1 -- Extracted from RFC5652
2 AttributeCertificateVersion1
3 { iso(1) member-body(2) us(840) rsadsi(113549)
4 pkcs(1) pkcs-9(9) smime(16) modules(0) v1AttrCert(15) }
6 DEFINITIONS IMPLICIT TAGS ::=
12 -- Directory Authentication Framework (X.509)
13 AttCertValidityPeriod, Extensions, IssuerSerial
14 FROM AuthenticationFramework { joint-iso-itu-t ds(5)
15 module(1) authenticationFramework(7) 3 }
18 FROM CertificateExtensions { joint-iso-ccitt ds(5)
19 module(1) certificateExtensions(26) 0 }
22 FROM SelectedAttributeTypes { joint-iso-itu-t ds(5) module(1)
23 selectedAttributeTypes(5) 3 };
26 -- Definition extracted from X.509-1997 [X.509-97], but
27 -- different type names are used to avoid collisions.
29 AttributeCertificateV1 ::= SEQUENCE {
30 acInfo AttributeCertificateInfoV1,
31 signatureAlgorithm AlgorithmIdentifier,
32 signature BIT STRING }
34 AttributeCertificateInfoV1 ::= SEQUENCE {
35 version AttCertVersionV1 DEFAULT v1,
37 baseCertificateID [0] IssuerSerial,
38 -- associated with a Public Key Certificate
39 subjectName [1] GeneralNames },
40 -- associated with a name
42 signature AlgorithmIdentifier,
43 serialNumber CertificateSerialNumber,
44 attCertValidityPeriod AttCertValidityPeriod,
45 attributes SEQUENCE OF Attribute,
46 issuerUniqueID UniqueIdentifier OPTIONAL,
47 extensions Extensions OPTIONAL }
49 AttCertVersionV1 ::= INTEGER { v1(0) }
51 END -- of AttributeCertificateVersion1