その他令和8年2月27日
付録6 失効リストの公開 (ASN.1 構造とオブジェクト識別子)
出典:官報発行サイトの掲載情報を加工しています。AI 抽出や OCR に誤りが含まれる可能性があるため、 重要な確認は公式原文を基準にしてください。
本文と原文の対照
まず左側の本文を読み、必要な箇所だけ原文ページで確認できる構成です。
← 同日の官報に戻る
原文対照の表示オプション
付録6 失効リストの公開 (ASN.1 構造とオブジェクト識別子)
本文はAI抽出です。左の段落を選ぶと、右側の官報原文画像で該当箇所を照合できます。
CRLReason ::= ENUMERATED {
keyCompromise (1),
cACompromise (2),
affiliationChanged (3),
ceaseationOfOperation (5),
certificateHold (6)
}
Extensions ::= SEQUENCE SIZE (1..MAX) OF Extension
Extension ::= SEQUENCE {
extnId EXTENSION.&id ({ExtensionsSet}),
critical BOOLEAN DEFAULT FALSE,
extnValue OCTET STRING }
ExtensionSet EXTENSION ::= { ... -- extensible
| nonce |
confirmTime |
ocspStatusCode }
EXTENSION ::= CLASS {
&id OBJECT IDENTIFIER UNIQUE,
&extnType }
WITH SYNTAX &extnType
IDENTIFIED BY &id }
nonce EXTENSION ::= {
SYNTAX Nonce
IDENTIFIED BY id-pkix-ocsp-nonce }
Nonce ::= OCTET STRING
confirmTime EXTENSION ::= {
SYNTAX ConfirmTime
IDENTIFIED BY id-registerecert-mg-confirmTime }
ConfirmTime ::= GeneralizedTime
ocspStatusCode EXTENSION ::= {
SYNTAX OcspStatusCode
IDENTIFIED BY id-registerecert-mg-ocspstatuscode }
OcspStatusCode ::= INTEGER
id-pkix OBJECT IDENTIFIER ::=
{iso(1) identified-organization(3) dod(6) internet(1) security(5) mechanisms(5) pkix(7)}
id-ad OBJECT IDENTIFIER ::= { id-pkix 48 }
id-ad-ocsp OBJECT IDENTIFIER ::= { id-ad 1 }
id-pkix-ocsp OBJECT IDENTIFIER ::= { id-ad-ocsp }
id-pkix-ocsp-basic OBJECT IDENTIFIER ::= { id-pkix-ocsp 1 }
id-pkix-ocsp-nonce OBJECT IDENTIFIER ::= { id-pkix-ocsp 2 }
-- The nonce will be identified by the object identifier id-pkix-ocsp-nonce,
-- while the extnValue is the value of the nonce.
id-registerecert OBJECT IDENTIFIER ::= { 1 2 392 100300 1 }
id-registerecert-mg OBJECT IDENTIFIER ::= { id-registerecert 2 }
id-registerecert-mg-confirmTime OBJECT IDENTIFIER ::= { id-registerecert-mg 102 }
id-registerecert-mg-ocspstatuscode OBJECT IDENTIFIER ::= { id-registerecert-mg 103 }
END
付録6 失効リストの公開 (ASN.1 構造とオブジェクト識別子)
1 Explicitly Tagged Module
MOJCorpCertORExplicit { 1 2 392 100300 1 4 51 }
DEFINITIONS EXPLICIT TAGS ::=
BEGIN
-- EXPORTS ALL --
IMPORTS
AlgorithmIdentifier, Name, Time, CertificateSerialNumber
FROM MOJCorpCertExplicit { 1 2 392 100300 1 4 1 }
authorityKeyIdentifier
FROM MOJCorpCertImplicit { 1 2 392 100300 1 4 2 };
CRLNumber, issuingDistributionPoint, reasonCode
FROM MOJCorpCertCRLImplicit { 1 2 392 100300 1 4 52 };
CertificateList ::= SIGNED { TBSCertList }
TBSCertList ::= SEQUENCE {
version
signature
issuer
thisUpdate
nextUpdate
revokedCertificates
userCertificate
revocationDate
crlEntryExtensions
[0] crlExtensions }
Version ::= INTEGER {v2(1)}
EntryExtensions ::= SEQUENCE SIZE (1..MAX) OF EntryExtension
EntryExtension ::= SEQUENCE {
extnId EXTENSION.&id ({EntryExtensionsSet}),
critical BOOLEAN DEFAULT FALSE,
extnValue OCTET STRING }
EntryExtensionsSet EXTENSION ::= { reasonCode }
CRLExtensions ::= SEQUENCE SIZE (1..MAX) OF CRLExtension
CRLExtension ::= SEQUENCE {
extnId EXTENSION.&id ({CRLExtensionsSet}),
critical BOOLEAN DEFAULT FALSE,
extnValue OCTET STRING }
CRLExtensionsSet EXTENSION ::= { authorityKeyIdentifier |
cRLNumber |
issuingDistributionPoint }
EXTENSION ::= CLASS {
&id OBJECT IDENTIFIER UNIQUE,
&extnType }
WITH SYNTAX {
SYNTAX &extnType
IDENTIFIED BY &id }
SIGNED { ToBeSigned } ::= SEQUENCE {
ToBeSigned ToBeSigned,
algorithm AlgorithmIdentifier,
signature BIT STRING
}
Version,
AlgorithmIdentifier.
Name,
Time,
Time,
SEQUENCE OF SEQUENCE {
CertificateSerialNumber,
Time,
EntryExtensions },
END
2 Implicitly Tagged Module
MUDcorpcertcRLImplicit { 1 2 392 100300 1 4 52 }
DEFINITIONS IMPLICIT TAGS ::=
BEGIN
--EXPORTS ALL --
IMPORTS
DistributionPointName
FROM MUDcorpcertImplicit { 1 2 392 100300 1 4 2 }
CRLReason
FROM MUDOCSP { 1 2 392 100300 1 4 31 };
EXTENSION
FROM MUDcorpcertCRLExplicit { 1 2 392 100300 1 4 51 }
reasonCode EXTENSION ::= {
SYNTAX CRLReason
IDENTIFIED BY id-ce-CRLReason }
cRLNumber EXTENSION ::= {
SYNTAX CRLNumber
IDENTIFIED BY id-ce-CRLNumber }
CRLNumber ::= INTEGER (0..MAX)
issuingDistributionPoint EXTENSION ::= {
SYNTAX IssuingDistributionPoint
IDENTIFIED BY id-ce-IssuingDistributionPoint }
IssuingDistributionPoint ::= SEQUENCE {
distributionPoint [0] DistributionPointName,
onlyContainsUserCerts [1] BOOLEAN DEFAULT FALSE,
onlyContainsCACerts [2] BOOLEAN DEFAULT FALSE }
id-ce OBJECT IDENTIFIER ::= {joint-iso-ccitt(2) ds(5) 29}
id-ce-CRLNumber OBJECT IDENTIFIER ::= {id-ce 20}
id-ce-CRLReason OBJECT IDENTIFIER ::= {id-ce 21}
id-ce-IssuingDistributionPoint OBJECT IDENTIFIER ::= {id-ce 28}
END
p.84 / 2
読み込み中...
テキスト領域
選択中
非公開 (PII)