2.2.2.2 Certificate Encoding
The encoded certificate MUST be formatted as follows.
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Reserved |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
|
Length |
|||||||||||||||||||||||||||||||
|
Value (variable) |
|||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
Reserved (8 bytes): This is a 64-bit unsigned integer in little-endian format that MUST be set to 0x0000000100000020.
Length (4 bytes): This MUST contain the length of the Value field in bytes. It MUST be an unsigned 32-bit number in little-endian format.
Value (variable): This MUST contain the ASN.1 DER encoding of the X.509 certificate of the sender. The certificate MUST contain a public key for use with the RSA encryption algorithm, as specified in [RFC3280] section 4.