a Portal devoted to SIP and Security technologies
Search
Home
Site Map
Contact
SIP/IMS Standardization
IETF Standardization Process
RFCs related to SIP (4 p.)
SIP-SIPPING-SIMPLE... I-Ds (22 p.)
Audio-Video Transport RFCs (2 p.)
3GPP Specifications (12 p.)
OMA Specifications related to SIP
TISPAN NGN Specifications (3 p.)
SIP Topics
IMS Topics
SIP/IMS Call Flows
RFC3261's Example
Basic -- RFC3665
SIP PSTN -- RFC3666 (3 p.)
SIP Service Examples (19 p.)
IMS Signaling Flows (35 p.)
SIP/IMS Architecture
SIP Protocol Structure
Dialogs & Routing
UMTS Network Evolution
Security
PKIX-TLS-SMIME... Standards (20 p.)
Cryptography Basics
ASN.1 for PKI Certificate & CRL Profile
ASN.1 for CMS
RFC3280's Certificate Examples (4)
RFC4134's CMS-S/MIME Examples (14)
RFC4474's SIP Authentication Service
SSL/TLS Time-Diagrams
IPSec Guides
ABNF Grammars
ABNF Notation & Rules
URI Generic Syntax
ABNF for SIP
SIP Messages & URIs
SIP Header Fields
MIME Media Types
ABNF for SDP
ABNF for MSRP
ABNF for MRCPv2
ABNF for RTSP 2.0
Internet Message Format
DiffServ CoS Simulation
IPVCoSS Simulator
IP-VPN Case Study
(daily updated)
RFC 4134 -- Examples of CMS objects and S/MIME messages
Top
- Overview
- Basic Signed Content, DSS
- Multiple Signers
- Private Keys
- Basic Signed Content, RSA
- Signing Using SKI
- Enveloped-data
- Basic Signed Content, Detached Content
- SignedData with Attributes
- Encrypted-data
- Fancier Signed Content
- SignedData with Certificates Only
- All RSA Signed Message
- S/MIME Messages
Basic Signed Content, RSA
Navigation Tips:
the ASN.1 Type in front of the
icon has a link to itself, for a display at the top of the screen; and this very icon has a link to the top of the CMS message.
0
30
850
4
06
9
15
A0
835
19
30
831
23
02
1
26
31
11
28
30
9
30
06
5
37
05
0
39
30
43
41
06
9
52
A0
30
54
04
28
84
A0
560
88
30
556
92
30
405
96
A0
3
98
02
1
101
02
16
119
30
13
121
06
9
132
05
0
134
30
18
136
31
16
138
30
14
140
06
3
145
13
7
154
30
30
156
17
13
171
17
13
186
30
19
188
31
17
190
30
15
192
06
3
197
13
8
207
30
159
210
30
13
212
06
9
223
05
0
225
03
141
229
30
137
232
02
129
364
02
3
369
A3
129
372
30
127
374
30
12
376
06
3
381
01
1
384
04
2
386
30
0
388
30
14
390
06
3
395
01
1
398
04
4
400
03
2
404
30
31
406
06
3
411
04
24
413
30
22
415
80
20
437
30
29
439
06
3
444
04
22
446
04
20
468
30
31
470
06
3
475
04
24
477
30
22
479
81
20
501
30
13
503
06
9
514
05
0
516
03
129
648
31
203
651
30
200
654
02
1
657
30
38
659
30
18
661
31
16
663
30
14
665
06
3
670
13
7
679
02
16
697
30
9
699
06
5
706
05
0
708
30
13
710
06
9
721
05
0
723
04
128
SEQUENCE
{
ContentInfo
OBJECT IDENTIFIER
signedData
( 1 2 840 113549 1 7 2 )
contentType
ContentType
[0] {
content
SEQUENCE
{
SignedData
INTEGER
1
version
CMSVersion
SET {
digestAlgorithms
DigestAlgorithmIdentifiers
SEQUENCE {
OBJECT IDENTIFIER
sha1
( 1 3 14 3 2 26 )
NULL
}
}
SEQUENCE
{
encapContentInfo
EncapsulatedContentInfo
OBJECT IDENTIFIER
data
( 1 2 840 113549 1 7 1 )
eContentType
ContentType
[0] {
eContent
OCTET STRING
'This is some sample content.'
}
}
[0]
{
certificates
CertificateSet
SEQUENCE {
certificate
Certificate
(AliceRSASignByCarl)
SEQUENCE
{
tbsCertificate
TBSCertificate
[0] {
version
Version
INTEGER
2
}
INTEGER
serialNumber
CertificateSerialNumber
46 34 6B C7 80 00 56 BC 11 D3 6E 2E
C4 10 B3 B0
SEQUENCE {
signature
AlgorithmIdentifier
OBJECT IDENTIFIER
sha1withRSAEncryption
( 1 2 840 113549 1 1 5 )
NULL
}
SEQUENCE
{
issuer
Name
SET {
RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER
commonName ( 2 5 4 3 )
PrintableString
'CarlRSA'
}
}
}
SEQUENCE
{
validity
Validity
UTCTime
'990919010847Z'
notBefore
Time
UTCTime
'391231235959Z'
notAfter
Time
}
SEQUENCE
{
subject
Name
SET {
RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER
commonName ( 2 5 4 3 )
PrintableString
'AliceRSA'
}
}
}
SEQUENCE
{
subjectPublicKeyInfo
SubjectPublicKeyInfo
SEQUENCE {
algorithm
AlgorithmIdentifier
OBJECT IDENTIFIER
rsaEncryption
( 1 2 840 113549 1 1 1 )
NULL
}
BIT STRING 0 unused bits, encapsulates {
subjectPublicKey
SEQUENCE {
RSAPublicKey
INTEGER
modulus
00 E0 89 73 39 8D D8 F5 F5 E8 87 76
39 7F 4E B0 05 BB 53 83 DE 0F B7 AB
DC 7D C7 75 29 0D 05 2E 6D 12 DF A6
86 26 D4 D2 6F AA 58 29 FC 97 EC FA
82 51 0F 30 80 BE B1 50 9E 46 44 F1
2C BB D8 32 CF C6 68 6F 07 D9 B0 60
AC BE EE 34 09 6A 13 F5 F7 05 05 93
DF 5E BA 35 56 D9 61 FF 19 7F C9 81
E6 F8 6C EA 87 40 70 EF AC 6D 2C 74
9F 2D FA 55 3A B9 99 77 02 A6 48 52
8C 4E F3 57 38 57 74 57 5F
INTEGER
65537
publicExponent
}
}
}
[3]
{
extensions
Extensions
SEQUENCE {
SEQUENCE
{
extension
OBJECT IDENTIFIER
basicConstraints
( 2 5 29 19 )
BOOLEAN TRUE
OCTET STRING, encapsulates {
extnValue
SEQUENCE {
BasicConstraints
}
}
}
SEQUENCE
{
extension
OBJECT IDENTIFIER
keyUsage
( 2 5 29 15 )
BOOLEAN TRUE
OCTET STRING, encapsulates {
extnValue
BIT STRING 6 unused bits
KeyUsage
'11'B
digitalSignature & nonRepudiation
}
}
SEQUENCE
{
extension
OBJECT IDENTIFIER
authorityKeyIdentifier
( 2 5 29 35 )
OCTET STRING, encapsulates {
extnValue
SEQUENCE {
AuthorityKeyIdentifier
[0]
keyIdentifier
KeyIdentifier
E9 E0 90 27 AC 78 20 7A 9A D3 4C F2
42 37 4E 22 AE 9E 38 BB
}
}
}
SEQUENCE
{
extension
OBJECT IDENTIFIER
subjectKeyIdentifier
( 2 5 29 14 )
OCTET STRING, encapsulates {
extnValue
OCTET STRING
SubjectKeyIdentifier
KeyIdentifier
77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D
CE EC 3C A0 3A E3 FF 50
}
}
SEQUENCE
{
extension
OBJECT IDENTIFIER
subjectAltName
( 2 5 29 17 )
OCTET STRING, encapsulates {
extnValue
SEQUENCE {
GeneralNames
[1]
'AliceDSS@example.com'
rfc822Name
}
}
}
}
}
}
SEQUENCE
{
signatureAlgorithm
AlgorithmIdentifier
OBJECT IDENTIFIER
sha1withRSAEncryption
( 1 2 840 113549 1 1 5 )
NULL
}
BIT STRING
0 unused bits
signatureValue
3E 70 47 A8 48 CC 13 58 8F CA 51 71
6B 4E 36 18 5D 04 7E 80 B1 8D 4D CC
CA A3 8F CC 7D 56 C8 BC CF 6E B3 1C
59 A9 20 AA 05 81 A8 4E 25 AD A7 70
14 75 2F F5 C7 9B D1 0E E9 63 D2 64
B7 C6 66 6E 73 21 54 DF F4 BA 25 5D
7D 49 D3 94 6B 22 36 74 73 B8 4A EC
2F 64 ED D3 3D D2 A7 42 C5 E8 37 8A
B4 DB 9F 67 E4 BD 9F F9 FE 74 EF EA
F9 EE 63 6A D8 3F 4B 25 09 B5 D8 1A
76 AE EB 9B DB 49 B0 22
}
}
SET
{
signerInfos
SignerInfos
SEQUENCE {
SignerInfo
INTEGER
1
version
CMSVersion
SEQUENCE {
sid
IssuerAndSerialNumber
SEQUENCE {
issuer
Name
SET {
RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER
commonName ( 2 5 4 3 )
PrintableString
'CarlRSA'
}
}
}
INTEGER
serialNumber
CertificateSerialNumber
(AliceRSA)
46 34 6B C7 80 00 56 BC 11 D3 6E 2E
C4 10 B3 B0
}
SEQUENCE {
digestAlgorithm
DigestAlgorithmIdentifier
OBJECT IDENTIFIER
sha1
( 1 3 14 3 2 26 )
NULL
}
SEQUENCE {
signatureAlgorithm
SignatureAlgorithmIdentifier
OBJECT IDENTIFIER
rsaEncryption
( 1 2 840 113549 1 1 1 )
NULL
}
OCTET STRING
signature
SignatureValue
2F 23 82 D2 F3 09 5F B8 0C 58 EB 4E
9D BF 89 9A 81 E5 75 C4 91 3D D3 D0
D5 7B B6 D5 FE 94 A1 8A AC E3 C4 84
F5 CD 60 4E 27 95 F6 CF 00 86 76 75
3F 2B F0 E7 D4 02 67 A7 F5 C7 8D 16
04 A5 B3 B5 E7 D9 32 F0 24 EF E7 20
44 D5 9F 07 C5 53 24 FA CE 01 1D 0F
17 13 A7 2A 95 9D 2B E4 03 95 14 0B
E9 39 0D BA CE 6E 9C 9E 0C E8 98 E6
55 13 D4 68 6F D0 07 D7 A2 B1 62 4C
E3 8F AF FD E0 D5 5D C7
}
}
}
}
}
Last update: January 18, 2008
© 2005-2008 Joël Repiquet, All Rights Reserved.
icon has a link to itself, for a display at the top of the screen; and
this very icon has a link to the top of the CMS message.
