RubyGems - r509 - Versions diffs - 0.8 - Mend

r509 0.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (162) hide show

data/README.md +447 -0
data/Rakefile +38 -0
data/bin/r509 +96 -0
data/bin/r509-parse +35 -0
data/doc/R509.html +154 -0
data/doc/R509/Cert.html +3954 -0
data/doc/R509/Cert/Extensions.html +360 -0
data/doc/R509/Cert/Extensions/AuthorityInfoAccess.html +391 -0
data/doc/R509/Cert/Extensions/AuthorityKeyIdentifier.html +148 -0
data/doc/R509/Cert/Extensions/BasicConstraints.html +482 -0
data/doc/R509/Cert/Extensions/CrlDistributionPoints.html +316 -0
data/doc/R509/Cert/Extensions/ExtendedKeyUsage.html +780 -0
data/doc/R509/Cert/Extensions/KeyUsage.html +1230 -0
data/doc/R509/Cert/Extensions/SubjectAlternativeName.html +467 -0
data/doc/R509/Cert/Extensions/SubjectKeyIdentifier.html +216 -0
data/doc/R509/CertificateAuthority.html +126 -0
data/doc/R509/CertificateAuthority/Signer.html +855 -0
data/doc/R509/Config.html +127 -0
data/doc/R509/Config/CaConfig.html +2144 -0
data/doc/R509/Config/CaConfigPool.html +599 -0
data/doc/R509/Config/CaProfile.html +656 -0
data/doc/R509/Config/SubjectItemPolicy.html +578 -0
data/doc/R509/Crl.html +126 -0
data/doc/R509/Crl/Administrator.html +2077 -0
data/doc/R509/Crl/Parser.html +1224 -0
data/doc/R509/Csr.html +2248 -0
data/doc/R509/IOHelpers.html +564 -0
data/doc/R509/MessageDigest.html +396 -0
data/doc/R509/NameSanitizer.html +319 -0
data/doc/R509/Ocsp.html +128 -0
data/doc/R509/Ocsp/Request.html +126 -0
data/doc/R509/Ocsp/Request/Nonce.html +160 -0
data/doc/R509/Ocsp/Response.html +837 -0
data/doc/R509/OidMapper.html +393 -0
data/doc/R509/PrivateKey.html +1647 -0
data/doc/R509/R509Error.html +134 -0
data/doc/R509/Spki.html +1424 -0
data/doc/R509/Subject.html +836 -0
data/doc/R509/Validity.html +160 -0
data/doc/R509/Validity/Checker.html +320 -0
data/doc/R509/Validity/DefaultChecker.html +283 -0
data/doc/R509/Validity/DefaultWriter.html +330 -0
data/doc/R509/Validity/Status.html +561 -0
data/doc/R509/Validity/Writer.html +394 -0
data/doc/_index.html +501 -0
data/doc/class_list.html +53 -0
data/doc/css/common.css +1 -0
data/doc/css/full_list.css +57 -0
data/doc/css/style.css +328 -0
data/doc/file.README.html +534 -0
data/doc/file.r509.html +149 -0
data/doc/file_list.html +58 -0
data/doc/frames.html +28 -0
data/doc/index.html +534 -0
data/doc/js/app.js +208 -0
data/doc/js/full_list.js +173 -0
data/doc/js/jquery.js +4 -0
data/doc/methods_list.html +1932 -0
data/doc/top-level-namespace.html +112 -0
data/lib/r509.rb +22 -0
data/lib/r509/cert.rb +414 -0
data/lib/r509/cert/extensions.rb +309 -0
data/lib/r509/certificateauthority.rb +290 -0
data/lib/r509/config.rb +407 -0
data/lib/r509/crl.rb +379 -0
data/lib/r509/csr.rb +324 -0
data/lib/r509/exceptions.rb +5 -0
data/lib/r509/io_helpers.rb +52 -0
data/lib/r509/messagedigest.rb +49 -0
data/lib/r509/ocsp.rb +85 -0
data/lib/r509/oidmapper.rb +32 -0
data/lib/r509/privatekey.rb +185 -0
data/lib/r509/spki.rb +112 -0
data/lib/r509/subject.rb +133 -0
data/lib/r509/validity.rb +92 -0
data/lib/r509/version.rb +4 -0
data/r509.yaml +73 -0
data/spec/cert/extensions_spec.rb +632 -0
data/spec/cert_spec.rb +321 -0
data/spec/certificate_authority_spec.rb +260 -0
data/spec/config_spec.rb +349 -0
data/spec/crl_spec.rb +215 -0
data/spec/csr_spec.rb +302 -0
data/spec/fixtures.rb +233 -0
data/spec/fixtures/cert1.der +0 -0
data/spec/fixtures/cert1.pem +24 -0
data/spec/fixtures/cert1_public_key_modulus.txt +1 -0
data/spec/fixtures/cert3.p12 +0 -0
data/spec/fixtures/cert3.pem +28 -0
data/spec/fixtures/cert3_key.pem +27 -0
data/spec/fixtures/cert3_key_des3.pem +30 -0
data/spec/fixtures/cert4.pem +14 -0
data/spec/fixtures/cert5.pem +30 -0
data/spec/fixtures/cert6.pem +26 -0
data/spec/fixtures/cert_expired.pem +26 -0
data/spec/fixtures/cert_not_yet_valid.pem +26 -0
data/spec/fixtures/cert_san.pem +27 -0
data/spec/fixtures/cert_san2.pem +22 -0
data/spec/fixtures/config_pool_test_minimal.yaml +15 -0
data/spec/fixtures/config_test.yaml +41 -0
data/spec/fixtures/config_test_engine_key.yaml +7 -0
data/spec/fixtures/config_test_engine_no_key_name.yaml +6 -0
data/spec/fixtures/config_test_minimal.yaml +7 -0
data/spec/fixtures/config_test_password.yaml +7 -0
data/spec/fixtures/config_test_various.yaml +100 -0
data/spec/fixtures/crl_list_file.txt +1 -0
data/spec/fixtures/crl_with_reason.pem +17 -0
data/spec/fixtures/csr1.der +0 -0
data/spec/fixtures/csr1.pem +17 -0
data/spec/fixtures/csr1_key.der +0 -0
data/spec/fixtures/csr1_key.pem +27 -0
data/spec/fixtures/csr1_key_encrypted_des3.pem +30 -0
data/spec/fixtures/csr1_newlines.pem +32 -0
data/spec/fixtures/csr1_no_begin_end.pem +15 -0
data/spec/fixtures/csr1_public_key_modulus.txt +1 -0
data/spec/fixtures/csr2.pem +15 -0
data/spec/fixtures/csr2_key.pem +27 -0
data/spec/fixtures/csr3.pem +16 -0
data/spec/fixtures/csr4.pem +25 -0
data/spec/fixtures/csr_dsa.pem +15 -0
data/spec/fixtures/csr_invalid_signature.pem +13 -0
data/spec/fixtures/dsa_key.pem +20 -0
data/spec/fixtures/key4.pem +27 -0
data/spec/fixtures/key4_encrypted_des3.pem +30 -0
data/spec/fixtures/missing_key_identifier_ca.cer +21 -0
data/spec/fixtures/missing_key_identifier_ca.key +27 -0
data/spec/fixtures/ocsptest.r509.local.pem +27 -0
data/spec/fixtures/ocsptest.r509.local_ocsp_request.der +0 -0
data/spec/fixtures/ocsptest2.r509.local.pem +27 -0
data/spec/fixtures/second_ca.cer +26 -0
data/spec/fixtures/second_ca.key +27 -0
data/spec/fixtures/spkac.der +0 -0
data/spec/fixtures/spkac.txt +1 -0
data/spec/fixtures/spkac_dsa.txt +1 -0
data/spec/fixtures/stca.pem +22 -0
data/spec/fixtures/stca_ocsp_request.der +0 -0
data/spec/fixtures/stca_ocsp_response.der +0 -0
data/spec/fixtures/test1.csr +17 -0
data/spec/fixtures/test_ca.cer +22 -0
data/spec/fixtures/test_ca.key +28 -0
data/spec/fixtures/test_ca.p12 +0 -0
data/spec/fixtures/test_ca_des3.key +30 -0
data/spec/fixtures/test_ca_ocsp.cer +26 -0
data/spec/fixtures/test_ca_ocsp.key +27 -0
data/spec/fixtures/test_ca_ocsp.p12 +0 -0
data/spec/fixtures/test_ca_ocsp_chain.txt +48 -0
data/spec/fixtures/test_ca_ocsp_response.der +0 -0
data/spec/fixtures/test_ca_subroot.cer +26 -0
data/spec/fixtures/test_ca_subroot.key +27 -0
data/spec/fixtures/test_ca_subroot_ocsp.cer +25 -0
data/spec/fixtures/test_ca_subroot_ocsp.key +27 -0
data/spec/fixtures/test_ca_subroot_ocsp_response.der +0 -0
data/spec/fixtures/unknown_oid.csr +17 -0
data/spec/message_digest_spec.rb +89 -0
data/spec/ocsp_spec.rb +111 -0
data/spec/oid_mapper_spec.rb +31 -0
data/spec/privatekey_spec.rb +198 -0
data/spec/spec_helper.rb +14 -0
data/spec/spki_spec.rb +157 -0
data/spec/subject_spec.rb +203 -0
data/spec/validity_spec.rb +98 -0
metadata +257 -0

data/bin/r509 ADDED Viewed

@@ -0,0 +1,96 @@
+#!/usr/bin/ruby
+require 'rubygems'
+require 'r509'
+require 'r509/version'
+require 'openssl'
+subject = OpenSSL::X509::Name.new
+selfsign = 0
+if ARGV[0].nil? then
+    puts "Interactive CSR generation using r509 v#{R509::VERSION}."
+    puts ""
+    puts "You can also call with 1-3 args (string subject, int bit_strength, [optional days selfsign length])"
+    subject = []
+    print "C (US): "
+    c = gets.chomp
+    c = c.empty? ? 'US':c;
+    subject.push ['C',c]
+    print "ST (Illinois): "
+    st = gets.chomp
+    st = st.empty? ? 'Illinois':st;
+    subject.push ['ST',st]
+    print "L (Chicago): "
+    l = gets.chomp
+    l = l.empty? ? 'Chicago':l;
+    subject.push ['L',l]
+    print "O (r509 LLC): "
+    o = gets.chomp
+    o = o.empty? ? 'r509 LLC':o;
+    subject.push ['O',o]
+    print "OU (null by default): "
+    ou = gets.chomp
+    if(!ou.empty?) then
+        subject.push ['OU',ou]
+    end
+    print "CN: "
+    subject.push ['CN',gets.chomp]
+    print "SAN Domains (comma separated):"
+    san_domains = []
+    san_domains = gets.chomp.split(',').collect { |domain| domain.strip }
+    csr = R509::Csr.new(:subject => subject, :bit_strength => 2048, :san_names => san_domains)
+    print "Self-signed cert duration in days (null disables self-sign):"
+    selfsign_input = gets.chomp
+    if selfsign_input.to_i > 0
+        selfsign = selfsign_input.to_i
+    end
+else
+    ARGV[0].split('/').each { |item|
+        if item != '' then
+            value = item.split('=')
+            subject.add_entry(value[0],value[1])
+        end
+    }
+    bit_strength = nil
+    if ARGV.size > 1 then
+        bit_strength = ARGV[1].to_i
+    else
+        bit_strength = 2048
+    end
+    if ARGV.size > 2 and ARGV[2].to_i > 0
+        selfsign = ARGV[2].to_i
+    end
+    csr = R509::Csr.new(:subject => subject, :bit_strength => bit_strength)
+end
+if selfsign > 0
+    ca = R509::CertificateAuthority::Signer.new
+    cert = ca.selfsign(:csr => csr, :not_after => Time.now.to_i+86400*selfsign)
+    puts csr.key.to_pem
+    puts cert
+    puts cert.subject
+    if not cert.san_names.empty?
+        puts "SAN(s): "+cert.san_names.join(", ")
+    end
+else
+    puts csr.key.to_pem
+    puts csr
+    puts csr.subject
+    if not csr.san_names.empty?
+        puts "SAN(s): "+csr.san_names.join(", ")
+    end
+end
+if RUBY_PLATFORM.match('darwin') != nil then
+    if selfsign > 0
+        IO.popen('pbcopy','w').puts cert
+    else
+        IO.popen('pbcopy','w').puts csr
+    end
+end

data/bin/r509-parse ADDED Viewed

@@ -0,0 +1,35 @@
+#!/usr/bin/ruby
+require 'rubygems'
+require 'r509'
+require 'r509/version'
+require 'openssl'
+if ARGV[0].nil? then
+    puts "CSR and certificate parsing using r509 v#{R509::VERSION}."
+    puts "Usage: r509-parse <cert or csr>"
+else
+    begin
+        csr = R509::Csr.load_from_file ARGV[0]
+    rescue
+    end
+    if not csr.nil?
+        puts "Subject: #{csr.subject}"
+        puts "SAN Names: #{csr.san_names.join(" , ")}"
+    else
+        begin
+            cert = R509::Cert.load_from_file ARGV[0]
+        rescue
+        end
+        if not cert.nil?
+            puts "Subject: #{cert.subject}"
+            puts "Issuer: #{cert.issuer}"
+            puts "SAN Names: #{cert.san_names.join(" , ")}"
+            puts "Not Before: #{cert.not_before}"
+            puts "Not After: #{cert.not_after}"
+            puts "Serial (Hex): #{cert.serial.to_s(16).upcase}"
+            puts "Serial (Decimal): #{cert.serial}"
+        else
+            puts "Failed to parse CSR or certificate"
+        end
+    end
+end

data/doc/R509.html ADDED Viewed

@@ -0,0 +1,154 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+  "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>
+  Module: R509
+    &mdash; Documentation by YARD 0.8.0
+</title>
+  <link rel="stylesheet" href="css/style.css" type="text/css" media="screen" charset="utf-8" />
+  <link rel="stylesheet" href="css/common.css" type="text/css" media="screen" charset="utf-8" />
+<script type="text/javascript" charset="utf-8">
+  hasFrames = window.top.frames.main ? true : false;
+  relpath = '';
+  framesUrl = "frames.html#!" + escape(window.location.href);
+</script>
+  <script type="text/javascript" charset="utf-8" src="js/jquery.js"></script>
+  <script type="text/javascript" charset="utf-8" src="js/app.js"></script>
+  </head>
+  <body>
+    <div id="header">
+      <div id="menu">
+    <a href="_index.html">Index (R)</a> &raquo;
+    <span class="title">R509</span>
+  <div class="noframes"><span class="title">(</span><a href="." target="_top">no frames</a><span class="title">)</span></div>
+</div>
+      <div id="search">
+    <a class="full_list_link" id="class_list_link"
+        href="class_list.html">
+      Class List
+    </a>
+    <a class="full_list_link" id="method_list_link"
+        href="method_list.html">
+      Method List
+    </a>
+    <a class="full_list_link" id="file_list_link"
+        href="file_list.html">
+      File List
+    </a>
+</div>
+      <div class="clear"></div>
+    </div>
+    <iframe id="search_frame"></iframe>
+    <div id="content"><h1>Module: R509
+</h1>
+<dl class="box">
+    <dt class="r1 last">Defined in:</dt>
+    <dd class="r1 last">lib/r509.rb<span class="defines">,<br />
+  lib/r509/csr.rb,<br /> lib/r509/crl.rb,<br /> lib/r509/spki.rb,<br /> lib/r509/cert.rb,<br /> lib/r509/config.rb,<br /> lib/r509/version.rb,<br /> lib/r509/subject.rb,<br /> lib/r509/oidmapper.rb,<br /> lib/r509/privatekey.rb,<br /> lib/r509/exceptions.rb,<br /> lib/r509/io_helpers.rb,<br /> lib/r509/messagedigest.rb,<br /> lib/r509/cert/extensions.rb</span>
+</dd>
+</dl>
+<div class="clear"></div>
+<h2>Overview</h2><div class="docstring">
+  <div class="discussion">
+<p>A module for building an easy to use CA. Includes CSR, Certificate, and CRL
+support.</p>
+  </div>
+</div>
+<div class="tags">
+</div><h2>Defined Under Namespace</h2>
+<p class="children">
+      <strong class="modules">Modules:</strong> <span class='object_link'><a href="R509/CertificateAuthority.html" title="R509::CertificateAuthority (module)">CertificateAuthority</a></span>, <span class='object_link'><a href="R509/Config.html" title="R509::Config (module)">Config</a></span>, <span class='object_link'><a href="R509/Crl.html" title="R509::Crl (module)">Crl</a></span>, <span class='object_link'><a href="R509/IOHelpers.html" title="R509::IOHelpers (module)">IOHelpers</a></span>, <span class='object_link'><a href="R509/Ocsp.html" title="R509::Ocsp (module)">Ocsp</a></span>, <span class='object_link'><a href="R509/Validity.html" title="R509::Validity (module)">Validity</a></span>
+      <strong class="classes">Classes:</strong> <span class='object_link'><a href="R509/Cert.html" title="R509::Cert (class)">Cert</a></span>, <span class='object_link'><a href="R509/Csr.html" title="R509::Csr (class)">Csr</a></span>, <span class='object_link'><a href="R509/MessageDigest.html" title="R509::MessageDigest (class)">MessageDigest</a></span>, <span class='object_link'><a href="R509/NameSanitizer.html" title="R509::NameSanitizer (class)">NameSanitizer</a></span>, <span class='object_link'><a href="R509/OidMapper.html" title="R509::OidMapper (class)">OidMapper</a></span>, <span class='object_link'><a href="R509/PrivateKey.html" title="R509::PrivateKey (class)">PrivateKey</a></span>, <span class='object_link'><a href="R509/R509Error.html" title="R509::R509Error (class)">R509Error</a></span>, <span class='object_link'><a href="R509/Spki.html" title="R509::Spki (class)">Spki</a></span>, <span class='object_link'><a href="R509/Subject.html" title="R509::Subject (class)">Subject</a></span>
+</p>
+  <h2>Constant Summary</h2>
+    <dl class="constants">
+        <dt id="VERSION-constant" class="">VERSION =
+          <div class="docstring">
+  <div class="discussion">
+<p>The version of the r509 gem</p>
+  </div>
+</div>
+<div class="tags">
+</div>
+        </dt>
+        <dd><pre class="code"><span class='tstring'><span class='tstring_beg'>&quot;</span><span class='tstring_content'>0.8</span><span class='tstring_end'>&quot;</span></span></pre></dd>
+    </dl>
+</div>
+    <div id="footer">
+  Generated on Tue Oct 23 22:48:01 2012 by
+  <a href="http://yardoc.org" title="Yay! A Ruby Documentation Tool" target="_parent">yard</a>
+  0.8.0 (ruby-1.9.3).
+</div>
+  </body>
+</html>

data/doc/R509/Cert.html ADDED Viewed

@@ -0,0 +1,3954 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+  "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<title>
+  Class: R509::Cert
+    &mdash; Documentation by YARD 0.8.0
+</title>
+  <link rel="stylesheet" href="../css/style.css" type="text/css" media="screen" charset="utf-8" />
+  <link rel="stylesheet" href="../css/common.css" type="text/css" media="screen" charset="utf-8" />
+<script type="text/javascript" charset="utf-8">
+  hasFrames = window.top.frames.main ? true : false;
+  relpath = '../';
+  framesUrl = "../frames.html#!" + escape(window.location.href);
+</script>
+  <script type="text/javascript" charset="utf-8" src="../js/jquery.js"></script>
+  <script type="text/javascript" charset="utf-8" src="../js/app.js"></script>
+  </head>
+  <body>
+    <div id="header">
+      <div id="menu">
+    <a href="../_index.html">Index (C)</a> &raquo;
+    <span class='title'><span class='object_link'><a href="../R509.html" title="R509 (module)">R509</a></span></span>
+     &raquo;
+    <span class="title">Cert</span>
+  <div class="noframes"><span class="title">(</span><a href="." target="_top">no frames</a><span class="title">)</span></div>
+</div>
+      <div id="search">
+    <a class="full_list_link" id="class_list_link"
+        href="../class_list.html">
+      Class List
+    </a>
+    <a class="full_list_link" id="method_list_link"
+        href="../method_list.html">
+      Method List
+    </a>
+    <a class="full_list_link" id="file_list_link"
+        href="../file_list.html">
+      File List
+    </a>
+</div>
+      <div class="clear"></div>
+    </div>
+    <iframe id="search_frame"></iframe>
+    <div id="content"><h1>Class: R509::Cert
+</h1>
+<dl class="box">
+    <dt class="r1">Inherits:</dt>
+    <dd class="r1">
+      <span class="inheritName">Object</span>
+        <ul class="fullTree">
+          <li>Object</li>
+            <li class="next">R509::Cert</li>
+        </ul>
+        <a href="#" class="inheritanceTree">show all</a>
+      </dd>
+      <dt class="r2">Includes:</dt>
+      <dd class="r2"><span class='object_link'><a href="IOHelpers.html" title="R509::IOHelpers (module)">IOHelpers</a></span></dd>
+    <dt class="r1 last">Defined in:</dt>
+    <dd class="r1 last">lib/r509/cert.rb<span class="defines">,<br />
+  lib/r509/cert/extensions.rb</span>
+</dd>
+</dl>
+<div class="clear"></div>
+<h2>Overview</h2><div class="docstring">
+  <div class="discussion">
+<p>The primary certificate object.</p>
+  </div>
+</div>
+<div class="tags">
+</div><h2>Defined Under Namespace</h2>
+<p class="children">
+      <strong class="modules">Modules:</strong> <span class='object_link'><a href="Cert/Extensions.html" title="R509::Cert::Extensions (module)">Extensions</a></span>
+</p>
+  <h2>Instance Attribute Summary <small>(<a href="#" class="summary_toggle">collapse</a>)</small></h2>
+  <ul class="summary">
+      <li class="public ">
+  <span class="summary_signature">
+      <a href="#cert-instance_method" title="#cert (instance method)">- (Object) <strong>cert</strong> </a>
+  </span>
+      <span class="note title readonly">readonly</span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the value of attribute cert.</p>
+</div></span>
+</li>
+      <li class="public ">
+  <span class="summary_signature">
+      <a href="#key-instance_method" title="#key (instance method)">- (Object) <strong>key</strong> </a>
+  </span>
+      <span class="note title readonly">readonly</span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the value of attribute key.</p>
+</div></span>
+</li>
+  </ul>
+    <h2>
+      Class Method Summary
+      <small>(<a href="#" class="summary_toggle">collapse</a>)</small>
+    </h2>
+    <ul class="summary">
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#load_from_file-class_method" title="load_from_file (class method)">+ (R509::Cert) <strong>load_from_file</strong>(filename) </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Helper method to quickly load a cert from the filesystem.</p>
+</div></span>
+</li>
+    </ul>
+    <h2>
+      Instance Method Summary
+      <small>(<a href="#" class="summary_toggle">collapse</a>)</small>
+    </h2>
+    <ul class="summary">
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#authority_info_access-instance_method" title="#authority_info_access (instance method)">- (R509::Cert::Extensions::AuthorityInfoAccess) <strong>authority_info_access</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's AuthorityInfoAccess extension as an R509 extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#authority_key_identifier-instance_method" title="#authority_key_identifier (instance method)">- (R509::Cert::Extensions::AuthorityKeyIdentifier) <strong>authority_key_identifier</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's AuthorityKeyIdentifier extension as an R509
+extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#basic_constraints-instance_method" title="#basic_constraints (instance method)">- (R509::Cert::Extensions::BasicConstraints) <strong>basic_constraints</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's BasicConstraints extension as an R509 extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#bit_strength-instance_method" title="#bit_strength (instance method)">- (Integer) <strong>bit_strength</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the bit strength of the key used to create the certificate.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#crl_distribution_points-instance_method" title="#crl_distribution_points (instance method)">- (R509::Cert::Extensions::CrlDistributionPoints) <strong>crl_distribution_points</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's CrlDistributionPoints extension as an R509 extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#dsa%3F-instance_method" title="#dsa? (instance method)">- (Boolean) <strong>dsa?</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns whether the public key is DSA.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#extended_key_usage-instance_method" title="#extended_key_usage (instance method)">- (R509::Cert::Extensions::ExtendedKeyUsage) <strong>extended_key_usage</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's ExtendedKeyUsage extension as an R509 extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#extensions-instance_method" title="#extensions (instance method)">- (Array) <strong>extensions</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Return the certificate extensions.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#fingerprint-instance_method" title="#fingerprint (instance method)">- (String) <strong>fingerprint</strong>(algorithm = 'sha1') </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the certificate fingerprint with the specified algorithm (default
+sha1).</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#has_private_key%3F-instance_method" title="#has_private_key? (instance method)">- (Boolean) <strong>has_private_key?</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Boolean of whether the object contains a private key.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#initialize-instance_method" title="#initialize (instance method)">- (Cert) <strong>initialize</strong>(opts = {}) </a>
+  </span>
+    <span class="note title constructor">constructor</span>
+    <span class="summary_desc"><div class='inline'>
+<p>A new instance of Cert.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#is_revoked_by_crl%3F-instance_method" title="#is_revoked_by_crl? (instance method)">- (Boolean) <strong>is_revoked_by_crl?</strong>(r509_crl) </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Checks the given CRL for this certificate's serial number.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#issuer-instance_method" title="#issuer (instance method)">- (OpenSSL::X509::Name) <strong>issuer</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the issuer.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#issuer_cn-instance_method" title="#issuer_cn (instance method)">- (String) <strong>issuer_cn</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>The common name (CN) component of the issuer.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#key_algorithm-instance_method" title="#key_algorithm (instance method)">- (String) <strong>key_algorithm</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns key algorithm (RSA or DSA).</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#key_usage-instance_method" title="#key_usage (instance method)">- (R509::Cert::Extensions::KeyUsage) <strong>key_usage</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's KeyUsage extension as an R509 extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#not_after-instance_method" title="#not_after (instance method)">- (Time) <strong>not_after</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns ending (notAfter) of certificate validity period.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#not_before-instance_method" title="#not_before (instance method)">- (Time) <strong>not_before</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns beginning (notBefore) of certificate validity period.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#public_key-instance_method" title="#public_key (instance method)">- (OpenSSL::PKey::RSA) <strong>public_key</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the certificate public key.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#r509_extensions-instance_method" title="#r509_extensions (instance method)">- (Hash) <strong>r509_extensions</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the certificate extensions as a hash of R509::Cert::Extensions
+specific objects.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#rsa%3F-instance_method" title="#rsa? (instance method)">- (Boolean) <strong>rsa?</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns whether the public key is RSA.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#san_names-instance_method" title="#san_names (instance method)">- (Array) <strong>san_names</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>List of SAN DNS names.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#serial-instance_method" title="#serial (instance method)">- (Integer) <strong>serial</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the serial number of the certificate in decimal form.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#signature_algorithm-instance_method" title="#signature_algorithm (instance method)">- (String) <strong>signature_algorithm</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns signature algorithm.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#subject-instance_method" title="#subject (instance method)">- (OpenSSL::X509::Name) <strong>subject</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the subject.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#subject_alternative_name-instance_method" title="#subject_alternative_name (instance method)">- (R509::Cert::Extensions::SubjectAlternativeName) <strong>subject_alternative_name</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's SubjectAlternativeName extension as an R509
+extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#subject_cn-instance_method" title="#subject_cn (instance method)">- (String) <strong>subject_cn</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns the CN component, if any, of the subject.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#subject_component-instance_method" title="#subject_component (instance method)">- (String) <strong>subject_component</strong>(short_name) </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns subject component.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#subject_key_identifier-instance_method" title="#subject_key_identifier (instance method)">- (R509::Cert::Extensions::SubjectKeyIdentifier) <strong>subject_key_identifier</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns this object's SubjectKeyIdentifier extension as an R509 extension.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#subject_names-instance_method" title="#subject_names (instance method)">- (Array) <strong>subject_names</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Return the CN, as well as all the subject alternative names (SANs).</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#to_der-instance_method" title="#to_der (instance method)">- (String) <strong>to_der</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Converts the Cert into the DER format.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#to_pem-instance_method" title="#to_pem (instance method)">- (String) <strong>to_pem</strong> </a>
+      (also: #to_s)
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Converts the Cert into the PEM format.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#unknown_extensions-instance_method" title="#unknown_extensions (instance method)">- (Array) <strong>unknown_extensions</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns an array of OpenSSL::X509::Extension objects representing the
+extensions that do not have R509 implementations.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#valid%3F-instance_method" title="#valid? (instance method)">- (Boolean) <strong>valid?</strong> </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns whether the current time is between the notBefore and notAfter
+times in the certificate.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#valid_at%3F-instance_method" title="#valid_at? (instance method)">- (Boolean) <strong>valid_at?</strong>(time) </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Returns whether the certificate was between its notBefore and notAfter at
+the time provided.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#write_der-instance_method" title="#write_der (instance method)">- (Object) <strong>write_der</strong>(filename_or_io) </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Writes the Cert into the DER format.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#write_pem-instance_method" title="#write_pem (instance method)">- (Object) <strong>write_pem</strong>(filename_or_io) </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Writes the Cert into the PEM format.</p>
+</div></span>
+</li>
+        <li class="public ">
+  <span class="summary_signature">
+      <a href="#write_pkcs12-instance_method" title="#write_pkcs12 (instance method)">- (Object) <strong>write_pkcs12</strong>(filename_or_io, password, friendly_name = 'r509 pkcs12') </a>
+  </span>
+    <span class="summary_desc"><div class='inline'>
+<p>Writes cert and key into PKCS12 format using OpenSSL defaults for
+encryption (des3).</p>
+</div></span>
+</li>
+    </ul>
+  <h3 class="inherited">Methods included from <span class='object_link'><a href="IOHelpers.html" title="R509::IOHelpers (module)">IOHelpers</a></span></h3>
+  <p class="inherited"><span class='object_link'><a href="IOHelpers.html#read_data-instance_method" title="R509::IOHelpers#read_data (method)">#read_data</a></span>, <span class='object_link'><a href="IOHelpers.html#read_data-class_method" title="R509::IOHelpers.read_data (method)">read_data</a></span>, <span class='object_link'><a href="IOHelpers.html#write_data-instance_method" title="R509::IOHelpers#write_data (method)">#write_data</a></span>, <span class='object_link'><a href="IOHelpers.html#write_data-class_method" title="R509::IOHelpers.write_data (method)">write_data</a></span></p>
+<div id="constructor_details" class="method_details_list">
+  <h2>Constructor Details</h2>
+    <div class="method_details first">
+  <h3 class="signature first" id="initialize-instance_method">
+    - (<tt><span class='object_link'><a href="" title="R509::Cert (class)">Cert</a></span></tt>) <strong>initialize</strong>(opts = {})
+</h3><div class="docstring">
+  <div class="discussion">
+<p>A new instance of Cert</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>opts</span>
+        <span class='type'>(<tt>Hash</tt>)</span>
+        <em class="default">(defaults to: <tt>{}</tt>)</em>
+        &mdash;
+        <div class='inline'>
+<p>a customizable set of options</p>
+</div>
+    </li>
+</ul>
+    <p class="tag_title">Options Hash (<tt>opts</tt>):</p>
+    <ul class="option">
+        <li>
+          <span class="name">:cert</span>
+          <span class="type">(<tt>String</tt>, <tt>OpenSSL::X509::Certificate</tt>)</span>
+          <span class="default">
+          </span>
+          &mdash; <div class='inline'>
+<p>a cert</p>
+</div>
+        </li>
+        <li>
+          <span class="name">:key</span>
+          <span class="type">(<tt><span class='object_link'><a href="PrivateKey.html" title="R509::PrivateKey (class)">R509::PrivateKey</a></span></tt>, <tt>String</tt>)</span>
+          <span class="default">
+          </span>
+          &mdash; <div class='inline'>
+<p>optional private key to supply. either an unencrypted PEM/DER string or an
+R509::PrivateKey object (use the latter if you need password/hardware
+support)</p>
+</div>
+        </li>
+        <li>
+          <span class="name">:pkcs12</span>
+          <span class="type">(<tt>String</tt>)</span>
+          <span class="default">
+          </span>
+          &mdash; <div class='inline'>
+<p>a PKCS12 object containing both key and cert</p>
+</div>
+        </li>
+        <li>
+          <span class="name">:password</span>
+          <span class="type">(<tt>String</tt>)</span>
+          <span class="default">
+          </span>
+          &mdash; <div class='inline'>
+<p>password for PKCS12 or private key (if supplied)</p>
+</div>
+        </li>
+    </ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+17
+18
+19
+20
+21
+22
+23
+24
+25
+26
+27
+28
+29
+30
+31
+32
+33
+34
+35
+36
+37
+38
+39
+40
+41
+42
+43
+44
+45
+46</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 17</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_initialize'>initialize</span><span class='lparen'>(</span><span class='id identifier rubyid_opts'>opts</span><span class='op'>=</span><span class='lbrace'>{</span><span class='rbrace'>}</span><span class='rparen'>)</span>
+    <span class='kw'>if</span> <span class='kw'>not</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>Hash</span><span class='rparen'>)</span>
+        <span class='id identifier rubyid_raise'>raise</span> <span class='const'>ArgumentError</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>Must provide a hash of options</span><span class='tstring_end'>'</span></span>
+    <span class='kw'>end</span>
+    <span class='kw'>if</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_has_key?'>has_key?</span><span class='lparen'>(</span><span class='symbol'>:pkcs12</span><span class='rparen'>)</span> <span class='kw'>and</span> <span class='lparen'>(</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_has_key?'>has_key?</span><span class='lparen'>(</span><span class='symbol'>:key</span><span class='rparen'>)</span> <span class='kw'>or</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_has_key?'>has_key?</span><span class='lparen'>(</span><span class='symbol'>:cert</span><span class='rparen'>)</span> <span class='rparen'>)</span>
+        <span class='id identifier rubyid_raise'>raise</span> <span class='const'>ArgumentError</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>&quot;</span><span class='tstring_content'>When providing pkcs12, do not pass cert or key</span><span class='tstring_end'>&quot;</span></span>
+    <span class='kw'>elsif</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_has_key?'>has_key?</span><span class='lparen'>(</span><span class='symbol'>:pkcs12</span><span class='rparen'>)</span>
+        <span class='id identifier rubyid_pkcs12'>pkcs12</span> <span class='op'>=</span> <span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKCS12</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span> <span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:pkcs12</span><span class='rbracket'>]</span><span class='comma'>,</span> <span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:password</span><span class='rbracket'>]</span> <span class='rparen'>)</span>
+        <span class='id identifier rubyid_parse_certificate'>parse_certificate</span><span class='lparen'>(</span><span class='id identifier rubyid_pkcs12'>pkcs12</span><span class='period'>.</span><span class='id identifier rubyid_certificate'>certificate</span><span class='rparen'>)</span>
+        <span class='ivar'>@key</span> <span class='op'>=</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>PrivateKey</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span> <span class='symbol'>:key</span> <span class='op'>=&gt;</span> <span class='id identifier rubyid_pkcs12'>pkcs12</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span> <span class='rparen'>)</span>
+    <span class='kw'>elsif</span> <span class='kw'>not</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_has_key?'>has_key?</span><span class='lparen'>(</span><span class='symbol'>:cert</span><span class='rparen'>)</span>
+        <span class='id identifier rubyid_raise'>raise</span> <span class='const'>ArgumentError</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>Must provide :cert or :pkcs12</span><span class='tstring_end'>'</span></span>
+    <span class='kw'>else</span>
+        <span class='id identifier rubyid_csr_check'>csr_check</span><span class='lparen'>(</span><span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:cert</span><span class='rbracket'>]</span><span class='rparen'>)</span>
+        <span class='id identifier rubyid_parse_certificate'>parse_certificate</span><span class='lparen'>(</span><span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:cert</span><span class='rbracket'>]</span><span class='rparen'>)</span>
+    <span class='kw'>end</span>
+    <span class='kw'>if</span> <span class='id identifier rubyid_opts'>opts</span><span class='period'>.</span><span class='id identifier rubyid_has_key?'>has_key?</span><span class='lparen'>(</span><span class='symbol'>:key</span><span class='rparen'>)</span>
+        <span class='kw'>if</span> <span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:key</span><span class='rbracket'>]</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>PrivateKey</span><span class='rparen'>)</span>
+            <span class='ivar'>@key</span> <span class='op'>=</span> <span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:key</span><span class='rbracket'>]</span>
+        <span class='kw'>else</span>
+            <span class='ivar'>@key</span> <span class='op'>=</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>PrivateKey</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span> <span class='symbol'>:key</span> <span class='op'>=&gt;</span> <span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:key</span><span class='rbracket'>]</span><span class='comma'>,</span> <span class='symbol'>:password</span> <span class='op'>=&gt;</span> <span class='id identifier rubyid_opts'>opts</span><span class='lbracket'>[</span><span class='symbol'>:password</span><span class='rbracket'>]</span> <span class='rparen'>)</span>
+        <span class='kw'>end</span>
+    <span class='kw'>end</span>
+    <span class='kw'>if</span> <span class='kw'>not</span> <span class='ivar'>@key</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+        <span class='kw'>if</span> <span class='kw'>not</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_to_s'>to_s</span> <span class='op'>==</span> <span class='ivar'>@key</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_to_s'>to_s</span> <span class='kw'>then</span>
+            <span class='id identifier rubyid_raise'>raise</span> <span class='const'>R509Error</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>Key does not match cert.</span><span class='tstring_end'>'</span></span>
+        <span class='kw'>end</span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+</div>
+  <div id="instance_attr_details" class="attr_details">
+    <h2>Instance Attribute Details</h2>
+      <span id=""></span>
+      <span id="cert-instance_method"></span>
+      <div class="method_details first">
+  <h3 class="signature first" id="cert-instance_method">
+    - (<tt>Object</tt>) <strong>cert</strong>  <span class="extras">(readonly)</span>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the value of attribute cert</p>
+  </div>
+</div>
+<div class="tags">
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+11
+12
+13</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 11</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_cert'>cert</span>
+  <span class='ivar'>@cert</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <span id=""></span>
+      <span id="key-instance_method"></span>
+      <div class="method_details ">
+  <h3 class="signature " id="key-instance_method">
+    - (<tt>Object</tt>) <strong>key</strong>  <span class="extras">(readonly)</span>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the value of attribute key</p>
+  </div>
+</div>
+<div class="tags">
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+11
+12
+13</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 11</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_key'>key</span>
+  <span class='ivar'>@key</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+  </div>
+  <div id="class_method_details" class="method_details_list">
+    <h2>Class Method Details</h2>
+      <div class="method_details first">
+  <h3 class="signature first" id="load_from_file-class_method">
+    + (<tt><span class='object_link'><a href="" title="R509::Cert (class)">R509::Cert</a></span></tt>) <strong>load_from_file</strong>(filename)
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Helper method to quickly load a cert from the filesystem</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>filename</span>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>Path to file you want to load</p>
+</div>
+    </li>
+</ul>
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="" title="R509::Cert (class)">R509::Cert</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>cert object</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+52
+53
+54</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 52</span>
+<span class='kw'>def</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_load_from_file'>load_from_file</span><span class='lparen'>(</span> <span class='id identifier rubyid_filename'>filename</span> <span class='rparen'>)</span>
+    <span class='kw'>return</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span><span class='symbol'>:cert</span> <span class='op'>=&gt;</span> <span class='const'>IOHelpers</span><span class='period'>.</span><span class='id identifier rubyid_read_data'>read_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename'>filename</span><span class='rparen'>)</span> <span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+  </div>
+  <div id="instance_method_details" class="method_details_list">
+    <h2>Instance Method Details</h2>
+      <div class="method_details first">
+  <h3 class="signature first" id="authority_info_access-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/AuthorityInfoAccess.html" title="R509::Cert::Extensions::AuthorityInfoAccess (class)">R509::Cert::Extensions::AuthorityInfoAccess</a></span></tt>) <strong>authority_info_access</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's AuthorityInfoAccess extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/AuthorityInfoAccess.html" title="R509::Cert::Extensions::AuthorityInfoAccess (class)">R509::Cert::Extensions::AuthorityInfoAccess</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a AuthorityInfoAccess
+extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+385
+386
+387</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 385</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_authority_info_access'>authority_info_access</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>AuthorityInfoAccess</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="authority_key_identifier-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/AuthorityKeyIdentifier.html" title="R509::Cert::Extensions::AuthorityKeyIdentifier (class)">R509::Cert::Extensions::AuthorityKeyIdentifier</a></span></tt>) <strong>authority_key_identifier</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's AuthorityKeyIdentifier extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/AuthorityKeyIdentifier.html" title="R509::Cert::Extensions::AuthorityKeyIdentifier (class)">R509::Cert::Extensions::AuthorityKeyIdentifier</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a AuthorityKeyIdentifier
+extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+369
+370
+371</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 369</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_authority_key_identifier'>authority_key_identifier</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>AuthorityKeyIdentifier</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="basic_constraints-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/BasicConstraints.html" title="R509::Cert::Extensions::BasicConstraints (class)">R509::Cert::Extensions::BasicConstraints</a></span></tt>) <strong>basic_constraints</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's BasicConstraints extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/BasicConstraints.html" title="R509::Cert::Extensions::BasicConstraints (class)">R509::Cert::Extensions::BasicConstraints</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a BasicConstraints extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+337
+338
+339</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 337</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_basic_constraints'>basic_constraints</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>BasicConstraints</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="bit_strength-instance_method">
+    - (<tt>Integer</tt>) <strong>bit_strength</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the bit strength of the key used to create the certificate</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Integer</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>integer value of bit strength</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+230
+231
+232
+233
+234
+235
+236</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 230</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_bit_strength'>bit_strength</span>
+    <span class='kw'>if</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_rsa?'>rsa?</span>
+        <span class='kw'>return</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_n'>n</span><span class='period'>.</span><span class='id identifier rubyid_num_bits'>num_bits</span>
+    <span class='kw'>elsif</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_dsa?'>dsa?</span>
+        <span class='kw'>return</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_p'>p</span><span class='period'>.</span><span class='id identifier rubyid_num_bits'>num_bits</span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="crl_distribution_points-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/CrlDistributionPoints.html" title="R509::Cert::Extensions::CrlDistributionPoints (class)">R509::Cert::Extensions::CrlDistributionPoints</a></span></tt>) <strong>crl_distribution_points</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's CrlDistributionPoints extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/CrlDistributionPoints.html" title="R509::Cert::Extensions::CrlDistributionPoints (class)">R509::Cert::Extensions::CrlDistributionPoints</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a CrlDistributionPoints
+extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+393
+394
+395</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 393</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_crl_distribution_points'>crl_distribution_points</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>CrlDistributionPoints</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="dsa?-instance_method">
+    - (<tt>Boolean</tt>) <strong>dsa?</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns whether the public key is DSA</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Boolean</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>true if the public key is DSA, false otherwise</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+223
+224
+225</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 223</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_dsa?'>dsa?</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKey</span><span class='op'>::</span><span class='const'>DSA</span><span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="extended_key_usage-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/ExtendedKeyUsage.html" title="R509::Cert::Extensions::ExtendedKeyUsage (class)">R509::Cert::Extensions::ExtendedKeyUsage</a></span></tt>) <strong>extended_key_usage</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's ExtendedKeyUsage extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/ExtendedKeyUsage.html" title="R509::Cert::Extensions::ExtendedKeyUsage (class)">R509::Cert::Extensions::ExtendedKeyUsage</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a ExtendedKeyUsage extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+353
+354
+355</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 353</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_extended_key_usage'>extended_key_usage</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>ExtendedKeyUsage</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="extensions-instance_method">
+    - (<tt>Array</tt>) <strong>extensions</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Return the certificate extensions</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Array</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>an array of hashes representing the extensions in the cert</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+295
+296
+297
+298
+299
+300
+301
+302
+303
+304</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 295</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_extensions'>extensions</span>
+    <span class='kw'>if</span> <span class='ivar'>@extensions</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+        <span class='ivar'>@extensions</span> <span class='op'>=</span> <span class='const'>Hash</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span>
+        <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_extensions'>extensions</span><span class='period'>.</span><span class='id identifier rubyid_each'>each</span> <span class='lbrace'>{</span> <span class='op'>|</span><span class='id identifier rubyid_extension'>extension</span><span class='op'>|</span>
+            <span class='id identifier rubyid_hash'>hash</span> <span class='op'>=</span> <span class='lbrace'>{</span><span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>value</span><span class='tstring_end'>'</span></span> <span class='op'>=&gt;</span> <span class='id identifier rubyid_extension'>extension</span><span class='period'>.</span><span class='id identifier rubyid_value'>value</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>critical</span><span class='tstring_end'>'</span></span> <span class='op'>=&gt;</span> <span class='id identifier rubyid_extension'>extension</span><span class='period'>.</span><span class='id identifier rubyid_critical?'>critical?</span><span class='rbrace'>}</span>
+            <span class='ivar'>@extensions</span><span class='lbracket'>[</span><span class='id identifier rubyid_extension'>extension</span><span class='period'>.</span><span class='id identifier rubyid_oid'>oid</span><span class='rbracket'>]</span> <span class='op'>=</span> <span class='id identifier rubyid_hash'>hash</span>
+        <span class='rbrace'>}</span>
+    <span class='kw'>end</span>
+    <span class='ivar'>@extensions</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="fingerprint-instance_method">
+    - (<tt>String</tt>) <strong>fingerprint</strong>(algorithm = 'sha1')
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the certificate fingerprint with the specified algorithm (default
+sha1)</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>algorithm</span>
+        <span class='type'>(<tt>String</tt>)</span>
+        <em class="default">(defaults to: <tt>'sha1'</tt>)</em>
+        &mdash;
+        <div class='inline'>
+<p>Which algorithm to use for the fingerprint. See R509::MessageDigest for
+supported algorithm names</p>
+</div>
+    </li>
+</ul>
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>hex digest of the certificate</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+129
+130
+131
+132
+133
+134</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 129</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_fingerprint'>fingerprint</span><span class='lparen'>(</span><span class='id identifier rubyid_algorithm'>algorithm</span><span class='op'>=</span><span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>sha1</span><span class='tstring_end'>'</span></span><span class='rparen'>)</span>
+    <span class='id identifier rubyid_message_digest'>message_digest</span> <span class='op'>=</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>MessageDigest</span><span class='period'>.</span><span class='id identifier rubyid_new'>new</span><span class='lparen'>(</span><span class='id identifier rubyid_algorithm'>algorithm</span><span class='rparen'>)</span>
+    <span class='id identifier rubyid_md'>md</span> <span class='op'>=</span> <span class='id identifier rubyid_message_digest'>message_digest</span><span class='period'>.</span><span class='id identifier rubyid_digest'>digest</span>
+    <span class='id identifier rubyid_md'>md</span><span class='period'>.</span><span class='id identifier rubyid_update'>update</span><span class='lparen'>(</span><span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_to_der'>to_der</span><span class='rparen'>)</span>
+    <span class='id identifier rubyid_md'>md</span><span class='period'>.</span><span class='id identifier rubyid_to_s'>to_s</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="has_private_key?-instance_method">
+    - (<tt>Boolean</tt>) <strong>has_private_key?</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Boolean of whether the object contains a private key</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Boolean</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>Boolean of whether the object contains a private key</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+168
+169
+170
+171
+172
+173
+174</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 168</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_has_private_key?'>has_private_key?</span>
+    <span class='kw'>if</span> <span class='kw'>not</span> <span class='ivar'>@key</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+        <span class='kw'>true</span>
+    <span class='kw'>else</span>
+        <span class='kw'>false</span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="is_revoked_by_crl?-instance_method">
+    - (<tt>Boolean</tt>) <strong>is_revoked_by_crl?</strong>(r509_crl)
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Checks the given CRL for this certificate's serial number. Note that this
+does NOT check to verify that the CRL you're checking is signed by the same
+CA as the cert so do that check yourself</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>r509_crl</span>
+        <span class='type'>(<tt><span class='object_link'><a href="Crl.html" title="R509::Crl (module)">R509::Crl</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>A CRL from the CA that issued this certificate.</p>
+</div>
+    </li>
+</ul>
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Boolean</tt>)</span>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+288
+289
+290</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 288</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_is_revoked_by_crl?'>is_revoked_by_crl?</span><span class='lparen'>(</span> <span class='id identifier rubyid_r509_crl'>r509_crl</span> <span class='rparen'>)</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_crl'>r509_crl</span><span class='period'>.</span><span class='id identifier rubyid_revoked?'>revoked?</span><span class='lparen'>(</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_serial'>serial</span> <span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="issuer-instance_method">
+    - (<tt>OpenSSL::X509::Name</tt>) <strong>issuer</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the issuer</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>OpenSSL::X509::Name</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>issuer object. Can be parsed as string easily</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+109
+110
+111</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 109</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_issuer'>issuer</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_issuer'>issuer</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="issuer_cn-instance_method">
+    - (<tt>String</tt>) <strong>issuer_cn</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>The common name (CN) component of the issuer</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The common name (CN) component of the issuer</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+114
+115
+116
+117
+118
+119
+120
+121
+122
+123</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 114</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_issuer_cn'>issuer_cn</span>
+    <span class='kw'>return</span> <span class='kw'>nil</span> <span class='kw'>if</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_issuer'>issuer</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+    <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_issuer'>issuer</span><span class='period'>.</span><span class='id identifier rubyid_to_a'>to_a</span><span class='period'>.</span><span class='id identifier rubyid_each'>each</span> <span class='kw'>do</span> <span class='op'>|</span><span class='id identifier rubyid_part'>part</span><span class='comma'>,</span> <span class='id identifier rubyid_value'>value</span><span class='comma'>,</span> <span class='id identifier rubyid_length'>length</span><span class='op'>|</span>
+        <span class='kw'>return</span> <span class='id identifier rubyid_value'>value</span> <span class='kw'>if</span> <span class='id identifier rubyid_part'>part</span><span class='period'>.</span><span class='id identifier rubyid_upcase'>upcase</span> <span class='op'>==</span> <span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>CN</span><span class='tstring_end'>'</span></span>
+    <span class='kw'>end</span>
+    <span class='comment'># return nil if we didn't find a CN part
+</span>    <span class='kw'>return</span> <span class='kw'>nil</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="key_algorithm-instance_method">
+    - (<tt>String</tt>) <strong>key_algorithm</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns key algorithm (RSA or DSA)</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>value of the key algorithm. RSA or DSA</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+248
+249
+250
+251
+252
+253
+254</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 248</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_key_algorithm'>key_algorithm</span>
+    <span class='kw'>if</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_rsa?'>rsa?</span>
+        <span class='tstring'><span class='tstring_beg'>&quot;</span><span class='tstring_content'>RSA</span><span class='tstring_end'>&quot;</span></span>
+    <span class='kw'>elsif</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_dsa?'>dsa?</span>
+        <span class='tstring'><span class='tstring_beg'>&quot;</span><span class='tstring_content'>DSA</span><span class='tstring_end'>&quot;</span></span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="key_usage-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/KeyUsage.html" title="R509::Cert::Extensions::KeyUsage (class)">R509::Cert::Extensions::KeyUsage</a></span></tt>) <strong>key_usage</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's KeyUsage extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/KeyUsage.html" title="R509::Cert::Extensions::KeyUsage (class)">R509::Cert::Extensions::KeyUsage</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a KeyUsage extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+345
+346
+347</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 345</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_key_usage'>key_usage</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>KeyUsage</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="not_after-instance_method">
+    - (<tt>Time</tt>) <strong>not_after</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns ending (notAfter) of certificate validity period</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Time</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>time object</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+95
+96
+97</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 95</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_not_after'>not_after</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_not_after'>not_after</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="not_before-instance_method">
+    - (<tt>Time</tt>) <strong>not_before</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns beginning (notBefore) of certificate validity period</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Time</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>time object</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+81
+82
+83</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 81</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_not_before'>not_before</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_not_before'>not_before</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="public_key-instance_method">
+    - (<tt>OpenSSL::PKey::RSA</tt>) <strong>public_key</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the certificate public key</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>OpenSSL::PKey::RSA</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>public key object</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+102
+103
+104</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 102</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_public_key'>public_key</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="r509_extensions-instance_method">
+    - (<tt>Hash</tt>) <strong>r509_extensions</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the certificate extensions as a hash of R509::Cert::Extensions
+specific objects.</p>
+<p>R509::Cert::Extensions module, each specific to the extension. The hash is
+keyed with the R509 extension class. Extensions without an R509
+implementation are ignored (see #get_unknown_extensions).</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Hash</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>A hash, in which the values are classes from the</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+313
+314
+315
+316
+317
+318
+319</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 313</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span>
+    <span class='kw'>if</span> <span class='ivar'>@r509_extensions</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+        <span class='ivar'>@r509_extensions</span> <span class='op'>=</span> <span class='const'>Extensions</span><span class='period'>.</span><span class='id identifier rubyid_wrap_openssl_extensions'>wrap_openssl_extensions</span><span class='lparen'>(</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_cert'>cert</span><span class='period'>.</span><span class='id identifier rubyid_extensions'>extensions</span> <span class='rparen'>)</span>
+    <span class='kw'>end</span>
+    <span class='kw'>return</span> <span class='ivar'>@r509_extensions</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="rsa?-instance_method">
+    - (<tt>Boolean</tt>) <strong>rsa?</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns whether the public key is RSA</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Boolean</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>true if the public key is RSA, false otherwise</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+216
+217
+218</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 216</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_rsa?'>rsa?</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_public_key'>public_key</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKey</span><span class='op'>::</span><span class='const'>RSA</span><span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="san_names-instance_method">
+    - (<tt>Array</tt>) <strong>san_names</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>List of SAN DNS names</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Array</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>list of SAN DNS names</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+177
+178
+179
+180
+181
+182
+183</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 177</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_san_names'>san_names</span>
+    <span class='kw'>if</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_subject_alternative_name'>subject_alternative_name</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+        <span class='kw'>return</span> <span class='lbracket'>[</span><span class='rbracket'>]</span>
+    <span class='kw'>else</span>
+        <span class='kw'>return</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_subject_alternative_name'>subject_alternative_name</span><span class='period'>.</span><span class='id identifier rubyid_dns_names'>dns_names</span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="serial-instance_method">
+    - (<tt>Integer</tt>) <strong>serial</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the serial number of the certificate in decimal form</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Integer</tt>)</span>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+88
+89
+90</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 88</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_serial'>serial</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_serial'>serial</span><span class='period'>.</span><span class='id identifier rubyid_to_i'>to_i</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="signature_algorithm-instance_method">
+    - (<tt>String</tt>) <strong>signature_algorithm</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns signature algorithm</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>value of the signature algorithm. E.g. sha1WithRSAEncryption,
+sha256WithRSAEncryption, md5WithRSAEncryption</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+241
+242
+243</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 241</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_signature_algorithm'>signature_algorithm</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_signature_algorithm'>signature_algorithm</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="subject-instance_method">
+    - (<tt>OpenSSL::X509::Name</tt>) <strong>subject</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the subject</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>OpenSSL::X509::Name</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>subject object. Can be parsed as string easily</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+163
+164
+165</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 163</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_subject'>subject</span>
+    <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_subject'>subject</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="subject_alternative_name-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/SubjectAlternativeName.html" title="R509::Cert::Extensions::SubjectAlternativeName (class)">R509::Cert::Extensions::SubjectAlternativeName</a></span></tt>) <strong>subject_alternative_name</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's SubjectAlternativeName extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/SubjectAlternativeName.html" title="R509::Cert::Extensions::SubjectAlternativeName (class)">R509::Cert::Extensions::SubjectAlternativeName</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a SubjectAlternativeName
+extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+377
+378
+379</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 377</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_subject_alternative_name'>subject_alternative_name</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>SubjectAlternativeName</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="subject_cn-instance_method">
+    - (<tt>String</tt>) <strong>subject_cn</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns the CN component, if any, of the subject</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+188
+189
+190</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 188</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_subject_cn'>subject_cn</span><span class='lparen'>(</span><span class='rparen'>)</span>
+    <span class='kw'>return</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_subject_component'>subject_component</span><span class='lparen'>(</span><span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>CN</span><span class='tstring_end'>'</span></span><span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="subject_component-instance_method">
+    - (<tt>String</tt>) <strong>subject_component</strong>(short_name)
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns subject component</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>value of the subject component requested</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+195
+196
+197
+198
+199</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 195</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_subject_component'>subject_component</span> <span class='id identifier rubyid_short_name'>short_name</span>
+    <span class='id identifier rubyid_match'>match</span> <span class='op'>=</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_subject'>subject</span><span class='period'>.</span><span class='id identifier rubyid_to_a'>to_a</span><span class='period'>.</span><span class='id identifier rubyid_find'>find</span> <span class='lbrace'>{</span> <span class='op'>|</span><span class='id identifier rubyid_x'>x</span><span class='op'>|</span> <span class='id identifier rubyid_x'>x</span><span class='lbracket'>[</span><span class='int'>0</span><span class='rbracket'>]</span> <span class='op'>==</span> <span class='id identifier rubyid_short_name'>short_name</span> <span class='rbrace'>}</span>
+    <span class='kw'>return</span> <span class='kw'>nil</span> <span class='kw'>if</span> <span class='id identifier rubyid_match'>match</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_match'>match</span><span class='lbracket'>[</span><span class='int'>1</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="subject_key_identifier-instance_method">
+    - (<tt><span class='object_link'><a href="Cert/Extensions/SubjectKeyIdentifier.html" title="R509::Cert::Extensions::SubjectKeyIdentifier (class)">R509::Cert::Extensions::SubjectKeyIdentifier</a></span></tt>) <strong>subject_key_identifier</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns this object's SubjectKeyIdentifier extension as an R509 extension</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt><span class='object_link'><a href="Cert/Extensions/SubjectKeyIdentifier.html" title="R509::Cert::Extensions::SubjectKeyIdentifier (class)">R509::Cert::Extensions::SubjectKeyIdentifier</a></span></tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>The object, or nil if this cert does not have a SubjectKeyIdentifier
+extension.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+361
+362
+363</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 361</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_subject_key_identifier'>subject_key_identifier</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_r509_extensions'>r509_extensions</span><span class='lbracket'>[</span><span class='const'>R509</span><span class='op'>::</span><span class='const'>Cert</span><span class='op'>::</span><span class='const'>Extensions</span><span class='op'>::</span><span class='const'>SubjectKeyIdentifier</span><span class='rbracket'>]</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="subject_names-instance_method">
+    - (<tt>Array</tt>) <strong>subject_names</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Return the CN, as well as all the subject alternative names (SANs).</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Array</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>the array of names. Returns an empty array if there are no names, at all.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+205
+206
+207
+208
+209
+210
+211</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 205</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_subject_names'>subject_names</span>
+    <span class='id identifier rubyid_ret'>ret</span> <span class='op'>=</span> <span class='lbracket'>[</span><span class='rbracket'>]</span>
+    <span class='id identifier rubyid_ret'>ret</span> <span class='op'>&lt;&lt;</span> <span class='id identifier rubyid_subject_cn'>subject_cn</span> <span class='kw'>unless</span> <span class='id identifier rubyid_subject_cn'>subject_cn</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+    <span class='id identifier rubyid_ret'>ret</span><span class='period'>.</span><span class='id identifier rubyid_concat'>concat</span><span class='lparen'>(</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_san_names'>san_names</span> <span class='rparen'>)</span>
+    <span class='kw'>return</span> <span class='id identifier rubyid_ret'>ret</span><span class='period'>.</span><span class='id identifier rubyid_sort'>sort</span><span class='period'>.</span><span class='id identifier rubyid_uniq'>uniq</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="to_der-instance_method">
+    - (<tt>String</tt>) <strong>to_der</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Converts the Cert into the DER format</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>the Cert converted into DER format.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+72
+73
+74
+75
+76</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 72</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_to_der'>to_der</span>
+    <span class='kw'>if</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>X509</span><span class='op'>::</span><span class='const'>Certificate</span><span class='rparen'>)</span>
+        <span class='kw'>return</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_to_der'>to_der</span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="to_pem-instance_method">
+    - (<tt>String</tt>) <strong>to_pem</strong>
+    <span class="aliases">Also known as:
+    <span class="names"><span id='to_s-instance_method'>to_s</span></span>
+    </span>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Converts the Cert into the PEM format</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>the Cert converted into PEM format.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+61
+62
+63
+64
+65</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 61</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_to_pem'>to_pem</span>
+    <span class='kw'>if</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>X509</span><span class='op'>::</span><span class='const'>Certificate</span><span class='rparen'>)</span>
+        <span class='kw'>return</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_to_pem'>to_pem</span><span class='period'>.</span><span class='id identifier rubyid_chomp'>chomp</span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="unknown_extensions-instance_method">
+    - (<tt>Array</tt>) <strong>unknown_extensions</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns an array of OpenSSL::X509::Extension objects representing the
+extensions that do not have R509 implementations.</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Array</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>An array of OpenSSL::X509::Extension objects.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+325
+326
+327</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 325</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_unknown_extensions'>unknown_extensions</span>
+    <span class='kw'>return</span> <span class='const'>Extensions</span><span class='period'>.</span><span class='id identifier rubyid_get_unknown_extensions'>get_unknown_extensions</span><span class='lparen'>(</span> <span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_cert'>cert</span><span class='period'>.</span><span class='id identifier rubyid_extensions'>extensions</span> <span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="valid?-instance_method">
+    - (<tt>Boolean</tt>) <strong>valid?</strong>
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns whether the current time is between the notBefore and notAfter
+times in the certificate.</p>
+  </div>
+</div>
+<div class="tags">
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Boolean</tt>)</span>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+140
+141
+142</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 140</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_valid?'>valid?</span>
+    <span class='id identifier rubyid_valid_at?'>valid_at?</span><span class='lparen'>(</span><span class='const'>Time</span><span class='period'>.</span><span class='id identifier rubyid_now'>now</span><span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="valid_at?-instance_method">
+    - (<tt>Boolean</tt>) <strong>valid_at?</strong>(time)
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Returns whether the certificate was between its notBefore and notAfter at
+the time provided</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>time</span>
+        <span class='type'>(<tt>Time</tt>, <tt>Integer</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>Time object or integer timestamp</p>
+</div>
+    </li>
+</ul>
+<p class="tag_title">Returns:</p>
+<ul class="return">
+    <li>
+        <span class='type'>(<tt>Boolean</tt>)</span>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+148
+149
+150
+151
+152
+153
+154
+155
+156
+157
+158</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 148</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_valid_at?'>valid_at?</span><span class='lparen'>(</span><span class='id identifier rubyid_time'>time</span><span class='rparen'>)</span>
+    <span class='kw'>if</span> <span class='id identifier rubyid_time'>time</span><span class='period'>.</span><span class='id identifier rubyid_kind_of?'>kind_of?</span><span class='lparen'>(</span><span class='const'>Integer</span><span class='rparen'>)</span>
+        <span class='id identifier rubyid_time'>time</span> <span class='op'>=</span> <span class='const'>Time</span><span class='period'>.</span><span class='id identifier rubyid_at'>at</span><span class='lparen'>(</span><span class='id identifier rubyid_time'>time</span><span class='rparen'>)</span>
+    <span class='kw'>end</span>
+    <span class='kw'>if</span> <span class='lparen'>(</span><span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_not_after'>not_after</span> <span class='op'>&lt;</span> <span class='id identifier rubyid_time'>time</span><span class='rparen'>)</span> <span class='kw'>or</span> <span class='lparen'>(</span><span class='kw'>self</span><span class='period'>.</span><span class='id identifier rubyid_not_before'>not_before</span> <span class='op'>&gt;</span> <span class='id identifier rubyid_time'>time</span><span class='rparen'>)</span>
+        <span class='kw'>false</span>
+    <span class='kw'>else</span>
+        <span class='kw'>true</span>
+    <span class='kw'>end</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="write_der-instance_method">
+    - (<tt>Object</tt>) <strong>write_der</strong>(filename_or_io)
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Writes the Cert into the DER format</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>filename_or_io</span>
+        <span class='type'>(<tt>String</tt>, <tt>#write</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>Either a string of the path for the file that you'd like to write, or an
+IO-like object.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+266
+267
+268</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 266</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_write_der'>write_der</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='rparen'>)</span>
+    <span class='id identifier rubyid_write_data'>write_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_to_der'>to_der</span><span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="write_pem-instance_method">
+    - (<tt>Object</tt>) <strong>write_pem</strong>(filename_or_io)
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Writes the Cert into the PEM format</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>filename_or_io</span>
+        <span class='type'>(<tt>String</tt>, <tt>#write</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>Either a string of the path for the file that you'd like to write, or an
+IO-like object.</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+259
+260
+261</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 259</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_write_pem'>write_pem</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='rparen'>)</span>
+    <span class='id identifier rubyid_write_data'>write_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span> <span class='ivar'>@cert</span><span class='period'>.</span><span class='id identifier rubyid_to_pem'>to_pem</span><span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+      <div class="method_details ">
+  <h3 class="signature " id="write_pkcs12-instance_method">
+    - (<tt>Object</tt>) <strong>write_pkcs12</strong>(filename_or_io, password, friendly_name = 'r509 pkcs12')
+</h3><div class="docstring">
+  <div class="discussion">
+<p>Writes cert and key into PKCS12 format using OpenSSL defaults for
+encryption (des3)</p>
+  </div>
+</div>
+<div class="tags">
+  <p class="tag_title">Parameters:</p>
+<ul class="param">
+    <li>
+        <span class='name'>filename_or_io</span>
+        <span class='type'>(<tt>String</tt>, <tt>#write</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>Either a string of the path for the file that you'd like to write, or an
+IO-like object.</p>
+</div>
+    </li>
+    <li>
+        <span class='name'>password</span>
+        <span class='type'>(<tt>String</tt>)</span>
+        &mdash;
+        <div class='inline'>
+<p>password</p>
+</div>
+    </li>
+    <li>
+        <span class='name'>friendly_name</span>
+        <span class='type'>(<tt>String</tt>)</span>
+        <em class="default">(defaults to: <tt>'r509 pkcs12'</tt>)</em>
+        &mdash;
+        <div class='inline'>
+<p>An optional string to encode in the PKCS12 for friendlyName. defaults to
+"r509 pkcs12"</p>
+</div>
+    </li>
+</ul>
+</div><table class="source_code">
+  <tr>
+    <td>
+      <pre class="lines">
+275
+276
+277
+278
+279
+280
+281</pre>
+    </td>
+    <td>
+      <pre class="code"><span class="info file"># File 'lib/r509/cert.rb', line 275</span>
+<span class='kw'>def</span> <span class='id identifier rubyid_write_pkcs12'>write_pkcs12</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span><span class='id identifier rubyid_password'>password</span><span class='comma'>,</span><span class='id identifier rubyid_friendly_name'>friendly_name</span><span class='op'>=</span><span class='tstring'><span class='tstring_beg'>'</span><span class='tstring_content'>r509 pkcs12</span><span class='tstring_end'>'</span></span><span class='rparen'>)</span>
+    <span class='kw'>if</span> <span class='ivar'>@key</span><span class='period'>.</span><span class='id identifier rubyid_nil?'>nil?</span>
+        <span class='id identifier rubyid_raise'>raise</span> <span class='const'>R509</span><span class='op'>::</span><span class='const'>R509Error</span><span class='comma'>,</span> <span class='tstring'><span class='tstring_beg'>&quot;</span><span class='tstring_content'>Writing a PKCS12 requires both key and cert</span><span class='tstring_end'>&quot;</span></span>
+    <span class='kw'>end</span>
+    <span class='id identifier rubyid_pkcs12'>pkcs12</span> <span class='op'>=</span> <span class='const'>OpenSSL</span><span class='op'>::</span><span class='const'>PKCS12</span><span class='period'>.</span><span class='id identifier rubyid_create'>create</span><span class='lparen'>(</span><span class='id identifier rubyid_password'>password</span><span class='comma'>,</span><span class='id identifier rubyid_friendly_name'>friendly_name</span><span class='comma'>,</span><span class='ivar'>@key</span><span class='period'>.</span><span class='id identifier rubyid_key'>key</span><span class='comma'>,</span><span class='ivar'>@cert</span><span class='rparen'>)</span>
+    <span class='id identifier rubyid_write_data'>write_data</span><span class='lparen'>(</span><span class='id identifier rubyid_filename_or_io'>filename_or_io</span><span class='comma'>,</span> <span class='id identifier rubyid_pkcs12'>pkcs12</span><span class='period'>.</span><span class='id identifier rubyid_to_der'>to_der</span><span class='rparen'>)</span>
+<span class='kw'>end</span></pre>
+    </td>
+  </tr>
+</table>
+</div>
+  </div>
+</div>
+    <div id="footer">
+  Generated on Tue Oct 23 22:48:02 2012 by
+  <a href="http://yardoc.org" title="Yay! A Ruby Documentation Tool" target="_parent">yard</a>
+  0.8.0 (ruby-1.9.3).
+</div>
+  </body>
+</html>