堆栈内存溢出
  简体   繁体   English

从字符串数据获取X509证书的到期日期

[英]Get X509 Certificate expiry date from string data

 原文  2012-07-18 16:54:34       java/ jsp

问题描述

I am trying to get expiry date of x509 certificate from xml file under tag 我正在尝试从标记下的xml文件获取x509证书的到期日期 

<ds:X509Certificate> MBaAFI7JTi5oRslwv2B3MmERGbPKKUsSMFwGA1UdIARVMFMwUQYKKwYBBAEJFQEBADBDMEEGCCsG
AQUFBwIBFjVodHRwOi8vd3d3LmNpc2NvLmNvbS9zZWN1cml0eS9wa2kvcG9saWNpZXMvaW5kZXgu
aHRtbDATBgNVHSUEDDAKBggrBgEFBQcDATANBgkqhkiG9w0BAQUFAAOCAQEAs2DJZwgVLmZqQS2N
3Yp4iGYhZBG6vZSDaiaAg6u1wgrfq/byBd7H3Ei+V9I7MZ1aCh4s3kl6FJ1CoRhMQcM1gbxpCbPP
KAfrMv/5/MH8erMnole7m/MqVHETX1UbLEyagOioqK3cs8MzMKxC+Fdku6Bm+i/6xhUsc6XbrVJl
IHsVBB9+9ZnpjAjC9jj21r04N51cyfp6C37999TaybNEtCJlG0XTHfLbcyX65E9ndVaRd6GYu/d0
xW0MT5bKhA36KhpUROAbPS7rXKKkfCYnMkmImE7Hfvm3vRSahX+ehY1Tx9qJXFv3PYGzbyDbvpjV
2cSUgP/bhGATKSOZuhohrw==  </ds:X509Certificate

> >

I have code that reads it to a string 我有将其读取为字符串的代码 

NodeList nodelist = element.getElementsByTagName("ds:X509Certificate");
Element element1 = (Element) nodelist.item(0);
NodeList certificateItem = element1.getChildNodes();
String certificateValue = "---- BEGIN CERTIFICATE -------- " + "\n" +
"certificateItem.item(0).getNodeValue()" + "\n" + "--- END CERTIFICATE";                            
System.out.print("Certificate data is : " + certificateValue);
InputStream certinputstream = new ByteArrayInputStream(certificateValue.getBytes());
CertificateFactory cf = CertificateFactory.getInstance("X.509");
X509Certificate cert = (X509Certificate)cf.generateCertificate(certinputstream);
System.out.println("Expiry Date : " + cert.getNotAfter());

But I am getting the following error java.security.cert.CertificateParsingException: invalid DER-encoded certificate data at sun.security.x509.X509CertImpl.parse(Unknown Source) at sun.security.x509.X509CertImpl.(Unknown Source) Any ideas ? 但是我收到以下错误java.security.cert.CertificateParsingException:sun.security.x509.X509CertImpl.parse(未知源)处的DER编码证书数据无效(未知源)任何想法? Thanks 谢谢

1 个解决方案

解决方案1
 0 已采纳  2012-07-18 17:03:24

It's not clear whether this is all that's wrong, but you're not using the precise format specified in the CertificateFactory docs: 尚不清楚这是否是所有问题,但是您没有使用CertificateFactory文档中指定的精确格式:

If the certificate is provided in Base64 encoding, it must be bounded at the beginning by -----BEGIN CERTIFICATE-----, and must be bounded at the end by -----END CERTIFICATE-----. 如果证书是以Base64编码提供的,则必须以----- BEGIN CERTIFICATE -----开头,并且必须以----- END CERTIFICATE -----结尾。 。

You've got spaces around the text, the wrong number of dashes, and you don't have dashes after END CERTIFICATE . 文本周围有空格,破折号错误,并且在END CERTIFICATE之后没有破折号。

You may also want to trim the node value as it currently has a couple of spaces after the data. 您可能还需要修剪节点值,因为它当前在数据之后有几个空格。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 从字符串私钥创建 x509 证书 - Create x509 Certificate from String private key 从X509证书获取签名值 - Get the Signature Value from X509 Certificate 如何从 Java X509 证书获取 BasicConstraints 扩展 - How to get BasicConstraints extension from Java X509 certificate 从 Soap Envelope 获取 X509 证书别名 - Get the X509 certificate alias from a Soap Envelope X509证书获得PublicKey - X509 certificate get PublicKey 将数据添加到X509证书 - Adding Data to X509 certificate 修改X509证书 - Modifying X509 certificate 将 x509 证书写入 java 中的 PEM 格式字符串? - Write x509 certificate into PEM formatted string in java? 如何获得Java中的X509证书编码类型 - How to get the x509 certificate encoding type in Java 如何通过DSS获取X509证书的吊销状态? - How to get revocation status of an X509 certificate with DSS?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM