Package eu.europa.esig.dss.crl

Class CRLUtils

java.lang.Object
eu.europa.esig.dss.crl.CRLUtils
public class CRLUtils extends Object
The utils for dealing with CRLs

  • Method Details

    • buildCRLBinary

      public static CRLBinary buildCRLBinary(byte[] binaries)
      Takes binaries and returns DER encoded CRLBinary
      Parameters:
      binaries - byte array representing an encoded CRL
      Returns:
      DER encoded CRLBinary

    • buildCRLValidity

      public static CRLValidity buildCRLValidity(CRLBinary crlBinary, CertificateToken issuerToken) throws IOException
      This method verifies and creates: the signature of the CRL, the key usage of its signing certificate and the coherence between the subject names of the CRL signing certificate and the issuer name of the certificate for which the verification of the revocation data is carried out. A dedicated object based on CRLValidity is created and accordingly updated.
      Parameters:
      crlBinary - CRLBinary of the CRL to be created (cannot be null)
      issuerToken - CertificateToken used to sign the X509CRL (cannot be null)
      Returns:
      CRLValidity
      Throws:
      IOException - if an IO error occurred

    • getRevocationInfo

      public static X509CRLEntry getRevocationInfo(CRLValidity crlValidity, BigInteger serialNumber)
      This method verifies the revocation status for a given serial number
      Parameters:
      crlValidity - the CRL Validity
      serialNumber - the certificate serial number to search
      Returns:
      the X509CRLEntry with the revocation date, the reason, or null if the serial number is not found