SysadminsLV .NET API Documentation
X509Name
The name constraints extension, which MUST be used only in a CA certificate, indicates a name space
within which all subject names in subsequent certificates in a certification path MUST be located.
Restrictions apply to the subject distinguished name and apply to subject alternative names.
Restrictions apply only when the specified name form is present. If no name of the type is in the
certificate, the certificate is acceptable. More details about Name constraints extension processing:
RFC 5280.
Definition
Namespace: SysadminsLV.PKI.Cryptography.X509Certificates
Assembly: SysadminsLV.PKI (in SysadminsLV.PKI.dll) Version: 4.0.1
Assembly: SysadminsLV.PKI (in SysadminsLV.PKI.dll) Version: 4.0.1
C#
public sealed class X509NameConstraintsExtension : X509ExtensionVB
Public NotInheritable Class X509NameConstraintsExtension
Inherits X509ExtensionC++
public ref class X509NameConstraintsExtension sealed : public X509ExtensionF#
[<SealedAttribute>]
type X509NameConstraintsExtension =
class
inherit X509Extension
end- Inheritance
- X509Extension X509NameConstraintsExtension
Constructors
| X509NameConstraintsExtension(AsnEncodedData) | Initializes a new instance of X509NameConstraintsExtension class from ASN.1-encoded Name Constraints extension value. Name Constraints extension is always marked critical. |
| X509NameConstraintsExtension(X509AlternativeNameCollection, X509AlternativeNameCollection) | Initializes a new instance of X509NameConstraintsExtension class from a collection of explicitly permitted and excluded subtrees. Name Constraints extension is always marked critical. |
Properties
| ExcludedSubtree | Gets a collection of explicitly disallowed names. Any name matching a restriction in this collection is invalid regardless of information appearing in the PermittedSubtree member. |
| PermittedSubtree | Gets a collection of explicitly allowed names. Any name matching a restriction in this collection is valid only if it is not listed in the ExcludedSubtree collection. member. |
Extension Methods
| ConvertExtension |
Converts default instance of X509Extension class to a specific extension implementation object.
(Defined by X509ExtensionExtensions) |
| Encode |
Encodes current extension to ASN.1-encoded byte array.
(Defined by X509ExtensionExtensions) |