draft-ietf-smime-examples-02.txt   draft-ietf-smime-examples-03.txt 
Internet Draft Editor: Paul Hoffman Internet Draft Editor: Paul Hoffman
draft-ietf-smime-examples-02.txt Internet Mail Consortium draft-ietf-smime-examples-03.txt Internet Mail Consortium
September 29, 1999 October 21, 1999
Expires in six months Expires in six months
Examples of S/MIME Messages Examples of S/MIME Messages
Status of this memo Status of this memo
This document is an Internet-Draft and is in full conformance with all This document is an Internet-Draft and is in full conformance with all
provisions of Section 10 of RFC2026. provisions of Section 10 of RFC2026.
Internet-Drafts are working documents of the Internet Engineering Task Internet-Drafts are working documents of the Internet Engineering Task
skipping to change at line 28 skipping to change at line 28
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet- Drafts as reference time. It is inappropriate to use Internet- Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
The list of current Internet-Drafts can be accessed at The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt http://www.ietf.org/ietf/1id-abstracts.txt
The list of Internet-Draft Shadow Directories can be accessed at The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html. http://www.ietf.org/shadow.html.
To view the list Internet-Draft Shadow Directories, see
http://www.ietf.org/shadow.html.
Abstract Abstract
This document gives examples of message bodies formatted using S/MIME. This document gives examples of message bodies formatted using S/MIME.
Specifically, it has examples of Cryptographic Message Syntax (CMS) Specifically, it has examples of Cryptographic Message Syntax (CMS)
objects, S/MIME messages (including the MIME formatting), and Enhanced objects, S/MIME messages (including the MIME formatting), and Enhanced
Security Services for S/MIME (ESS). It includes examples of most or all Security Services for S/MIME (ESS). It includes examples of most or all
common CMS and ESS formats; in addition, it gives examples that show common CMS and ESS formats; in addition, it gives examples that show
common pitfalls in implementing CMS. The purpose of this document is to common pitfalls in implementing CMS. The purpose of this document is to
help increase interoperability for S/MIME and other protocols that rely help increase interoperability for S/MIME and other protocols that rely
on CMS. on CMS.
skipping to change at line 758 skipping to change at line 761
: 00 98 B0 C6 3F CF 71 47 5A 35 A9 4A 8F C0 F8 24 : 00 98 B0 C6 3F CF 71 47 5A 35 A9 4A 8F C0 F8 24
: 05 E8 46 94 8E : 05 E8 46 94 8E
716 02 20: INTEGER 716 02 20: INTEGER
: 5B 9F 48 C0 8C A1 C1 02 9C 44 EA E9 A1 87 C1 A5 : 5B 9F 48 C0 8C A1 C1 02 9C 44 EA E9 A1 87 C1 A5
: 7F 28 2D BB : 7F 28 2D BB
: } : }
: } : }
: } : }
AliceRSASignByCarl = AliceRSASignByCarl =
0 30 514: SEQUENCE { 0 30 522: SEQUENCE {
4 30 367: SEQUENCE { 4 30 371: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 16: INTEGER 13 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0
31 30 9: SEQUENCE { 31 30 13: SEQUENCE {
33 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29) 33 06 9: OBJECT IDENTIFIER
: (Oddball OIW OID) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
40 05 0: NULL : (PKCS #1)
44 05 0: NULL
: } : }
42 30 18: SEQUENCE { 46 30 18: SEQUENCE {
44 31 16: SET { 48 31 16: SET {
46 30 14: SEQUENCE { 50 30 14: SEQUENCE {
48 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 52 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
53 13 7: PrintableString 'CarlRSA' 57 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
62 30 30: SEQUENCE { 66 30 30: SEQUENCE {
64 17 13: UTCTime '990919010847Z' 68 17 13: UTCTime '990819070000Z'
79 17 13: UTCTime '391231235959Z' 83 17 13: UTCTime '391231235959Z'
: } : }
94 30 19: SEQUENCE { 98 30 19: SEQUENCE {
96 31 17: SET { 100 31 17: SET {
98 30 15: SEQUENCE { 102 30 15: SEQUENCE {
100 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 104 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
105 13 8: PrintableString 'AliceRSA' 109 13 8: PrintableString 'AliceRSA'
: } : }
: } : }
: } : }
115 30 159: SEQUENCE { 119 30 159: SEQUENCE {
118 30 13: SEQUENCE { 122 30 13: SEQUENCE {
120 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1) 124 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
131 05 0: NULL 135 05 0: NULL
: } : }
133 03 141: BIT STRING 0 unused bits, encapsulates { 137 03 141: BIT STRING 0 unused bits, encapsulates {
137 30 137: SEQUENCE { 141 30 137: SEQUENCE {
140 02 129: INTEGER 144 02 129: INTEGER
: 00 E0 89 73 39 8D D8 F5 F5 E8 87 76 39 7F 4E B0 : 00 E0 89 73 39 8D D8 F5 F5 E8 87 76 39 7F 4E B0
: 05 BB 53 83 DE 0F B7 AB DC 7D C7 75 29 0D 05 2E : 05 BB 53 83 DE 0F B7 AB DC 7D C7 75 29 0D 05 2E
: 6D 12 DF A6 86 26 D4 D2 6F AA 58 29 FC 97 EC FA : 6D 12 DF A6 86 26 D4 D2 6F AA 58 29 FC 97 EC FA
: 82 51 0F 30 80 BE B1 50 9E 46 44 F1 2C BB D8 32 : 82 51 0F 30 80 BE B1 50 9E 46 44 F1 2C BB D8 32
: CF C6 68 6F 07 D9 B0 60 AC BE EE 34 09 6A 13 F5 : CF C6 68 6F 07 D9 B0 60 AC BE EE 34 09 6A 13 F5
: F7 05 05 93 DF 5E BA 35 56 D9 61 FF 19 7F C9 81 : F7 05 05 93 DF 5E BA 35 56 D9 61 FF 19 7F C9 81
: E6 F8 6C EA 87 40 70 EF AC 6D 2C 74 9F 2D FA 55 : E6 F8 6C EA 87 40 70 EF AC 6D 2C 74 9F 2D FA 55
: 3A B9 99 77 02 A6 48 52 8C 4E F3 57 38 57 74 57 : 3A B9 99 77 02 A6 48 52 8C 4E F3 57 38 57 74 57
: 5F : 5F
272 02 3: INTEGER 65537 276 02 3: INTEGER 65537
: } : }
: } : }
: } : }
277 A3 96: [3] { 281 A3 96: [3] {
279 30 94: SEQUENCE { 283 30 94: SEQUENCE {
281 30 12: SEQUENCE { 285 30 12: SEQUENCE {
283 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19) 287 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
288 01 1: BOOLEAN TRUE 292 01 1: BOOLEAN TRUE
291 04 2: OCTET STRING, encapsulates { 295 04 2: OCTET STRING, encapsulates {
293 30 0: SEQUENCE {} 297 30 0: SEQUENCE {}
: } : }
: } : }
295 30 14: SEQUENCE { 299 30 14: SEQUENCE {
297 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15) 301 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
302 01 1: BOOLEAN TRUE 306 01 1: BOOLEAN TRUE
305 04 4: OCTET STRING, encapsulates { 309 04 4: OCTET STRING, encapsulates {
307 03 2: BIT STRING 6 unused bits 311 03 2: BIT STRING 6 unused bits
: '11'B : '11'B
: } : }
: } : }
311 30 31: SEQUENCE { 315 30 31: SEQUENCE {
313 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35) 317 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
318 04 24: OCTET STRING, encapsulates { 322 04 24: OCTET STRING, encapsulates {
320 30 22: SEQUENCE { 324 30 22: SEQUENCE {
322 80 20: [0] 326 80 20: [0]
: E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22 : E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22
: AE 9E 38 BB : AE 9E 38 BB
: } : }
: } : }
: } : }
344 30 29: SEQUENCE { 348 30 29: SEQUENCE {
346 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14) 350 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
351 04 22: OCTET STRING 355 04 22: OCTET STRING
: 04 14 77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D CE EC : 04 14 77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D CE EC
: 3C A0 3A E3 FF 50 : 3C A0 3A E3 FF 50
: } : }
: } : }
: } : }
: } : }
375 30 9: SEQUENCE { 379 30 13: SEQUENCE {
377 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29) 381 06 9: OBJECT IDENTIFIER
: (Oddball OIW OID) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
384 05 0: NULL : (PKCS #1)
392 05 0: NULL
: } : }
386 03 129: BIT STRING 0 unused bits 394 03 129: BIT STRING 0 unused bits
: BF 34 32 E6 FC 6A 88 41 7D F0 5C 99 A1 93 B7 49 : 52 FF B3 8B 54 1E 08 BF F3 6D 0C 12 08 7D 8E CB
: B7 02 52 1E CB 84 AC 93 D7 58 2B 00 A1 9C C4 48 : 6E 59 EC 56 93 A6 4A 22 40 5F 8B 14 79 7E 83 4F
: 48 99 DD 02 C3 C6 05 F8 D2 25 F1 A3 9C C9 33 01 : F5 3F DE 21 97 16 58 70 76 32 B2 20 51 A3 1A 1F
: 8A 76 0E 6F 77 43 A3 BF E1 E6 B3 6A 04 79 39 EE : 97 48 80 5C 83 B0 B8 93 0B 03 44 AE BF BE A4 8C
: E1 E9 E5 9D 50 07 8B 22 DC 12 50 E3 F3 B4 3D 9E : 06 C6 45 E2 81 08 D5 89 58 0C 28 1B 2D A5 8B 1C
: E5 93 9E B1 CD 33 F9 E0 AB 98 71 09 F8 EB B0 FC : 4A E3 D7 44 34 D4 CB 53 FC BA A9 8B AA B6 E9 B0
: 9C EC F1 88 D8 AE 03 D1 FE 60 E1 62 14 B1 A2 23 : C3 AB 74 F1 2A F1 B0 C6 38 EA 87 02 1E 10 BB 99
: D2 C8 8D 18 1F 5E EE 9B 72 02 27 C2 85 3D 04 2E : C4 BE 36 C0 08 BA 13 65 37 3E 36 F3 31 42 73 18
: } : }
BobDHEncryptByCarl = BobDHEncryptByCarl =
0 30 866: SEQUENCE { 0 30 866: SEQUENCE {
4 30 801: SEQUENCE { 4 30 801: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 2: INTEGER 201 13 02 2: INTEGER 201
17 30 9: SEQUENCE { 17 30 9: SEQUENCE {
skipping to change at line 1026 skipping to change at line 1031
: 15 EA 15 43 E3 49 22 86 C1 BB E5 DA E4 0E B8 09 : 15 EA 15 43 E3 49 22 86 C1 BB E5 DA E4 0E B8 09
: E0 D5 72 35 : E0 D5 72 35
847 02 21: INTEGER 847 02 21: INTEGER
: 00 AE 4F 51 29 73 71 75 A9 81 EB ED 9D 5E 00 19 : 00 AE 4F 51 29 73 71 75 A9 81 EB ED 9D 5E 00 19
: 7E F0 DE 5A D6 : 7E F0 DE 5A D6
: } : }
: } : }
: } : }
BobRSASignByCarl = BobRSASignByCarl =
0 30 512: SEQUENCE { 0 30 520: SEQUENCE {
4 30 365: SEQUENCE { 4 30 369: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 16: INTEGER 13 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0
31 30 9: SEQUENCE { 31 30 13: SEQUENCE {
33 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29) 33 06 9: OBJECT IDENTIFIER
: (Oddball OIW OID) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
40 05 0: NULL : (PKCS #1)
44 05 0: NULL
: } : }
42 30 18: SEQUENCE { 46 30 18: SEQUENCE {
44 31 16: SET { 48 31 16: SET {
46 30 14: SEQUENCE { 50 30 14: SEQUENCE {
48 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 52 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
53 13 7: PrintableString 'CarlRSA' 57 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
62 30 30: SEQUENCE { 66 30 30: SEQUENCE {
64 17 13: UTCTime '990919010902Z' 68 17 13: UTCTime '990819070000Z'
79 17 13: UTCTime '391231235959Z' 83 17 13: UTCTime '391231235959Z'
: } : }
94 30 17: SEQUENCE { 98 30 17: SEQUENCE {
96 31 15: SET { 100 31 15: SET {
98 30 13: SEQUENCE { 102 30 13: SEQUENCE {
100 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 104 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
105 13 6: PrintableString 'BobRSA' 109 13 6: PrintableString 'BobRSA'
: } : }
: } : }
: } : }
113 30 159: SEQUENCE { 117 30 159: SEQUENCE {
116 30 13: SEQUENCE { 120 30 13: SEQUENCE {
118 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1) 122 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
129 05 0: NULL 133 05 0: NULL
: } : }
131 03 141: BIT STRING 0 unused bits, encapsulates { 135 03 141: BIT STRING 0 unused bits, encapsulates {
135 30 137: SEQUENCE { 139 30 137: SEQUENCE {
138 02 129: INTEGER 142 02 129: INTEGER
: 00 CA 5C E1 2E EC CF C1 3B 5D 10 1B DF 54 35 71 : 00 CA 5C E1 2E EC CF C1 3B 5D 10 1B DF 54 35 71
: 99 0A 09 D8 3D E4 61 BF A0 BE 0A BE 11 A4 3C B5 : 99 0A 09 D8 3D E4 61 BF A0 BE 0A BE 11 A4 3C B5
: 38 41 41 48 04 E1 5B B1 17 1C 53 B5 F4 C5 15 D3 : 38 41 41 48 04 E1 5B B1 17 1C 53 B5 F4 C5 15 D3
: FE 0C FB 0C AC EA 80 18 36 03 7E 41 93 53 D7 40 : FE 0C FB 0C AC EA 80 18 36 03 7E 41 93 53 D7 40
: 74 49 DB D9 C6 AF FE D6 CA 0D CA 01 84 8F A1 E9 : 74 49 DB D9 C6 AF FE D6 CA 0D CA 01 84 8F A1 E9
: A3 00 21 27 51 D5 40 19 AA E3 C0 30 78 5B A0 B2 : A3 00 21 27 51 D5 40 19 AA E3 C0 30 78 5B A0 B2
: E6 C1 2D 24 36 CB AE 44 10 82 B0 DD 74 D7 F6 EB : E6 C1 2D 24 36 CB AE 44 10 82 B0 DD 74 D7 F6 EB
: 51 27 B2 A7 B6 AD 78 CA A7 1B 59 51 18 EF 28 0C : 51 27 B2 A7 B6 AD 78 CA A7 1B 59 51 18 EF 28 0C
: 53 : 53
270 02 3: INTEGER 65537 274 02 3: INTEGER 65537
: } : }
: } : }
: } : }
275 A3 96: [3] { 279 A3 96: [3] {
277 30 94: SEQUENCE { 281 30 94: SEQUENCE {
279 30 12: SEQUENCE { 283 30 12: SEQUENCE {
281 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19) 285 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
286 01 1: BOOLEAN TRUE 290 01 1: BOOLEAN TRUE
289 04 2: OCTET STRING, encapsulates { 293 04 2: OCTET STRING, encapsulates {
291 30 0: SEQUENCE {} 295 30 0: SEQUENCE {}
: } : }
: } : }
293 30 14: SEQUENCE { 297 30 14: SEQUENCE {
295 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15) 299 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
300 01 1: BOOLEAN TRUE 304 01 1: BOOLEAN TRUE
303 04 4: OCTET STRING, encapsulates { 307 04 4: OCTET STRING, encapsulates {
305 03 2: BIT STRING 5 unused bits 309 03 2: BIT STRING 5 unused bits
: '100'B : '100'B
: } : }
: } : }
309 30 31: SEQUENCE { 313 30 31: SEQUENCE {
311 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35) 315 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
316 04 24: OCTET STRING, encapsulates { 320 04 24: OCTET STRING, encapsulates {
318 30 22: SEQUENCE { 322 30 22: SEQUENCE {
320 80 20: [0] 324 80 20: [0]
: E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22 : E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22
: AE 9E 38 BB : AE 9E 38 BB
: } : }
: } : }
: } : }
342 30 29: SEQUENCE { 346 30 29: SEQUENCE {
344 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14) 348 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
349 04 22: OCTET STRING 353 04 22: OCTET STRING
: 04 14 E8 F4 B8 67 D8 B3 96 A4 2A F3 11 AA 29 D3 : 04 14 E8 F4 B8 67 D8 B3 96 A4 2A F3 11 AA 29 D3
: 95 5A 86 16 B4 24 : 95 5A 86 16 B4 24
: } : }
: } : }
: } : }
: } : }
373 30 9: SEQUENCE { 377 30 13: SEQUENCE {
375 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29) 379 06 9: OBJECT IDENTIFIER
: (Oddball OIW OID) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
382 05 0: NULL : (PKCS #1)
390 05 0: NULL
: } : }
384 03 129: BIT STRING 0 unused bits 392 03 129: BIT STRING 0 unused bits
: 98 FA AF 7D 21 01 AA B3 88 BC F1 EF 12 5F 4D 58 : 2B 53 8A E0 38 69 0C 19 2D AA D9 42 67 BE 58 49
: 30 D8 8E 4E BC E1 2C B2 7E 68 57 8D 0C 43 5C D7 : A9 58 4C 42 F1 F5 68 B6 4E 4D 07 A4 9E B2 DB D0
: 1E 45 D1 F7 95 33 E2 A0 75 CA 13 C8 53 BC 33 26 : 95 DF 4C F0 EF 5F 23 D6 90 7C 3F 62 92 86 E4 D2
: 9B B3 C8 50 DF CD 84 6A 1B E8 48 C8 42 D0 81 63 : 64 AB 2E B5 CA 5D 58 57 04 DF 39 29 73 B0 CD A5
: 6C 33 19 BE 02 69 F6 16 31 7F D4 99 DF 80 7A F3 : 6B 22 75 C9 5D D5 0B FF C9 B8 7B F0 09 2C A1 86
: 3B F8 1B 29 7D 26 51 37 03 22 3F F6 15 3D 30 F3 : F3 75 CD 54 67 AD 8B 1E 7B EC 7E AB 25 2B 14 71
: 32 8A F1 AE 97 DE D7 F5 16 A9 A7 AD C7 15 AF 53 : 98 D1 19 16 F0 60 EB 3B 3C F4 0F 24 98 7A A4 A4
: 3E A8 25 91 B2 C4 5F 4E 6A 15 57 47 50 BC B2 FA : BA E6 C2 4E 80 07 EA C4 93 92 8B 49 17 FE 42 58
: } : }
CarlDSSSelf = CarlDSSSelf =
0 30 667: SEQUENCE { 0 30 667: SEQUENCE {
4 30 602: SEQUENCE { 4 30 602: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 1: INTEGER 1 13 02 1: INTEGER 1
16 30 9: SEQUENCE { 16 30 9: SEQUENCE {
skipping to change at line 1260 skipping to change at line 1267
626 02 20: INTEGER 626 02 20: INTEGER
: 6B A9 F0 4E 7A 5A 79 E3 F9 BE 3D 2B C9 06 37 E9 : 6B A9 F0 4E 7A 5A 79 E3 F9 BE 3D 2B C9 06 37 E9
: 11 17 A1 13 : 11 17 A1 13
648 02 21: INTEGER 648 02 21: INTEGER
: 00 8F 34 69 2A 8B B1 3C 03 79 94 32 4D 12 1F CE : 00 8F 34 69 2A 8B B1 3C 03 79 94 32 4D 12 1F CE
: 89 FB 46 B2 3B : 89 FB 46 B2 3B
: } : }
: } : }
: } : }
CarlRSASelf =
0 30 491: SEQUENCE {
4 30 340: SEQUENCE {
8 A0 3: [0] {
10 02 1: INTEGER 2
: }
13 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E 9F F2 50 20
31 30 13: SEQUENCE {
33 06 9: OBJECT IDENTIFIER
: sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (PKCS #1)
44 05 0: NULL
: }
46 30 18: SEQUENCE {
48 31 16: SET {
50 30 14: SEQUENCE {
52 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
57 13 7: PrintableString 'CarlRSA'
: }
: }
: }
66 30 30: SEQUENCE {
68 17 13: UTCTime '990818070000Z'
83 17 13: UTCTime '391231235959Z'
: }
98 30 18: SEQUENCE {
100 31 16: SET {
102 30 14: SEQUENCE {
104 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
109 13 7: PrintableString 'CarlRSA'
: }
: }
: }
118 30 159: SEQUENCE {
121 30 13: SEQUENCE {
123 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1)
134 05 0: NULL
: }
136 03 141: BIT STRING 0 unused bits, encapsulates {
140 30 137: SEQUENCE {
143 02 129: INTEGER
: 00 E4 4B FF 18 B8 24 57 F4 77 FF 6E 73 7B 93 71
: 5C BC 33 1A 92 92 72 23 D8 41 46 D0 CD 11 3A 04
: B3 8E AF 82 9D BD 51 1E 17 7A F2 76 2C 2B 86 39
: A7 BD D7 8D 1A 53 EC E4 00 D5 E8 EC A2 36 B1 ED
: E2 50 E2 32 09 8A 3F 9F 99 25 8F B8 4E AB B9 7D
: D5 96 65 DA 16 A0 C5 BE 0E AE 44 5B EF 5E F4 A7
: 29 CB 82 DD AC 44 E9 AA 93 94 29 0E F8 18 D6 C8
: 57 5E F2 76 C4 F2 11 60 38 B9 1B 3C 1D 97 C9 6A
: F1
275 02 3: INTEGER 65537
: }
: }
: }
280 A3 66: [3] {
282 30 64: SEQUENCE {
284 30 15: SEQUENCE {
286 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29))
291 01 1: BOOLEAN TRUE
294 04 5: OCTET STRING, encapsulates {
296 30 3: SEQUENCE {
298 01 1: BOOLEAN TRUE
: }
: }
: }
301 30 14: SEQUENCE {
303 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
308 01 1: BOOLEAN TRUE
311 04 4: OCTET STRING, encapsulates {
313 03 2: BIT STRING 1 unused bits
: '1100001'B
: }
: }
317 30 29: SEQUENCE {
319 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29))
324 04 22: OCTET STRING
: 04 14 E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37
: 4E 22 AE 9E 38 BB
: }
: }
: }
: }
348 30 13: SEQUENCE {
350 06 9: OBJECT IDENTIFIER
: sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (PKCS #1)
361 05 0: NULL
: }
363 03 129: BIT STRING 0 unused bits
: B7 9E D4 04 D3 ED 29 E4 FF 89 89 15 2E 4C DB 0C
: F0 48 0F 32 61 EE C4 04 EC 12 5D 2D FF 0F 64 59
: 7E 0A C3 ED 18 FD E3 56 40 37 A7 07 B5 F0 38 12
: 61 50 ED EF DD 3F E3 0B B8 61 A5 A4 9B 3C E6 9E
: 9C 54 9A B6 95 D6 DA 6C 3B B5 2D 45 35 9D 49 01
: 76 FA B9 B9 31 F9 F9 6B 12 53 A0 F5 14 60 9B 7D
: CA 3E F2 53 6B B0 37 6F AD E6 74 D7 DB FA 5A EA
: 14 41 63 5D CD BE C8 0E C1 DA 6A 8D 53 34 18 02
: }
DianeDHEncryptByCarl = DianeDHEncryptByCarl =
0 30 869: SEQUENCE { 0 30 869: SEQUENCE {
4 30 805: SEQUENCE { 4 30 805: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 2: INTEGER 211 13 02 2: INTEGER 211
17 30 9: SEQUENCE { 17 30 9: SEQUENCE {
19 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3) 19 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
skipping to change at line 1531 skipping to change at line 1644
: 7E 0C 0C 81 17 B4 9A 54 B2 C3 30 EB 8A C4 3C C2 : 7E 0C 0C 81 17 B4 9A 54 B2 C3 30 EB 8A C4 3C C2
: 52 36 9E 95 : 52 36 9E 95
423 02 21: INTEGER 423 02 21: INTEGER
: 00 C6 9F 17 C2 71 4B AC 2E 39 8D 3D 10 1F 9A B3 : 00 C6 9F 17 C2 71 4B AC 2E 39 8D 3D 10 1F 9A B3
: 4D B6 F9 11 A3 : 4D B6 F9 11 A3
: } : }
: } : }
: } : }
DianeRSASignEncryptByCarl = DianeRSASignEncryptByCarl =
0 30 514: SEQUENCE { 0 30 522: SEQUENCE {
4 30 367: SEQUENCE { 4 30 371: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 16: INTEGER 13 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E D5 9A 30 90 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E D5 9A 30 90
31 30 9: SEQUENCE { 31 30 13: SEQUENCE {
33 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29) 33 06 9: OBJECT IDENTIFIER
: (Oddball OIW OID) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
40 05 0: NULL : (PKCS #1)
44 05 0: NULL
: } : }
42 30 18: SEQUENCE { 46 30 18: SEQUENCE {
44 31 16: SET { 48 31 16: SET {
46 30 14: SEQUENCE { 50 30 14: SEQUENCE {
48 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 52 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
53 13 7: PrintableString 'CarlRSA' 57 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
62 30 30: SEQUENCE { 66 30 30: SEQUENCE {
64 17 13: UTCTime '990919010916Z' 68 17 13: UTCTime '990819070000Z'
79 17 13: UTCTime '391231235959Z' 83 17 13: UTCTime '391231235959Z'
: } : }
94 30 19: SEQUENCE { 98 30 19: SEQUENCE {
96 31 17: SET { 100 31 17: SET {
98 30 15: SEQUENCE { 102 30 15: SEQUENCE {
100 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 104 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
105 13 8: PrintableString 'DianeRSA' 109 13 8: PrintableString 'DianeRSA'
: } : }
: } : }
: } : }
115 30 159: SEQUENCE { 119 30 159: SEQUENCE {
118 30 13: SEQUENCE { 122 30 13: SEQUENCE {
120 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1) 124 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
131 05 0: NULL 135 05 0: NULL
: } : }
133 03 141: BIT STRING 0 unused bits, encapsulates { 137 03 141: BIT STRING 0 unused bits, encapsulates {
137 30 137: SEQUENCE { 141 30 137: SEQUENCE {
140 02 129: INTEGER 144 02 129: INTEGER
: 00 D6 FD B8 C0 70 C6 4C 25 EC EA CF EA 7C BB A2 : 00 D6 FD B8 C0 70 C6 4C 25 EC EA CF EA 7C BB A2
: 62 FA F0 E6 32 3A 53 FF B1 92 5A 17 F4 20 E1 99 : 62 FA F0 E6 32 3A 53 FF B1 92 5A 17 F4 20 E1 99
: 24 82 0A D0 F6 7C FB 44 CA 8B 27 06 F1 7E 26 03 : 24 82 0A D0 F6 7C FB 44 CA 8B 27 06 F1 7E 26 03
: A9 76 9D CF EC A0 2C 70 96 F2 83 42 F6 D4 B7 28 : A9 76 9D CF EC A0 2C 70 96 F2 83 42 F6 D4 B7 28
: 0A BB F8 BF 4A 4C 19 3F 07 DB A0 C1 60 1E B7 7E : 0A BB F8 BF 4A 4C 19 3F 07 DB A0 C1 60 1E B7 7E
: 67 F7 DE B1 C3 60 49 AC 45 D7 F8 C6 EF 08 37 21 : 67 F7 DE B1 C3 60 49 AC 45 D7 F8 C6 EF 08 37 21
: 93 47 EE F0 73 35 72 B0 02 C4 F3 11 C3 5E 47 E5 : 93 47 EE F0 73 35 72 B0 02 C4 F3 11 C3 5E 47 E5
: 0A B7 83 F1 DB 74 69 64 8B 44 1D 95 5D CD 28 C0 : 0A B7 83 F1 DB 74 69 64 8B 44 1D 95 5D CD 28 C0
: 85 : 85
272 02 3: INTEGER 65537 276 02 3: INTEGER 65537
: } : }
: } : }
: } : }
277 A3 96: [3] { 281 A3 96: [3] {
279 30 94: SEQUENCE { 283 30 94: SEQUENCE {
281 30 12: SEQUENCE { 285 30 12: SEQUENCE {
283 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19) 287 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
288 01 1: BOOLEAN TRUE 292 01 1: BOOLEAN TRUE
291 04 2: OCTET STRING, encapsulates { 295 04 2: OCTET STRING, encapsulates {
293 30 0: SEQUENCE {} 297 30 0: SEQUENCE {}
: } : }
: } : }
295 30 14: SEQUENCE { 299 30 14: SEQUENCE {
297 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15) 301 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
302 01 1: BOOLEAN TRUE 306 01 1: BOOLEAN TRUE
305 04 4: OCTET STRING, encapsulates { 309 04 4: OCTET STRING, encapsulates {
307 03 2: BIT STRING 5 unused bits 311 03 2: BIT STRING 5 unused bits
: '111'B : '111'B
: } : }
: } : }
311 30 31: SEQUENCE { 315 30 31: SEQUENCE {
313 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35) 317 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
318 04 24: OCTET STRING, encapsulates { 322 04 24: OCTET STRING, encapsulates {
320 30 22: SEQUENCE { 324 30 22: SEQUENCE {
322 80 20: [0] 326 80 20: [0]
: E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22 : E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22
: AE 9E 38 BB : AE 9E 38 BB
: } : }
: } : }
: } : }
344 30 29: SEQUENCE { 348 30 29: SEQUENCE {
346 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14) 350 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
351 04 22: OCTET STRING 355 04 22: OCTET STRING
: 04 14 8C F3 CB 75 0E 8D 31 F6 D4 29 DA 44 92 75 : 04 14 8C F3 CB 75 0E 8D 31 F6 D4 29 DA 44 92 75
: B8 FE ED 4F 39 0C : B8 FE ED 4F 39 0C
: } : }
: } : }
: } : }
: } : }
375 30 9: SEQUENCE { 379 30 13: SEQUENCE {
377 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29) 381 06 9: OBJECT IDENTIFIER
: (Oddball OIW OID) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
384 05 0: NULL : (PKCS #1)
392 05 0: NULL
: } : }
386 03 129: BIT STRING 0 unused bits 394 03 129: BIT STRING 0 unused bits
: CA 88 C7 37 A9 AE 26 CB 2B 79 82 22 4F 4A 0D 1C : 1D B3 51 B1 99 96 F0 44 A8 EB 14 EA FC C2 DF B8
: A7 20 B2 E0 68 F5 42 DE 59 6B B3 FD 25 C0 39 B8 : 33 4B 02 3C 41 DF E3 53 7F EA 34 7F FC D5 11 0D
: EB C0 8B 69 A2 16 55 CE 06 7E 26 5F C6 5E 51 02 : 00 04 88 B8 ED BC 23 45 03 6E F1 53 B2 C0 3B 19
: 3F 95 D5 A7 F7 F2 7D 23 6F 2B AC 7C CB 6F 90 0F : 62 DC DC E1 8A FE A7 FC A5 D7 97 DB 25 7C F3 30
: 44 5D 44 22 53 D5 42 38 18 C4 52 D7 B8 AB 82 6F : C5 63 A7 38 4A AB 25 21 24 80 C7 D8 78 82 8C 53
: AC B6 BC A9 E7 13 44 36 76 16 23 00 12 6B 6F 7D : EA 3E 2F 63 10 66 D3 27 55 9A DC EF 35 5E F6 23
: C6 C9 BE 79 2C B9 2D 69 D3 1D B1 1D BA 5A 20 85 : 71 E6 FF 78 7B A9 4F 7B 7F 2E B9 C4 42 73 57 4F
: CA 5B 88 46 36 B5 E5 0E 15 85 B7 E2 5E 7B CA 1A : AA F8 04 B4 0D C7 53 88 C4 F0 92 28 33 44 50 A1
: } : }
EricaDHEncryptByCarl = EricaDHEncryptByCarl =
0 30 745: SEQUENCE { 0 30 745: SEQUENCE {
4 30 680: SEQUENCE { 4 30 680: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 2: INTEGER 212 13 02 2: INTEGER 212
17 30 9: SEQUENCE { 17 30 9: SEQUENCE {
skipping to change at line 2098 skipping to change at line 2213
5. Signed-data 5. Signed-data
5.1 Basic signed content, DSS 5.1 Basic signed content, DSS
A SignedData with no attribute certificates, signed by Alice using A SignedData with no attribute certificates, signed by Alice using
DH-DSS, just her certificate (not Carl's root cert), no CRL. The DH-DSS, just her certificate (not Carl's root cert), no CRL. The
message is ExContent, and is included in the eContent. There are no message is ExContent, and is included in the eContent. There are no
signed or unsigned attributes. signed or unsigned attributes.
0 30 183: SEQUENCE { 0 30 927: SEQUENCE {
3 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
14 A0 169: [0] { 15 A0 912: [0] {
17 30 166: SEQUENCE { 19 30 908: SEQUENCE {
20 02 1: INTEGER 1 23 02 1: INTEGER 1
23 31 11: SET { 26 31 11: SET {
25 30 9: SEQUENCE { 28 30 9: SEQUENCE {
27 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
34 05 0: NULL 37 05 0: NULL
: } : }
: } : }
36 30 43: SEQUENCE { 39 30 43: SEQUENCE {
38 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
49 A0 30: [0] { 52 A0 30: [0] {
51 04 28: OCTET STRING 54 04 28: OCTET STRING
: 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D : 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D
: 70 6C 65 20 63 6F 6E 74 65 6E 74 2E : 70 6C 65 20 63 6F 6E 74 65 6E 74 2E
: } : }
: } : }
81 31 103: SET { 84 A0 738: [0] {
83 30 101: SEQUENCE { 88 30 734: SEQUENCE {
85 02 1: INTEGER 1 92 30 669: SEQUENCE {
88 30 24: SEQUENCE { 96 A0 3: [0] {
90 30 18: SEQUENCE { 98 02 1: INTEGER 2
92 31 16: SET { : }
94 30 14: SEQUENCE { 101 02 2: INTEGER 200
96 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 105 30 9: SEQUENCE {
107 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
116 30 18: SEQUENCE {
118 31 16: SET {
120 30 14: SEQUENCE {
122 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
101 13 7: PrintableString 'CarlDSS' 127 13 7: PrintableString 'CarlDSS'
: } : }
: } : }
: } : }
110 02 2: INTEGER 200 136 30 30: SEQUENCE {
138 17 13: UTCTime '990817011049Z'
153 17 13: UTCTime '391231235959Z'
: } : }
114 30 9: SEQUENCE { 168 30 19: SEQUENCE {
116 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 170 31 17: SET {
172 30 15: SEQUENCE {
174 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
179 13 8: PrintableString 'AliceDSS'
: }
: }
: }
189 30 438: SEQUENCE {
193 30 299: SEQUENCE {
197 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1)
: (ANSI X9.57 algorithm)
206 30 286: SEQUENCE {
210 02 129: INTEGER
: 00 81 8D CD ED 83 EA 0A 9E 39 3E C2 48 28 A3 E4
: 47 93 DD 0E D7 A8 0E EC 53 C5 AB 84 08 4F FF 94
: E1 73 48 7E 0C D6 F3 44 48 D1 FE 9F AF A4 A1 89
: 2F E1 D9 30 C8 36 DE 3F 9B BF B7 4C DC 5F 69 8A
: E4 75 D0 37 0C 91 08 95 9B DE A7 5E F9 FC F4 9F
: 2F DD 43 A8 8B 54 F1 3F B0 07 08 47 4D 5D 88 C3
: C3 B5 B3 E3 55 08 75 D5 39 76 10 C4 78 BD FF 9D
: B0 84 97 37 F2 E4 51 1B B5 E4 09 96 5C F3 7E 5B
: DB
342 02 21: INTEGER
: 00 E2 47 A6 1A 45 66 B8 13 C6 DA 8F B8 37 21 2B
: 62 8B F7 93 CD
365 02 128: INTEGER
: 26 38 D0 14 89 32 AA 39 FB 3E 6D D9 4B 59 6A 4C
: 76 23 39 04 02 35 5C F2 CB 1A 30 C3 1E 50 5D DD
: 9B 59 E2 CD AA 05 3D 58 C0 7B A2 36 B8 6E 07 AF
: 7D 8A 42 25 A7 F4 75 CF 4A 08 5E 4B 3E 90 F8 6D
: EA 9C C9 21 8A 3B 76 14 E9 CE 2E 5D A3 07 CD 23
: 85 B8 2F 30 01 7C 6D 49 89 11 89 36 44 BD F8 C8
: 95 4A 53 56 B5 E2 F9 73 EC 1A 61 36 1F 11 7F C2
: BD ED D1 50 FF 98 74 C2 D1 81 4A 60 39 BA 36 39
: }
: }
496 03 132: BIT STRING 0 unused bits, encapsulates {
500 02 128: INTEGER
: 5C E3 B9 5A 75 14 96 0B A9 7A DD E3 3F A9 EC AC
: 5E DC BD B7 13 11 34 A6 16 89 28 11 23 D9 34 86
: 67 75 75 13 12 3D 43 5B 6F E5 51 BF FA 89 F2 A2
: 1B 3E 24 7D 3D 07 8D 5B 63 C8 BB 45 A5 A0 4A E3
: 85 D6 CE 06 80 3F E8 23 7E 1A F2 24 AB 53 1A B8
: 27 0D 1E EF 08 BF 66 14 80 5C 62 AC 65 FA 15 8B
: F1 BB 34 D4 D2 96 37 F6 61 47 B2 C4 32 84 F0 7E
: 41 40 FD 46 A7 63 4E 33 F2 A5 E2 F4 F2 83 E5 B8
: }
: }
631 A3 131: [3] {
634 30 128: SEQUENCE {
637 30 32: SEQUENCE {
639 06 3: OBJECT IDENTIFIER subjectAltName (2 5 29 17)
: (X.509 id-ce (2 5 29))
644 04 25: OCTET STRING, encapsulates {
646 30 23: SEQUENCE {
648 81 21: [1] 'aliceDss@examples.com'
: }
: }
: }
671 30 12: SEQUENCE {
673 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29))
678 01 1: BOOLEAN TRUE
681 04 2: OCTET STRING, encapsulates {
683 30 0: SEQUENCE {}
: }
: }
685 30 14: SEQUENCE {
687 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
692 01 1: BOOLEAN TRUE
695 04 4: OCTET STRING, encapsulates {
697 03 2: BIT STRING 6 unused bits
: '11'B
: }
: }
701 30 31: SEQUENCE {
703 06 3: OBJECT IDENTIFIER
: authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29))
708 04 24: OCTET STRING, encapsulates {
710 30 22: SEQUENCE {
712 80 20: [0]
: 70 44 3E 82 2E 6F 87 DE 4A D3 75 E3 3D 20 BC 43
: 2B 93 F1 1F
: }
: }
: }
734 30 29: SEQUENCE {
736 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29))
741 04 22: OCTET STRING
: 04 14 BE 6C A1 B3 E3 C1 F7 ED 43 70 A4 CE 13 01
: E2 FD E3 97 FE CD
: }
: }
: }
: }
765 30 9: SEQUENCE {
767 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
776 03 48: BIT STRING 0 unused bits, encapsulates {
779 30 45: SEQUENCE {
781 02 21: INTEGER
: 00 98 B0 C6 3F CF 71 47 5A 35 A9 4A 8F C0 F8 24
: 05 E8 46 94 8E
804 02 20: INTEGER
: 5B 9F 48 C0 8C A1 C1 02 9C 44 EA E9 A1 87 C1 A5
: 7F 28 2D BB
: }
: }
: }
: }
826 31 103: SET {
828 30 101: SEQUENCE {
830 02 1: INTEGER 1
833 30 24: SEQUENCE {
835 30 18: SEQUENCE {
837 31 16: SET {
839 30 14: SEQUENCE {
841 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
846 13 7: PrintableString 'CarlDSS'
: }
: }
: }
855 02 2: INTEGER 200
: }
859 30 9: SEQUENCE {
861 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
123 05 0: NULL 868 05 0: NULL
: } : }
125 30 9: SEQUENCE { 870 30 9: SEQUENCE {
127 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1) 872 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
: } : }
136 04 48: OCTET STRING 881 04 48: OCTET STRING, encapsulates {
: 30 2D 02 14 70 9B 27 7D 99 E7 D2 0C C6 C5 21 0B 883 30 45: SEQUENCE {
: 4B E2 21 B7 BD 8D 48 29 02 15 00 8B 2C 0C 06 CB 885 02 20: INTEGER
: 4A B5 06 4B A8 4C 0E 78 D1 3B 90 E9 D1 9F A4 00 : 08 D0 45 7D 63 E1 39 EC 62 B0 30 C2 29 AD 42 EA
: 96 4F 91 86
907 02 21: INTEGER
: 00 A6 86 EE 8A 7A 05 A7 E0 07 E6 F9 88 BF 93 FB
: 96 4D 76 D3 92
: }
: }
: }
: } : }
: } : }
: } : }
: } : }
: } : }
5.2 Basic signed content, RSA 5.2 Basic signed content, RSA
Same as 5.1, except using RSA signatures. A SignedData with no Same as 5.1, except using RSA signatures. A SignedData with no
attribute certificates, signed by Alice using RSA, just her certificate attribute certificates, signed by Alice using RSA, just her certificate
(not Carl's root cert), no CRL. The message is ExContent, and is (not Carl's root cert), no CRL. The message is ExContent, and is
included in the eContent. There are no signed or unsigned attributes. included in the eContent. There are no signed or unsigned attributes.
0 30 286: SEQUENCE { 0 30 816: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 271: [0] { 15 A0 801: [0] {
19 30 267: SEQUENCE { 19 30 797: SEQUENCE {
23 02 1: INTEGER 1 23 02 1: INTEGER 1
26 31 11: SET { 26 31 11: SET {
28 30 9: SEQUENCE { 28 30 9: SEQUENCE {
30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
37 05 0: NULL 37 05 0: NULL
: } : }
: } : }
39 30 43: SEQUENCE { 39 30 43: SEQUENCE {
41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
52 A0 30: [0] { 52 A0 30: [0] {
54 04 28: OCTET STRING 54 04 28: OCTET STRING
: 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D : 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D
: 70 6C 65 20 63 6F 6E 74 65 6E 74 2E : 70 6C 65 20 63 6F 6E 74 65 6E 74 2E
: } : }
: } : }
84 31 203: SET { 84 A0 526: [0] {
87 30 200: SEQUENCE { 88 30 522: SEQUENCE {
90 02 1: INTEGER 1 92 30 371: SEQUENCE {
93 30 38: SEQUENCE { 96 A0 3: [0] {
95 30 18: SEQUENCE { 98 02 1: INTEGER 2
97 31 16: SET { : }
99 30 14: SEQUENCE { 101 02 16: INTEGER
101 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0
119 30 13: SEQUENCE {
121 06 9: OBJECT IDENTIFIER
: sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (PKCS #1)
132 05 0: NULL
: }
134 30 18: SEQUENCE {
136 31 16: SET {
138 30 14: SEQUENCE {
140 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
106 13 7: PrintableString 'CarlRSA' 145 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
115 02 16: INTEGER 154 30 30: SEQUENCE {
156 17 13: UTCTime '990819070000Z'
171 17 13: UTCTime '391231235959Z'
: }
186 30 19: SEQUENCE {
188 31 17: SET {
190 30 15: SEQUENCE {
192 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
197 13 8: PrintableString 'AliceRSA'
: }
: }
: }
207 30 159: SEQUENCE {
210 30 13: SEQUENCE {
212 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1)
223 05 0: NULL
: }
225 03 141: BIT STRING 0 unused bits, encapsulates {
229 30 137: SEQUENCE {
232 02 129: INTEGER
: 00 E0 89 73 39 8D D8 F5 F5 E8 87 76 39 7F 4E B0
: 05 BB 53 83 DE 0F B7 AB DC 7D C7 75 29 0D 05 2E
: 6D 12 DF A6 86 26 D4 D2 6F AA 58 29 FC 97 EC FA
: 82 51 0F 30 80 BE B1 50 9E 46 44 F1 2C BB D8 32
: CF C6 68 6F 07 D9 B0 60 AC BE EE 34 09 6A 13 F5
: F7 05 05 93 DF 5E BA 35 56 D9 61 FF 19 7F C9 81
: E6 F8 6C EA 87 40 70 EF AC 6D 2C 74 9F 2D FA 55
: 3A B9 99 77 02 A6 48 52 8C 4E F3 57 38 57 74 57
: 5F
364 02 3: INTEGER 65537
: }
: }
: }
369 A3 96: [3] {
371 30 94: SEQUENCE {
373 30 12: SEQUENCE {
375 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29))
380 01 1: BOOLEAN TRUE
383 04 2: OCTET STRING, encapsulates {
385 30 0: SEQUENCE {}
: }
: }
387 30 14: SEQUENCE {
389 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
394 01 1: BOOLEAN TRUE
397 04 4: OCTET STRING, encapsulates {
399 03 2: BIT STRING 6 unused bits
: '11'B
: }
: }
403 30 31: SEQUENCE {
405 06 3: OBJECT IDENTIFIER
: authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29))
410 04 24: OCTET STRING, encapsulates {
412 30 22: SEQUENCE {
414 80 20: [0]
: E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22
: AE 9E 38 BB
: }
: }
: }
436 30 29: SEQUENCE {
438 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29))
443 04 22: OCTET STRING
: 04 14 77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D CE EC
: 3C A0 3A E3 FF 50
: }
: }
: }
: }
467 30 13: SEQUENCE {
469 06 9: OBJECT IDENTIFIER
: sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (PKCS #1)
480 05 0: NULL
: }
482 03 129: BIT STRING 0 unused bits
: 52 FF B3 8B 54 1E 08 BF F3 6D 0C 12 08 7D 8E CB
: 6E 59 EC 56 93 A6 4A 22 40 5F 8B 14 79 7E 83 4F
: F5 3F DE 21 97 16 58 70 76 32 B2 20 51 A3 1A 1F
: 97 48 80 5C 83 B0 B8 93 0B 03 44 AE BF BE A4 8C
: 06 C6 45 E2 81 08 D5 89 58 0C 28 1B 2D A5 8B 1C
: 4A E3 D7 44 34 D4 CB 53 FC BA A9 8B AA B6 E9 B0
: C3 AB 74 F1 2A F1 B0 C6 38 EA 87 02 1E 10 BB 99
: C4 BE 36 C0 08 BA 13 65 37 3E 36 F3 31 42 73 18
: }
: }
614 31 203: SET {
617 30 200: SEQUENCE {
620 02 1: INTEGER 1
623 30 38: SEQUENCE {
625 30 18: SEQUENCE {
627 31 16: SET {
629 30 14: SEQUENCE {
631 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
636 13 7: PrintableString 'CarlRSA'
: }
: }
: }
645 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0
: } : }
133 30 9: SEQUENCE { 663 30 9: SEQUENCE {
135 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 665 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
142 05 0: NULL 672 05 0: NULL
: } : }
144 30 13: SEQUENCE { 674 30 13: SEQUENCE {
146 06 9: OBJECT IDENTIFIER 676 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1) : rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
157 05 0: NULL 687 05 0: NULL
: } : }
159 04 128: OCTET STRING 689 04 128: OCTET STRING
: 2F 23 82 D2 F3 09 5F B8 0C 58 EB 4E 9D BF 89 9A : 2F 23 82 D2 F3 09 5F B8 0C 58 EB 4E 9D BF 89 9A
: 81 E5 75 C4 91 3D D3 D0 D5 7B B6 D5 FE 94 A1 8A : 81 E5 75 C4 91 3D D3 D0 D5 7B B6 D5 FE 94 A1 8A
: AC E3 C4 84 F5 CD 60 4E 27 95 F6 CF 00 86 76 75 : AC E3 C4 84 F5 CD 60 4E 27 95 F6 CF 00 86 76 75
: 3F 2B F0 E7 D4 02 67 A7 F5 C7 8D 16 04 A5 B3 B5 : 3F 2B F0 E7 D4 02 67 A7 F5 C7 8D 16 04 A5 B3 B5
: E7 D9 32 F0 24 EF E7 20 44 D5 9F 07 C5 53 24 FA : E7 D9 32 F0 24 EF E7 20 44 D5 9F 07 C5 53 24 FA
: CE 01 1D 0F 17 13 A7 2A 95 9D 2B E4 03 95 14 0B : CE 01 1D 0F 17 13 A7 2A 95 9D 2B E4 03 95 14 0B
: E9 39 0D BA CE 6E 9C 9E 0C E8 98 E6 55 13 D4 68 : E9 39 0D BA CE 6E 9C 9E 0C E8 98 E6 55 13 D4 68
: 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7 : 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7
: } : }
: } : }
skipping to change at line 2232 skipping to change at line 2613
: } : }
: } : }
5.3 Basic signed content, detached content 5.3 Basic signed content, detached content
Same as 5.1, except with no eContent. A SignedData with no attribute Same as 5.1, except with no eContent. A SignedData with no attribute
certificates, signed by Alice using DH-DSS, just her certificate (not certificates, signed by Alice using DH-DSS, just her certificate (not
Carl's root cert), no CRL. The message is ExContent, but the eContent Carl's root cert), no CRL. The message is ExContent, but the eContent
is not included. There are no signed or unsigned attributes. is not included. There are no signed or unsigned attributes.
0 30 151: SEQUENCE { 0 30 895: SEQUENCE {
3 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
14 A0 137: [0] { 15 A0 880: [0] {
17 30 134: SEQUENCE { 19 30 876: SEQUENCE {
20 02 1: INTEGER 1 23 02 1: INTEGER 1
23 31 11: SET { 26 31 11: SET {
25 30 9: SEQUENCE { 28 30 9: SEQUENCE {
27 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
34 05 0: NULL 37 05 0: NULL
: } : }
: } : }
36 30 11: SEQUENCE { 39 30 11: SEQUENCE {
38 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
: } : }
49 31 103: SET { 52 A0 738: [0] {
51 30 101: SEQUENCE { 56 30 734: SEQUENCE {
53 02 1: INTEGER 1 60 30 669: SEQUENCE {
56 30 24: SEQUENCE { 64 A0 3: [0] {
58 30 18: SEQUENCE { 66 02 1: INTEGER 2
60 31 16: SET { : }
62 30 14: SEQUENCE { 69 02 2: INTEGER 200
64 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 73 30 9: SEQUENCE {
75 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
84 30 18: SEQUENCE {
86 31 16: SET {
88 30 14: SEQUENCE {
90 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
69 13 7: PrintableString 'CarlDSS' 95 13 7: PrintableString 'CarlDSS'
: } : }
: } : }
: } : }
78 02 2: INTEGER 200 104 30 30: SEQUENCE {
106 17 13: UTCTime '990817011049Z'
121 17 13: UTCTime '391231235959Z'
: } : }
82 30 9: SEQUENCE { 136 30 19: SEQUENCE {
84 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 138 31 17: SET {
140 30 15: SEQUENCE {
142 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
147 13 8: PrintableString 'AliceDSS'
: }
: }
: }
157 30 438: SEQUENCE {
161 30 299: SEQUENCE {
165 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1)
: (ANSI X9.57 algorithm)
174 30 286: SEQUENCE {
178 02 129: INTEGER
: 00 81 8D CD ED 83 EA 0A 9E 39 3E C2 48 28 A3 E4
: 47 93 DD 0E D7 A8 0E EC 53 C5 AB 84 08 4F FF 94
: E1 73 48 7E 0C D6 F3 44 48 D1 FE 9F AF A4 A1 89
: 2F E1 D9 30 C8 36 DE 3F 9B BF B7 4C DC 5F 69 8A
: E4 75 D0 37 0C 91 08 95 9B DE A7 5E F9 FC F4 9F
: 2F DD 43 A8 8B 54 F1 3F B0 07 08 47 4D 5D 88 C3
: C3 B5 B3 E3 55 08 75 D5 39 76 10 C4 78 BD FF 9D
: B0 84 97 37 F2 E4 51 1B B5 E4 09 96 5C F3 7E 5B
: DB
310 02 21: INTEGER
: 00 E2 47 A6 1A 45 66 B8 13 C6 DA 8F B8 37 21 2B
: 62 8B F7 93 CD
333 02 128: INTEGER
: 26 38 D0 14 89 32 AA 39 FB 3E 6D D9 4B 59 6A 4C
: 76 23 39 04 02 35 5C F2 CB 1A 30 C3 1E 50 5D DD
: 9B 59 E2 CD AA 05 3D 58 C0 7B A2 36 B8 6E 07 AF
: 7D 8A 42 25 A7 F4 75 CF 4A 08 5E 4B 3E 90 F8 6D
: EA 9C C9 21 8A 3B 76 14 E9 CE 2E 5D A3 07 CD 23
: 85 B8 2F 30 01 7C 6D 49 89 11 89 36 44 BD F8 C8
: 95 4A 53 56 B5 E2 F9 73 EC 1A 61 36 1F 11 7F C2
: BD ED D1 50 FF 98 74 C2 D1 81 4A 60 39 BA 36 39
: }
: }
464 03 132: BIT STRING 0 unused bits, encapsulates {
468 02 128: INTEGER
: 5C E3 B9 5A 75 14 96 0B A9 7A DD E3 3F A9 EC AC
: 5E DC BD B7 13 11 34 A6 16 89 28 11 23 D9 34 86
: 67 75 75 13 12 3D 43 5B 6F E5 51 BF FA 89 F2 A2
: 1B 3E 24 7D 3D 07 8D 5B 63 C8 BB 45 A5 A0 4A E3
: 85 D6 CE 06 80 3F E8 23 7E 1A F2 24 AB 53 1A B8
: 27 0D 1E EF 08 BF 66 14 80 5C 62 AC 65 FA 15 8B
: F1 BB 34 D4 D2 96 37 F6 61 47 B2 C4 32 84 F0 7E
: 41 40 FD 46 A7 63 4E 33 F2 A5 E2 F4 F2 83 E5 B8
: }
: }
599 A3 131: [3] {
602 30 128: SEQUENCE {
605 30 32: SEQUENCE {
607 06 3: OBJECT IDENTIFIER subjectAltName (2 5 29 17)
: (X.509 id-ce (2 5 29))
612 04 25: OCTET STRING, encapsulates {
614 30 23: SEQUENCE {
616 81 21: [1] 'aliceDss@examples.com'
: }
: }
: }
639 30 12: SEQUENCE {
641 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29))
646 01 1: BOOLEAN TRUE
649 04 2: OCTET STRING, encapsulates {
651 30 0: SEQUENCE {}
: }
: }
653 30 14: SEQUENCE {
655 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
660 01 1: BOOLEAN TRUE
663 04 4: OCTET STRING, encapsulates {
665 03 2: BIT STRING 6 unused bits
: '11'B
: }
: }
669 30 31: SEQUENCE {
671 06 3: OBJECT IDENTIFIER
: authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29))
676 04 24: OCTET STRING, encapsulates {
678 30 22: SEQUENCE {
680 80 20: [0]
: 70 44 3E 82 2E 6F 87 DE 4A D3 75 E3 3D 20 BC 43
: 2B 93 F1 1F
: }
: }
: }
702 30 29: SEQUENCE {
704 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29))
709 04 22: OCTET STRING
: 04 14 BE 6C A1 B3 E3 C1 F7 ED 43 70 A4 CE 13 01
: E2 FD E3 97 FE CD
: }
: }
: }
: }
733 30 9: SEQUENCE {
735 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
744 03 48: BIT STRING 0 unused bits, encapsulates {
747 30 45: SEQUENCE {
749 02 21: INTEGER
: 00 98 B0 C6 3F CF 71 47 5A 35 A9 4A 8F C0 F8 24
: 05 E8 46 94 8E
772 02 20: INTEGER
: 5B 9F 48 C0 8C A1 C1 02 9C 44 EA E9 A1 87 C1 A5
: 7F 28 2D BB
: }
: }
: }
: }
794 31 103: SET {
796 30 101: SEQUENCE {
798 02 1: INTEGER 1
801 30 24: SEQUENCE {
803 30 18: SEQUENCE {
805 31 16: SET {
807 30 14: SEQUENCE {
809 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
814 13 7: PrintableString 'CarlDSS'
: }
: }
: }
823 02 2: INTEGER 200
: }
827 30 9: SEQUENCE {
829 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
91 05 0: NULL 836 05 0: NULL
: } : }
93 30 9: SEQUENCE { 838 30 9: SEQUENCE {
95 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1) 840 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
: } : }
104 04 48: OCTET STRING 849 04 48: OCTET STRING, encapsulates {
: 30 2D 02 14 5E 5E 6B 69 04 A2 62 5D 8B 45 B2 55 851 30 44: SEQUENCE {
: F9 75 1C 12 4E 88 88 21 02 15 00 A3 C1 48 23 E0 853 02 20: INTEGER
: 08 35 6F 25 22 7A 1E B6 14 BC E4 75 91 DB 25 00 : 15 D0 DC EE FF D4 36 5B 93 0D CF 69 3D 37 45 A0
: 34 9A 63 35
875 02 20: INTEGER
: 49 75 76 4C 33 00 0A AB 90 FD EF 9C 47 80 21 F1
: 49 EA 02 15
: }
: }
: } : }
: } : }
: } : }
: } : }
: } : }
5.4 Fancier signed content 5.4 Fancier signed content
Same as 5.1, but includes Carl's root cert, Carl's CRL, some signed and Same as 5.1, but includes Carl's root cert, Carl's CRL, some signed and
unsigned attributes (Countersignature by Diane). A SignedData with no unsigned attributes (Countersignature by Diane). A SignedData with no
attribute certificates, signed by Alice using DH-DSS, her certificate attribute certificates, signed by Alice using DH-DSS, her certificate
and Carl's root cert, Carl's DSS CRL. The message is ExContent, and is and Carl's root cert, Carl's DSS CRL. The message is ExContent, and is
included in the eContent. The signed attributes are Content Type, included in the eContent. The signed attributes are Content Type,
Message Digest and Signing Time; the unsigned attributes are content Message Digest and Signing Time; the unsigned attributes are content
hint and counter signature. hint and counter signature.
0 30 2152: SEQUENCE { 0 30 1968: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 2137: [0] { 15 A0 1953: [0] {
19 30 2133: SEQUENCE { 19 30 1949: SEQUENCE {
23 02 1: INTEGER 3 23 02 1: INTEGER 1
26 31 11: SET { 26 31 11: SET {
28 30 9: SEQUENCE { 28 30 9: SEQUENCE {
30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
37 05 0: NULL 37 05 0: NULL
: } : }
: } : }
39 30 43: SEQUENCE { 39 30 43: SEQUENCE {
41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
skipping to change at line 2633 skipping to change at line 3161
1675 02 20: INTEGER 1675 02 20: INTEGER
: 7E 65 52 76 33 FE 34 73 17 D1 F7 96 F9 A0 D4 D8 : 7E 65 52 76 33 FE 34 73 17 D1 F7 96 F9 A0 D4 D8
: 6D 5C 7D 3D : 6D 5C 7D 3D
1697 02 20: INTEGER 1697 02 20: INTEGER
: 02 7A 5B B7 D5 5B 18 C1 CF 87 EF 7E DA 24 F3 2A : 02 7A 5B B7 D5 5B 18 C1 CF 87 EF 7E DA 24 F3 2A
: 83 9C 35 A1 : 83 9C 35 A1
: } : }
: } : }
: } : }
: } : }
1719 31 433: SET { 1719 31 250: SET {
1723 30 429: SEQUENCE { 1722 30 247: SEQUENCE {
1727 02 1: INTEGER 3 1725 02 1: INTEGER 1
1730 80 20: [0] 1728 30 24: SEQUENCE {
: BE 6C A1 B3 E3 C1 F7 ED 43 70 A4 CE 13 01 E2 FD 1730 30 18: SEQUENCE {
: E3 97 FE CD 1732 31 16: SET {
1752 30 9: SEQUENCE { 1734 30 14: SEQUENCE {
1754 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 1736 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
1741 13 7: PrintableString 'CarlDSS'
: }
: }
: }
1750 02 2: INTEGER 200
: }
1754 30 9: SEQUENCE {
1756 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
1761 05 0: NULL 1763 05 0: NULL
: } : }
1763 A0 93: [0] { 1765 A0 93: [0] {
1765 30 24: SEQUENCE { 1767 30 24: SEQUENCE {
1767 06 9: OBJECT IDENTIFIER 1769 06 9: OBJECT IDENTIFIER
: contentType (1 2 840 113549 1 9 3) : contentType (1 2 840 113549 1 9 3)
: (PKCS #9 (1 2 840 113549 1 9)) : (PKCS #9 (1 2 840 113549 1 9))
1778 31 11: SET { 1780 31 11: SET {
1780 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 1782 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
: } : }
: } : }
1791 30 28: SEQUENCE { 1793 30 28: SEQUENCE {
1793 06 9: OBJECT IDENTIFIER 1795 06 9: OBJECT IDENTIFIER
: signingTime (1 2 840 113549 1 9 5) : signingTime (1 2 840 113549 1 9 5)
: (PKCS #9 (1 2 840 113549 1 9)) : (PKCS #9 (1 2 840 113549 1 9))
1804 31 15: SET { 1806 31 15: SET {
1806 17 13: UTCTime '990912025153Z' 1808 17 13: UTCTime '991015222610Z'
: } : }
: } : }
1821 30 35: SEQUENCE { 1823 30 35: SEQUENCE {
1823 06 9: OBJECT IDENTIFIER 1825 06 9: OBJECT IDENTIFIER
: messageDigest (1 2 840 113549 1 9 4) : messageDigest (1 2 840 113549 1 9 4)
: (PKCS #9 (1 2 840 113549 1 9)) : (PKCS #9 (1 2 840 113549 1 9))
1834 31 22: SET { 1836 31 22: SET {
1836 04 20: OCTET STRING 1838 04 20: OCTET STRING
: 40 6A EC 08 52 79 BA 6E 16 02 2D 9E 06 29 C0 22 : 40 6A EC 08 52 79 BA 6E 16 02 2D 9E 06 29 C0 22
: 96 87 DD 48 : 96 87 DD 48
: } : }
: } : }
: } : }
1858 30 9: SEQUENCE { 1860 30 9: SEQUENCE {
1860 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1) 1862 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
: } : }
1869 04 48: OCTET STRING, encapsulates { 1871 04 48: OCTET STRING, encapsulates {
1871 30 45: SEQUENCE { 1873 30 46: SEQUENCE {
1873 02 21: INTEGER 1875 02 21: INTEGER
: 00 BC AF 04 79 B7 BF 42 AC EB BB 7B C2 D0 8C B3 : 00 97 02 AB 81 D8 49 FD CA 6D 89 B4 6A C5 09 96
: 53 20 83 F1 BC : EE E3 76 36 2F
1869 04 48: OCTET STRING 1898 02 21: INTEGER
: 30 2D 02 15 00 BC AF 04 79 B7 BF 42 AC EB BB 7B : 00 C7 3E 7E 7B 3D D6 E4 D3 1D 6F 87 8B 18 03 F2
: C2 D0 8C B3 53 20 83 F1 BC 02 14 69 96 55 5D FB : DF 18 2B 77 75
: 78 1E 95 E7 5B B8 05 5D 21 12 08 F5 5F 34 29 00
1919 A1 234: [1] {
1922 30 47: SEQUENCE {
1924 06 11: OBJECT IDENTIFIER
: id-aa-contentHint (1 2 840 113549 1 9 16 2 4)
: (S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2))
1937 31 32: SET {
1939 30 30: SEQUENCE {
1941 0C 17: UTF8String (1997) 'SMime Example 5.4'
1960 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7)
: }
: }
: }
1971 30 182: SEQUENCE {
1974 06 9: OBJECT IDENTIFIER
: countersignature (1 2 840 113549 1 9 6)
: (PKCS #9 (1 2 840 113549 1 9))
1985 31 168: SET {
1988 30 165: SEQUENCE {
1991 02 1: INTEGER 1
1994 30 24: SEQUENCE {
1996 30 18: SEQUENCE {
1998 31 16: SET {
2000 30 14: SEQUENCE {
2002 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
2007 13 7: PrintableString 'CarlDSS'
: }
: }
: }
2016 02 2: INTEGER 210
: } : }
2020 30 9: SEQUENCE {
2022 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW)
2029 05 0: NULL
: } : }
2031 A0 63: [0] { 1921 A1 49: [1] {
2033 30 24: SEQUENCE { 1923 30 47: SEQUENCE {
2035 06 9: OBJECT IDENTIFIER 1925 06 11: OBJECT IDENTIFIER
: contentType (1 2 840 113549 1 9 3) : id-aa-contentHint (1 2 840 113549 1 9 16 2 4)
: (PKCS #9 (1 2 840 113549 1 9)) : (S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2))
2046 31 11: SET { 1938 31 32: SET {
2048 06 9: OBJECT IDENTIFIER 1940 30 30: SEQUENCE {
: data (1 2 840 113549 1 7 1) 1942 0C 17: UTF8String (1997) 'SMime Example 5.4'
1961 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
: } : }
: } : }
2059 30 35: SEQUENCE {
2061 06 9: OBJECT IDENTIFIER
: messageDigest (1 2 840 113549 1 9 4)
: (PKCS #9 (1 2 840 113549 1 9))
2072 31 22: SET {
2074 04 20: OCTET STRING
: 73 57 91 A6 3E 88 33 6E 51 31 81 E0 11 08 46 8C
: EE 50 E3 5B
: }
: }
: }
2096 30 9: SEQUENCE {
2098 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1)
: (ANSI X9.57 algorithm)
: }
2107 04 47: OCTET STRING
: 30 2D 02 14 4A C8 41 50 E9 22 70 C6 FB F9 23 25
: A1 37 B6 3D 5E 5E 67 3E 02 15 00 AC BA 9C B9 56
: 8E 86 AE 19 29 D2 8D F3 6B 48 B5 DD 62 B7 C7
: }
: }
: } : }
: } : }
: } : }
: } : }
: } : }
: } : }
: } : }
5.5 All RSA signed message 5.5 All RSA signed message
Same as 5.2, but includes Carl's RSA root cert (but no CRL). A Same as 5.2, but includes Carl's RSA root cert (but no CRL). A
SignedData with no attribute certificates, signed by Alice using RSA, SignedData with no attribute certificates, signed by Alice using RSA,
her certificate and Carl's root cert, no CRL. The message is ExContent, her certificate and Carl's root cert, no CRL. The message is ExContent,
and is included in the eContent. There are no signed or unsigned and is included in the eContent. There are no signed or unsigned
attributes. attributes.
0 30 1295: SEQUENCE { 0 30 NDEF: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 2 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 1280: [0] { 13 A0 NDEF: [0] {
19 30 1276: SEQUENCE { 15 30 NDEF: SEQUENCE {
23 02 1: INTEGER 1 17 02 1: INTEGER 1
26 31 11: SET { 20 31 11: SET {
28 30 9: SEQUENCE { 22 30 9: SEQUENCE {
30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 24 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
37 05 0: NULL 31 05 0: NULL
: } : }
: } : }
39 30 43: SEQUENCE { 33 30 NDEF: SEQUENCE {
41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 35 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
52 A0 30: [0] { 46 A0 NDEF: [0] {
54 04 28: OCTET STRING 48 24 NDEF: OCTET STRING {
: 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D 50 04 4: OCTET STRING
: 70 6C 65 20 63 6F 6E 74 65 6E 74 2E : 54 68 69 73
56 04 24: OCTET STRING
: 20 69 73 20 73 6F 6D 65 20 73 61 6D 70 6C 65 20
: 63 6F 6E 74 65 6E 74 2E
: } : }
: } : }
84 A0 1005: [0] {
88 30 483: SEQUENCE {
92 30 336: SEQUENCE {
96 A0 3: [0] {
98 02 1: INTEGER 2
: } : }
101 02 16: INTEGER 88 A0 1021: [0] {
92 30 491: SEQUENCE {
96 30 340: SEQUENCE {
100 A0 3: [0] {
102 02 1: INTEGER 2
: }
105 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E 9F F2 50 20 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E 9F F2 50 20
119 30 9: SEQUENCE { 123 30 13: SEQUENCE {
121 06 5: OBJECT IDENTIFIER 125 06 9: OBJECT IDENTIFIER
: sha-1WithRSAEncryption (1 3 14 3 2 29) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (Oddball OIW OID) : (PKCS #1)
128 05 0: NULL 136 05 0: NULL
: } : }
130 30 18: SEQUENCE { 138 30 18: SEQUENCE {
132 31 16: SET { 140 31 16: SET {
134 30 14: SEQUENCE { 142 30 14: SEQUENCE {
136 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 144 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
141 13 7: PrintableString 'CarlRSA' 149 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
150 30 30: SEQUENCE { 158 30 30: SEQUENCE {
152 17 13: UTCTime '990919010746Z' 160 17 13: UTCTime '990818070000Z'
167 17 13: UTCTime '391231235959Z' 175 17 13: UTCTime '391231235959Z'
: } : }
182 30 18: SEQUENCE { 190 30 18: SEQUENCE {
184 31 16: SET { 192 31 16: SET {
186 30 14: SEQUENCE { 194 30 14: SEQUENCE {
188 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 196 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
193 13 7: PrintableString 'CarlRSA' 201 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
202 30 159: SEQUENCE { 210 30 159: SEQUENCE {
205 30 13: SEQUENCE { 213 30 13: SEQUENCE {
207 06 9: OBJECT IDENTIFIER 215 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1) : rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
218 05 0: NULL 226 05 0: NULL
: } : }
220 03 141: BIT STRING 0 unused bits, encapsulates { 228 03 141: BIT STRING 0 unused bits, encapsulates {
224 30 137: SEQUENCE { 232 30 137: SEQUENCE {
227 02 129: INTEGER 235 02 129: INTEGER
: 00 E4 4B FF 18 B8 24 57 F4 77 FF 6E 73 7B 93 71 : 00 E4 4B FF 18 B8 24 57 F4 77 FF 6E 73 7B 93 71
: 5C BC 33 1A 92 92 72 23 D8 41 46 D0 CD 11 3A 04 : 5C BC 33 1A 92 92 72 23 D8 41 46 D0 CD 11 3A 04
: B3 8E AF 82 9D BD 51 1E 17 7A F2 76 2C 2B 86 39 : B3 8E AF 82 9D BD 51 1E 17 7A F2 76 2C 2B 86 39
: A7 BD D7 8D 1A 53 EC E4 00 D5 E8 EC A2 36 B1 ED : A7 BD D7 8D 1A 53 EC E4 00 D5 E8 EC A2 36 B1 ED
: E2 50 E2 32 09 8A 3F 9F 99 25 8F B8 4E AB B9 7D : E2 50 E2 32 09 8A 3F 9F 99 25 8F B8 4E AB B9 7D
: D5 96 65 DA 16 A0 C5 BE 0E AE 44 5B EF 5E F4 A7 : D5 96 65 DA 16 A0 C5 BE 0E AE 44 5B EF 5E F4 A7
: 29 CB 82 DD AC 44 E9 AA 93 94 29 0E F8 18 D6 C8 : 29 CB 82 DD AC 44 E9 AA 93 94 29 0E F8 18 D6 C8
: 57 5E F2 76 C4 F2 11 60 38 B9 1B 3C 1D 97 C9 6A : 57 5E F2 76 C4 F2 11 60 38 B9 1B 3C 1D 97 C9 6A
: F1 : F1
359 02 3: INTEGER 65537 367 02 3: INTEGER 65537
: } : }
: } : }
: } : }
364 A3 66: [3] { 372 A3 66: [3] {
366 30 64: SEQUENCE { 374 30 64: SEQUENCE {
368 30 15: SEQUENCE { 376 30 15: SEQUENCE {
370 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19) 378 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
375 01 1: BOOLEAN TRUE 383 01 1: BOOLEAN TRUE
378 04 5: OCTET STRING, encapsulates { 386 04 5: OCTET STRING, encapsulates {
380 30 3: SEQUENCE { 388 30 3: SEQUENCE {
382 01 1: BOOLEAN TRUE 390 01 1: BOOLEAN TRUE
: } : }
: } : }
: } : }
385 30 14: SEQUENCE { 393 30 14: SEQUENCE {
387 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15) 395 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
392 01 1: BOOLEAN TRUE 400 01 1: BOOLEAN TRUE
395 04 4: OCTET STRING, encapsulates { 403 04 4: OCTET STRING, encapsulates {
397 03 2: BIT STRING 1 unused bits 405 03 2: BIT STRING 1 unused bits
: '1100001'B : '1100001'B
: } : }
: } : }
401 30 29: SEQUENCE { 409 30 29: SEQUENCE {
403 06 3: OBJECT IDENTIFIER 411 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14) : subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
408 04 22: OCTET STRING 416 04 22: OCTET STRING
: 04 14 E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 : 04 14 E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37
: 4E 22 AE 9E 38 BB : 4E 22 AE 9E 38 BB
: } : }
: } : }
: } : }
: } : }
432 30 9: SEQUENCE { 440 30 13: SEQUENCE {
434 06 5: OBJECT IDENTIFIER 442 06 9: OBJECT IDENTIFIER
: sha-1WithRSAEncryption (1 3 14 3 2 29) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (Oddball OIW OID) : (PKCS #1)
441 05 0: NULL 453 05 0: NULL
: } : }
443 03 129: BIT STRING 0 unused bits 455 03 129: BIT STRING 0 unused bits
: 2B 71 B4 B7 6C 4E 08 C2 EA A9 3D 52 DE 77 76 9D : B7 9E D4 04 D3 ED 29 E4 FF 89 89 15 2E 4C DB 0C
: 40 F7 26 70 5F 30 AC 06 78 0A 9B C7 22 55 C3 72 : F0 48 0F 32 61 EE C4 04 EC 12 5D 2D FF 0F 64 59
: 6A 86 9E C3 54 40 02 53 85 61 75 D9 0F 35 71 BE : 7E 0A C3 ED 18 FD E3 56 40 37 A7 07 B5 F0 38 12
: D7 4E 4B B6 B7 8C 00 CE 15 32 38 70 9B 3C EE 72 : 61 50 ED EF DD 3F E3 0B B8 61 A5 A4 9B 3C E6 9E
: 0A 22 8F B1 1B 3C D0 BD 97 15 C7 EB 52 31 E1 51 : 9C 54 9A B6 95 D6 DA 6C 3B B5 2D 45 35 9D 49 01
: A1 3D 5A F2 EA 90 A1 99 DD 8B FD 18 0C 2C 8A C4 : 76 FA B9 B9 31 F9 F9 6B 12 53 A0 F5 14 60 9B 7D
: 89 62 7F 6B 69 B3 F2 BF DE C5 44 E3 D1 E1 86 74 : CA 3E F2 53 6B B0 37 6F AD E6 74 D7 DB FA 5A EA
: 57 34 68 73 90 06 FA AC 6B 96 9E 5F 80 90 3B BC : 14 41 63 5D CD BE C8 0E C1 DA 6A 8D 53 34 18 02
: } : }
575 30 514: SEQUENCE { 587 30 522: SEQUENCE {
579 30 367: SEQUENCE { 591 30 371: SEQUENCE {
583 A0 3: [0] { 595 A0 3: [0] {
585 02 1: INTEGER 2 597 02 1: INTEGER 2
: } : }
588 02 16: INTEGER 600 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0
606 30 9: SEQUENCE { 618 30 13: SEQUENCE {
608 06 5: OBJECT IDENTIFIER 620 06 9: OBJECT IDENTIFIER
: sha-1WithRSAEncryption (1 3 14 3 2 29) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (Oddball OIW OID) : (PKCS #1)
615 05 0: NULL 631 05 0: NULL
: } : }
617 30 18: SEQUENCE { 633 30 18: SEQUENCE {
619 31 16: SET { 635 31 16: SET {
621 30 14: SEQUENCE { 637 30 14: SEQUENCE {
623 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 639 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
628 13 7: PrintableString 'CarlRSA' 644 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
637 30 30: SEQUENCE { 653 30 30: SEQUENCE {
639 17 13: UTCTime '990919010847Z' 655 17 13: UTCTime '990819070000Z'
654 17 13: UTCTime '391231235959Z' 670 17 13: UTCTime '391231235959Z'
: } : }
669 30 19: SEQUENCE { 685 30 19: SEQUENCE {
671 31 17: SET { 687 31 17: SET {
673 30 15: SEQUENCE { 689 30 15: SEQUENCE {
675 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 691 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
680 13 8: PrintableString 'AliceRSA' 696 13 8: PrintableString 'AliceRSA'
: } : }
: } : }
: } : }
690 30 159: SEQUENCE { 706 30 159: SEQUENCE {
693 30 13: SEQUENCE { 709 30 13: SEQUENCE {
695 06 9: OBJECT IDENTIFIER 711 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1) : rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
706 05 0: NULL 722 05 0: NULL
: } : }
708 03 141: BIT STRING 0 unused bits, encapsulates { 724 03 141: BIT STRING 0 unused bits, encapsulates {
712 30 137: SEQUENCE { 728 30 137: SEQUENCE {
715 02 129: INTEGER 731 02 129: INTEGER
: 00 E0 89 73 39 8D D8 F5 F5 E8 87 76 39 7F 4E B0 : 00 E0 89 73 39 8D D8 F5 F5 E8 87 76 39 7F 4E B0
: 05 BB 53 83 DE 0F B7 AB DC 7D C7 75 29 0D 05 2E : 05 BB 53 83 DE 0F B7 AB DC 7D C7 75 29 0D 05 2E
: 6D 12 DF A6 86 26 D4 D2 6F AA 58 29 FC 97 EC FA : 6D 12 DF A6 86 26 D4 D2 6F AA 58 29 FC 97 EC FA
: 82 51 0F 30 80 BE B1 50 9E 46 44 F1 2C BB D8 32 : 82 51 0F 30 80 BE B1 50 9E 46 44 F1 2C BB D8 32
: CF C6 68 6F 07 D9 B0 60 AC BE EE 34 09 6A 13 F5 : CF C6 68 6F 07 D9 B0 60 AC BE EE 34 09 6A 13 F5
: F7 05 05 93 DF 5E BA 35 56 D9 61 FF 19 7F C9 81 : F7 05 05 93 DF 5E BA 35 56 D9 61 FF 19 7F C9 81
: E6 F8 6C EA 87 40 70 EF AC 6D 2C 74 9F 2D FA 55 : E6 F8 6C EA 87 40 70 EF AC 6D 2C 74 9F 2D FA 55
: 3A B9 99 77 02 A6 48 52 8C 4E F3 57 38 57 74 57 : 3A B9 99 77 02 A6 48 52 8C 4E F3 57 38 57 74 57
: 5F : 5F
847 02 3: INTEGER 65537 863 02 3: INTEGER 65537
: } : }
: } : }
: } : }
852 A3 96: [3] { 868 A3 96: [3] {
854 30 94: SEQUENCE { 870 30 94: SEQUENCE {
856 30 12: SEQUENCE { 872 30 12: SEQUENCE {
858 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19) 874 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
863 01 1: BOOLEAN TRUE 879 01 1: BOOLEAN TRUE
866 04 2: OCTET STRING, encapsulates { 882 04 2: OCTET STRING, encapsulates {
868 30 0: SEQUENCE {} 884 30 0: SEQUENCE {}
: } : }
: } : }
870 30 14: SEQUENCE { 886 30 14: SEQUENCE {
872 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15) 888 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
877 01 1: BOOLEAN TRUE 893 01 1: BOOLEAN TRUE
880 04 4: OCTET STRING, encapsulates { 896 04 4: OCTET STRING, encapsulates {
882 03 2: BIT STRING 6 unused bits 898 03 2: BIT STRING 6 unused bits
: '11'B : '11'B
: } : }
: } : }
886 30 31: SEQUENCE { 902 30 31: SEQUENCE {
888 06 3: OBJECT IDENTIFIER 904 06 3: OBJECT IDENTIFIER
: authorityKeyIdentifier (2 5 29 35) : authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
893 04 24: OCTET STRING, encapsulates { 909 04 24: OCTET STRING, encapsulates {
895 30 22: SEQUENCE { 911 30 22: SEQUENCE {
897 80 20: [0] 913 80 20: [0]
: E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22 : E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22
: AE 9E 38 BB : AE 9E 38 BB
: } : }
: } : }
: } : }
919 30 29: SEQUENCE { 935 30 29: SEQUENCE {
921 06 3: OBJECT IDENTIFIER 937 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14) : subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
926 04 22: OCTET STRING 942 04 22: OCTET STRING
: 04 14 77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D CE EC : 04 14 77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D CE EC
: 3C A0 3A E3 FF 50 : 3C A0 3A E3 FF 50
: } : }
: } : }
: } : }
: } : }
950 30 9: SEQUENCE { 966 30 13: SEQUENCE {
952 06 5: OBJECT IDENTIFIER 968 06 9: OBJECT IDENTIFIER
: sha-1WithRSAEncryption (1 3 14 3 2 29) : sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (Oddball OIW OID) : (PKCS #1)
959 05 0: NULL 979 05 0: NULL
: } : }
961 03 129: BIT STRING 0 unused bits 981 03 129: BIT STRING 0 unused bits
: BF 34 32 E6 FC 6A 88 41 7D F0 5C 99 A1 93 B7 49 : 52 FF B3 8B 54 1E 08 BF F3 6D 0C 12 08 7D 8E CB
: B7 02 52 1E CB 84 AC 93 D7 58 2B 00 A1 9C C4 48 : 6E 59 EC 56 93 A6 4A 22 40 5F 8B 14 79 7E 83 4F
: 48 99 DD 02 C3 C6 05 F8 D2 25 F1 A3 9C C9 33 01 : F5 3F DE 21 97 16 58 70 76 32 B2 20 51 A3 1A 1F
: 8A 76 0E 6F 77 43 A3 BF E1 E6 B3 6A 04 79 39 EE : 97 48 80 5C 83 B0 B8 93 0B 03 44 AE BF BE A4 8C
: E1 E9 E5 9D 50 07 8B 22 DC 12 50 E3 F3 B4 3D 9E : 06 C6 45 E2 81 08 D5 89 58 0C 28 1B 2D A5 8B 1C
: E5 93 9E B1 CD 33 F9 E0 AB 98 71 09 F8 EB B0 FC : 4A E3 D7 44 34 D4 CB 53 FC BA A9 8B AA B6 E9 B0
: 9C EC F1 88 D8 AE 03 D1 FE 60 E1 62 14 B1 A2 23 : C3 AB 74 F1 2A F1 B0 C6 38 EA 87 02 1E 10 BB 99
: D2 C8 8D 18 1F 5E EE 9B 72 02 27 C2 85 3D 04 2E : C4 BE 36 C0 08 BA 13 65 37 3E 36 F3 31 42 73 18
: } : }
: } : }
1093 31 203: SET { 1113 31 203: SET {
1096 30 200: SEQUENCE { 1116 30 200: SEQUENCE {
1099 02 1: INTEGER 1 1119 02 1: INTEGER 1
1102 30 38: SEQUENCE { 1122 30 38: SEQUENCE {
1104 30 18: SEQUENCE { 1124 30 18: SEQUENCE {
1106 31 16: SET { 1126 31 16: SET {
1108 30 14: SEQUENCE { 1128 30 14: SEQUENCE {
1110 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 1130 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
1115 13 7: PrintableString 'CarlRSA' 1135 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
1124 02 16: INTEGER 1144 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0
: } : }
1142 30 9: SEQUENCE { 1162 30 9: SEQUENCE {
1144 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 1164 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
1151 05 0: NULL 1171 05 0: NULL
: } : }
1153 30 13: SEQUENCE { 1173 30 13: SEQUENCE {
1155 06 9: OBJECT IDENTIFIER 1175 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1) : rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
1166 05 0: NULL 1186 05 0: NULL
: } : }
1168 04 128: OCTET STRING 1188 04 128: OCTET STRING
: 2F 23 82 D2 F3 09 5F B8 0C 58 EB 4E 9D BF 89 9A : 2F 23 82 D2 F3 09 5F B8 0C 58 EB 4E 9D BF 89 9A
: 81 E5 75 C4 91 3D D3 D0 D5 7B B6 D5 FE 94 A1 8A : 81 E5 75 C4 91 3D D3 D0 D5 7B B6 D5 FE 94 A1 8A
: AC E3 C4 84 F5 CD 60 4E 27 95 F6 CF 00 86 76 75 : AC E3 C4 84 F5 CD 60 4E 27 95 F6 CF 00 86 76 75
: 3F 2B F0 E7 D4 02 67 A7 F5 C7 8D 16 04 A5 B3 B5 : 3F 2B F0 E7 D4 02 67 A7 F5 C7 8D 16 04 A5 B3 B5
: E7 D9 32 F0 24 EF E7 20 44 D5 9F 07 C5 53 24 FA : E7 D9 32 F0 24 EF E7 20 44 D5 9F 07 C5 53 24 FA
: CE 01 1D 0F 17 13 A7 2A 95 9D 2B E4 03 95 14 0B : CE 01 1D 0F 17 13 A7 2A 95 9D 2B E4 03 95 14 0B
: E9 39 0D BA CE 6E 9C 9E 0C E8 98 E6 55 13 D4 68 : E9 39 0D BA CE 6E 9C 9E 0C E8 98 E6 55 13 D4 68
: 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7 : 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7
: } : }
: } : }
skipping to change at line 3067 skipping to change at line 3552
: } : }
5.6 Multiple signers 5.6 Multiple signers
Similar to 5.1, but the message is also signed by Diane. Two Similar to 5.1, but the message is also signed by Diane. Two
SignedDatas (one for Alice, one for Diane) with no attribute SignedDatas (one for Alice, one for Diane) with no attribute
certificates, each signed using DH-DSS, Alice's and Diane's certificate certificates, each signed using DH-DSS, Alice's and Diane's certificate
(not Carl's root cert), no CRL. The message is ExContent, and is (not Carl's root cert), no CRL. The message is ExContent, and is
included in the eContent. There are no signed or unsigned attributes. included in the eContent. There are no signed or unsigned attributes.
0 30 289: SEQUENCE { 0 30 1477: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 274: [0] { 15 A0 1462: [0] {
19 30 270: SEQUENCE { 19 30 1458: SEQUENCE {
23 02 1: INTEGER 1 23 02 1: INTEGER 1
26 31 11: SET { 26 31 11: SET {
28 30 9: SEQUENCE { 28 30 9: SEQUENCE {
30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
37 05 0: NULL 37 05 0: NULL
: } : }
: } : }
39 30 43: SEQUENCE { 39 30 43: SEQUENCE {
41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
52 A0 30: [0] { 52 A0 30: [0] {
54 04 28: OCTET STRING 54 04 28: OCTET STRING
: 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D : 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D
: 70 6C 65 20 63 6F 6E 74 65 6E 74 2E : 70 6C 65 20 63 6F 6E 74 65 6E 74 2E
: } : }
: } : }
84 31 206: SET { 84 A0 1184: [0] {
87 30 101: SEQUENCE { 88 30 442: SEQUENCE {
89 02 1: INTEGER 1 92 30 377: SEQUENCE {
92 30 24: SEQUENCE { 96 A0 3: [0] {
94 30 18: SEQUENCE { 98 02 1: INTEGER 2
96 31 16: SET { : }
98 30 14: SEQUENCE { 101 02 2: INTEGER 210
100 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 105 30 9: SEQUENCE {
107 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
116 30 18: SEQUENCE {
118 31 16: SET {
120 30 14: SEQUENCE {
122 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
105 13 7: PrintableString 'CarlDSS' 127 13 7: PrintableString 'CarlDSS'
: } : }
: } : }
: } : }
114 02 2: INTEGER 200 136 30 30: SEQUENCE {
138 17 13: UTCTime '990817020810Z'
153 17 13: UTCTime '391231235959Z'
: } : }
118 30 9: SEQUENCE { 168 30 19: SEQUENCE {
120 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 170 31 17: SET {
: (OIW) 172 30 15: SEQUENCE {
127 05 0: NULL 174 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
179 13 8: PrintableString 'DianeDSS'
: } : }
129 30 9: SEQUENCE { : }
131 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1) : }
189 30 147: SEQUENCE {
192 30 9: SEQUENCE {
194 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
: } : }
140 04 48: OCTET STRING, encapsulates { 203 03 133: BIT STRING 0 unused bits, encapsulates {
142 30 44: SEQUENCE { 207 02 129: INTEGER
144 02 20: INTEGER : 00 A0 00 17 78 2C EE 7E 81 53 2E 2E 61 08 0F A1
: 01 1A 49 BA 75 B0 A7 62 36 FC E9 7D AE F7 C5 57 : 9B 51 52 1A DA 59 A8 73 2F 12 25 B6 08 CB CA EF
: 02 86 98 8E : 2A 44 76 8A 52 09 EA BD 05 22 D5 0F F6 FD 46 D7
166 02 20: INTEGER : AF 99 38 09 0E 13 CB 4F 2C DD 1C 34 F7 1C BF 25
: 6D 1B A8 BD 51 10 51 26 F3 89 96 E6 B8 F1 AF 5E : FF 23 D3 3B 59 E7 82 97 37 BE 31 24 D8 18 C8 F3
: 55 DD 3D 21 : 49 39 5B B7 E2 E5 27 7E FC 8C 45 72 5B 7E 3E 8F
: 68 4D DD 46 7A 22 BE 8E FF CC DA 39 29 A3 39 E5
: 9F 43 E9 55 C9 D7 5B A6 81 67 CC C0 AA CD 2E C5
: 23
: } : }
: } : }
339 A3 131: [3] {
342 30 128: SEQUENCE {
345 30 32: SEQUENCE {
347 06 3: OBJECT IDENTIFIER subjectAltName (2 5 29 17)
: (X.509 id-ce (2 5 29))
352 04 25: OCTET STRING, encapsulates {
354 30 23: SEQUENCE {
356 81 21: [1] 'dianeDss@examples.com'
: } : }
190 30 101: SEQUENCE { : }
192 02 1: INTEGER 1 : }
195 30 24: SEQUENCE { 379 30 12: SEQUENCE {
197 30 18: SEQUENCE { 381 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
199 31 16: SET { : (X.509 id-ce (2 5 29))
201 30 14: SEQUENCE { 386 01 1: BOOLEAN TRUE
203 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 389 04 2: OCTET STRING, encapsulates {
391 30 0: SEQUENCE {}
: }
: }
393 30 14: SEQUENCE {
395 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
400 01 1: BOOLEAN TRUE
403 04 4: OCTET STRING, encapsulates {
405 03 2: BIT STRING 6 unused bits
: '11'B
: }
: }
409 30 31: SEQUENCE {
411 06 3: OBJECT IDENTIFIER
: authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29))
416 04 24: OCTET STRING, encapsulates {
418 30 22: SEQUENCE {
420 80 20: [0]
: 70 44 3E 82 2E 6F 87 DE 4A D3 75 E3 3D 20 BC 43
: 2B 93 F1 1F
: }
: }
: }
442 30 29: SEQUENCE {
444 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29))
449 04 22: OCTET STRING
: 04 14 64 30 99 7D 5C DC 45 0B 99 3A 52 2F 16 BF
: 58 50 DD CE 2B 18
: }
: }
: }
: }
473 30 9: SEQUENCE {
475 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
484 03 48: BIT STRING 0 unused bits, encapsulates {
487 30 45: SEQUENCE {
489 02 20: INTEGER
: 7E 0C 0C 81 17 B4 9A 54 B2 C3 30 EB 8A C4 3C C2
: 52 36 9E 95
511 02 21: INTEGER
: 00 C6 9F 17 C2 71 4B AC 2E 39 8D 3D 10 1F 9A B3
: 4D B6 F9 11 A3
: }
: }
: }
534 30 734: SEQUENCE {
538 30 669: SEQUENCE {
542 A0 3: [0] {
544 02 1: INTEGER 2
: }
547 02 2: INTEGER 200
551 30 9: SEQUENCE {
553 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
562 30 18: SEQUENCE {
564 31 16: SET {
566 30 14: SEQUENCE {
568 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
208 13 7: PrintableString 'CarlDSS' 573 13 7: PrintableString 'CarlDSS'
: } : }
: } : }
: } : }
217 02 2: INTEGER 210 582 30 30: SEQUENCE {
584 17 13: UTCTime '990817011049Z'
599 17 13: UTCTime '391231235959Z'
: } : }
221 30 9: SEQUENCE { 614 30 19: SEQUENCE {
223 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 616 31 17: SET {
618 30 15: SEQUENCE {
620 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
625 13 8: PrintableString 'AliceDSS'
: }
: }
: }
635 30 438: SEQUENCE {
639 30 299: SEQUENCE {
643 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1)
: (ANSI X9.57 algorithm)
652 30 286: SEQUENCE {
656 02 129: INTEGER
: 00 81 8D CD ED 83 EA 0A 9E 39 3E C2 48 28 A3 E4
: 47 93 DD 0E D7 A8 0E EC 53 C5 AB 84 08 4F FF 94
: E1 73 48 7E 0C D6 F3 44 48 D1 FE 9F AF A4 A1 89
: 2F E1 D9 30 C8 36 DE 3F 9B BF B7 4C DC 5F 69 8A
: E4 75 D0 37 0C 91 08 95 9B DE A7 5E F9 FC F4 9F
: 2F DD 43 A8 8B 54 F1 3F B0 07 08 47 4D 5D 88 C3
: C3 B5 B3 E3 55 08 75 D5 39 76 10 C4 78 BD FF 9D
: B0 84 97 37 F2 E4 51 1B B5 E4 09 96 5C F3 7E 5B
: DB
788 02 21: INTEGER
: 00 E2 47 A6 1A 45 66 B8 13 C6 DA 8F B8 37 21 2B
: 62 8B F7 93 CD
811 02 128: INTEGER
: 26 38 D0 14 89 32 AA 39 FB 3E 6D D9 4B 59 6A 4C
: 76 23 39 04 02 35 5C F2 CB 1A 30 C3 1E 50 5D DD
: 9B 59 E2 CD AA 05 3D 58 C0 7B A2 36 B8 6E 07 AF
: 7D 8A 42 25 A7 F4 75 CF 4A 08 5E 4B 3E 90 F8 6D
: EA 9C C9 21 8A 3B 76 14 E9 CE 2E 5D A3 07 CD 23
: 85 B8 2F 30 01 7C 6D 49 89 11 89 36 44 BD F8 C8
: 95 4A 53 56 B5 E2 F9 73 EC 1A 61 36 1F 11 7F C2
: BD ED D1 50 FF 98 74 C2 D1 81 4A 60 39 BA 36 39
: }
: }
942 03 132: BIT STRING 0 unused bits, encapsulates {
946 02 128: INTEGER
: 5C E3 B9 5A 75 14 96 0B A9 7A DD E3 3F A9 EC AC
: 5E DC BD B7 13 11 34 A6 16 89 28 11 23 D9 34 86
: 67 75 75 13 12 3D 43 5B 6F E5 51 BF FA 89 F2 A2
: 1B 3E 24 7D 3D 07 8D 5B 63 C8 BB 45 A5 A0 4A E3
: 85 D6 CE 06 80 3F E8 23 7E 1A F2 24 AB 53 1A B8
: 27 0D 1E EF 08 BF 66 14 80 5C 62 AC 65 FA 15 8B
: F1 BB 34 D4 D2 96 37 F6 61 47 B2 C4 32 84 F0 7E
: 41 40 FD 46 A7 63 4E 33 F2 A5 E2 F4 F2 83 E5 B8
: }
: }
1077 A3 131: [3] {
1080 30 128: SEQUENCE {
1083 30 32: SEQUENCE {
1085 06 3: OBJECT IDENTIFIER subjectAltName (2 5 29 17)
: (X.509 id-ce (2 5 29))
1090 04 25: OCTET STRING, encapsulates {
1092 30 23: SEQUENCE {
1094 81 21: [1] 'aliceDss@examples.com'
: }
: }
: }
1117 30 12: SEQUENCE {
1119 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29))
1124 01 1: BOOLEAN TRUE
1127 04 2: OCTET STRING, encapsulates {
1129 30 0: SEQUENCE {}
: }
: }
1131 30 14: SEQUENCE {
1133 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
1138 01 1: BOOLEAN TRUE
1141 04 4: OCTET STRING, encapsulates {
1143 03 2: BIT STRING 6 unused bits
: '11'B
: }
: }
1147 30 31: SEQUENCE {
1149 06 3: OBJECT IDENTIFIER
: authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29))
1154 04 24: OCTET STRING, encapsulates {
1156 30 22: SEQUENCE {
1158 80 20: [0]
: 70 44 3E 82 2E 6F 87 DE 4A D3 75 E3 3D 20 BC 43
: 2B 93 F1 1F
: }
: }
: }
1180 30 29: SEQUENCE {
1182 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29))
1187 04 22: OCTET STRING
: 04 14 BE 6C A1 B3 E3 C1 F7 ED 43 70 A4 CE 13 01
: E2 FD E3 97 FE CD
: }
: }
: }
: }
1211 30 9: SEQUENCE {
1213 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
1222 03 48: BIT STRING 0 unused bits, encapsulates {
1225 30 45: SEQUENCE {
1227 02 21: INTEGER
: 00 98 B0 C6 3F CF 71 47 5A 35 A9 4A 8F C0 F8 24
: 05 E8 46 94 8E
1250 02 20: INTEGER
: 5B 9F 48 C0 8C A1 C1 02 9C 44 EA E9 A1 87 C1 A5
: 7F 28 2D BB
: }
: }
: }
: }
1272 31 206: SET {
1275 30 101: SEQUENCE {
1277 02 1: INTEGER 1
1280 30 24: SEQUENCE {
1282 30 18: SEQUENCE {
1284 31 16: SET {
1286 30 14: SEQUENCE {
1288 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
1293 13 7: PrintableString 'CarlDSS'
: }
: }
: }
1302 02 2: INTEGER 200
: }
1306 30 9: SEQUENCE {
1308 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
230 05 0: NULL 1315 05 0: NULL
: } : }
232 30 9: SEQUENCE { 1317 30 9: SEQUENCE {
234 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1) 1319 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
: } : }
243 04 48: OCTET STRING 1328 04 48: OCTET STRING
: 30 2D 02 15 00 CF 86 F1 54 70 E3 AD 5A 54 EC FE : 30 2D 02 15 00 CB 2D 81 7B 0D 3F 4D 8A 0D B6 0A
: F3 CF F5 0C 8E 9E A2 64 7F 02 14 61 1A 9D 19 31 : 3C 86 48 B2 22 5B 4F B4 1C 02 14 75 00 20 67 96
: 47 A0 32 A7 A0 27 D3 91 03 C4 07 E0 72 8D 8E 00 : 9D C5 DD B7 5E 47 94 B2 01 A5 52 15 0C 26 A2 00
: }
1378 30 101: SEQUENCE {
1380 02 1: INTEGER 1
1383 30 24: SEQUENCE {
1385 30 18: SEQUENCE {
1387 31 16: SET {
1389 30 14: SEQUENCE {
1391 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
1396 13 7: PrintableString 'CarlDSS'
: }
: }
: }
1405 02 2: INTEGER 210
: }
1409 30 9: SEQUENCE {
1411 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW)
1418 05 0: NULL
: }
1420 30 9: SEQUENCE {
1422 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm)
: }
1431 04 48: OCTET STRING
: 30 2D 02 14 1F 4B 9C 80 62 FF 19 77 6E 9A FC 66
: 45 C8 FD 6D 49 7A BA 84 02 15 00 84 D2 E4 E6 8C
: BC C4 12 72 74 4F D9 50 A4 A8 66 FB 2A E9 CF 00
: } : }
: } : }
: } : }
: } : }
: } : }
5.7 Signing using SKI 5.7 Signing using SKI
Same as 5.1, but the signature uses the SKI instead of the Same as 5.1, but the signature uses the SKI instead of the
issuer/serial number in the cert. A SignedData with no attribute issuer/serial number in the cert. A SignedData with no attribute
certificates, signed by Alice using DH-DSS, just her certificate (not certificates, signed by Alice using DH-DSS, just her certificate (not
Carl's root cert), identified by the SKI, no CRL. The message is Carl's root cert), identified by the SKI, no CRL. The message is
ExContent, and is included in the eContent. There are no signed or ExContent, and is included in the eContent. There are no signed or
unsigned attributes. unsigned attributes.
0 30 179: SEQUENCE { 0 30 711: SEQUENCE {
3 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
14 A0 165: [0] { 15 A0 696: [0] {
17 30 162: SEQUENCE { 19 30 692: SEQUENCE {
20 02 1: INTEGER 3 23 02 1: INTEGER 3
23 31 11: SET { 26 31 11: SET {
25 30 9: SEQUENCE { 28 30 9: SEQUENCE {
27 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 30 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
34 05 0: NULL 37 05 0: NULL
: } : }
: } : }
36 30 43: SEQUENCE { 39 30 43: SEQUENCE {
38 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 41 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
49 A0 30: [0] { 52 A0 30: [0] {
51 04 28: OCTET STRING 54 04 28: OCTET STRING
: 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D : 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D
: 70 6C 65 20 63 6F 6E 74 65 6E 74 2E : 70 6C 65 20 63 6F 6E 74 65 6E 74 2E
: } : }
: } : }
81 31 99: SET { 84 A0 526: [0] {
83 30 97: SEQUENCE { 88 30 522: SEQUENCE {
85 02 1: INTEGER 3 92 30 371: SEQUENCE {
88 80 20: [0] 96 A0 3: [0] {
98 02 1: INTEGER 2
: }
101 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E C4 10 B3 B0
119 30 13: SEQUENCE {
121 06 9: OBJECT IDENTIFIER
: sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (PKCS #1)
132 05 0: NULL
: }
134 30 18: SEQUENCE {
136 31 16: SET {
138 30 14: SEQUENCE {
140 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
145 13 7: PrintableString 'CarlRSA'
: }
: }
: }
154 30 30: SEQUENCE {
156 17 13: UTCTime '990819070000Z'
171 17 13: UTCTime '391231235959Z'
: }
186 30 19: SEQUENCE {
188 31 17: SET {
190 30 15: SEQUENCE {
192 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
197 13 8: PrintableString 'AliceRSA'
: }
: }
: }
207 30 159: SEQUENCE {
210 30 13: SEQUENCE {
212 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1)
223 05 0: NULL
: }
225 03 141: BIT STRING 0 unused bits, encapsulates {
229 30 137: SEQUENCE {
232 02 129: INTEGER
: 00 E0 89 73 39 8D D8 F5 F5 E8 87 76 39 7F 4E B0
: 05 BB 53 83 DE 0F B7 AB DC 7D C7 75 29 0D 05 2E
: 6D 12 DF A6 86 26 D4 D2 6F AA 58 29 FC 97 EC FA
: 82 51 0F 30 80 BE B1 50 9E 46 44 F1 2C BB D8 32
: CF C6 68 6F 07 D9 B0 60 AC BE EE 34 09 6A 13 F5
: F7 05 05 93 DF 5E BA 35 56 D9 61 FF 19 7F C9 81
: E6 F8 6C EA 87 40 70 EF AC 6D 2C 74 9F 2D FA 55
: 3A B9 99 77 02 A6 48 52 8C 4E F3 57 38 57 74 57
: 5F
364 02 3: INTEGER 65537
: }
: }
: }
369 A3 96: [3] {
371 30 94: SEQUENCE {
373 30 12: SEQUENCE {
375 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29))
380 01 1: BOOLEAN TRUE
383 04 2: OCTET STRING, encapsulates {
385 30 0: SEQUENCE {}
: }
: }
387 30 14: SEQUENCE {
389 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
394 01 1: BOOLEAN TRUE
397 04 4: OCTET STRING, encapsulates {
399 03 2: BIT STRING 6 unused bits
: '11'B
: }
: }
403 30 31: SEQUENCE {
405 06 3: OBJECT IDENTIFIER
: authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29))
410 04 24: OCTET STRING, encapsulates {
412 30 22: SEQUENCE {
414 80 20: [0]
: E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22
: AE 9E 38 BB
: }
: }
: }
436 30 29: SEQUENCE {
438 06 3: OBJECT IDENTIFIER
: subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29))
443 04 22: OCTET STRING
: 04 14 77 D2 B4 D1 B7 4C 8A 8A A3 CE 45 9D CE EC
: 3C A0 3A E3 FF 50
: }
: }
: }
: }
467 30 13: SEQUENCE {
469 06 9: OBJECT IDENTIFIER
: sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (PKCS #1)
480 05 0: NULL
: }
482 03 129: BIT STRING 0 unused bits
: 52 FF B3 8B 54 1E 08 BF F3 6D 0C 12 08 7D 8E CB
: 6E 59 EC 56 93 A6 4A 22 40 5F 8B 14 79 7E 83 4F
: F5 3F DE 21 97 16 58 70 76 32 B2 20 51 A3 1A 1F
: 97 48 80 5C 83 B0 B8 93 0B 03 44 AE BF BE A4 8C
: 06 C6 45 E2 81 08 D5 89 58 0C 28 1B 2D A5 8B 1C
: 4A E3 D7 44 34 D4 CB 53 FC BA A9 8B AA B6 E9 B0
: C3 AB 74 F1 2A F1 B0 C6 38 EA 87 02 1E 10 BB 99
: C4 BE 36 C0 08 BA 13 65 37 3E 36 F3 31 42 73 18
: }
: }
614 31 99: SET {
616 30 97: SEQUENCE {
618 02 1: INTEGER 3
621 80 20: [0]
: BE 6C A1 B3 E3 C1 F7 ED 43 70 A4 CE 13 01 E2 FD : BE 6C A1 B3 E3 C1 F7 ED 43 70 A4 CE 13 01 E2 FD
: E3 97 FE CD : E3 97 FE CD
110 30 9: SEQUENCE { 643 30 9: SEQUENCE {
112 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 645 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
119 05 0: NULL 652 05 0: NULL
: } : }
121 30 9: SEQUENCE { 654 30 9: SEQUENCE {
123 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1) 656 06 7: OBJECT IDENTIFIER dsaWithSha1 (1 2 840 10040 4 3)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
: } : }
132 04 48: OCTET STRING 665 04 48: OCTET STRING, encapsulates {
: 30 2D 02 14 4F F6 62 B6 CA 8D D6 CC A8 A8 CA 9A 667 30 45: SEQUENCE {
: C9 CB 96 96 2C 1D DA 8F 02 15 00 B7 E2 9D 06 1E 669 02 21: INTEGER
: F8 22 5E 93 FE 0B A6 BF F0 3C 29 ED 15 85 83 00 : 00 B8 38 97 28 5A E2 E3 FE 4E 6E 24 00 A6 37 F2
: 0D 8C 1F 1C EE
692 02 20: INTEGER
: 66 B5 EE 3B D8 2B 46 0B E0 64 D0 F5 B9 AD 5C EC
: 0F ED 7B 12
: }
: }
: }
: } : }
: } : }
: } : }
: } : }
: } : }
5.8 S/MIME multipart/signed message 5.8 S/MIME multipart/signed message
A full S/MIME message, including MIME, that includes the body part from A full S/MIME message, including MIME, that includes the body part from
5.3 and the body containing the content of the message. 5.3 and the body containing the content of the message.
skipping to change at line 4389 skipping to change at line 5250
|+pQhacSOuKeWG01S9TIkRjH4a4o1gGJfgpwO+64HXwQsRjZVKbCgOBhQACgYEAmYd0JwNm |+pQhacSOuKeWG01S9TIkRjH4a4o1gGJfgpwO+64HXwQsRjZVKbCgOBhQACgYEAmYd0JwNm
|oLHArdwsdbvhbESc2iFtTUdtsWIJ6diuHvI6tJSxo456m3FOAJTJtCVOuWCWGSQB82IM/n |oLHArdwsdbvhbESc2iFtTUdtsWIJ6diuHvI6tJSxo456m3FOAJTJtCVOuWCWGSQB82IM/n
|XA+87YaADj/dVwT98jlhkGlPSxYY86V7EIEaQLJiXwUnaB6gtiDZUq5oa6crKnUIMLqifN |XA+87YaADj/dVwT98jlhkGlPSxYY86V7EIEaQLJiXwUnaB6gtiDZUq5oa6crKnUIMLqifN
|G6lNiZrXjRg5hD+LxVZNgHqjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAg |G6lNiZrXjRg5hD+LxVZNgHqjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAg
|GGMB0GA1UdDgQWBBRwRD6CLm+H3krTdeM9ILxDK5PxHzAJBgcqhkjOOAQDAzAAMC0CFGup |GGMB0GA1UdDgQWBBRwRD6CLm+H3krTdeM9ILxDK5PxHzAJBgcqhkjOOAQDAzAAMC0CFGup
|8E56Wnnj+b49K8kGN+kRF6ETAhUAjzRpKouxPAN5lDJNEh/OiftGsjs= |8E56Wnnj+b49K8kGN+kRF6ETAhUAjzRpKouxPAN5lDJNEh/OiftGsjs=
|<CarlDSSSelf.cer |<CarlDSSSelf.cer
|* CarlRSASelf.cer |* CarlRSASelf.cer
|>CarlRSASelf.cer |>CarlRSASelf.cer
|MIIB4zCCAVCgAwIBAgIQRjRrx4AAVrwR024un/JQIDAJBgUrDgMCHQUAMBIxEDAOBgNVBA |MIIB6zCCAVSgAwIBAgIQRjRrx4AAVrwR024un/JQIDANBgkqhkiG9w0BAQUFADASMRAwDg
|MTB0NhcmxSU0EwHhcNOTkwOTE5MDEwNzQ2WhcNMzkxMjMxMjM1OTU5WjASMRAwDgYDVQQD |YDVQQDEwdDYXJsUlNBMB4XDTk5MDgxODA3MDAwMFoXDTM5MTIzMTIzNTk1OVowEjEQMA4G
|EwdDYXJsUlNBMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDkS/8YuCRX9Hf/bnN7k3 |A1UEAxMHQ2FybFJTQTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA5Ev/GLgkV/R3/2
|FcvDMakpJyI9hBRtDNEToEs46vgp29UR4XevJ2LCuGOae9140aU+zkANXo7KI2se3iUOIy |5ze5NxXLwzGpKSciPYQUbQzRE6BLOOr4KdvVEeF3rydiwrhjmnvdeNGlPs5ADV6OyiNrHt
|CYo/n5klj7hOq7l91ZZl2hagxb4OrkRb7170pynLgt2sROmqk5QpDvgY1shXXvJ2xPIRYD |4lDiMgmKP5+ZJY+4Tqu5fdWWZdoWoMW+Dq5EW+9e9Kcpy4LdrETpqpOUKQ74GNbIV17yds
|i5Gzwdl8lq8QIDAQABo0IwQDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBhjAd |TyEWA4uRs8HZfJavECAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC
|BgNVHQ4EFgQU6eCQJ6x4IHqa00zyQjdOIq6eOLswCQYFKw4DAh0FAAOBgQArcbS3bE4Iwu |AYYwHQYDVR0OBBYEFOngkCeseCB6mtNM8kI3TiKunji7MA0GCSqGSIb3DQEBBQUAA4GBAL
|qpPVLed3adQPcmcF8wrAZ4CpvHIlXDcmqGnsNUQAJThWF12Q81cb7XTku2t4wAzhUyOHCb |ee1ATT7Snk/4mJFS5M2wzwSA8yYe7EBOwSXS3/D2RZfgrD7Rj941ZAN6cHtfA4EmFQ7e/d
|PO5yCiKPsRs80L2XFcfrUjHhUaE9WvLqkKGZ3Yv9GAwsisSJYn9rabPyv97FROPR4YZ0Vz |P+MLuGGlpJs85p6cVJq2ldbabDu1LUU1nUkBdvq5uTH5+WsSU6D1FGCbfco+8lNrsDdvre
|Roc5AG+qxrlp5fgJA7vA== |Z019v6WuoUQWNdzb7IDsHaao1TNBgC
|<CarlRSASelf.cer |<CarlRSASelf.cer
|* DianeDHEncryptByCarl.cer |* DianeDHEncryptByCarl.cer
|* Creator: [JS] |* Creator: [JS]
|>DianeDHEncryptByCarl.cer |>DianeDHEncryptByCarl.cer
|MIIDZTCCAyWgAwIBAgICANMwCQYHKoZIzjgEAzASMRAwDgYDVQQDEwdDYXJsRFNTMB4XDT |MIIDZTCCAyWgAwIBAgICANMwCQYHKoZIzjgEAzASMRAwDgYDVQQDEwdDYXJsRFNTMB4XDT
|k5MDgxNzAyMTY1N1oXDTM5MTIzMTIzNTk1OVowEjEQMA4GA1UEAxMHRGlhbmVESDCCAkEw |k5MDgxNzAyMTY1N1oXDTM5MTIzMTIzNTk1OVowEjEQMA4GA1UEAxMHRGlhbmVESDCCAkEw
|ggG2BgcqhkjOPgIBMIIBqQKBgQDKbpHCsL2oWPIxIXS7H+QQvdCTon5h4T26IwQW0GY5vT |ggG2BgcqhkjOPgIBMIIBqQKBgQDKbpHCsL2oWPIxIXS7H+QQvdCTon5h4T26IwQW0GY5vT
|vNBXRI8QNwlfQFY20uv5q3/5f/Obtj202kcdiUmrTyij2ft12NyuKvtQ/PBWWCaG5D0vQE |vNBXRI8QNwlfQFY20uv5q3/5f/Obtj202kcdiUmrTyij2ft12NyuKvtQ/PBWWCaG5D0vQE
|XwOL+VD1yGwFJry/Ng9cw1FqZ+h1MmZ4kWPo/jTnGbZwbHg4NoLSNDbC3wKBgG7WdjZL5F |XwOL+VD1yGwFJry/Ng9cw1FqZ+h1MmZ4kWPo/jTnGbZwbHg4NoLSNDbC3wKBgG7WdjZL5F
skipping to change at line 4439 skipping to change at line 5300
|pSCeq9BSLVD/b9RtevmTgJDhPLTyzdHDT3HL8l/yPTO1nngpc3vjEk2BjI80k5W7fi5Sd+ |pSCeq9BSLVD/b9RtevmTgJDhPLTyzdHDT3HL8l/yPTO1nngpc3vjEk2BjI80k5W7fi5Sd+
|/IxFclt+Po9oTd1GeiK+jv/M2jkpoznln0PpVcnXW6aBZ8zAqs0uxSOjgYMwgYAwIAYDVR |/IxFclt+Po9oTd1GeiK+jv/M2jkpoznln0PpVcnXW6aBZ8zAqs0uxSOjgYMwgYAwIAYDVR
|0RBBkwF4EVZGlhbmVEc3NAZXhhbXBsZXMuY29tMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/ |0RBBkwF4EVZGlhbmVEc3NAZXhhbXBsZXMuY29tMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/
|BAQDAgbAMB8GA1UdIwQYMBaAFHBEPoIub4feStN14z0gvEMrk/EfMB0GA1UdDgQWBBRkMJ |BAQDAgbAMB8GA1UdIwQYMBaAFHBEPoIub4feStN14z0gvEMrk/EfMB0GA1UdDgQWBBRkMJ
|l9XNxFC5k6Ui8Wv1hQ3c4rGDAJBgcqhkjOOAQDAzAAMC0CFH4MDIEXtJpUssMw64rEPMJS |l9XNxFC5k6Ui8Wv1hQ3c4rGDAJBgcqhkjOOAQDAzAAMC0CFH4MDIEXtJpUssMw64rEPMJS
|Np6VAhUAxp8XwnFLrC45jT0QH5qzTbb5EaM= |Np6VAhUAxp8XwnFLrC45jT0QH5qzTbb5EaM=
|<DianeDSSSignByCarlInherit.cer |<DianeDSSSignByCarlInherit.cer
|* DianeRSASignEncryptByCarl.cer |* DianeRSASignEncryptByCarl.cer
|* Creator: [JS] |* Creator: [JS]
|>DianeRSASignEncryptByCarl.cer |>DianeRSASignByCarl.cer
|MIICAjCCAW+gAwIBAgIQRjRrx4AAVrwR024u1ZowkDAJBgUrDgMCHQUAMBIxEDAOBgNVBA |MIICCjCCAXOgAwIBAgIQRjRrx4AAVrwR024u1ZowkDANBgkqhkiG9w0BAQUFADASMRAwDg
|MTB0NhcmxSU0EwHhcNOTkwOTE5MDEwOTE2WhcNMzkxMjMxMjM1OTU5WjATMREwDwYDVQQD |YDVQQDEwdDYXJsUlNBMB4XDTk5MDgxOTA3MDAwMFoXDTM5MTIzMTIzNTk1OVowEzERMA8G
|EwhEaWFuZVJTQTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA1v24wHDGTCXs6s/qfL |A1UEAxMIRGlhbmVSU0EwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBANb9uMBwxkwl7O
|uiYvrw5jI6U/+xkloX9CDhmSSCCtD2fPtEyosnBvF+JgOpdp3P7KAscJbyg0L21LcoCrv4 |rP6ny7omL68OYyOlP/sZJaF/Qg4ZkkggrQ9nz7RMqLJwbxfiYDqXadz+ygLHCW8oNC9tS3
|v0pMGT8H26DBYB63fmf33rHDYEmsRdf4xu8INyGTR+7wczVysALE8xHDXkflCreD8dt0aW |KAq7+L9KTBk/B9ugwWAet35n996xw2BJrEXX+MbvCDchk0fu8HM1crACxPMRw15H5Qq3g/
|SLRB2VXc0owIUCAwEAAaNgMF4wDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBeAwHwYD |HbdGlki0QdlV3NKMCFAgMBAAGjYDBeMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgXg
|VR0jBBgwFoAU6eCQJ6x4IHqa00zyQjdOIq6eOLswHQYDVR0OBBYEFIzzy3UOjTH21CnaRJ |MB8GA1UdIwQYMBaAFOngkCeseCB6mtNM8kI3TiKunji7MB0GA1UdDgQWBBSM88t1Do0x9t
|J1uP7tTzkMMAkGBSsOAwIdBQADgYEAyojHN6muJssreYIiT0oNHKcgsuBo9ULeWWuz/SXA |Qp2kSSdbj+7U85DDANBgkqhkiG9w0BAQUFAAOBgQAds1GxmZbwRKjrFOr8wt+4M0sCPEHf
|ObjrwItpohZVzgZ+Jl/GXlECP5XVp/fyfSNvK6x8y2+QD0RdRCJT1UI4GMRS17irgm+str |41N/6jR//NURDQAEiLjtvCNFA27xU7LAOxli3Nzhiv6n/KXXl9slfPMwxWOnOEqrJSEkgM
|yp5xNENnYWIwASa299xsm+eSy5LWnTHbEduloghcpbiEY2teUOFYW34l57yho= |fYeIKMU+o+L2MQZtMnVZrc7zVe9iNx5v94e6lPe38uucRCc1dPqvgEtA3HU4jE8JIoM0RQ
|<DianeRSASignEncryptByCarl.cer |oQ==
|<DianeRSASignByCarl.cer
|* EricaDHEncryptByCarl.cer |* EricaDHEncryptByCarl.cer
|* Creator: [JS] |* Creator: [JS]
|>EricaDHEncryptByCarl.cer |>EricaDHEncryptByCarl.cer
|MIIC6TCCAqigAwIBAgICANQwCQYHKoZIzjgEAzASMRAwDgYDVQQDEwdDYXJsRFNTMB4XDT |MIIC6TCCAqigAwIBAgICANQwCQYHKoZIzjgEAzASMRAwDgYDVQQDEwdDYXJsRFNTMB4XDT
|k5MDgxNzAyMTcxNloXDTM5MTIzMTIzNTk1OVowEjEQMA4GA1UEAxMHRXJpY2FESDCCAcQw |k5MDgxNzAyMTcxNloXDTM5MTIzMTIzNTk1OVowEjEQMA4GA1UEAxMHRXJpY2FESDCCAcQw
|ggE4BgcqhkjOPgIBMIIBKwKBgQDsLM2k75omL2KnuyNN3yslwWjSnqlFWzbxlIkar30RJJ |ggE4BgcqhkjOPgIBMIIBKwKBgQDsLM2k75omL2KnuyNN3yslwWjSnqlFWzbxlIkar30RJJ
|09uTwp6NcjgDOmnkUCu6rMnigFlaCzF3bB9yU1YQJBkicMXq5I5fNuOO+R0c83/ppAl8gt |09uTwp6NcjgDOmnkUCu6rMnigFlaCzF3bB9yU1YQJBkicMXq5I5fNuOO+R0c83/ppAl8gt
|NZ6dk8b4Fa8/2nQ6t8STtbm7dmwfqH68OqpDCoFk/GPwe3GY+sA4eRAaMwKBgQC6C9d0Pe |NZ6dk8b4Fa8/2nQ6t8STtbm7dmwfqH68OqpDCoFk/GPwe3GY+sA4eRAaMwKBgQC6C9d0Pe
|c05UwTp5WWu/HkYTcI+xLH+5yRdwaZNfBIJJYzEgF+jewL9rLAY6cVxV6VhqJzxUlGN3lg |c05UwTp5WWu/HkYTcI+xLH+5yRdwaZNfBIJJYzEgF+jewL9rLAY6cVxV6VhqJzxUlGN3lg
skipping to change at line 4548 skipping to change at line 5410
|* Example from section 4.2 |* Example from section 4.2
|* Creator: [JS] |* Creator: [JS]
|>4.2.bin |>4.2.bin
|MCsGCSqGSIb3DQEHAaAeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQu |MCsGCSqGSIb3DQEHAaAeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQu
|<4.2.bin |<4.2.bin
|* Example from section 5.1 |* Example from section 5.1
|* Creator: [JS] |* Creator: [JS]
|>5.1.bin |>5.1.bin
|MIG3BgkqhkiG9w0BBwKggakwgaYCAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAaAeBB |MIIDnwYJKoZIhvcNAQcCoIIDkDCCA4wCAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa
|xUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuMWcwZQIBATAYMBIxEDAOBgNVBAMTB0Nh |AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuoIIC4jCCAt4wggKdoAMCAQICAgDI
|cmxEU1MCAgDIMAkGBSsOAwIaBQAwCQYHKoZIzjgEAQQwMC0CFHCbJ32Z59IMxsUhC0viIb |MAkGByqGSM44BAMwEjEQMA4GA1UEAxMHQ2FybERTUzAeFw05OTA4MTcwMTEwNDlaFw0zOT
|e9jUgpAhUAiywMBstKtQZLqEwOeNE7kOnRn6QA |EyMzEyMzU5NTlaMBMxETAPBgNVBAMTCEFsaWNlRFNTMIIBtjCCASsGByqGSM44BAEwggEe
|AoGBAIGNze2D6gqeOT7CSCij5EeT3Q7XqA7sU8WrhAhP/5Thc0h+DNbzREjR/p+vpKGJL+
|HZMMg23j+bv7dM3F9piuR10DcMkQiVm96nXvn89J8v3UOoi1TxP7AHCEdNXYjDw7Wz41UI
|ddU5dhDEeL3/nbCElzfy5FEbteQJllzzflvbAhUA4kemGkVmuBPG2o+4NyErYov3k80CgY
|AmONAUiTKqOfs+bdlLWWpMdiM5BAI1XPLLGjDDHlBd3ZtZ4s2qBT1YwHuiNrhuB699ikIl
|p/R1z0oIXks+kPht6pzJIYo7dhTpzi5dowfNI4W4LzABfG1JiRGJNkS9+MiVSlNWteL5c+
|waYTYfEX/Cve3RUP+YdMLRgUpgObo2OQOBhAACgYBc47ladRSWC6l63eM/qeysXty9txMR
|NKYWiSgRI9k0hmd1dRMSPUNbb+VRv/qJ8qIbPiR9PQeNW2PIu0WloErjhdbOBoA/6CN+Gv
|Ikq1MauCcNHu8Iv2YUgFxirGX6FYvxuzTU0pY39mFHssQyhPB+QUD9RqdjTjPypeL08oPl
|uKOBgzCBgDAgBgNVHREEGTAXgRVhbGljZURzc0BleGFtcGxlcy5jb20wDAYDVR0TAQH/BA
|IwADAOBgNVHQ8BAf8EBAMCBsAwHwYDVR0jBBgwFoAUcEQ+gi5vh95K03XjPSC8QyuT8R8w
|HQYDVR0OBBYEFL5sobPjwfftQ3CkzhMB4v3jl/7NMAkGByqGSM44BAMDMAAwLQIVAJiwxj
|/PcUdaNalKj8D4JAXoRpSOAhRbn0jAjKHBApxE6umhh8GlfygtuzFnMGUCAQEwGDASMRAw
|DgYDVQQDEwdDYXJsRFNTAgIAyDAJBgUrDgMCGgUAMAkGByqGSM44BAMEMDAtAhQI0EV9Y+
|E57GKwMMIprULqlk+RhgIVAKaG7op6BafgB+b5iL+T+5ZNdtOSAA==
|<5.1.bin |<5.1.bin
|* Example from section 5.2 |* Example from section 5.2
|* Creator: [JS] |* Creator: [JS]
|>5.2.bin |>5.2.bin
|MIIBHgYJKoZIhvcNAQcCoIIBDzCCAQsCAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa |MIIDMAYJKoZIhvcNAQcCoIIDITCCAx0CAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa
|AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuMYHLMIHIAgEBMCYwEjEQMA4GA1UE |AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuoIICDjCCAgowggFzoAMCAQICEEY0
|AxMHQ2FybFJTQQIQRjRrx4AAVrwR024uxBCzsDAJBgUrDgMCGgUAMA0GCSqGSIb3DQEBAQ |a8eAAFa8EdNuLsQQs7AwDQYJKoZIhvcNAQEFBQAwEjEQMA4GA1UEAxMHQ2FybFJTQTAeFw
|UABIGALyOC0vMJX7gMWOtOnb+JmoHldcSRPdPQ1Xu21f6UoYqs48SE9c1gTieV9s8AhnZ1 |05OTA4MTkwNzAwMDBaFw0zOTEyMzEyMzU5NTlaMBMxETAPBgNVBAMTCEFsaWNlUlNBMIGf
|Pyvw59QCZ6f1x40WBKWztefZMvAk7+cgRNWfB8VTJPrOAR0PFxOnKpWdK+QDlRQL6TkNus |MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDgiXM5jdj19eiHdjl/TrAFu1OD3g+3q9x9x3
|5unJ4M6JjmVRPUaG/QB9eisWJM44+v/eDVXcc= |UpDQUubRLfpoYm1NJvqlgp/Jfs+oJRDzCAvrFQnkZE8Sy72DLPxmhvB9mwYKy+7jQJahP1
|9wUFk99eujVW2WH/GX/Jgeb4bOqHQHDvrG0sdJ8t+lU6uZl3AqZIUoxO81c4V3RXXwIDAQ
|ABo2AwXjAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQEAwIGwDAfBgNVHSMEGDAWgBTp4JAn
|rHggeprTTPJCN04irp44uzAdBgNVHQ4EFgQUd9K00bdMioqjzkWdzuw8oDrj/1AwDQYJKo
|ZIhvcNAQEFBQADgYEAUv+zi1QeCL/zbQwSCH2Oy25Z7FaTpkoiQF+LFHl+g0/1P94hlxZY
|cHYysiBRoxofl0iAXIOwuJMLA0Suv76kjAbGReKBCNWJWAwoGy2lixxK49dENNTLU/y6qY
|uqtumww6t08SrxsMY46ocCHhC7mcS+NsAIuhNlNz428zFCcxgxgcswgcgCAQEwJjASMRAw
|DgYDVQQDEwdDYXJsUlNBAhBGNGvHgABWvBHTbi7EELOwMAkGBSsOAwIaBQAwDQYJKoZIhv
|cNAQEBBQAEgYAvI4LS8wlfuAxY606dv4mageV1xJE909DVe7bV/pShiqzjxIT1zWBOJ5X2
|zwCGdnU/K/Dn1AJnp/XHjRYEpbO159ky8CTv5yBE1Z8HxVMk+s4BHQ8XE6cqlZ0r5AOVFA
|vpOQ26zm6cngzomOZVE9Rob9AH16KxYkzjj6/94NVdxw==
|<5.2.bin |<5.2.bin
|* Example from section 5.3 |* Example from section 5.3
|* Creator: [JS] |* Creator: [JS]
|>5.3.bin |>5.3.bin
|MIGXBgkqhkiG9w0BBwKggYkwgYYCAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHATFnMG |MIIDfwYJKoZIhvcNAQcCoIIDcDCCA2wCAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHAa
|UCAQEwGDASMRAwDgYDVQQDEwdDYXJsRFNTAgIAyDAJBgUrDgMCGgUAMAkGByqGSM44BAEE |CCAuIwggLeMIICnaADAgECAgIAyDAJBgcqhkjOOAQDMBIxEDAOBgNVBAMTB0NhcmxEU1Mw
|MDAtAhReXmtpBKJiXYtFslX5dRwSToiIIQIVAKPBSCPgCDVvJSJ6HrYUvOR1kdslAA== |HhcNOTkwODE3MDExMDQ5WhcNMzkxMjMxMjM1OTU5WjATMREwDwYDVQQDEwhBbGljZURTUz
|CCAbYwggErBgcqhkjOOAQBMIIBHgKBgQCBjc3tg+oKnjk+wkgoo+RHk90O16gO7FPFq4QI
|T/+U4XNIfgzW80RI0f6fr6ShiS/h2TDINt4/m7+3TNxfaYrkddA3DJEIlZvep175/PSfL9
|1DqItU8T+wBwhHTV2Iw8O1s+NVCHXVOXYQxHi9/52whJc38uRRG7XkCZZc835b2wIVAOJH
|phpFZrgTxtqPuDchK2KL95PNAoGAJjjQFIkyqjn7Pm3ZS1lqTHYjOQQCNVzyyxowwx5QXd
|2bWeLNqgU9WMB7oja4bgevfYpCJaf0dc9KCF5LPpD4beqcySGKO3YU6c4uXaMHzSOFuC8w
|AXxtSYkRiTZEvfjIlUpTVrXi+XPsGmE2HxF/wr3t0VD/mHTC0YFKYDm6NjkDgYQAAoGAXO
|O5WnUUlgupet3jP6nsrF7cvbcTETSmFokoESPZNIZndXUTEj1DW2/lUb/6ifKiGz4kfT0H
|jVtjyLtFpaBK44XWzgaAP+gjfhryJKtTGrgnDR7vCL9mFIBcYqxl+hWL8bs01NKWN/ZhR7
|LEMoTwfkFA/UanY04z8qXi9PKD5bijgYMwgYAwIAYDVR0RBBkwF4EVYWxpY2VEc3NAZXhh
|bXBsZXMuY29tMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgbAMB8GA1UdIwQYMBaAFH
|BEPoIub4feStN14z0gvEMrk/EfMB0GA1UdDgQWBBS+bKGz48H37UNwpM4TAeL945f+zTAJ
|BgcqhkjOOAQDAzAAMC0CFQCYsMY/z3FHWjWpSo/A+CQF6EaUjgIUW59IwIyhwQKcROrpoY
|fBpX8oLbsxZzBlAgEBMBgwEjEQMA4GA1UEAxMHQ2FybERTUwICAMgwCQYFKw4DAhoFADAJ
|BgcqhkjOOAQDBDAwLAIUFdDc7v/UNluTDc9pPTdFoDSaYzUCFEl1dkwzAAqrkP3vnEeAIf
|FJ6gIVAAA=
|<5.3.bin |<5.3.bin
|* Example from section 5.4 |* Example from section 5.4
|* Creator: [JS] |* Creator: [JS]
|>5.4.bin |>5.4.bin
|MIIIaAYJKoZIhvcNAQcCoIIIWTCCCFUCAQMxCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa |MIIHsAYJKoZIhvcNAQcCoIIHoTCCB50CAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa
|AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuoIIFgTCCApswggJaoAMCAQICAQEw |AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuoIIFgTCCApswggJaoAMCAQICAQEw
|CQYHKoZIzjgEAzASMRAwDgYDVQQDEwdDYXJsRFNTMB4XDTk5MDgxNjIyNTA1MFoXDTM5MT |CQYHKoZIzjgEAzASMRAwDgYDVQQDEwdDYXJsRFNTMB4XDTk5MDgxNjIyNTA1MFoXDTM5MT
|IzMTIzNTk1OVowEjEQMA4GA1UEAxMHQ2FybERTUzCCAbcwggErBgcqhkjOOAQBMIIBHgKB |IzMTIzNTk1OVowEjEQMA4GA1UEAxMHQ2FybERTUzCCAbcwggErBgcqhkjOOAQBMIIBHgKB
|gQC2SRg+ikTBKXGUTAHEEsF6ectUTasegfvGTLMOlAkG6wHUschxS8dFwFAlXZz82uRt0+ |gQC2SRg+ikTBKXGUTAHEEsF6ectUTasegfvGTLMOlAkG6wHUschxS8dFwFAlXZz82uRt0+
|KGSISCfboVlUoW9kbt3faY0rt+igqKuhZ7uVABSJOL6yUVUZdV3I9TDhCpUPxwt80wVP3a |KGSISCfboVlUoW9kbt3faY0rt+igqKuhZ7uVABSJOL6yUVUZdV3I9TDhCpUPxwt80wVP3a
|3qiqIrWhr4vMAojni3Bfua3hCNRtKS3W6QIVAN3BL99Tzgs0YHc+AqS/il2YuRDVAoGADO |3qiqIrWhr4vMAojni3Bfua3hCNRtKS3W6QIVAN3BL99Tzgs0YHc+AqS/il2YuRDVAoGADO
|5Xm0u92rYHanQ3T1V/ne28YQ3rRlk8VgsrWwyRzqViUmnK4W0+vb/+4be5K2E8rcuuReMG |5Xm0u92rYHanQ3T1V/ne28YQ3rRlk8VgsrWwyRzqViUmnK4W0+vb/+4be5K2E8rcuuReMG
|rIwinZxEhwvHzfAc2bVOXXPerw7JHVpR9U9EeTVac6p/RlEfqUIWnEjrinlhtNUvUyJEYx |rIwinZxEhwvHzfAc2bVOXXPerw7JHVpR9U9EeTVac6p/RlEfqUIWnEjrinlhtNUvUyJEYx
|+GuKNYBiX4KcDvuuB18ELEY2VSmwoDgYUAAoGBAJmHdCcDZqCxwK3cLHW74WxEnNohbU1H |+GuKNYBiX4KcDvuuB18ELEY2VSmwoDgYUAAoGBAJmHdCcDZqCxwK3cLHW74WxEnNohbU1H
|bbFiCenYrh7yOrSUsaOOeptxTgCUybQlTrlglhkkAfNiDP51wPvO2GgA4/3VcE/fI5YZBp |bbFiCenYrh7yOrSUsaOOeptxTgCUybQlTrlglhkkAfNiDP51wPvO2GgA4/3VcE/fI5YZBp
skipping to change at line 4608 skipping to change at line 5509
|/5h0wtGBSmA5ujY5A4GEAAKBgFzjuVp1FJYLqXrd4z+p7Kxe3L23ExE0phaJKBEj2TSGZ3 |/5h0wtGBSmA5ujY5A4GEAAKBgFzjuVp1FJYLqXrd4z+p7Kxe3L23ExE0phaJKBEj2TSGZ3
|V1ExI9Q1tv5VG/+onyohs+JH09B41bY8i7RaWgSuOF1s4GgD/oI34a8iSrUxq4Jw0e7wi/ |V1ExI9Q1tv5VG/+onyohs+JH09B41bY8i7RaWgSuOF1s4GgD/oI34a8iSrUxq4Jw0e7wi/
|ZhSAXGKsZfoVi/G7NNTSljf2YUeyxDKE8H5BQP1Gp2NOM/Kl4vTyg+W4o4GDMIGAMCAGA1 |ZhSAXGKsZfoVi/G7NNTSljf2YUeyxDKE8H5BQP1Gp2NOM/Kl4vTyg+W4o4GDMIGAMCAGA1
|UdEQQZMBeBFWFsaWNlRHNzQGV4YW1wbGVzLmNvbTAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB |UdEQQZMBeBFWFsaWNlRHNzQGV4YW1wbGVzLmNvbTAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB
|/wQEAwIGwDAfBgNVHSMEGDAWgBRwRD6CLm+H3krTdeM9ILxDK5PxHzAdBgNVHQ4EFgQUvm |/wQEAwIGwDAfBgNVHSMEGDAWgBRwRD6CLm+H3krTdeM9ILxDK5PxHzAdBgNVHQ4EFgQUvm
|yhs+PB9+1DcKTOEwHi/eOX/s0wCQYHKoZIzjgEAwMwADAtAhUAmLDGP89xR1o1qUqPwPgk |yhs+PB9+1DcKTOEwHi/eOX/s0wCQYHKoZIzjgEAwMwADAtAhUAmLDGP89xR1o1qUqPwPgk
|BehGlI4CFFufSMCMocECnETq6aGHwaV/KC27oYHbMIHYMIGZMAkGByqGSM44BAMwEjEQMA |BehGlI4CFFufSMCMocECnETq6aGHwaV/KC27oYHbMIHYMIGZMAkGByqGSM44BAMwEjEQMA
|4GA1UEAxMHQ2FybERTUxcNOTkwODI3MDcwMDAwWjBpMBMCAgDIFw05OTA4MjIwNzAwMDBa |4GA1UEAxMHQ2FybERTUxcNOTkwODI3MDcwMDAwWjBpMBMCAgDIFw05OTA4MjIwNzAwMDBa
|MBMCAgDJFw05OTA4MjIwNzAwMDBaMBMCAgDTFw05OTA4MjIwNzAwMDBaMBMCAgDSFw05OT |MBMCAgDJFw05OTA4MjIwNzAwMDBaMBMCAgDTFw05OTA4MjIwNzAwMDBaMBMCAgDSFw05OT
|A4MjIwNzAwMDBaMBMCAgDUFw05OTA4MjQwNzAwMDBaMAkGByqGSM44BAMDLwAwLAIUfmVS |A4MjIwNzAwMDBaMBMCAgDUFw05OTA4MjQwNzAwMDBaMAkGByqGSM44BAMDLwAwLAIUfmVS
|djP+NHMX0feW+aDU2G1cfT0CFAJ6W7fVWxjBz4fvftok8yqDnDWhMYIBsTCCAa0CAQOAFL |djP+NHMX0feW+aDU2G1cfT0CFAJ6W7fVWxjBz4fvftok8yqDnDWhMYH6MIH3AgEBMBgwEj
|5sobPjwfftQ3CkzhMB4v3jl/7NMAkGBSsOAwIaBQCgXTAYBgkqhkiG9w0BCQMxCwYJKoZI |EQMA4GA1UEAxMHQ2FybERTUwICAMgwCQYFKw4DAhoFAKBdMBgGCSqGSIb3DQEJAzELBgkq
|hvcNAQcBMBwGCSqGSIb3DQEJBTEPFw05OTA5MTIwMjUxNTNaMCMGCSqGSIb3DQEJBDEWBB |hkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTk5MTAxNTIyMjYxMFowIwYJKoZIhvcNAQkEMR
|RAauwIUnm6bhYCLZ4GKcAilofdSDAJBgcqhkjOOAQBBDAwLQIVALyvBHm3v0Ks67t7wtCM |YEFEBq7AhSebpuFgItngYpwCKWh91IMAkGByqGSM44BAMEMDAuAhUAlwKrgdhJ/cptibRq
|s1Mgg/G8AhRpllVd+3geledbuAVdIRII9V80KQChgeowLwYLKoZIhvcNAQkQAgQxIDAeDB |xQmW7uN2Ni8CFQDHPn57Pdbk0x1vh4sYA/LfGCt3daExMC8GCyqGSIb3DQEJEAIEMSAwHg
|FTTWltZSBFeGFtcGxlIDUuNAYJKoZIhvcNAQcBMIG2BgkqhkiG9w0BCQYxgagwgaUCAQEw |wRU01pbWUgRXhhbXBsZSA1LjQGCSqGSIb3DQEHAQ==
|GDASMRAwDgYDVQQDEwdDYXJsRFNTAgIA0jAJBgUrDgMCGgUAoD8wGAYJKoZIhvcNAQkDMQ
|sGCSqGSIb3DQEHATAjBgkqhkiG9w0BCQQxFgQUc1eRpj6IM25RMYHgEQhGjO5Q41swCQYH
|KoZIzjgEAQQvMC0CFErIQVDpInDG+/kjJaE3tj1eXmc+AhUArLqcuVaOhq4ZKdKN82tItd
|1it8c=
|<5.4.bin |<5.4.bin
|* Example from section 5.5 |* Example from section 5.5
|* Creator: [JS] |* Creator: [JS]
|>5.5.bin |>5.5.bin
|MIIFDwYJKoZIhvcNAQcCoIIFADCCBPwCAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa |MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAaCAJIAEBF
|AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuoIID7TCCAeMwggFQoAMCAQICEEY0 |RoaXMEGCBpcyBzb21lIHNhbXBsZSBjb250ZW50LgAAAAAAAKCCA/0wggHrMIIBVKADAgEC
|a8eAAFa8EdNuLp/yUCAwCQYFKw4DAh0FADASMRAwDgYDVQQDEwdDYXJsUlNBMB4XDTk5MD |AhBGNGvHgABWvBHTbi6f8lAgMA0GCSqGSIb3DQEBBQUAMBIxEDAOBgNVBAMTB0NhcmxSU0
|kxOTAxMDc0NloXDTM5MTIzMTIzNTk1OVowEjEQMA4GA1UEAxMHQ2FybFJTQTCBnzANBgkq |EwHhcNOTkwODE4MDcwMDAwWhcNMzkxMjMxMjM1OTU5WjASMRAwDgYDVQQDEwdDYXJsUlNB
|hkiG9w0BAQEFAAOBjQAwgYkCgYEA5Ev/GLgkV/R3/25ze5NxXLwzGpKSciPYQUbQzRE6BL |MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDkS/8YuCRX9Hf/bnN7k3FcvDMakpJyI9
|OOr4KdvVEeF3rydiwrhjmnvdeNGlPs5ADV6OyiNrHt4lDiMgmKP5+ZJY+4Tqu5fdWWZdoW |hBRtDNEToEs46vgp29UR4XevJ2LCuGOae9140aU+zkANXo7KI2se3iUOIyCYo/n5klj7hO
|oMW+Dq5EW+9e9Kcpy4LdrETpqpOUKQ74GNbIV17ydsTyEWA4uRs8HZfJavECAwEAAaNCME |q7l91ZZl2hagxb4OrkRb7170pynLgt2sROmqk5QpDvgY1shXXvJ2xPIRYDi5Gzwdl8lq8Q
|AwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0OBBYEFOngkCeseCB6 |IDAQABo0IwQDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBhjAdBgNVHQ4EFgQU
|mtNM8kI3TiKunji7MAkGBSsOAwIdBQADgYEAK3G0t2xOCMLqqT1S3nd2nUD3JnBfMKwGeA |6eCQJ6x4IHqa00zyQjdOIq6eOLswDQYJKoZIhvcNAQEFBQADgYEAt57UBNPtKeT/iYkVLk
|qbxyJVw3Jqhp7DVEACU4VhddkPNXG+105LtreMAM4VMjhwmzzucgoij7EbPNC9lxXH61Ix |zbDPBIDzJh7sQE7BJdLf8PZFl+CsPtGP3jVkA3pwe18DgSYVDt790/4wu4YaWkmzzmnpxU
|4VGhPVry6pChmd2L/RgMLIrEiWJ/a2mz8r/exUTj0eGGdFc0aHOQBvqsa5aeX4CQO7wwgg |mraV1tpsO7UtRTWdSQF2+rm5Mfn5axJToPUUYJt9yj7yU2uwN2+t5nTX2/pa6hRBY13Nvs
|ICMIIBb6ADAgECAhBGNGvHgABWvBHTbi7EELOwMAkGBSsOAwIdBQAwEjEQMA4GA1UEAxMH |gOwdpqjVM0GAIwggIKMIIBc6ADAgECAhBGNGvHgABWvBHTbi7EELOwMA0GCSqGSIb3DQEB
|Q2FybFJTQTAeFw05OTA5MTkwMTA4NDdaFw0zOTEyMzEyMzU5NTlaMBMxETAPBgNVBAMTCE |BQUAMBIxEDAOBgNVBAMTB0NhcmxSU0EwHhcNOTkwODE5MDcwMDAwWhcNMzkxMjMxMjM1OT
|FsaWNlUlNBMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDgiXM5jdj19eiHdjl/TrAF |U5WjATMREwDwYDVQQDEwhBbGljZVJTQTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA
|u1OD3g+3q9x9x3UpDQUubRLfpoYm1NJvqlgp/Jfs+oJRDzCAvrFQnkZE8Sy72DLPxmhvB9 |4IlzOY3Y9fXoh3Y5f06wBbtTg94Pt6vcfcd1KQ0FLm0S36aGJtTSb6pYKfyX7PqCUQ8wgL
|mwYKy+7jQJahP19wUFk99eujVW2WH/GX/Jgeb4bOqHQHDvrG0sdJ8t+lU6uZl3AqZIUoxO |6xUJ5GRPEsu9gyz8ZobwfZsGCsvu40CWoT9fcFBZPfXro1Vtlh/xl/yYHm+Gzqh0Bw76xt
|81c4V3RXXwIDAQABo2AwXjAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQEAwIGwDAfBgNVHS |LHSfLfpVOrmZdwKmSFKMTvNXOFd0V18CAwEAAaNgMF4wDAYDVR0TAQH/BAIwADAOBgNVHQ
|MEGDAWgBTp4JAnrHggeprTTPJCN04irp44uzAdBgNVHQ4EFgQUd9K00bdMioqjzkWdzuw8 |8BAf8EBAMCBsAwHwYDVR0jBBgwFoAU6eCQJ6x4IHqa00zyQjdOIq6eOLswHQYDVR0OBBYE
|oDrj/1AwCQYFKw4DAh0FAAOBgQC/NDLm/GqIQX3wXJmhk7dJtwJSHsuErJPXWCsAoZzESE |FHfStNG3TIqKo85Fnc7sPKA64/9QMA0GCSqGSIb3DQEBBQUAA4GBAFL/s4tUHgi/820MEg
|iZ3QLDxgX40iXxo5zJMwGKdg5vd0Ojv+Hms2oEeTnu4enlnVAHiyLcElDj87Q9nuWTnrHN |h9jstuWexWk6ZKIkBfixR5foNP9T/eIZcWWHB2MrIgUaMaH5dIgFyDsLiTCwNErr++pIwG
|M/ngq5hxCfjrsPyc7PGI2K4D0f5g4WIUsaIj0siNGB9e7ptyAifChT0ELjGByzCByAIBAT |xkXigQjViVgMKBstpYscSuPXRDTUy1P8uqmLqrbpsMOrdPEq8bDGOOqHAh4Qu5nEvjbACL
|AmMBIxEDAOBgNVBAMTB0NhcmxSU0ECEEY0a8eAAFa8EdNuLsQQs7AwCQYFKw4DAhoFADAN |oTZTc+NvMxQnMYMYHLMIHIAgEBMCYwEjEQMA4GA1UEAxMHQ2FybFJTQQIQRjRrx4AAVrwR
|BgkqhkiG9w0BAQEFAASBgC8jgtLzCV+4DFjrTp2/iZqB5XXEkT3T0NV7ttX+lKGKrOPEhP |024uxBCzsDAJBgUrDgMCGgUAMA0GCSqGSIb3DQEBAQUABIGALyOC0vMJX7gMWOtOnb+Jmo
|XNYE4nlfbPAIZ2dT8r8OfUAmen9ceNFgSls7Xn2TLwJO/nIETVnwfFUyT6zgEdDxcTpyqV |HldcSRPdPQ1Xu21f6UoYqs48SE9c1gTieV9s8AhnZ1Pyvw59QCZ6f1x40WBKWztefZMvAk
|nSvkA5UUC+k5DbrObpyeDOiY5lUT1Ghv0AfXorFiTOOPr/3g1V3H |7+cgRNWfB8VTJPrOAR0PFxOnKpWdK+QDlRQL6TkNus5unJ4M6JjmVRPUaG/QB9eisWJM44
|+v/eDVXccAAAAAAAA=
|<5.5.bin |<5.5.bin
|* Example from section 5.6 |* Example from section 5.6
|* Creator: [JS] |* Creator: [JS]
|>5.6.bin |>5.6.bin
|MIIBIQYJKoZIhvcNAQcCoIIBEjCCAQ4CAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa |MIIFxQYJKoZIhvcNAQcCoIIFtjCCBbICAQExCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa
|AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuMYHOMGUCAQEwGDASMRAwDgYDVQQD |AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuoIIEoDCCAbowggF5oAMCAQICAgDS
|EwdDYXJsRFNTAgIAyDAJBgUrDgMCGgUAMAkGByqGSM44BAEEMDAsAhQBGkm6dbCnYjb86X |MAkGByqGSM44BAMwEjEQMA4GA1UEAxMHQ2FybERTUzAeFw05OTA4MTcwMjA4MTBaFw0zOT
|2u98VXAoaYjgIUbRuovVEQUSbziZbmuPGvXlXdPSEAADBlAgEBMBgwEjEQMA4GA1UEAxMH |EyMzEyMzU5NTlaMBMxETAPBgNVBAMTCERpYW5lRFNTMIGTMAkGByqGSM44BAEDgYUAAoGB
|Q2FybERTUwICANIwCQYFKw4DAhoFADAJBgcqhkjOOAQBBDAwLQIVAM+G8VRw461aVOz+88 |AKAAF3gs7n6BUy4uYQgPoZtRUhraWahzLxIltgjLyu8qRHaKUgnqvQUi1Q/2/UbXr5k4CQ
|/1DI6eomR/AhRhGp0ZMUegMqegJ9ORA8QH4HKNjgA= |4Ty08s3Rw09xy/Jf8j0ztZ54KXN74xJNgYyPNJOVu34uUnfvyMRXJbfj6PaE3dRnoivo7/
|zNo5KaM55Z9D6VXJ11umgWfMwKrNLsUjo4GDMIGAMCAGA1UdEQQZMBeBFWRpYW5lRHNzQG
|V4YW1wbGVzLmNvbTAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQEAwIGwDAfBgNVHSMEGDAW
|gBRwRD6CLm+H3krTdeM9ILxDK5PxHzAdBgNVHQ4EFgQUZDCZfVzcRQuZOlIvFr9YUN3OKx
|gwCQYHKoZIzjgEAwMwADAtAhR+DAyBF7SaVLLDMOuKxDzCUjaelQIVAMafF8JxS6wuOY09
|EB+as022+RGjMIIC3jCCAp2gAwIBAgICAMgwCQYHKoZIzjgEAzASMRAwDgYDVQQDEwdDYX
|JsRFNTMB4XDTk5MDgxNzAxMTA0OVoXDTM5MTIzMTIzNTk1OVowEzERMA8GA1UEAxMIQWxp
|Y2VEU1MwggG2MIIBKwYHKoZIzjgEATCCAR4CgYEAgY3N7YPqCp45PsJIKKPkR5PdDteoDu
|xTxauECE//lOFzSH4M1vNESNH+n6+koYkv4dkwyDbeP5u/t0zcX2mK5HXQNwyRCJWb3qde
|+fz0ny/dQ6iLVPE/sAcIR01diMPDtbPjVQh11Tl2EMR4vf+dsISXN/LkURu15AmWXPN+W9
|sCFQDiR6YaRWa4E8baj7g3IStii/eTzQKBgCY40BSJMqo5+z5t2UtZakx2IzkEAjVc8ssa
|MMMeUF3dm1nizaoFPVjAe6I2uG4Hr32KQiWn9HXPSgheSz6Q+G3qnMkhijt2FOnOLl2jB8
|0jhbgvMAF8bUmJEYk2RL34yJVKU1a14vlz7BphNh8Rf8K97dFQ/5h0wtGBSmA5ujY5A4GE
|AAKBgFzjuVp1FJYLqXrd4z+p7Kxe3L23ExE0phaJKBEj2TSGZ3V1ExI9Q1tv5VG/+onyoh
|s+JH09B41bY8i7RaWgSuOF1s4GgD/oI34a8iSrUxq4Jw0e7wi/ZhSAXGKsZfoVi/G7NNTS
|ljf2YUeyxDKE8H5BQP1Gp2NOM/Kl4vTyg+W4o4GDMIGAMCAGA1UdEQQZMBeBFWFsaWNlRH
|NzQGV4YW1wbGVzLmNvbTAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQEAwIGwDAfBgNVHSME
|GDAWgBRwRD6CLm+H3krTdeM9ILxDK5PxHzAdBgNVHQ4EFgQUvmyhs+PB9+1DcKTOEwHi/e
|OX/s0wCQYHKoZIzjgEAwMwADAtAhUAmLDGP89xR1o1qUqPwPgkBehGlI4CFFufSMCMocEC
|nETq6aGHwaV/KC27MYHOMGUCAQEwGDASMRAwDgYDVQQDEwdDYXJsRFNTAgIAyDAJBgUrDg
|MCGgUAMAkGByqGSM44BAMEMDAtAhUAyy2Bew0/TYoNtgo8hkiyIltPtBwCFHUAIGeWncXd
|t15HlLIBpVIVDCaiADBlAgEBMBgwEjEQMA4GA1UEAxMHQ2FybERTUwICANIwCQYFKw4DAh
|oFADAJBgcqhkjOOAQDBDAwLQIUH0ucgGL/GXdumvxmRcj9bUl6uoQCFQCE0uTmjLzEEnJ0
|T9lQpKhm+yrpzwA=
|<5.6.bin |<5.6.bin
|* Example from section 5.7 |* Example from section 5.7
|* Creator: [JS] |* Creator: [JS]
|>5.7.bin |>5.7.bin
|MIGzBgkqhkiG9w0BBwKggaUwgaICAQMxCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAaAeBB |MIICxwYJKoZIhvcNAQcCoIICuDCCArQCAQMxCzAJBgUrDgMCGgUAMCsGCSqGSIb3DQEHAa
|xUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuMWMwYQIBA4AUvmyhs+PB9+1DcKTOEwHi |AeBBxUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuoIICDjCCAgowggFzoAMCAQICEEY0
|/eOX/s0wCQYFKw4DAhoFADAJBgcqhkjOOAQBBDAwLQIUT/ZitsqN1syoqMqaycuWliwd2o |a8eAAFa8EdNuLsQQs7AwDQYJKoZIhvcNAQEFBQAwEjEQMA4GA1UEAxMHQ2FybFJTQTAeFw
|8CFQC34p0GHvgiXpP+C6a/8Dwp7RWFgwA= |05OTA4MTkwNzAwMDBaFw0zOTEyMzEyMzU5NTlaMBMxETAPBgNVBAMTCEFsaWNlUlNBMIGf
|MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDgiXM5jdj19eiHdjl/TrAFu1OD3g+3q9x9x3
|UpDQUubRLfpoYm1NJvqlgp/Jfs+oJRDzCAvrFQnkZE8Sy72DLPxmhvB9mwYKy+7jQJahP1
|9wUFk99eujVW2WH/GX/Jgeb4bOqHQHDvrG0sdJ8t+lU6uZl3AqZIUoxO81c4V3RXXwIDAQ
|ABo2AwXjAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQEAwIGwDAfBgNVHSMEGDAWgBTp4JAn
|rHggeprTTPJCN04irp44uzAdBgNVHQ4EFgQUd9K00bdMioqjzkWdzuw8oDrj/1AwDQYJKo
|ZIhvcNAQEFBQADgYEAUv+zi1QeCL/zbQwSCH2Oy25Z7FaTpkoiQF+LFHl+g0/1P94hlxZY
|cHYysiBRoxofl0iAXIOwuJMLA0Suv76kjAbGReKBCNWJWAwoGy2lixxK49dENNTLU/y6qY
|uqtumww6t08SrxsMY46ocCHhC7mcS+NsAIuhNlNz428zFCcxgxYzBhAgEDgBS+bKGz48H3
|7UNwpM4TAeL945f+zTAJBgUrDgMCGgUAMAkGByqGSM44BAMEMDAtAhUAuDiXKFri4/5Obi
|QApjfyDYwfHO4CFGa17jvYK0YL4GTQ9bmtXOwP7XsSAA==
|<5.7.bin |<5.7.bin
|* Example from section 5.8 |* Example from section 5.8
|* Creator: [JS] |* Creator: [JS]
|>5.8.eml |>5.8.eml
|TUlNRS1WZXJzaW9uOiAxLjANCkNvbnRlbnQtVHlwZTogbXVsdGlwYXJ0L3NpZ25lZDsNCg |TUlNRS1WZXJzaW9uOiAxLjANCkNvbnRlbnQtVHlwZTogbXVsdGlwYXJ0L3NpZ25lZDsNCg
|lwcm90b2NvbD0iYXBwbGljYXRpb24veC1wa2NzNy1zaWduYXR1cmUiOw0KCW1pY2FsZz1T |lwcm90b2NvbD0iYXBwbGljYXRpb24veC1wa2NzNy1zaWduYXR1cmUiOw0KCW1pY2FsZz1T
|SEExOw0KCWJvdW5kYXJ5PSItLS0tPV9OZXh0UGFydF8wMDBfMDAwMF8wMUJFRjhCOC40Rj |SEExOw0KCWJvdW5kYXJ5PSItLS0tPV9OZXh0UGFydF8wMDBfMDAwMF8wMUJFRjhCOC40Rj
|dENUY4MCINCg0KLS0tLS0tPV9OZXh0UGFydF8wMDBfMDAwMF8wMUJFRjhCOC40RjdENUY4 |dENUY4MCINCg0KLS0tLS0tPV9OZXh0UGFydF8wMDBfMDAwMF8wMUJFRjhCOC40RjdENUY4
|MA0KDQpUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuDQotLS0tLS09X05leHRQYXJ0Xz |MA0KDQpUaGlzIGlzIHNvbWUgc2FtcGxlIGNvbnRlbnQuDQotLS0tLS09X05leHRQYXJ0Xz
skipping to change at line 4827 skipping to change at line 5758
Blake Ramsdell [BR] Blake Ramsdell [BR]
Paul Hoffman [PH] Paul Hoffman [PH]
Jim Schaad [JS] Jim Schaad [JS]
. . . . . .
The examples are displayed with a modified version of Peter Gutmann's The examples are displayed with a modified version of Peter Gutmann's
"dumpasn1" program. Peter and Jim Schaad and Blake Ramsdell have been "dumpasn1" program. Peter and Jim Schaad and Blake Ramsdell have been
updating the program based on input from the process of writing this updating the program based on input from the process of writing this
draft. draft.
E. Differences between -01 and -02 E. Differences between -02 and -03
Added a whole bunch of examples, all from Jim Schaad. Andrew
Farrell and Blake Ramsdell had contributed some earlier examples
of keys and certs.
3. Added Erica.
3.2: Added DianePrivDHEncrypt and DianePrivDSSSign.
11.2 and 11.3: Made the receipts come from Diane.
B.2: Added binmode because Windows is stupid about I/O. Changed 5.1 through 5.7 to use the right OID.
Renumbered the appendixes. Changed all the RSA certs and CRLs.
F. Editor's Address F. Editor's Address
Paul Hoffman Paul Hoffman
Internet Mail Consortium Internet Mail Consortium
127 Segre Place 127 Segre Place
Santa Cruz, CA 95060 USA Santa Cruz, CA 95060 USA
phoffman@imc.org phoffman@imc.org
 End of changes. 

This html diff was produced by rfcdiff 1.23, available from http://www.levkowetz.com/ietf/tools/rfcdiff/