multipaz/org.multipaz.mdoc.util/MdocUtil/generateDsCertificate

generateDsCertificate

fun generateDsCertificate(iacaCert: X509Cert, iacaKey: EcPrivateKey, dsKey: EcPublicKey, subject: X500Name, serial: ASN1Integer, validFrom: Instant, validUntil: Instant): X509Cert

Generates a Document Signing certificate according to ISO/IEC 18013-5:2021 Annex B.1.4.

Return

a X509Cert with all the required extensions.

Parameters

iacaCert

the IACA certificate.

iacaKey

the private key for the IACA certificate.

dsKey

the public part of the DS key.

subject

the value to use for subject, e.g. "CN=Test DS,C=ZZ".

serial

the serial number to use for the certificate.

validFrom

the point in time the certificate should be valid from.

validUntil

the point in time the certificate should be valid until.