X509ArchiveCutoffExtension Class

Represents X.509 Archive Cutoff extension which is first defined in RFC2560.

Definition

Namespace: SysadminsLV.PKI.Cryptography.X509Certificates
Assembly: SysadminsLV.PKI (in SysadminsLV.PKI.dll) Version: 4.0.1
C#
public class X509ArchiveCutoffExtension : X509Extension
Inheritance
X509Extension    X509ArchiveCutoffExtension

Remarks

An OCSP responder MAY choose to retain revocation information beyond a certificate's expiration. The date obtained by subtracting this retention interval value from the producedAt time in a response is defined as the certificate's "archive cutoff" date. OCSP-enabled applications would use an OCSP archive cutoff date to contribute to a proof that a digital signature was (or was not) reliable on the date it was produced even if the certificate needed to validate the signature has long since expired.

To illustrate, if a server is operated with a 7-year retention interval policy and status was produced at time t1 then the value for ArchiveCutoff in the response would be (t1 - 7 years).

Constructors

X509ArchiveCutoffExtension Initializes a new instance of the X509ArchiveCutoffExtension class.
X509ArchiveCutoffExtension(DateTime) Initializes a new instance of the X509ArchiveCutoffExtension class using a cutoff date.
X509ArchiveCutoffExtension(AsnEncodedData, Boolean) Initializes a new instance of the X509ArchiveCutoffExtension class using an AsnEncodedData object and a value that identifies whether the extension is critical.

Properties

CutoffDate Gets a cutoff date and time.

Methods

Format Returns a formatted version of the Abstract Syntax Notation One (ASN.1)-encoded data as a string.

Extension Methods

ConvertExtension Converts default instance of X509Extension class to a specific extension implementation object.
(Defined by X509ExtensionExtensions)
Encode Encodes current extension to ASN.1-encoded byte array.
(Defined by X509ExtensionExtensions)

See Also