focus on internet & telecom standardization topics

hist. pages: SIP/IMS, SEC...

Home

Organizations

# # #

Standardization work

# #



		# SIP RFC3261's Example

		# SIP Protocol Structure

		# SIP Dialogs & Routing

		# SIP Service Examples

		# SIP Authentication Service

		# ABNF Grammars

		# IMS Signalling flows

		# 2G-3G Network Evolution

		# Cryptography Basics

		# SSL/TLS Sequence Charts

		# PKI Certificate Examples

		# PKI's ASN.1 Definitions

		# CMS Examples

		# CMS's ASN.1 Definitions

		# Network Simulation

RFC 3280's Certificate and CRL Examples
01. DSA Self-Signed Certificate

Here is a "self-signed" certificate issued by a certification authority (CA) whose distinguished name is cn=us, o=gov, ou=nist. This certificate contains a DSA public key with parameters, and is signed by the corresponding DSA private key.

Top

RFC 3280's Certificate and CRL Examples

01. DSA Self-Signed Certificate 02. End Entity Certificate using DSA 03. End Entity Certificate using RSA 04. Certificate Revocation List


Navigation Tips:	the ASN.1 Type in front of the icon has a link to itself, for a display at the top of the screen; and this very icon has a link to the top of the Certificate.

0	30	699
4	30	635
8	A0	3
10	02	1

13	02	1
16	30	9
18	06	7

27	30	42
29	31	11
31	30	9
33	06	3
38	13	2


42	31	12
44	30	10
46	06	3
51	13	3


56	31	13
58	30	11
60	06	3
65	13	4



71	30	30
73	17	13
88	17	13

103	30	42
105	31	11
107	30	9
109	06	3
114	13	2


118	31	12
120	30	10
122	06	3
127	13	3


132	31	13
134	30	11
136	06	3
141	13	4



147	30	440
151	30	300
155	06	7
164	30	287
168	02	129










300	02	21


323	02	129












455	03	133
459	02	129












591	A3	50
593	30	48
595	30	29
597	06	3
602	04	22
604	04	20




626	30	15
628	06	3
633	01	1
636	04	5
638	30	3
640	01	1






643	30	9
645	06	7

654	03	47
657	30	44
659	02	20


681	02	20

SEQUENCE { Certificate

SEQUENCE { tbsCertificate TBSCertificate

[0] { version Version

INTEGER 2

}

INTEGER 17 serialNumber CertificateSerialNumber

SEQUENCE { signature AlgorithmIdentifier

OBJECT IDENTIFIER dsaWithSha1 ( 1 2 840 10040 4 3 )

}

SEQUENCE { issuer Name

SET { RelativeDistinguishedName

SEQUENCE {

OBJECT IDENTIFIER countryName ( 2 5 4 6 )

PrintableString 'US'

}

SET { RelativeDistinguishedName

SEQUENCE {

OBJECT IDENTIFIER organizationName ( 2 5 4 10 )

PrintableString 'gov'

}

SET { RelativeDistinguishedName

SEQUENCE {

OBJECT IDENTIFIER organizationalUnitName ( 2 5 4 11 )

PrintableString 'NIST'

}

SEQUENCE { validity Validity

UTCTime '970630000000Z' notBefore Time

UTCTime '971231000000Z' notAfter Time

}

SEQUENCE { subject Name

SET { RelativeDistinguishedName

SEQUENCE {

OBJECT IDENTIFIER countryName ( 2 5 4 6 )

PrintableString 'US'

}

SET { RelativeDistinguishedName

SEQUENCE {

OBJECT IDENTIFIER organizationName ( 2 5 4 10 )

PrintableString 'gov'

}

SET { RelativeDistinguishedName

SEQUENCE {

OBJECT IDENTIFIER organizationalUnitName ( 2 5 4 11 )

PrintableString 'NIST'

}

SEQUENCE { subjectPublicKeyInfo SubjectPublicKeyInfo

SEQUENCE { algorithm AlgorithmIdentifier

OBJECT IDENTIFIER dsa ( 1 2 840 10040 4 1 )

SEQUENCE { parameters Dss-Parms

INTEGER p

00 B6 8B 0F 94 2B 9A CE A5 25 C6 F2 ED FC
FB 95 32 AC 01 12 33 B9 E0 1C AD 90 9B BC
48 54 9E F3 94 77 3C 2C 71 35 55 E6 FE 4F
22 CB D5 D8 3E 89 93 33 4D FC BD 4F 41 64
3E A2 98 70 EC 31 B4 50 DE EB F1 98 28 0A
C9 3E 44 B3 FD 22 97 96 83 D0 18 A3 E3 BD
35 5B FF EE A3 21 72 6A 7B 96 DA B9 3F 1E
5A 90 AF 24 D6 20 F0 0D 21 A7 D4 02 B9 1A
FC AC 21 FB 9E 94 9E 4B 42 45 9E 6A B2 48
63 FE 43

INTEGER q

00 B2 0D B0 B1 01 DF 0C 66 24 FC 13 92 BA
55 F7 7D 57 74 81 E5

INTEGER g

00 9A BF 46 B1 F5 3F 44 3D C9 A5 65 FB 91
C0 8E 47 F1 0A C3 01 47 C2 44 42 36 A9 92
81 DE 57 C5 E0 68 86 58 00 7B 1F F9 9B 77
A1 C5 10 A5 80 91 78 51 51 3C F6 FC FC CC
46 C6 81 78 92 84 3D F4 93 3D 0C 38 7E 1A
5B 99 4E AB 14 64 F6 0C 21 22 4E 28 08 9C
92 B9 66 9F 40 E8 95 F6 D5 31 2A EF 39 A2
62 C7 B2 6D 9E 58 C4 3A A8 11 81 84 6D AF
F8 B4 19 B4 C2 11 AE D0 22 3B AA 20 7F EE
1E 57 18

}

BIT STRING 0 unused bits, encapsulates { subjectPublicKey

INTEGER DSAPublicKey

00 B5 9E 1F 49 04 47 D1 DB F5 3A DD CA 04
75 E8 DD 75 F6 9B 8A B1 97 D6 59 69 82 D3
03 4D FD 3B 36 5F 4A F2 D1 4E C1 07 F5 D1
2A D3 78 77 63 56 EA 96 61 4D 42 0B 7A 1D
FB AB 91 A4 CE DE EF 77 C8 E5 EF 20 AE A6
28 48 AF BE 69 C3 6A A5 30 F2 C2 B9 D9 82
2B 7D D9 C4 84 1F DE 0D E8 54 D7 1B 99 2E
B3 D0 88 F6 D6 63 9B A7 E2 0E 82 D4 3B 8A
68 1B 06 56 31 59 0B 49 EB 99 A5 D5 81 41
7B C9 55

}

[3] { extensions Extensions

SEQUENCE {

SEQUENCE { extension

OBJECT IDENTIFIER subjectKeyIdentifier ( 2 5 29 14 )

OCTET STRING, encapsulates { extnValue

OCTET STRING SubjectKeyIdentifier

86 CA A5 22 81 62 EF AD 0A 89 BC AD 72 41
2C 29 49 F4 86 56

}

SEQUENCE { extension

OBJECT IDENTIFIER basicConstraints ( 2 5 29 19 )

BOOLEAN TRUE