See ASN1Data#to_der for details.
See ASN1Data#to_der for details.
The long name of the ObjectId, as defined in <openssl/objects.h>.
Returns the DER encoding of this SPKI.
Adds a nonce to the OCSP request. If no nonce is given a random one will be generated.
The nonce is used to prevent replay attacks but some servers do not support it.
Checks the nonce validity for this request and response.
The return value is one of the following:
nonce in request only.
nonces both present and not equal.
nonces present and equal.
nonces both absent.
nonce present in response only.
For most responses, clients can check result > 0. If a responder doesn’t handle nonces result.nonzero? may be necessary. A result of 0 is always an error.
Returns this request as a DER-encoded string
Returns this response as a DER-encoded string.
Adds nonce to this response. If no nonce was provided a random nonce will be added.
Encodes this basic response into a DER-encoded string.
Returns the status of the certificate identified by the certid. The return value may be one of these constant:
V_CERTSTATUS_GOOD
V_CERTSTATUS_REVOKED
V_CERTSTATUS_UNKNOWN
When the status is V_CERTSTATUS_REVOKED, the time at which the certificate was revoked can be retrieved by revocation_time.
Encodes this SingleResponse into a DER-encoded string.
Compares this certificate id’s issuer with other and returns true if they are the same.
Encodes this certificate identifier into a DER-encoded string.
Verifies the signature for the data using a public key pkey. Unlike verify, this method will not hash data with digest automatically.
Returns true if the signature is successfully verified, false otherwise. The caller must check the return value.
See sign_raw for the signing operation and an example code.
Added in version 3.0. See also the man page EVP_PKEY_verify(3).
signature
A String containing the signature to be verified.
Returns the Response in DER-encoded form.
Returns time when this timestamp token was created. If status is GRANTED or GRANTED_WITH_MODS, this is never nil.
Returns the TokenInfo in DER-encoded form.
Specify whether the response shall contain the timestamp authority’s certificate or not. The default value is true.
Indicates whether the response shall contain the timestamp authority’s certificate or not.
DER-encodes this Request.
Creates a Response with the help of an OpenSSL::PKey, an OpenSSL::X509::Certificate and a Request.
Mandatory parameters for timestamp creation that need to be set in the Request:
Mandatory parameters that need to be set in the Factory:
In addition one of either Request#policy_id or Factory#default_policy_id must be set.
Raises a TimestampError if creation fails, though successfully created error responses may be returned.
General callback for OpenSSL verify