[xmlsec] Verifying a X509 file

[Arda TEKIN]

Title: Verifying a X509 file

Hello Aleksey,
I need to validate a xml which use X509 certificate and key information. I have a sample xml message but I couldn't validate it. I think I have a key/certificate stating problem(xmlsec utility program also reported error about that). There is a sample xml validation code in the web site but it does not include X509 key info. I think I have to determine the cert. key. file or directory to xmlsec library. But I dont know which library functions sould I use? Can you help me about this problem please?

(In the attachment I'm sending you a xml file which I want to validate)

Arda Tekin
Software Specialist
Innova IT Solutions

<<PARes.xml>>

---

GIZLILIK NOTU
Bu e-posta mesaji gizli, hassas bilgi ve/ya da ekler icerebilir. Bu mesaj, mesajin alici kisminda belirtilen kullanici/kullanicilara gonderilmistir. Eger mesaji yanlislikla almissaniz lutfen gondereni acilen bilgilendiriniz, mesaji ve tum kopyalarini siliniz.
Bu mesaj bilinen tüm viruslere karsi Symantec Antivirus ile taranmistir.

 

CONFIDENTIALITY NOTICE
This email may contain confidential information and/or attachments. This email is intended for the use of the addressee only. If you receive this email by mistake, please advise the sender immediately and delete the email and any copies of it.
This e-mail has been scanned by Symantec Antivirus for all known viruses.

<!-- edited with XML Spy v4.3 U (http://www.xmlspy.com) by Nasdaq Boom (World of Cracking) -->
<ThreeDSecure>
	<Message id="10418691275318161555119738837784">
		<PARes id="753nKonMmYHO9pww2NoJA854fgE0">
			<version>1.0.1</version>
			<Merchant>
				<acqBIN>412345</acqBIN>
				<merID>123456789012345</merID>
			</Merchant>
			<Purchase>
				<xid>MDAwMDAwMDAwMDAwMDAwMDAxMDI=</xid>
				<date>20030106 18:00:27</date>
				<purchAmount>22365</purchAmount>
				<currency>840</currency>
				<exponent>2</exponent>
			</Purchase>
			<pan>4123450131003312</pan>
			<TX>
				<time>20030106 16:01:22</time>
				<status>Y</status>
				<cavv>AAABAlBZUAAAAAAAAAAAAAAAAAA=</cavv>
				<eci>05</eci>
				<cavvAlgorithm>1</cavvAlgorithm>
			</TX>
		</PARes>
		<Signature xmlns="http://www.w3.org/2000/09/xmldsig#";>
			<SignedInfo>
				<CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
				<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
				<Reference URI="#753nKonMmYHO9pww2NoJA854fgE0">
					<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
					<DigestValue>EwIfFB8MiP5XZgX8Ka5UIJCnBXM=</DigestValue>
				</Reference>
			</SignedInfo>
			<SignatureValue>IhqUFqI7xC6Zzpw5K82ncFUEUspJRJdrcDgvY1i+WBnQ7ZuIm84SqP/cO2iecj+2MD4ZOmfe+rm+soWLaDK/Q7CcluTu5gEvZmf33tYd6yn2LOksORs0EkoA2b5TyyLt1RuqaXmh07ManP7sLKlT2vAdh75OYv/QB1FtOY1PoAg=</SignatureValue>
			<KeyInfo>
				<X509Data>
					<X509SubjectName>CN=Test Bank, OU=IT, O=Test Bank Pty. Ltd., L=Sydney, ST=NSW, C=AU</X509SubjectName>
					<X509Certificate>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</X509Certificate>
				</X509Data>
			</KeyInfo>
		</Signature>
	</Message>
</ThreeDSecure>