id-smime-aa-signingCertificate - attribute definition

Wed, 16 Jan 2013 01:45:58 -0800 

Hello,

I'm not able to find RFC, where is defined this attribute.

An example in Time Stamp Reply looks like that:
---------------------------------------------------------------------------------
  523:d=7  hl=3 l= 179 cons: SEQUENCE          
  526:d=8  hl=2 l=  11 prim: OBJECT            :id-smime-aa-signingCertificate
  539:d=8  hl=3 l= 163 cons: SET               
  542:d=9  hl=3 l= 160 cons: SEQUENCE          
  545:d=10 hl=3 l= 157 cons: SEQUENCE          
  548:d=11 hl=3 l= 130 cons: SEQUENCE          
  551:d=12 hl=2 l=  20 prim: OCTET STRING      [HEX 
DUMP]:1225953CB6C14917FC38188AA1326B5E476412D7
  573:d=12 hl=2 l= 106 cons: SEQUENCE          
  575:d=13 hl=2 l=  99 cons: SEQUENCE          
  577:d=14 hl=2 l=  97 cons: cont [ 4 ]        
  579:d=15 hl=2 l=  95 cons: SEQUENCE          
  581:d=16 hl=2 l=  11 cons: SET               
  583:d=17 hl=2 l=   9 cons: SEQUENCE          
  585:d=18 hl=2 l=   3 prim: OBJECT            :countryName
  590:d=18 hl=2 l=   2 prim: PRINTABLESTRING   :CZ
  594:d=16 hl=2 l=  44 cons: SET               
  596:d=17 hl=2 l=  42 cons: SEQUENCE          
  598:d=18 hl=2 l=   3 prim: OBJECT            :organizationName
  603:d=18 hl=2 l=  35 prim: UTF8STRING        :Česká pošta, s.p. [IČ 47114983]
  640:d=16 hl=2 l=  34 cons: SET               
  642:d=17 hl=2 l=  32 cons: SEQUENCE          
  644:d=18 hl=2 l=   3 prim: OBJECT            :commonName
  649:d=18 hl=2 l=  25 prim: PRINTABLESTRING   :PostSignum Qualified CA 2
  676:d=13 hl=2 l=   3 prim: INTEGER           :14C0B3
  681:d=11 hl=2 l=  22 cons: SEQUENCE          
  683:d=12 hl=2 l=  20 prim: OCTET STRING      [HEX 
DUMP]:3484C2150114E2C34964A34EC50AFDEECF67A109
----------------------------------------------------- 

As you can see - this type of object is "SET" - not "SEQUENCE".

in RFC2634 [Page 47] is defined :

   SigningCertificate ::=  SEQUENCE {
       certs        SEQUENCE OF ESSCertID,
       policies     SEQUENCE OF PolicyInformation OPTIONAL
   }
   ESSCertID ::=  SEQUENCE {
        certHash                 Hash,
        issuerSerial             IssuerSerial OPTIONAL
   }


=> as you can see, the id-smime-aa-signingCertificate type of attribute seems 
to be
SET (OF)  SigningCertificate.

I really need to find definition - syntax and SEMANTIC of this attribute 
(defined as SET).

--kapetr




______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Reply via email to