The CRL Distribution points is a list of CRL distribution point.
You need to create a single CRL Distribution points list and add each CRL
distribution point.
Basically the syntax is
cRLDistributionPoints ::= {
CRLDistPointsSyntax
}
CRLDistPointsSyntax ::= SEQUENCE SIZE (1..MAX) OF DistributionPoint
DistributionPoint ::= SEQUENCE {
distributionPoint [0] DistributionPointName OPTIONAL,
reasons [1] ReasonFlags OPTIONAL,
cRLIssuer [2] GeneralNames OPTIONAL
}
DistributionPointName ::= CHOICE {
fullName [0] GeneralNames,
nameRelativeToCRLIssuer [1] RelativeDistinguishedName
}
ReasonFlags ::= BIT STRING {
unused (0),
keyCompromise (1),
cACompromise (2),
affiliationChanged (3),
superseded (4),
cessationOfOperation (5),
certificateHold (6)
}
Regards,
Murali
-----Original Message-----
From: Stephane Spahni [mailto:[EMAIL PROTECTED]]
Sent: Thursday, November 28, 2002 7:55 PM
To: [EMAIL PROTECTED]
Subject: Multiple CRL Distribution Points ?
Hello,
I am trying to generate a certificate with two CRL Distribution points.
But the problem is that I generate two SEQUENCE instead of one containing
the two distribution points. How could I do it correctly ? Do I need to
encode all the stuff at hand ?
Thanks !
Stephane
PS: The reason why I want to use two CRL DP is that I want to provide the
CRL in both DER and BASE64 formats.
--
----------------------------------------------------------------------------
--
Dr. Sc. Stephane Spahni Hopitaux Universitaires de Geneve
eMail: <[EMAIL PROTECTED]> Division d'informatique medicale
(DIM)
Tel: (+41 22) 372 62 78 24 rue Micheli-du-Crest
Fax: (+41 22) 372 61 98 CH-1211 Geneve 4
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
