Class X509CertificateDetails

java.lang.Object
de.xima.fc.certificate.mgmt.cert.X509CertificateDetails
All Implemented Interfaces:
Serializable
public class X509CertificateDetails extends Object implements Serializable
Represents information about an X.509 certificate. This class encapsulates details such as the subject name, the fingerprint, and the usage information of the certificate.
Since:
8.5.0
Author:
XIMA MEDIA GmbH
See Also:

  • Constructor Details

    • X509CertificateDetails

      public X509CertificateDetails(boolean isSelfSigned, X501DistinguishedName subject, X501DistinguishedName issuer, List<X509CertificateSANEntry> sanEntries, String fingerprint, X509CertificateUsageInfo usageInfo, String keyAlgorithm, int keySize, Instant notBefore, Instant notAfter)
      Creates a new X509CertificateDetails instance.
      Parameters:
      isSelfSigned - Indicates whether the X.509 certificate is self-signed. A self-signed certificate is one that is signed by the same entity that it certifies, rather than by a trusted certificate authority (CA).
      subject - The subject name of the X.509 certificate associated with this entry in the form of a distinguished name (e.g., "CN=John Doe, OU=IT, O=XIMA"). This is used to identify the entity to which the certificate belongs.
      issuer - The issuer name of the X.509 certificate associated with this entry in the form of a distinguished name (e.g., "CN=Certificate Authority, O=XIMA"). This is used to identify the entity that issued the certificate.
      sanEntries - The SAN entries of the X.509 certificate.
      fingerprint - The SHA-256 fingerprint of the X.509 certificate associated with this entry. This is a unique identifier for the certificate and is used to detect duplicates. The fingerprint is represented as a hexadecimal string.
      usageInfo - Information about the usage of the X.509 certificate associated with this entry. This includes details such as the intended purpose of the certificate.
      keyAlgorithm - The algorithm used to generate the key associated with the X.509 certificate. This is typically a string that indicates the cryptographic algorithm (e.g., "RSA", "DSA", "ECDSA") used for the key pair.
      keySize - The size of the key associated with the X.509 certificate. This is typically represented in bits (e.g., 2048, 4096) and indicates the strength of the key.
      notBefore - Optional, indicates when the certificate expires. If set, the certificate is considered invalid if notBefore > current time.
      notAfter - Optional, indicates when the certificate expires. If set, the certificate is considered invalid if notAfter < current time.

  • Method Details

    • isSelfSigned

      public boolean isSelfSigned()
      Indicates whether the X.509 certificate is self-signed. A self-signed certificate is one that is signed by the same entity that it certifies, rather than by a trusted certificate authority (CA).

    • getSubject

      public X501DistinguishedName getSubject()
      The subject name of the X.509 certificate associated with this entry in the form of a distinguished name (e.g., "CN=John Doe, OU=IT, O=XIMA"). This is used to identify the entity to which the certificate belongs.

    • getIssuer

      public X501DistinguishedName getIssuer()
      The issuer name of the X.509 certificate associated with this entry in the form of a distinguished name (e.g., "CN=Certificate Authority, O=XIMA"). This is used to identify the entity that issued the certificate.

    • getSanEntries

      public List<X509CertificateSANEntry> getSanEntries()
      The SAN entries of the X.509 certificate.

    • getFingerprint

      public String getFingerprint()
      The SHA-256 fingerprint of the X.509 certificate associated with this entry. This is a unique identifier for the certificate and is used to detect duplicates. The fingerprint is represented as a hexadecimal string.

    • getUsageInfo

      public X509CertificateUsageInfo getUsageInfo()
      Information about the usage of the X.509 certificate associated with this entry. This includes details such as the intended purpose of the certificate.

    • getKeyAlgorithm

      public String getKeyAlgorithm()
      The algorithm used to generate the key associated with the X.509 certificate. This is typically a string that indicates the cryptographic algorithm (e.g., "RSA", "DSA", "ECDSA") used for the key pair.

    • getKeySize

      public int getKeySize()
      The size of the key associated with the X.509 certificate. This is typically represented in bits (e.g., 2048, 4096) and indicates the strength of the key.

    • getNotBefore

      public Instant getNotBefore()
      Optional, indicates when the certificate expires. If set, the certificate is considered invalid if notBefore > current time.

    • getNotAfter

      public Instant getNotAfter()
      Optional, indicates when the certificate expires. If set, the certificate is considered invalid if notAfter < current time.

    • equals

      public boolean equals(Object o)
      Overrides:
      equals in class Object

    • canEqual

      protected boolean canEqual(Object other)

    • hashCode

      public int hashCode()
      Overrides:
      hashCode in class Object

    • toString

      public String toString()
      Overrides:
      toString in class Object