{"id":3992,"date":"2022-12-20T17:28:38","date_gmt":"2022-12-20T20:28:38","guid":{"rendered":"http:\/\/lode.uno\/linux-man\/index.php\/2022\/12\/20\/x509-man7\/"},"modified":"2022-12-20T17:28:38","modified_gmt":"2022-12-20T20:28:38","slug":"x509-man7","status":"publish","type":"post","link":"https:\/\/lode.uno\/linux-man\/2022\/12\/20\/x509-man7\/","title":{"rendered":"X509 (man7)"},"content":{"rendered":"<h1 align=\"center\">X509<\/h1>\n<p> <a href=\"#NAME\">NAME<\/a><br \/> <a href=\"#SYNOPSIS\">SYNOPSIS<\/a><br \/> <a href=\"#DESCRIPTION\">DESCRIPTION<\/a><br \/> <a href=\"#SEE ALSO\">SEE ALSO<\/a><br \/> <a href=\"#COPYRIGHT\">COPYRIGHT<\/a> <\/p>\n<hr>\n<h2>NAME <a name=\"NAME\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">x509 \u2212 X.509 certificate handling<\/p>\n<h2>SYNOPSIS <a name=\"SYNOPSIS\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">#include <openssl\/x509.h><\/p>\n<h2>DESCRIPTION <a name=\"DESCRIPTION\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">An X.509 certificate is a structured grouping of information about an individual, a device, or anything one can imagine. An X.509 <small>CRL<\/small> (certificate revocation list) is a tool to help determine if a certificate is still valid. The exact definition of those can be found in the X.509 document from ITU-T, or in <small>RFC3280<\/small> from <small>PKIX.<\/small> In OpenSSL, the type X509 is used to express such a certificate, and the type X509_CRL is used to express a <small>CRL.<\/small><\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">A related structure is a certificate request, defined in PKCS#10 from <small>RSA<\/small> Security, Inc, also reflected in <small>RFC2896.<\/small> In OpenSSL, the type X509_REQ is used to express such a certificate request.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">To handle some complex parts of a certificate, there are the types X509_NAME (to express a certificate name), X509_ATTRIBUTE (to express a certificate attribute), X509_EXTENSION (to express a certificate extension) and a few more.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">Finally, there\u2019s the supertype X509_INFO, which can contain a <small>CRL,<\/small> a certificate and a corresponding private key.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>X509_<\/b> <i><small>XXX<\/small><\/i> , <b>d2i_X509_<\/b> <i><small>XXX<\/small><\/i> , and <b>i2d_X509_<\/b> <i><small>XXX<\/small><\/i> functions handle X.509 certificates, with some exceptions, shown below.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>X509_CRL_<\/b> <i><small>XXX<\/small><\/i> , <b>d2i_X509_CRL_<\/b> <i><small>XXX<\/small><\/i> , and <b>i2d_X509_CRL_<\/b> <i><small>XXX<\/small><\/i> functions handle X.509 CRLs.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>X509_REQ_<\/b> <i><small>XXX<\/small><\/i> , <b>d2i_X509_REQ_<\/b> <i><small>XXX<\/small><\/i> , and <b>i2d_X509_REQ_<\/b> <i><small>XXX<\/small><\/i> functions handle PKCS#10 certificate requests.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>X509_NAME_<\/b> <i><small>XXX<\/small><\/i> functions handle certificate names.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>X509_ATTRIBUTE_<\/b> <i><small>XXX<\/small><\/i> functions handle certificate attributes.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>X509_EXTENSION_<\/b> <i><small>XXX<\/small><\/i> functions handle certificate extensions.<\/p>\n<h2>SEE ALSO <a name=\"SEE ALSO\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>X509_NAME_ENTRY_get_object<\/b>(3), <b>X509_NAME_add_entry_by_txt<\/b>(3), <b>X509_NAME_add_entry_by_NID<\/b>(3), <b>X509_NAME_print_ex<\/b>(3), <b>X509_NAME_new<\/b>(3), <b>d2i_X509<\/b>(3), <b>d2i_X509_ALGOR<\/b>(3), <b>d2i_X509_CRL<\/b>(3), <b>d2i_X509_NAME<\/b>(3), <b>d2i_X509_REQ<\/b>(3), <b>d2i_X509_SIG<\/b>(3), <b>X509v3<\/b>(3), <b>crypto<\/b>(7)<\/p>\n<h2>COPYRIGHT <a name=\"COPYRIGHT\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">Copyright 2003\u22122021 The OpenSSL Project Authors. All Rights Reserved.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">Licensed under the OpenSSL license (the &#8220;License&#8221;). You may not use this file except in compliance with the License. You can obtain a copy in the file <small>LICENSE<\/small> in the source distribution or at <https:\/\/www.openssl.org\/source\/license.html>.<\/p>\n<hr>\n","protected":false},"excerpt":{"rendered":"<p>  x509 \u2212 X.509 certificate handling <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[971],"tags":[973,972,1081],"class_list":["post-3992","post","type-post","status-publish","format-standard","hentry","category-7-miscelanea","tag-973","tag-man7","tag-x509"],"gutentor_comment":0,"_links":{"self":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts\/3992","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/comments?post=3992"}],"version-history":[{"count":0,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts\/3992\/revisions"}],"wp:attachment":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/media?parent=3992"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/categories?post=3992"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/tags?post=3992"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}