CERT_AUTHORITY_KEY_ID_INFO (Compact 2013)
3/28/2014
This structure identifies the key used to sign a certificate. The CERT_AUTHORITY_KEY_ID_INFO structure differentiates among distinct keys used by the same certification authority (CA) as, for example, keys changed when an update occurs.
The key can be identified by an explicit key identifier, by giving a certificate's issuer and serial number, or by giving both. If both are used, the certificate issuer must ensure that the explicit key identifier, the certificate issuer, and the serial number are consistent.
The CryptDecodeObject function creates an instance of this structure when performed on a CERT_EXTENSION structure's Value member with the structure's pszObjId member set to szOID_AUTHORITY_KEY_IDENTIFIER.
An instance of this structure can be used as input to the CryptEncodeObject function to create an appropriate CERT_EXTENSION structure.
Syntax
typedef struct _CERT_AUTHORITY_KEY_ID_INFO {
CRYPT_DATA_BLOB KeyId;
CERT_NAME_BLOB CertIssuer;
CRYPT_INTEGER_BLOB CertSerialNumber;
} CERT_AUTHORITY_KEY_ID_INFO, *PCERT_AUTHORITY_KEY_ID_INFO;
Members
- KeyId
CRYPT_DATA_BLOB structure containing a unique identifier of a public key.
- CertIssuer
CERT_NAME_BLOB structure containing the encoded distinguished name of the CA that issued the certificate.
- CertSerialNumber
CRYPT_INTEGER_BLOB structure containing the serial number of the certificate associated with the private key used to sign this certificate. For more details, see the CERT_INFO structure.
Requirements
Header |
wincrypt.h |
See Also
Reference
Cryptography Structures
BLOB (Cryptography)
CERT_EXTENSION
CERT_INFO
BLOB (Cryptography)
BLOB (Cryptography)
BLOB (Cryptography)