官報号外第40号(技術仕様書 ASN.1定義)
令和8年2月27日|p.81
左の本文を選ぶと、右側の官報原文画像で該当箇所を照合できます。
}
gemSuspReqContent INFORMATION-ID ::= {
SYNTAX GemmSuspReqContent
IDENTIFIED BY id-registerdeert-mg-gemmsuspreq
}
gempSuspResContent INFORMATION-ID ::= {
SYNTAX GempSuspResContent
IDENTIFIED BY id-registerdeert-mg-gempsuspres
}
gemmInfoReqContent INFORMATION-ID ::= {
SYNTAX GemmInfoReqContent
IDENTIFIED BY id-registerdeert-mg-gemminforeq
}
gempInfoResContent INFORMATION-ID ::= {
SYNTAX GempInfoResContent
IDENTIFIED BY id-registerdeert-mg-gempinfores
}
PKIMessage ::= SEQUENCE {
header PKIHeader,
body PKIBody,
protection [0] PKIProtection OPTIONAL,
extraCerts [1] SEQUENCE SIZE (1..MAX) OF Certificate OPTIONAL
}
}
PKIHeader ::= SEQUENCE {
pvno INTEGER { ietf-version2 (1) },
sender GeneralName,
recipient GeneralName,
protectionAlg [1] AlgorithmIdentifier OPTIONAL,
senderKID [2] KeyIdentifier OPTIONAL,
transactionID [4] OCTET STRING,
senderNonce [5] OCTET STRING,
recipNonce [6] OCTET STRING OPTIONAL
}
PKIBody ::= CHOICE { -- message-specific body elements
genm [21] GenMsgContent, --General Message
genp [22] GenRepContent, --General Response
error [23] ErrorMsgContent --Error Message
PKIProtection ::= BIT STRING
ProtectedPart ::= SEQUENCE {
header PKIHeader,
body PKIBody
}
}
PKIStatus ::= INTEGER {
granted (0),
-- you got exactly what you asked for
rejection (2)
-- you don't get it, more information elsewhere in the message
}
KeyIdentifier ::= OCTET STRING
PKIStatusInfo ::= SEQUENCE {
status PKIStatus
}
}
GenMsgContent ::= SEQUENCE OF InfoTypeAndValue
GenRepContent ::= SEQUENCE OF InfoTypeAndValue
}
ErrorMsgContent ::= SEQUENCE {
pKIStatusInfo PKIStatusInfo
}
id-registerdeert OBJECT IDENTIFIER ::= { 1 2 392 100300 1 }
id-registerdeert-mg OBJECT IDENTIFIER ::= { id-registerdeert 2 }
id-registerdeert-mg-gempsuspreq OBJECT IDENTIFIER ::= { id-registerdeert-mg 1 }
id-registerdeert-mg-gempsuspres OBJECT IDENTIFIER ::= { id-registerdeert-mg 2 }
id-registerdeert-mg-gemminforeq OBJECT IDENTIFIER ::= { id-registerdeert-mg 21 }
id-registerdeert-mg-gempinfores OBJECT IDENTIFIER ::= { id-registerdeert-mg 22 }
GemmSuspReqContent ::= SEQUENCE {
certDetails CertTemplate,
revocationReason ReasonFlags,
suspensionReasonCode INTEGER,
suspensionDetail EncryptedValue -- encrypted Suspdata
}
-- SuspData is made with connection of
-- "suspensionSecretCode" (which is password without tag and length) and
-- hashed "header. PKIHeader".