Ceritificate Authority Service V1 API - Module Google::Cloud::Security::PrivateCA::V1::CertificateExtensionConstraints::KnownCertificateExtension (v0.12.0)

Reference documentation and code samples for the Ceritificate Authority Service V1 API module Google::Cloud::Security::PrivateCA::V1::CertificateExtensionConstraints::KnownCertificateExtension.

Describes well-known X.509 extensions that can appear in a Certificate, not including the SubjectAltNames extension.

Constants

KNOWN_CERTIFICATE_EXTENSION_UNSPECIFIED

value: 0
Not specified.

BASE_KEY_USAGE

value: 1
Refers to a certificate's Key Usage extension, as described in RFC 5280 section 4.2.1.3. This corresponds to the KeyUsage.base_key_usage field.

EXTENDED_KEY_USAGE

value: 2
Refers to a certificate's Extended Key Usage extension, as described in RFC 5280 section 4.2.1.12. This corresponds to the KeyUsage.extended_key_usage message.

CA_OPTIONS

value: 3
Refers to a certificate's Basic Constraints extension, as described in RFC 5280 section 4.2.1.9. This corresponds to the X509Parameters.ca_options field.

POLICY_IDS

value: 4
Refers to a certificate's Policy object identifiers, as described in RFC 5280 section 4.2.1.4. This corresponds to the X509Parameters.policy_ids field.

AIA_OCSP_SERVERS

value: 5
Refers to OCSP servers in a certificate's Authority Information Access extension, as described in RFC 5280 section 4.2.2.1, This corresponds to the X509Parameters.aia_ocsp_servers field.

NAME_CONSTRAINTS

value: 6
Refers to Name Constraints extension as described in RFC 5280 section 4.2.1.10