数字证书示例编码内容解释--原版
-
D.3 End-Entity Certificate Using RSA
This section contains an annotated hex
dump of a 675 byte version 3
certificate.
The certificate contains
the following information:
(a) the serial number is
256;
(b) the certificate is signed with RSA
and the MD2 hash algorithm;
(c) the
issuer's distinguished name is OU=Dept.
Arquitectura de
Computadors; O=Universitat
Politecnica de Catalunya; C=ES
(d) and the
subject's distinguished name is CN=Francisco
Jordan;
OU=Dept. Arquitectura de Computadors;
O=Universitat Politecnica de
Catalunya; C=ES
(e)
the certificate was issued on May 21, 1996 and
expired on May 21,
1997;
(f) the
certificate contains a 768 bit RSA public key;
(g)
the certificate is an end entity certificate (not
a CA
certificate);
(h) the certificate
includes an alternative subject name and an
alternative issuer name - bothe are
URLs;
(i) the certificate include an
authority key identifier and
certificate
policies extensions; and
(j) the certificate
includes a critical key usage extension
specifying the public is intended for
generation of digital
signatures.
0000 30 80
: SEQUENCE
(
本证书全部内容开始,结构化不定长编码
)
0002 30 82 02 40
576: .
SEQUENCE
(证书基本内容开始)
0006 a0 03
3:
. . [0]
(
上下文含蓄继承
V<
/p>
ersion
结构
,
a0
标识-
10
1
00000
,长度
3
个字节)
0008 02 01
1: . . . INTEGER 2
(
Version
结构,全局类整型
02
标识,长度
1
个字节)
: 02
(内容
值为
2
,表示版本
v3
)
0011 02 02
2: . . INTEGER 256
(序列号,全局整型,
长度
2
个字节)
: 01 00
(内容值
256
)
0015 30 0d
13:
. . SEQUENCE
<
/p>
(
CA
签名算法,
全局类结构编码,
10
标
SEQUE
NCE
,
13
个字节)
0017 06 09
9:
. . . OID 1.2.840.113549.1.1.2:
(对象标识类,<
/p>
9
个字节)
MD2WithRSAEncryption
: 2a 86 48 86 f7 0d 01 01 02
(内容值
1.2.840.1135
49.1.1.2
)
(
2a<
/p>
—
2
×
40+2
)
(8648
—
10000110/01001000
—
0000110/1
001000)
0028 05 00
0: . . . NULL
(<
/p>
RSA
参数,标准规定为空)
0030 30 68
88: . . SEQUENC
E
(
颁发者,结构化描述,
长度
88
个字节)
0032 31 0b
11: . . . SET
0034 30 09
9:
. . . . SEQUENCE
0036 06 03
3: . . . . . OID 2.5.4.6:
C
(国家)
:
55 04 06
0041 13 02
2: . . . . . PrintableS
tring
'ES'
(西班牙)
: 45 53
0045 31
2d
45: . . . SET
0047 30 2b
43: . . . . SEQUENCE
0049 06
03
3: . . . . . OID 2.5.4.10:
O
:
55 04 0a
0054 13 24
36:
. . . . . PrintableString
'Universitat Politecnica de Catalunya'<
/p>
(含空格
36
个字符,猜测:××大学)
: 55 6e 69 76
65 72 73 69 74 61 74 20 50 6f 6c 69
: 74 65 63 6e 69 63 61 20 64 65 20 43
61 74 61 6c
: 75 6e 79 61
0092 31 2a
42: . . . SET
0094 30 28
40: . . . .
SEQUENCE
0096 06 03
3: . . . . . OID 2.5.4.11:
OU
:
55 04 0b
0101 13 21
33:
. . . . . PrintableString
'Dept. Arquitectura de Computadors'
(含空格
33
个字符,猜测:计算机×元件×系
)
: 44 65 70 74
2e 20 41 72 71 75 69 74 65 63 74 75
: 72 61 20 64 65 20 43 6f 6d 70 75 74
61 64 6f 72
: 73
0136 30 1e
30: . . SEQUENC
E
(
有效期
)
0138 17 0d
13: . . .
UTCTime
'96Z'
: 39 36 30 37 32 32 31 37 33 38 30 32
5a
0153 17 0d
13: . . .
UTCTime
'979521095826Z'
: 39 37 30 37 32 32 31 37
33 38 30 32 5a
0168 30 81 83
112: . . SEQUENCE
(
主题
)
0171 31 0b
11: . . . SET
0173 30 09
9: . . . . SEQUENCE
0175 06 03
3:
. . . . . OID 2.5.4.6:
C
: 55 04 06
0180
13 02
2: . . . . .
PrintableS
tring
'ES'
:
45 53
0184 31 2d
12:
. . . SET
0186 30 2b
16:
. . . . SEQUENCE
0188 06 03
3: . . . . . OID 2.5.4.10:
O
:
55 04 0a
0193 13 24
36:
. . . . . PrintableString
'Universitat Politecnica de Catalunya'
: 55 6e 69 76 65 72 73 69
74 61 74 20 50 6f 6c 69
:
74 65 63 6e 69 63 61 20 64 65 20 43 61 74 61 6c
: 75 6e 79 61
0231 31 2a
42: . . . SET
0233 30 28
40: . . . .
SEQUENCE
0235 06 03
3: . . . . . OID 2.5.4.11:
OU
:
55 04 0b
0240 13 21
33:
. . . . . PrintableString