1*b92e6570SDavid Howells-- X.509 AuthorityKeyIdentifier 2*b92e6570SDavid Howells-- rfc5280 section 4.2.1.1 3*b92e6570SDavid Howells 4*b92e6570SDavid HowellsAuthorityKeyIdentifier ::= SEQUENCE { 5*b92e6570SDavid Howells keyIdentifier [0] IMPLICIT KeyIdentifier OPTIONAL, 6*b92e6570SDavid Howells authorityCertIssuer [1] IMPLICIT GeneralNames OPTIONAL, 7*b92e6570SDavid Howells authorityCertSerialNumber [2] IMPLICIT CertificateSerialNumber OPTIONAL 8*b92e6570SDavid Howells } 9*b92e6570SDavid Howells 10*b92e6570SDavid HowellsKeyIdentifier ::= OCTET STRING ({ x509_akid_note_kid }) 11*b92e6570SDavid Howells 12*b92e6570SDavid HowellsCertificateSerialNumber ::= INTEGER ({ x509_akid_note_serial }) 13*b92e6570SDavid Howells 14*b92e6570SDavid HowellsGeneralNames ::= SEQUENCE OF GeneralName 15*b92e6570SDavid Howells 16*b92e6570SDavid HowellsGeneralName ::= CHOICE { 17*b92e6570SDavid Howells otherName [0] ANY, 18*b92e6570SDavid Howells rfc822Name [1] IA5String, 19*b92e6570SDavid Howells dNSName [2] IA5String, 20*b92e6570SDavid Howells x400Address [3] ANY, 21*b92e6570SDavid Howells directoryName [4] Name ({ x509_akid_note_name }), 22*b92e6570SDavid Howells ediPartyName [5] ANY, 23*b92e6570SDavid Howells uniformResourceIdentifier [6] IA5String, 24*b92e6570SDavid Howells iPAddress [7] OCTET STRING, 25*b92e6570SDavid Howells registeredID [8] OBJECT IDENTIFIER 26*b92e6570SDavid Howells } 27*b92e6570SDavid Howells 28*b92e6570SDavid HowellsName ::= SEQUENCE OF RelativeDistinguishedName 29*b92e6570SDavid Howells 30*b92e6570SDavid HowellsRelativeDistinguishedName ::= SET OF AttributeValueAssertion 31*b92e6570SDavid Howells 32*b92e6570SDavid HowellsAttributeValueAssertion ::= SEQUENCE { 33*b92e6570SDavid Howells attributeType OBJECT IDENTIFIER ({ x509_note_OID }), 34*b92e6570SDavid Howells attributeValue ANY ({ x509_extract_name_segment }) 35*b92e6570SDavid Howells } 36