(Logo Tech-invite)  

a Portal devoted to SIP and Security technologies

   (World Map)    
    Search Home Site Map Contact
 SIP/IMS Standardization
> IETF Standardization Process
> RFCs related to SIP (4 p.) o
> SIP-SIPPING-SIMPLE... I-Ds (22 p.) o
> Audio-Video Transport RFCs (2 p.)
> 3GPP Specifications (12 p.)
> OMA Specifications related to SIP
> TISPAN NGN Specifications (3 p.) o
> SIP Topics
> IMS Topics
 SIP/IMS Call Flows
> RFC3261's Example
> Basic -- RFC3665
> SIP PSTN -- RFC3666 (3 p.)
> SIP Service Examples (19 p.)
> IMS Signaling Flows (35 p.)
 SIP/IMS Architecture
> SIP Protocol Structure
> Dialogs & Routing
> UMTS Network Evolution
 Security
> PKIX-TLS-SMIME... Standards (20 p.) o
> Cryptography Basics
> ASN.1 for PKI Certificate & CRL Profile
> ASN.1 for CMS
> RFC3280's Certificate Examples (4)
> RFC4134's CMS-S/MIME Examples (14)
> RFC4474's SIP Authentication Service
> SSL/TLS Time-Diagrams
> IPSec Guides
 ABNF Grammars
> ABNF Notation & Rules
> URI Generic Syntax
> ABNF for SIP
> SIP Messages & URIs
> SIP Header Fields
> MIME Media Types
> ABNF for SDP
> ABNF for MSRP
> ABNF for MRCPv2
> ABNF for RTSP 2.0
> Internet Message Format
 DiffServ CoS Simulation
> IPVCoSS Simulator
> IP-VPN Case Study
  o (daily updated)

RFC 4134 -- Examples of CMS objects and S/MIME messages

Top - Overview  - Basic Signed Content, DSS  - Multiple Signers 
- Private Keys  - Basic Signed Content, RSA  - Signing Using SKI 
- Enveloped-data  - Basic Signed Content, Detached Content  - SignedData with Attributes 
- Encrypted-data  - Fancier Signed Content  - SignedData with Certificates Only 
  - All RSA Signed Message  - S/MIME Messages 

All RSA Signed Message

cmxex5

Navigation Tips: the ASN.1 Type in front of the (up) icon has a link to itself, for a display at the top of the screen; and this very icon has a link to the top of the CMS message.
030ndef (up)
2069
13A0ndef
1530ndef (up)
17021
203111
22309
24065
31050
 
 
3330ndef (up)
35069
46A0ndef
4824ndef
50044
560424
 
 
 
88A0ndef (up)
9030491 (up)
9430340 (up)
98A03
100021
 
1030216
 
 
1213013
123069
134050
 
1363018 (up)
1383116
1403014
142063
147137
 
 
 
1563030 (up)
1581713
1731713
 
1883018 (up)
1903116
1923014
194063
199137
 
 
 
20830159 (up)
2113013
213069
224050
 
22603141
23030137
23302129
 
 
 
 
 
 
 
 
 
 
 
365023
 
 
 
370A366 (up)
3723064
3743015 (up)
376063
381011
384045
386303
388011
 
 
 
3913014 (up)
393063
398011
401044
403032
 
 
 
4073029 (up)
409063
4140422
4160420
 
 
 
 
 
 
 
 
4383013 (up)
440069
451050
 
45303129 (up)
 
 
 
 
 
 
 
 
 
 
 
 
58530556 (up)
58930405 (up)
593A03
595021
 
5980216
 
 
6163013
618069
629050
 
6313018 (up)
6333116
6353014
637063
642137
 
 
 
6513030 (up)
6531713
6681713
 
6833019 (up)
6853117
6873015
689063
694138
 
 
 
70430159 (up)
7073013
709069
720050
 
72203141
72630137
72902129
 
 
 
 
 
 
 
 
 
 
 
861023
 
 
 
866A3129 (up)
86930127
8713012 (up)
873063
878011
881042
883300
 
 
 
8853014 (up)
887063
892011
895044
897032
 
 
 
9013031 (up)
903063
9080424
9103022
9128020
 
 
 
 
 
9343029 (up)
936063
9410422
9430420
 
 
 
 
 
9653031 (up)
967063
9720424
9743022
9768120
 
 
 
 
 
 
9983013 (up)
1000069
1011050
 
101303129 (up)
 
 
 
 
 
 
 
 
 
 
 
 
 
114731203 (up)
115030200
1153021
11563038
11583018
11603116
11623014
1164063
1169137
 
 
 
11780216
 
 
 
1196309
1198065
1205050
 
12073013
1209069
1220050
 
122204128
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
SEQUENCE {   ContentInfo
OBJECT IDENTIFIER signedData ( 1  2  840  113549  1  7  2 )   contentType   ContentType
[0] {   content
SEQUENCE {   SignedData
INTEGER 1   version   CMSVersion
SET {   digestAlgorithms   DigestAlgorithmIdentifiers
SEQUENCE {
OBJECT IDENTIFIER sha1 ( 1  3  14  3  2  26 )
NULL
}
}
SEQUENCE {   encapContentInfo   EncapsulatedContentInfo
OBJECT IDENTIFIER data ( 1  2  840  113549  1  7  1 )   eContentType   ContentType
[0] {   eContent
OCTET STRING {
OCTET STRING 'This'
OCTET STRING ' is some sample content.'
}
}
}
[0] {   certificates   CertificateSet
SEQUENCE {   certificate   Certificate   (CarlRSASelf )
SEQUENCE {   tbsCertificate   TBSCertificate
[0] {   version   Version
INTEGER 2
}
INTEGER   serialNumber   CertificateSerialNumber
46 34 6B C7 80 00 56 BC 11 D3 6E 2E
9F F2 50 20
SEQUENCE {   signature   AlgorithmIdentifier
OBJECT IDENTIFIER sha1withRSAEncryption ( 1  2  840  113549  1  1  5 )
NULL
}
SEQUENCE {   issuer   Name
SET {   RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER commonName ( 2  5  4  3 )
PrintableString 'CarlRSA'
}
}
}
SEQUENCE {   validity   Validity
UTCTime '990818070000Z'   notBefore   Time
UTCTime '391231235959Z'   notAfter   Time
}
SEQUENCE {   subject   Name
SET {   RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER commonName ( 2  5  4  3 )
PrintableString 'CarlRSA'
}
}
}
SEQUENCE {   subjectPublicKeyInfo   SubjectPublicKeyInfo
SEQUENCE {   algorithm   AlgorithmIdentifier
OBJECT IDENTIFIER rsaEncryption ( 1  2  840  113549  1  1  1 )
NULL
}
BIT STRING 0 unused bits, encapsulates {   subjectPublicKey
SEQUENCE {   RSAPublicKey
INTEGER   modulus
00 E4 4B FF 18 B8 24 57 F4 77 FF 6E
73 7B 93 71 5C BC 33 1A 92 92 72 23
D8 41 46 D0 CD 11 3A 04 B3 8E AF 82
9D BD 51 1E 17 7A F2 76 2C 2B 86 39
A7 BD D7 8D 1A 53 EC E4 00 D5 E8 EC
A2 36 B1 ED E2 50 E2 32 09 8A 3F 9F
99 25 8F B8 4E AB B9 7D D5 96 65 DA
16 A0 C5 BE 0E AE 44 5B EF 5E F4 A7
29 CB 82 DD AC 44 E9 AA 93 94 29 0E
F8 18 D6 C8 57 5E F2 76 C4 F2 11 60
38 B9 1B 3C 1D 97 C9 6A F1
INTEGER 65537   publicExponent
}
}
}
[3] {   extensions   Extensions
SEQUENCE {
SEQUENCE {   extension
OBJECT IDENTIFIER basicConstraints ( 2  5  29  19 )
BOOLEAN TRUE
OCTET STRING, encapsulates {   extnValue
SEQUENCE {   BasicConstraints
BOOLEAN TRUE
}
}
}
SEQUENCE {   extension
OBJECT IDENTIFIER keyUsage ( 2  5  29  15 )
BOOLEAN TRUE
OCTET STRING, encapsulates {   extnValue
BIT STRING 1 unused bits   KeyUsage
'1100001'B   digitalSignature & nonRepudiation & cRLSign
}
}
SEQUENCE {   extension
OBJECT IDENTIFIER subjectKeyIdentifier ( 2  5  29  14 )
OCTET STRING, encapsulates {   extnValue
OCTET STRING   SubjectKeyIdentifier
KeyIdentifier
E9 E0 90 27 AC 78 20 7A 9A D3 4C F2
42 37 4E 22 AE 9E 38 BB
}
}
}
}
}
SEQUENCE {   signatureAlgorithm   AlgorithmIdentifier
OBJECT IDENTIFIER sha1withRSAEncryption ( 1  2  840  113549  1  1  5 )
NULL
}
BIT STRING 0 unused bits   signatureValue
B7 9E D4 04 D3 ED 29 E4 FF 89 89 15
2E 4C DB 0C F0 48 0F 32 61 EE C4 04
EC 12 5D 2D FF 0F 64 59 7E 0A C3 ED
18 FD E3 56 40 37 A7 07 B5 F0 38 12
61 50 ED EF DD 3F E3 0B B8 61 A5 A4
9B 3C E6 9E 9C 54 9A B6 95 D6 DA 6C
3B B5 2D 45 35 9D 49 01 76 FA B9 B9
31 F9 F9 6B 12 53 A0 F5 14 60 9B 7D
CA 3E F2 53 6B B0 37 6F AD E6 74 D7
DB FA 5A EA 14 41 63 5D CD BE C8 0E
C1 DA 6A 8D 53 34 18 02
}
SEQUENCE {   certificate   Certificate   (AliceRSASignByCarl)
SEQUENCE {   tbsCertificate   TBSCertificate
[0] {   version   Version
INTEGER 2
}
INTEGER   serialNumber   CertificateSerialNumber
46 34 6B C7 80 00 56 BC 11 D3 6E 2E
C4 10 B3 B0
SEQUENCE {   signature   AlgorithmIdentifier
OBJECT IDENTIFIER sha1withRSAEncryption ( 1  2  840  113549  1  1  5 )
NULL
}
SEQUENCE {   issuer   Name
SET {   RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER commonName ( 2  5  4  3 )
PrintableString 'CarlRSA'
}
}
}
SEQUENCE {   validity   Validity
UTCTime '990919010847Z'   notBefore   Time
UTCTime '391231235959Z'   notAfter   Time
}
SEQUENCE {   subject   Name
SET {   RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER commonName ( 2  5  4  3 )
PrintableString 'AliceRSA'
}
}
}
SEQUENCE {   subjectPublicKeyInfo   SubjectPublicKeyInfo
SEQUENCE {   algorithm   AlgorithmIdentifier
OBJECT IDENTIFIER rsaEncryption ( 1  2  840  113549  1  1  1 )
NULL
}
BIT STRING 0 unused bits, encapsulates {   subjectPublicKey
SEQUENCE {   RSAPublicKey
INTEGER   modulus
00 E0 89 73 39 8D D8 F5 F5 E8 87 76
39 7F 4E B0 05 BB 53 83 DE 0F B7 AB
DC 7D C7 75 29 0D 05 2E 6D 12 DF A6
86 26 D4 D2 6F AA 58 29 FC 97 EC FA
82 51 0F 30 80 BE B1 50 9E 46 44 F1
2C BB D8 32 CF C6 68 6F 07 D9 B0 60
AC BE EE 34 09 6A 13 F5 F7 05 05 93
DF 5E BA 35 56 D9 61 FF 19 7F C9 81
E6 F8 6C EA 87 40 70 EF AC 6D 2C 74
9F 2D FA 55 3A B9 99 77 02 A6 48 52
8C 4E F3 57 38 57 74 57 5F
INTEGER 65537   publicExponent
}
}
}
[3] {   extensions   Extensions
SEQUENCE {
SEQUENCE {   extension
OBJECT IDENTIFIER basicConstraints ( 2  5  29  19 )
BOOLEAN TRUE
OCTET STRING, encapsulates {   extnValue
SEQUENCE {   BasicConstraints
}
}
}
SEQUENCE {   extension
OBJECT IDENTIFIER keyUsage ( 2  5  29  15 )
BOOLEAN TRUE
OCTET STRING, encapsulates {   extnValue
BIT STRING 6 unused bits   KeyUsage
'11'B   digitalSignature & nonRepudiation
}
}
SEQUENCE {   extension
OBJECT IDENTIFIER authorityKeyIdentifier ( 2  5  29  35 )
OCTET STRING, encapsulates {   extnValue
SEQUENCE {   AuthorityKeyIdentifier
[0]   keyIdentifier   KeyIdentifier
E9 E0 90 27 AC 78 20 7A 9A D3 4C F2
42 37 4E 22 AE 9E 38 BB
}
}
}
SEQUENCE {   extension
OBJECT IDENTIFIER subjectKeyIdentifier ( 2  5  29  14 )
OCTET STRING, encapsulates {   extnValue
OCTET STRING   SubjectKeyIdentifier
KeyIdentifier
77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D
CE EC 3C A0 3A E3 FF 50
}
}
SEQUENCE {   extension
OBJECT IDENTIFIER subjectAltName ( 2  5  29  17 )
OCTET STRING, encapsulates {   extnValue
SEQUENCE {   GeneralNames
[1] 'AliceDSS@example.com'   rfc822Name
}
}
}
}
}
}
SEQUENCE {   signatureAlgorithm   AlgorithmIdentifier
OBJECT IDENTIFIER sha1withRSAEncryption ( 1  2  840  113549  1  1  5 )
NULL
}
BIT STRING 0 unused bits   signatureValue
3E 70 47 A8 48 CC 13 58 8F CA 51 71
6B 4E 36 18 5D 04 7E 80 B1 8D 4D CC
CA A3 8F CC 7D 56 C8 BC CF 6E B3 1C
59 A9 20 AA 05 81 A8 4E 25 AD A7 70
14 75 2F F5 C7 9B D1 0E E9 63 D2 64
B7 C6 66 6E 73 21 54 DF F4 BA 25 5D
7D 49 D3 94 6B 22 36 74 73 B8 4A EC
2F 64 ED D3 3D D2 A7 42 C5 E8 37 8A
B4 DB 9F 67 E4 BD 9F F9 FE 74 EF EA
F9 EE 63 6A D8 3F 4B 25 09 B5 D8 1A
76 AE EB 9B DB 49 B0 22
}
}
SET {   signerInfos   SignerInfos
SEQUENCE {   SignerInfo
INTEGER 1   version   CMSVersion
SEQUENCE {   sid   IssuerAndSerialNumber
SEQUENCE {   issuer   Name
SET {   RelativeDistinguishedName
SEQUENCE {
OBJECT IDENTIFIER commonName ( 2  5  4  3 )
PrintableString 'CarlRSA'
}
}
}
INTEGER   serialNumber   CertificateSerialNumber   (AliceRSA)
46 34 6B C7 80 00 56 BC 11 D3 6E 2E
C4 10 B3 B0
}
SEQUENCE {   digestAlgorithm   DigestAlgorithmIdentifier
OBJECT IDENTIFIER sha1 ( 1  3  14  3  2  26 )
NULL
}
SEQUENCE {   signatureAlgorithm   SignatureAlgorithmIdentifier
OBJECT IDENTIFIER rsaEncryption ( 1  2  840  113549  1  1  1 )
NULL
}
OCTET STRING   signature   SignatureValue
2F 23 82 D2 F3 09 5F B8 0C 58 EB 4E
9D BF 89 9A 81 E5 75 C4 91 3D D3 D0
D5 7B B6 D5 FE 94 A1 8A AC E3 C4 84
F5 CD 60 4E 27 95 F6 CF 00 86 76 75
3F 2B F0 E7 D4 02 67 A7 F5 C7 8D 16
04 A5 B3 B5 E7 D9 32 F0 24 EF E7 20
44 D5 9F 07 C5 53 24 FA CE 01 1D 0F
17 13 A7 2A 95 9D 2B E4 03 95 14 0B
E9 39 0D BA CE 6E 9C 9E 0C E8 98 E6
55 13 D4 68 6F D0 07 D7 A2 B1 62 4C
E3 8F AF FD E0 D5 5D C7
}
}
}
}
}
  
Last update: January 18, 2008 
  
(to top) © 2005-2008 Joël Repiquet, All Rights Reserved.