public interface DirectoryKeyCertificate extends Descriptor
Every directory authority in the version 3 directory protocol uses two keys: a medium-term signing key, and a long-term authority identity key. (Authorities also have a relay identity key used in their role as a relay and by earlier versions of the directory protocol.) The identity key is used from time to time to sign new key certificates containing signing keys. The contained signing key is used to sign key certificates and status documents.
Modifier and Type | Method and Description |
---|---|
java.lang.String |
getAddress()
Return the authority's primary IPv4 address in dotted-quad format,
or null if the certificate does not contain an address.
|
java.lang.String |
getDigestSha1Hex()
Return the SHA-1 certificate digest, encoded as 40 lower-case
hexadecimal characters.
|
java.lang.String |
getDirIdentityKey()
Return the authority's identity key in PEM format.
|
int |
getDirKeyCertificateVersion()
Return the version of this descriptor, which must be 3 or higher.
|
java.lang.String |
getDirKeyCertification()
Return the certificate signature from the initial item
"dir-key-certificate-version" until the final item
"dir-key-certification", signed with the authority identity key.
|
java.lang.String |
getDirKeyCrosscert()
Return the signature of the authority's identity key made using the
authority's signing key, or null if the certificate does not contain
such a signature.
|
long |
getDirKeyExpiresMillis()
Return the time in milliseconds since the epoch after which the
authority's signing key is no longer valid.
|
long |
getDirKeyPublishedMillis()
Return the time in milliseconds since the epoch when the authority's
signing key and this key certificate were generated.
|
java.lang.String |
getDirSigningKey()
Return the authority's signing key in PEM format.
|
java.lang.String |
getFingerprint()
Return a SHA-1 digest of the authority's long-term authority
identity key used for the version 3 directory protocol, encoded as
40 upper-case hexadecimal characters.
|
int |
getPort()
Return the TCP port where this authority accepts directory-related
HTTP connections, or -1 if the certificate does not contain a port.
|
getAnnotations, getDescriptorFile, getRawDescriptorBytes, getRawDescriptorLength, getUnrecognizedLines
int getDirKeyCertificateVersion()
java.lang.String getAddress()
int getPort()
java.lang.String getFingerprint()
java.lang.String getDirIdentityKey()
long getDirKeyPublishedMillis()
long getDirKeyExpiresMillis()
java.lang.String getDirSigningKey()
java.lang.String getDirKeyCrosscert()
java.lang.String getDirKeyCertification()
java.lang.String getDigestSha1Hex()