CERT_AUTHORITY_KEY_ID2_INFO

This structure identifies the key used to sign a certificate. It differs from the CERT_AUTHORITY_KEY_ID_INFO structure in that the certificate issuer is a CERT_ALT_NAME_INFO structure instead of a CERT_NAME_BLOB structure. Otherwise, the structures are used in the same way.

The key can be identified by an explicit key identifier, by giving a certificate's issuer and serial number, or by giving both. If both are used, the certificate issuer must ensure that the explicit key identifier, the certificate issuer, and the serial number are consistent.

The CryptDecodeObject function creates an instance of this structure when performed on a CERT_EXTENSION structure's Value member with the structure's pszObjId member set to szOID_AUTHORITY_KEY_IDENTIFIER2.

An instance of this structure can be used as input to the CryptEncodeObject function to create an appropriate CERT_EXTENSION structure.

typedef struct _CERT_AUTHORITY_KEY_ID2_INFO {
CRYPT_DATA_BLOB KeyId;
CERT_ALT_NAME_INFO AuthorityCertIssuer;
CRYPT_INTEGER_BLOB AuthorityCertSerialNumber;
} CERT_AUTHORITY_KEY_ID2_INFO,  *PCERT_AUTHORITY_KEY_ID2_INFO;

Members

  • KeyId
    The CRYPT_DATA_BLOB structure containing a unique identifier of a public key.
  • AuthorityCertIssuer
    The CERT_ALT_NAME_INFO structure that includes the encoded name of the certification authority (CA) that issued the certificate. The cAltEntry member of the structure may be set to zero if the name is not to be used to identify the CA.
  • AuthorityCertSerialNumber
    The CRYPT_INTEGER_BLOB structure that includes the serial number of the certificate associated with the private key used to sign this certificate. For more details, see the CERT_INFO structure.

Requirements

Runs on Versions Defined in Include Link to
Windows CE OS 3.0 or later Wincrypt.h    

Note   This API is part of the complete Windows CE OS package as provided by Microsoft. The functionality of a particular platform is determined by the original equipment manufacturer (OEM) and some devices may not support this API.

See Also

CERT_ALT_NAME_INFO, CERT_AUTHORITY_KEY_ID_INFO, CERT_EXTENSION, CERT_INFO, CERT_NAME_BLOB, CRYPT_DATA_BLOB, CRYPT_INTEGER_BLOB

 Last updated on Tuesday, July 13, 2004

© 1992-2000 Microsoft Corporation. All rights reserved.