HTML Annotations, Copyright 1996, T.M.A. Lomas,
Computer Security Group,
University of Cambridge
Computer Laboratory.
All Rights Reserved.
These are based upon a protocol description issued 8th August 1996 by MasterCard and VISA, who we presume to retain copyright in the text of these documents.
Permission is granted to use or distribute these files provided this copyright information is preserved, and subject to any conditions imposed by MasterCard and VISA.
1700 SetCRL DEFINITIONS EXPLICIT TAGS ::= BEGIN
1701
1702 --
1703 -- This module defines types for Certificate Revocation List support.
1704 --
1705
1706 -- EXPORTS All;
1707
1708 IMPORTS
1709
1710 Name
1711 FROM SetAttribute
1712
1713 CertificateSerialNumber, SignatureAlgorithmIdentifier, SIGNED {}
1714 FROM SetCertificate
1715
1716 Extensions
1717 FROM SetCertificateExtensions;
1718
1719
1720 UnsignedCertificateRevocationList ::= SEQUENCE {
1721 version INTEGER { crlVer2(1) } ( crlVer2 ),
1722 signature SignatureAlgorithmIdentifier,
1723 issuer Name,
1724 thisUpdate UTCTime,
1725 nextUpdate UTCTime,
1726 revokedCertificates CRLEntryList OPTIONAL,
1727 crlExtensions [0] Extensions
1728 }
1729
1730 CRLEntryList ::= SEQUENCE OF CRLEntry
1731
1732 CRLEntry ::= SEQUENCE{
1733 userCertificate CertificateSerialNumber,
1734 revocationDate UTCTime,
1735 crlEntryExtensions Extensions OPTIONAL
1736 }
1737
1738 EncodedCRL ::= TYPE-IDENTIFIER.&Type (UnsignedCertificateRevocationList)
1739
1740 CRL ::= SIGNED {
1741 EncodedCRL
1742 } (CONSTRAINED BY { -- Validate Or Issue CRL -- })
1743
1744
1745 END