3 keyIdentifier [0] OCTET_STRING OPTIONAL
4 authorityCertIssuer [1] GeneralNames OPTIONAL
5 authorityCertSerialNumber [2] CertificateSerialNumber OPTIONAL
8 SubjectKeyIdentifier OCTET_STRING
26 SEQUENCE of OBJECT_IDENTIFIER
31 notBefore [0] GeneralizedTime OPTIONAL
32 notAfter [1] GeneralizedTime OPTIONAL
35 certificatePoliciesSyntax
36 SEQUENCE of PoliciesInformation
38 PoliciesInformation XXX
40 supportedAlgorithms XXX
43 GeneralNames sequence of GeneralName
47 otherName [0] INSTANCE OF OTHER-NAME
48 rfc882Name [1] IA5String
50 x400Address [3] ORAddress
51 directoryName [4] Name
54 nameAssigner [0] DirectoryString OPTIONAL
55 partyName [1] DirectoryString
57 uniformResourceIdentifier [6] IA5String
58 iPAddress [7] OCTET_STRING
59 registeredID [8] OBJECT_IDENTIFIER
63 GeneralNames sequence of GeneralName
65 subjectDirectoryAttribute SEQUENCE of Attribute
69 cA BOOLEAN default FALSE
70 pathLenConstraint INTEGER OPTIONAL
75 permittedSubtrees [0] sequence of GeneralSubtree OPTIONAL
76 excludedSubtrees [1] sequence of GeneralSubtree OPTIONAL
82 minimum [0] BaseDistance DEFAULT 0
83 maximum [1] BaseDistance OPTIONAL
88 requiredExplicitPolicy [0] SkipCerts OPTIONAL
89 inhibitPolicyMapping [1] SkipCerts OPTIONAL