An instance of OM class DS_C_CERT comprises a user's DN, public key, and additional information, all of which is digitally signed by the issuing CA in order to make the certificate unforgeable. The OM attributes associated with DS_C_SIGNATURE (a superclass of DS_C_CERT) are present.
An instance of this OM class has the OM attributes of its superclasses, OM_C_OBJECT and DS_C_SIGNATURE, in addition to the OM attributes listed in the following table.
OM Attributes of DS_C_CERT
OM Attribute |
Value Syntax |
Value Length | Value Number | Value Initially |
DS_SERIAL_NUMBER | OM_S_INTEGER | - | 1 | - |
DS_SUBJECT_ ALGORITH |
Object(DS_C_ ALGORITH_IDENT) |
- | 1 | - |
DS_SUBJECT_ PUBLIC_KEY |
String(OM_S_ BIT_STRING) |
- | 1 | - |
DS_VALIDITY_ NOT_AFTER |
String(OM_S_UTC_ TIME_STRING) |
017 | 1 | - |
DS_VALIDITY_ NOT_BEFPRE |
String(OM_S_UTC_ TIME_STRING) |
017 | 1 | - |
DS_VERSION | Enum(DS_Version) | - | 1 | DS_V1988 |
This attribute distinguishes the certificate from all other certificates that were ever or will be issued by the CA which issued this certificate.
· DS_SUBJECT
This attribute specifies the subject's name.
· DS_SUBJECT_ALGORITHM
This attribute specifies the algorithm that is used by the subject for encryption. and which is associated with the public key.
· DS_SUBJECT_PUBLIC_KEY
This attribute specifies the subject's public key, associated with the algorithm.
· DS_VALIDITY_NOT_AFTER
This attribute specifies the last day on which the certificate is valid.
· DS_VALIDITY_NOT_BEFORE
This attribute specifies the first day on which the certificate is valid.
· DS_VERSION
This attribute identifies the certificate's design. Its value is DS_V1988, meaning the design specified in the 1988 version of the standards.