Interface DirectoryKeyCertificate

All Superinterfaces:
Descriptor, java.io.Serializable

public interface DirectoryKeyCertificate
extends Descriptor
Contains a key certificate in the version 3 directory protocol.

Every directory authority in the version 3 directory protocol uses two keys: a medium-term signing key, and a long-term authority identity key. (Authorities also have a relay identity key used in their role as a relay and by earlier versions of the directory protocol.) The identity key is used from time to time to sign new key certificates containing signing keys. The contained signing key is used to sign key certificates and status documents.

Since:
1.0.0
  • Method Summary

    Modifier and Type Method Description
    java.lang.String getAddress()
    Return the authority's primary IPv4 address in dotted-quad format, or null if the certificate does not contain an address.
    java.lang.String getDigestSha1Hex()
    Return the SHA-1 certificate digest, encoded as 40 lower-case hexadecimal characters.
    java.lang.String getDirIdentityKey()
    Return the authority's identity key in PEM format.
    int getDirKeyCertificateVersion()
    Return the version of this descriptor, which must be 3 or higher.
    java.lang.String getDirKeyCertification()
    Return the certificate signature from the initial item "dir-key-certificate-version" until the final item "dir-key-certification", signed with the authority identity key.
    java.lang.String getDirKeyCrosscert()
    Return the signature of the authority's identity key made using the authority's signing key, or null if the certificate does not contain such a signature.
    long getDirKeyExpiresMillis()
    Return the time in milliseconds since the epoch after which the authority's signing key is no longer valid.
    long getDirKeyPublishedMillis()
    Return the time in milliseconds since the epoch when the authority's signing key and this key certificate were generated.
    java.lang.String getDirSigningKey()
    Return the authority's signing key in PEM format.
    java.lang.String getFingerprint()
    Return a SHA-1 digest of the authority's long-term authority identity key used for the version 3 directory protocol, encoded as 40 upper-case hexadecimal characters.
    int getPort()
    Return the TCP port where this authority accepts directory-related HTTP connections, or -1 if the certificate does not contain a port.
  • Method Details

    • getDirKeyCertificateVersion

      int getDirKeyCertificateVersion()
      Return the version of this descriptor, which must be 3 or higher.
      Since:
      1.0.0
    • getAddress

      java.lang.String getAddress()
      Return the authority's primary IPv4 address in dotted-quad format, or null if the certificate does not contain an address.
      Since:
      1.0.0
    • getPort

      int getPort()
      Return the TCP port where this authority accepts directory-related HTTP connections, or -1 if the certificate does not contain a port.
      Since:
      1.0.0
    • getFingerprint

      java.lang.String getFingerprint()
      Return a SHA-1 digest of the authority's long-term authority identity key used for the version 3 directory protocol, encoded as 40 upper-case hexadecimal characters.
      Since:
      1.0.0
    • getDirIdentityKey

      java.lang.String getDirIdentityKey()
      Return the authority's identity key in PEM format.
      Since:
      1.0.0
    • getDirKeyPublishedMillis

      long getDirKeyPublishedMillis()
      Return the time in milliseconds since the epoch when the authority's signing key and this key certificate were generated.
      Since:
      1.0.0
    • getDirKeyExpiresMillis

      long getDirKeyExpiresMillis()
      Return the time in milliseconds since the epoch after which the authority's signing key is no longer valid.
      Since:
      1.0.0
    • getDirSigningKey

      java.lang.String getDirSigningKey()
      Return the authority's signing key in PEM format.
      Since:
      1.0.0
    • getDirKeyCrosscert

      java.lang.String getDirKeyCrosscert()
      Return the signature of the authority's identity key made using the authority's signing key, or null if the certificate does not contain such a signature.
      Since:
      1.0.0
    • getDirKeyCertification

      java.lang.String getDirKeyCertification()
      Return the certificate signature from the initial item "dir-key-certificate-version" until the final item "dir-key-certification", signed with the authority identity key.
      Since:
      1.0.0
    • getDigestSha1Hex

      java.lang.String getDigestSha1Hex()
      Return the SHA-1 certificate digest, encoded as 40 lower-case hexadecimal characters.
      Since:
      1.7.0