Module: Google::Cloud::Security::PrivateCA::V1::CertificateExtensionConstraints::KnownCertificateExtension
- Defined in:
- proto_docs/google/cloud/security/privateca/v1/resources.rb
Overview
Describes well-known X.509 extensions that can appear in a Certificate, not including the SubjectAltNames extension.
Constant Summary collapse
- KNOWN_CERTIFICATE_EXTENSION_UNSPECIFIED =
Not specified.
0- BASE_KEY_USAGE =
Refers to a certificate's Key Usage extension, as described in RFC 5280 section 4.2.1.3. This corresponds to the KeyUsage.base_key_usage field.
1- EXTENDED_KEY_USAGE =
Refers to a certificate's Extended Key Usage extension, as described in RFC 5280 section 4.2.1.12. This corresponds to the KeyUsage.extended_key_usage message.
2- CA_OPTIONS =
Refers to a certificate's Basic Constraints extension, as described in RFC 5280 section 4.2.1.9. This corresponds to the X509Parameters.ca_options field.
3- POLICY_IDS =
Refers to a certificate's Policy object identifiers, as described in RFC 5280 section 4.2.1.4. This corresponds to the X509Parameters.policy_ids field.
4- AIA_OCSP_SERVERS =
Refers to OCSP servers in a certificate's Authority Information Access extension, as described in RFC 5280 section 4.2.2.1, This corresponds to the X509Parameters.aia_ocsp_servers field.
5- NAME_CONSTRAINTS =
Refers to Name Constraints extension as described in RFC 5280 section 4.2.1.10
6