http://www.bouncycastle.org/java.html: The Bouncy Castle Java APIs for CMS, PKCS, EAC, TSP, CMP, CRMF, OCSP, and certificate generation. This jar contains APIs for JDK 1.5 to JDK 1.8. The APIs can be used in conjunction with a JCE/JCA provider such as the one provided with the Bouncy Castle Cryptography APIs.
  • The Legion of the Bouncy Castle Inc. 
package org.bouncycastle.cert.bc;

import java.io.IOException;
import java.math.BigInteger;
import java.util.Date;

import org.bouncycastle.asn1.x500.X500Name;
import org.bouncycastle.cert.X509CertificateHolder;
import org.bouncycastle.cert.X509v3CertificateBuilder;
import org.bouncycastle.crypto.params.AsymmetricKeyParameter;
import org.bouncycastle.crypto.util.SubjectPublicKeyInfoFactory;


JCA helper class to allow BC lightweight objects to be used in the construction of a Version 3 certificate.

/**
 * JCA helper class to allow BC lightweight objects to be used in the construction of a Version 3 certificate.
 */
public class BcX509v3CertificateBuilder
    extends X509v3CertificateBuilder
{
    
Initialise the builder using a PublicKey.

Params:
  • issuer – X500Name representing the issuer of this certificate.
  • serial – the serial number for the certificate.
  • notBefore – date before which the certificate is not valid.
  • notAfter – date after which the certificate is not valid.
  • subject – X500Name representing the subject of this certificate.
  • publicKey – the public key to be associated with the certificate.
/**
     * Initialise the builder using a PublicKey.
     *
     * @param issuer X500Name representing the issuer of this certificate.
     * @param serial the serial number for the certificate.
     * @param notBefore date before which the certificate is not valid.
     * @param notAfter date after which the certificate is not valid.
     * @param subject X500Name representing the subject of this certificate.
     * @param publicKey the public key to be associated with the certificate.
     */
    public BcX509v3CertificateBuilder(X500Name issuer, BigInteger serial, Date notBefore, Date notAfter, X500Name subject, AsymmetricKeyParameter publicKey)
        throws IOException
    {
        super(issuer, serial, notBefore, notAfter, subject, SubjectPublicKeyInfoFactory.createSubjectPublicKeyInfo(publicKey));
    }

    
Initialise the builder using the subject from the passed in issuerCert as the issuer, as well as
passing through and converting the other objects provided.

Params:
  • issuerCert – holder for certificate who's subject is the issuer of the certificate we are building.
  • serial – the serial number for the certificate.
  • notBefore – date before which the certificate is not valid.
  • notAfter – date after which the certificate is not valid.
  • subject – principal representing the subject of this certificate.
  • publicKey – the public key to be associated with the certificate.
/**
     * Initialise the builder using the subject from the passed in issuerCert as the issuer, as well as
     * passing through and converting the other objects provided.
     *
     * @param issuerCert holder for certificate who's subject is the issuer of the certificate we are building.
     * @param serial the serial number for the certificate.
     * @param notBefore date before which the certificate is not valid.
     * @param notAfter date after which the certificate is not valid.
     * @param subject principal representing the subject of this certificate.
     * @param publicKey the public key to be associated with the certificate.
     */
    public BcX509v3CertificateBuilder(X509CertificateHolder issuerCert, BigInteger serial, Date notBefore, Date notAfter, X500Name subject, AsymmetricKeyParameter publicKey)
        throws IOException
    {
        super(issuerCert.getSubject(), serial, notBefore, notAfter, subject, SubjectPublicKeyInfoFactory.createSubjectPublicKeyInfo(publicKey));
    }
}