints_Id` Provides for permitted and excluded subtrees that place restrictions on names that may be included within a certificate issued by a given CA.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`OCSPNoCheck_Id` Identifies the OCSP client can trust the responder for the lifetime of the responder's certificate.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`OCSPNonce_Id` This extension is used to provide nonce data for OCSP requests or responses.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`PolicyConstraints_Id` Used to either prohibit policy mapping or limit the set of policies that can be in subsequent certificates.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`PolicyMappings_Id` Lists pairs of object identifiers of policies considered equivalent by the issuing CA to the subject CA.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`PrivateKeyUsage_Id` Allows the certificate issuer to specify a different validity period for the private key than the certificate.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`ReasonCode_Id` Identifies the reason for the certificate revocation.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`SubjectAlternativeName_Id` Allows additional identities to be bound to the subject of the certificate.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`SubjectDirectoryAttributes_Id` Identifies additional directory attributes.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`SubjectInfoAccess_Id` This extension indicates how to access CA information and services for the subject of the certificate in which the extension appears.
`static com.tencent.kona.sun.security.util.ObjectIdentifier`	`SubjectKey_Id` Identifies the particular public key used in an application.

Constructor Summary

Constructors
Constructor and Description

PKIXExtensions()

Constructors
Constructor and Description
`PKIXExtensions()`

Method Summary
- Methods inherited from class java.lang.Object
  clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Field Detail
  - AuthorityKey_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier AuthorityKey_Id
```
    Identifies the particular public key used to sign the certificate.
  - SubjectKey_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier SubjectKey_Id
```
    Identifies the particular public key used in an application.
  - KeyUsage_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier KeyUsage_Id
```
    Defines the purpose of the key contained in the certificate.
  - PrivateKeyUsage_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier PrivateKeyUsage_Id
```
    Allows the certificate issuer to specify a different validity period for the private key than the certificate.
  - CertificatePolicies_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier CertificatePolicies_Id
```
    Contains the sequence of policy information terms.
  - PolicyMappings_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier PolicyMappings_Id
```
    Lists pairs of object identifiers of policies considered equivalent by the issuing CA to the subject CA.
  - SubjectAlternativeName_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier SubjectAlternativeName_Id
```
    Allows additional identities to be bound to the subject of the certificate.
  - IssuerAlternativeName_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier IssuerAlternativeName_Id
```
    Allows additional identities to be associated with the certificate issuer.
  - SubjectDirectoryAttributes_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier SubjectDirectoryAttributes_Id
```
    Identifies additional directory attributes. This extension is always non-critical.
  - BasicConstraints_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier BasicConstraints_Id
```
    Identifies whether the subject of the certificate is a CA and how deep a certification path may exist through that CA.
  - NameConstraints_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier NameConstraints_Id
```
    Provides for permitted and excluded subtrees that place restrictions on names that may be included within a certificate issued by a given CA.
  - PolicyConstraints_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier PolicyConstraints_Id
```
    Used to either prohibit policy mapping or limit the set of policies that can be in subsequent certificates.
  - CRLDistributionPoints_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier CRLDistributionPoints_Id
```
    Identifies how CRL information is obtained.
  - CRLNumber_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier CRLNumber_Id
```
    Conveys a monotonically increasing sequence number for each CRL issued by a given CA.
  - IssuingDistributionPoint_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier IssuingDistributionPoint_Id
```
    Identifies the CRL distribution point for a particular CRL.
  - DeltaCRLIndicator_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier DeltaCRLIndicator_Id
```
    Identifies the delta CRL.
  - ReasonCode_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier ReasonCode_Id
```
    Identifies the reason for the certificate revocation.
  - HoldInstructionCode_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier HoldInstructionCode_Id
```
    This extension provides a registered instruction identifier indicating the action to be taken, after encountering a certificate that has been placed on hold.
  - InvalidityDate_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier InvalidityDate_Id
```
    Identifies the date on which it is known or suspected that the private key was compromised or that the certificate otherwise became invalid.
  - ExtendedKeyUsage_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier ExtendedKeyUsage_Id
```
    Identifies one or more purposes for which the certified public key may be used, in addition to or in place of the basic purposes indicated in the key usage extension field.
  - InhibitAnyPolicy_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier InhibitAnyPolicy_Id
```
    Specifies whether any-policy policy OID is permitted
  - CertificateIssuer_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier CertificateIssuer_Id
```
    Identifies the certificate issuer associated with an entry in an indirect CRL.
  - AuthInfoAccess_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier AuthInfoAccess_Id
```
    This extension indicates how to access CA information and services for the issuer of the certificate in which the extension appears. This information may be used for on-line certification validation services.
  - SubjectInfoAccess_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier SubjectInfoAccess_Id
```
    This extension indicates how to access CA information and services for the subject of the certificate in which the extension appears.
  - FreshestCRL_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier FreshestCRL_Id
```
    Identifies how delta CRL information is obtained.
  - OCSPNoCheck_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier OCSPNoCheck_Id
```
    Identifies the OCSP client can trust the responder for the lifetime of the responder's certificate.
  - OCSPNonce_Id
```
public static final com.tencent.kona.sun.security.util.ObjectIdentifier OCSPNonce_Id
```
    This extension is used to provide nonce data for OCSP requests or responses.
- Constructor Detail
  - PKIXExtensions
```
public PKIXExtensions()
```

Class PKIXExtensions

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

AuthorityKey_Id

SubjectKey_Id

KeyUsage_Id

PrivateKeyUsage_Id

CertificatePolicies_Id

PolicyMappings_Id

SubjectAlternativeName_Id

IssuerAlternativeName_Id

SubjectDirectoryAttributes_Id

BasicConstraints_Id

NameConstraints_Id

PolicyConstraints_Id

CRLDistributionPoints_Id

CRLNumber_Id

IssuingDistributionPoint_Id

DeltaCRLIndicator_Id

ReasonCode_Id

HoldInstructionCode_Id

InvalidityDate_Id

ExtendedKeyUsage_Id

InhibitAnyPolicy_Id

CertificateIssuer_Id

AuthInfoAccess_Id

SubjectInfoAccess_Id

FreshestCRL_Id

OCSPNoCheck_Id

OCSPNonce_Id

Constructor Detail

PKIXExtensions