npm - @small-tech/auto-encrypt - Versions diffs - 2.1.0 → 2.3.0 - Mend

@small-tech/auto-encrypt 2.1.0 → 2.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (35) hide show

package/README.md +10 -8
package/index.js +37 -34
package/lib/Account.js +6 -4
package/lib/AcmeRequest.js +32 -29
package/lib/Authorisation.js +9 -7
package/lib/Certificate.js +26 -24
package/lib/Configuration.js +11 -16
package/lib/Directory.js +26 -24
package/lib/HttpServer.js +7 -5
package/lib/Identity.js +8 -6
package/lib/LetsEncryptServer.js +4 -2
package/lib/Nonce.js +6 -4
package/lib/Order.js +17 -15
package/lib/acme-requests/AuthorisationRequest.js +5 -3
package/lib/acme-requests/CertificateRequest.js +5 -3
package/lib/acme-requests/CheckOrderStatusRequest.js +5 -3
package/lib/acme-requests/FinaliseOrderRequest.js +5 -3
package/lib/acme-requests/NewAccountRequest.js +4 -2
package/lib/acme-requests/NewOrderRequest.js +5 -3
package/lib/acme-requests/ReadyForChallengeValidationRequest.js +5 -3
package/lib/acmeCsr.js +3 -3
package/lib/identities/AccountIdentity.js +5 -3
package/lib/identities/CertificateIdentity.js +5 -3
package/lib/staging/fakelerootx1.pem +30 -27
package/lib/staging/monkeyPatchTls.js +6 -6
package/lib/test-helpers/index.js +39 -31
package/lib/util/Pluralise.js +3 -1
package/lib/util/Throws.js +7 -3
package/lib/util/async-foreach.js +3 -1
package/lib/util/log.js +3 -1
package/lib/util/waitFor.js +3 -1
package/lib/x.509/rfc5280.js +171 -84
package/package.json +20 -21
package/typedefs/lib/AcmeRequest.js +1 -1
package/CHANGELOG +0 -99

package/lib/x.509/rfc5280.js CHANGED Viewed

@@ -1,6 +1,8 @@
+'use strict';
 // Require @panva’s fork of ASN1 that’s already included as part of the Jose library.
 // https://github.com/panva/asn1.js/
-import asn1 from '@panva/asn1.js';
+const asn1 = require('@panva/asn1.js');
 /**
  * RFC5280 X509 and Extension Definitions
@@ -11,6 +13,8 @@ import asn1 from '@panva/asn1.js';
  * stripped. There’s no reason to include the whole library again.)
  */
+const rfc5280 = exports;
 // OIDs
 const x509OIDs = {
   '2 5 29 9': 'subjectDirectoryAttributes',
@@ -42,35 +46,38 @@ const x509OIDs = {
 //      tbsCertList          TBSCertList,
 //      signatureAlgorithm   AlgorithmIdentifier,
 //      signature            BIT STRING  }
-export const CertificateList = asn1.define('CertificateList', function() {
+const CertificateList = asn1.define('CertificateList', function() {
   this.seq().obj(
     this.key('tbsCertList').use(TBSCertList),
     this.key('signatureAlgorithm').use(AlgorithmIdentifier),
     this.key('signature').bitstr()
   );
 });
+rfc5280.CertificateList = CertificateList;
 // AlgorithmIdentifier  ::=  SEQUENCE  {
 //      algorithm               OBJECT IDENTIFIER,
 //      parameters              ANY DEFINED BY algorithm OPTIONAL  }
-export const AlgorithmIdentifier = asn1.define('AlgorithmIdentifier', function() {
+const AlgorithmIdentifier = asn1.define('AlgorithmIdentifier', function() {
   this.seq().obj(
     this.key('algorithm').objid(),
     this.key('parameters').optional().any()
   );
 });
+rfc5280.AlgorithmIdentifier = AlgorithmIdentifier;
 // Certificate  ::=  SEQUENCE  {
 //      tbsCertificate       TBSCertificate,
 //      signatureAlgorithm   AlgorithmIdentifier,
 //      signature            BIT STRING  }
-export const Certificate = asn1.define('Certificate', function() {
+const Certificate = asn1.define('Certificate', function() {
   this.seq().obj(
     this.key('tbsCertificate').use(TBSCertificate),
     this.key('signatureAlgorithm').use(AlgorithmIdentifier),
     this.key('signature').bitstr()
   );
 });
+rfc5280.Certificate = Certificate;
 // TBSCertificate  ::=  SEQUENCE  {
 //      version         [0]  Version DEFAULT v1,
@@ -83,7 +90,7 @@ export const Certificate = asn1.define('Certificate', function() {
 //      issuerUniqueID  [1]  IMPLICIT UniqueIdentifier OPTIONAL,
 //      subjectUniqueID [2]  IMPLICIT UniqueIdentifier OPTIONAL,
 //      extensions      [3]  Extensions OPTIONAL
-export const TBSCertificate = asn1.define('TBSCertificate', function() {
+const TBSCertificate = asn1.define('TBSCertificate', function() {
   this.seq().obj(
     this.key('version').def('v1').explicit(0).use(Version),
     this.key('serialNumber').int(),
@@ -97,45 +104,50 @@ export const TBSCertificate = asn1.define('TBSCertificate', function() {
     this.key('extensions').optional().explicit(3).seqof(Extension)
   );
 });
+rfc5280.TBSCertificate = TBSCertificate;
 // Version  ::=  INTEGER  {  v1(0), v2(1), v3(2)  }
-export const Version = asn1.define('Version', function() {
+const Version = asn1.define('Version', function() {
   this.int({
     0: 'v1',
     1: 'v2',
     2: 'v3'
   });
 });
+rfc5280.Version = Version;
 // Validity ::= SEQUENCE {
 //      notBefore      Time,
 //      notAfter       Time  }
-export const Validity = asn1.define('Validity', function() {
+const Validity = asn1.define('Validity', function() {
   this.seq().obj(
     this.key('notBefore').use(Time),
     this.key('notAfter').use(Time)
   );
 });
+rfc5280.Validity = Validity;
 // Time ::= CHOICE {
 //      utcTime        UTCTime,
 //      generalTime    GeneralizedTime }
-export const Time = asn1.define('Time', function() {
+const Time = asn1.define('Time', function() {
   this.choice({
     utcTime: this.utctime(),
     genTime: this.gentime()
   });
 });
+rfc5280.Time = Time;
 // SubjectPublicKeyInfo  ::=  SEQUENCE  {
 //      algorithm            AlgorithmIdentifier,
 //      subjectPublicKey     BIT STRING  }
-export const SubjectPublicKeyInfo = asn1.define('SubjectPublicKeyInfo', function() {
+const SubjectPublicKeyInfo = asn1.define('SubjectPublicKeyInfo', function() {
   this.seq().obj(
     this.key('algorithm').use(AlgorithmIdentifier),
     this.key('subjectPublicKey').bitstr()
   );
 });
+rfc5280.SubjectPublicKeyInfo = SubjectPublicKeyInfo;
 // TBSCertList  ::=  SEQUENCE  {
 //      version                 Version OPTIONAL,
@@ -149,7 +161,7 @@ export const SubjectPublicKeyInfo = asn1.define('SubjectPublicKeyInfo', function
 //           crlEntryExtensions      Extensions OPTIONAL
 //      }  OPTIONAL,
 //      crlExtensions           [0] Extensions OPTIONAL }
-export const TBSCertList = asn1.define('TBSCertList', function() {
+const TBSCertList = asn1.define('TBSCertList', function() {
   this.seq().obj(
     this.key('version').optional().int(),
     this.key('signature').use(AlgorithmIdentifier),
@@ -160,6 +172,7 @@ export const TBSCertList = asn1.define('TBSCertList', function() {
     this.key('crlExtensions').explicit(0).optional().seqof(Extension)
   );
 });
+rfc5280.TBSCertList = TBSCertList;
 const RevokedCertificate = asn1.define('RevokedCertificate', function() {
   this.seq().obj(
@@ -173,7 +186,7 @@ const RevokedCertificate = asn1.define('RevokedCertificate', function() {
 //      extnID      OBJECT IDENTIFIER,
 //      critical    BOOLEAN DEFAULT FALSE,
 //      extnValue   OCTET STRING }
-export const Extension = asn1.define('Extension', function() {
+const Extension = asn1.define('Extension', function() {
   this.seq().obj(
     this.key('extnID').objid(x509OIDs),
     this.key('critical').bool().def(false),
@@ -184,14 +197,16 @@ export const Extension = asn1.define('Extension', function() {
     })
   );
 });
+rfc5280.Extension = Extension;
 // Name ::= CHOICE { -- only one possibility for now --
 //      rdnSequence  RDNSequence }
-export const Name = asn1.define('Name', function() {
+const Name = asn1.define('Name', function() {
   this.choice({
     rdnSequence: this.use(RDNSequence)
   });
 });
+rfc5280.Name = Name;
 // GeneralName ::= CHOICE {
 //      otherName                 [0]  AnotherName,
@@ -203,7 +218,7 @@ export const Name = asn1.define('Name', function() {
 //      uniformResourceIdentifier [6]  IA5String,
 //      iPAddress                 [7]  OCTET STRING,
 //      registeredID              [8]  OBJECT IDENTIFIER }
-export const GeneralName = asn1.define('GeneralName', function() {
+const GeneralName = asn1.define('GeneralName', function() {
   this.choice({
     otherName: this.implicit(0).use(AnotherName),
     rfc822Name: this.implicit(1).ia5str(),
@@ -215,73 +230,83 @@ export const GeneralName = asn1.define('GeneralName', function() {
     registeredID: this.implicit(8).objid()
   });
 });
+rfc5280.GeneralName = GeneralName;
 // GeneralNames ::= SEQUENCE SIZE (1..MAX) OF GeneralName
-export const GeneralNames = asn1.define('GeneralNames', function() {
+const GeneralNames = asn1.define('GeneralNames', function() {
   this.seqof(GeneralName);
 });
+rfc5280.GeneralNames = GeneralNames;
 // AnotherName ::= SEQUENCE {
 //      type-id    OBJECT IDENTIFIER,
 //      value      [0] EXPLICIT ANY DEFINED BY type-id }
-export const AnotherName = asn1.define('AnotherName', function() {
+const AnotherName = asn1.define('AnotherName', function() {
   this.seq().obj(
     this.key('type-id').objid(),
     this.key('value').explicit(0).any()
   );
 });
+rfc5280.AnotherName = AnotherName;
 // EDIPartyName ::= SEQUENCE {
 //      nameAssigner              [0]  DirectoryString OPTIONAL,
 //      partyName                 [1]  DirectoryString }
-export const EDIPartyName = asn1.define('EDIPartyName', function() {
+const EDIPartyName = asn1.define('EDIPartyName', function() {
   this.seq().obj(
     this.key('nameAssigner').implicit(0).optional().use(DirectoryString),
     this.key('partyName').implicit(1).use(DirectoryString)
   );
 });
+rfc5280.EDIPartyName = EDIPartyName;
 // RDNSequence ::= SEQUENCE OF RelativeDistinguishedName
-export const RDNSequence = asn1.define('RDNSequence', function() {
+const RDNSequence = asn1.define('RDNSequence', function() {
   this.seqof(RelativeDistinguishedName);
 });
+rfc5280.RDNSequence = RDNSequence;
 // RelativeDistinguishedName ::=
 //      SET SIZE (1..MAX) OF AttributeTypeAndValue
-export const RelativeDistinguishedName = asn1.define('RelativeDistinguishedName',
+const RelativeDistinguishedName = asn1.define('RelativeDistinguishedName',
   function() {
     this.setof(AttributeTypeAndValue);
   });
+rfc5280.RelativeDistinguishedName = RelativeDistinguishedName;
 // AttributeTypeAndValue ::= SEQUENCE {
 //      type     AttributeType,
 //      value    AttributeValue }
-export const AttributeTypeAndValue = asn1.define('AttributeTypeAndValue', function() {
+const AttributeTypeAndValue = asn1.define('AttributeTypeAndValue', function() {
   this.seq().obj(
     this.key('type').use(AttributeType),
     this.key('value').use(AttributeValue)
   );
 });
+rfc5280.AttributeTypeAndValue = AttributeTypeAndValue;
 // Attribute               ::= SEQUENCE {
 //       type             AttributeType,
 //       values    SET OF AttributeValue }
-export const Attribute = asn1.define('Attribute', function() {
+const Attribute = asn1.define('Attribute', function() {
   this.seq().obj(
     this.key('type').use(AttributeType),
     this.key('values').setof(AttributeValue)
   );
 });
+rfc5280.Attribute = Attribute;
 // AttributeType ::= OBJECT IDENTIFIER
-export const AttributeType = asn1.define('AttributeType', function() {
+const AttributeType = asn1.define('AttributeType', function() {
   this.objid();
 });
+rfc5280.AttributeType = AttributeType;
 // AttributeValue ::= ANY -- DEFINED BY AttributeType
-export const AttributeValue = asn1.define('AttributeValue', function() {
+const AttributeValue = asn1.define('AttributeValue', function() {
   this.any();
 });
+rfc5280.AttributeValue = AttributeValue;
 // DirectoryString ::= CHOICE {
 //       teletexString           TeletexString (SIZE (1..MAX)),
@@ -289,7 +314,7 @@ export const AttributeValue = asn1.define('AttributeValue', function() {
 //       universalString         UniversalString (SIZE (1..MAX)),
 //       utf8String              UTF8String (SIZE (1..MAX)),
 //       bmpString               BMPString (SIZE (1..MAX)) }
-export const DirectoryString = asn1.define('DirectoryString', function() {
+const DirectoryString = asn1.define('DirectoryString', function() {
   this.choice({
     teletexString: this.t61str(),
     printableString: this.printstr(),
@@ -298,12 +323,13 @@ export const DirectoryString = asn1.define('DirectoryString', function() {
     bmpString: this.bmpstr()
   });
 });
+rfc5280.DirectoryString = DirectoryString;
 // AuthorityKeyIdentifier ::= SEQUENCE {
 //     keyIdentifier             [0] KeyIdentifier            OPTIONAL,
 //     authorityCertIssuer       [1] GeneralNames             OPTIONAL,
 //     authorityCertSerialNumber [2] CertificateSerialNumber  OPTIONAL }
-export const AuthorityKeyIdentifier = asn1.define('AuthorityKeyIdentifier', function() {
+const AuthorityKeyIdentifier = asn1.define('AuthorityKeyIdentifier', function() {
   this.seq().obj(
     this.key('keyIdentifier').implicit(0).optional().use(KeyIdentifier),
     this.key('authorityCertIssuer').implicit(1).optional().use(GeneralNames),
@@ -311,24 +337,27 @@ export const AuthorityKeyIdentifier = asn1.define('AuthorityKeyIdentifier', func
       .use(CertificateSerialNumber)
   );
 });
+rfc5280.AuthorityKeyIdentifier = AuthorityKeyIdentifier;
 // KeyIdentifier ::= OCTET STRING
-export const KeyIdentifier = asn1.define('KeyIdentifier', function() {
+const KeyIdentifier = asn1.define('KeyIdentifier', function() {
   this.octstr();
 });
+rfc5280.KeyIdentifier = KeyIdentifier;
 // CertificateSerialNumber  ::=  INTEGER
-export const CertificateSerialNumber = asn1.define('CertificateSerialNumber',
+const CertificateSerialNumber = asn1.define('CertificateSerialNumber',
   function() {
     this.int();
   });
+rfc5280.CertificateSerialNumber = CertificateSerialNumber;
 // ORAddress ::= SEQUENCE {
 //    built-in-standard-attributes BuiltInStandardAttributes,
 //    built-in-domain-defined-attributes    BuiltInDomainDefinedAttributes
 //                                            OPTIONAL,
 //    extension-attributes ExtensionAttributes OPTIONAL }
-export const ORAddress = asn1.define('ORAddress', function() {
+const ORAddress = asn1.define('ORAddress', function() {
   this.seq().obj(
     this.key('builtInStandardAttributes').use(BuiltInStandardAttributes),
     this.key('builtInDomainDefinedAttributes').optional()
@@ -336,6 +365,7 @@ export const ORAddress = asn1.define('ORAddress', function() {
     this.key('extensionAttributes').optional().use(ExtensionAttributes)
   );
 });
+rfc5280.ORAddress = ORAddress;
 // BuiltInStandardAttributes ::= SEQUENCE {
 //    country-name                  CountryName OPTIONAL,
@@ -347,7 +377,7 @@ export const ORAddress = asn1.define('ORAddress', function() {
 //    numeric-user-identifier   [4] IMPLICIT NumericUserIdentifier OPTIONAL,
 //    personal-name             [5] IMPLICIT PersonalName OPTIONAL,
 //    organizational-unit-names [6] IMPLICIT OrganizationalUnitNames OPTIONAL }
-export const BuiltInStandardAttributes = asn1.define('BuiltInStandardAttributes',
+const BuiltInStandardAttributes = asn1.define('BuiltInStandardAttributes',
   function() {
     this.seq().obj(
       this.key('countryName').optional().use(CountryName),
@@ -365,69 +395,79 @@ export const BuiltInStandardAttributes = asn1.define('BuiltInStandardAttributes'
         .use(OrganizationalUnitNames)
     );
   });
+rfc5280.BuiltInStandardAttributes = BuiltInStandardAttributes;
 // CountryName ::= CHOICE {
 //    x121-dcc-code         NumericString,
 //    iso-3166-alpha2-code  PrintableString }
-export const CountryName = asn1.define('CountryName', function() {
+const CountryName = asn1.define('CountryName', function() {
   this.choice({
     x121DccCode: this.numstr(),
     iso3166Alpha2Code: this.printstr()
   });
 });
+rfc5280.CountryName = CountryName;
 // AdministrationDomainName ::= CHOICE {
 //    numeric   NumericString,
 //    printable PrintableString }
-export const AdministrationDomainName = asn1.define('AdministrationDomainName',
+const AdministrationDomainName = asn1.define('AdministrationDomainName',
   function() {
     this.choice({
       numeric: this.numstr(),
       printable: this.printstr()
     });
   });
+rfc5280.AdministrationDomainName = AdministrationDomainName;
 // NetworkAddress ::= X121Address
-export const NetworkAddress = asn1.define('NetworkAddress', function() {
+const NetworkAddress = asn1.define('NetworkAddress', function() {
   this.use(X121Address);
 });
+rfc5280.NetworkAddress = NetworkAddress;
 // X121Address ::= NumericString
-export const X121Address = asn1.define('X121Address', function() {
+const X121Address = asn1.define('X121Address', function() {
   this.numstr();
 });
+rfc5280.X121Address = X121Address;
 // TerminalIdentifier ::= PrintableString
-export const TerminalIdentifier = asn1.define('TerminalIdentifier', function() {
+const TerminalIdentifier = asn1.define('TerminalIdentifier', function() {
   this.printstr();
 });
+rfc5280.TerminalIdentifier = TerminalIdentifier;
 // PrivateDomainName ::= CHOICE {
 //    numeric   NumericString,
 //    printable PrintableString }
-export const PrivateDomainName = asn1.define('PrivateDomainName', function() {
+const PrivateDomainName = asn1.define('PrivateDomainName', function() {
   this.choice({
     numeric: this.numstr(),
     printable: this.printstr()
   });
 });
+rfc5280.PrivateDomainName = PrivateDomainName;
 // OrganizationName ::= PrintableString
-export const OrganizationName = asn1.define('OrganizationName', function() {
+const OrganizationName = asn1.define('OrganizationName', function() {
   this.printstr();
 });
+rfc5280.OrganizationName = OrganizationName;
 // NumericUserIdentifier ::= NumericString
-export const NumericUserIdentifier = asn1.define('NumericUserIdentifier', function() {
+const NumericUserIdentifier = asn1.define('NumericUserIdentifier', function() {
   this.numstr();
 });
+rfc5280.NumericUserIdentifier = NumericUserIdentifier;
 // PersonalName ::= SET {
 //    surname     [0] IMPLICIT PrintableString,
 //    given-name  [1] IMPLICIT PrintableString OPTIONAL,
 //    initials    [2] IMPLICIT PrintableString OPTIONAL,
 //    generation-qualifier [3] IMPLICIT PrintableString OPTIONAL }
-export const PersonalName = asn1.define('PersonalName', function() {
+const PersonalName = asn1.define('PersonalName', function() {
   this.set().obj(
     this.key('surname').implicit(0).printstr(),
     this.key('givenName').implicit(1).printstr(),
@@ -435,60 +475,69 @@ export const PersonalName = asn1.define('PersonalName', function() {
     this.key('generationQualifier').implicit(3).printstr()
   );
 });
+rfc5280.PersonalName = PersonalName;
 // OrganizationalUnitNames ::= SEQUENCE SIZE (1..ub-organizational-units)
 //                              OF OrganizationalUnitName
-export const OrganizationalUnitNames = asn1.define('OrganizationalUnitNames',
+const OrganizationalUnitNames = asn1.define('OrganizationalUnitNames',
   function() {
     this.seqof(OrganizationalUnitName);
   });
+rfc5280.OrganizationalUnitNames = OrganizationalUnitNames;
 // OrganizationalUnitName ::= PrintableString (SIZE
 //                     (1..ub-organizational-unit-name-length))
-export const OrganizationalUnitName = asn1.define('OrganizationalUnitName', function() {
+const OrganizationalUnitName = asn1.define('OrganizationalUnitName', function() {
   this.printstr();
 });
+rfc5280.OrganizationalUnitName = OrganizationalUnitName;
 // uiltInDomainDefinedAttributes ::= SEQUENCE SIZE
 //                     (1..ub-domain-defined-attributes)
 //                       OF BuiltInDomainDefinedAttribute
-export const BuiltInDomainDefinedAttributes = asn1.define(
+const BuiltInDomainDefinedAttributes = asn1.define(
   'BuiltInDomainDefinedAttributes', function() {
     this.seqof(BuiltInDomainDefinedAttribute);
   });
+rfc5280.BuiltInDomainDefinedAttributes = BuiltInDomainDefinedAttributes;
 // BuiltInDomainDefinedAttribute ::= SEQUENCE {
 //    type PrintableString (SIZE (1..ub-domain-defined-attribute-type-length)),
 //    value PrintableString (SIZE (1..ub-domain-defined-attribute-value-length))
 //}
-export const BuiltInDomainDefinedAttribute = asn1.define('BuiltInDomainDefinedAttribute',
+const BuiltInDomainDefinedAttribute = asn1.define('BuiltInDomainDefinedAttribute',
   function() {
     this.seq().obj(
       this.key('type').printstr(),
       this.key('value').printstr()
     );
   });
+rfc5280.BuiltInDomainDefinedAttribute = BuiltInDomainDefinedAttribute;
 // ExtensionAttributes ::= SET SIZE (1..ub-extension-attributes) OF
 //                ExtensionAttribute
-export const ExtensionAttributes = asn1.define('ExtensionAttributes', function() {
+const ExtensionAttributes = asn1.define('ExtensionAttributes', function() {
   this.seqof(ExtensionAttribute);
 });
+rfc5280.ExtensionAttributes = ExtensionAttributes;
 // ExtensionAttribute ::=  SEQUENCE {
 //    extension-attribute-type [0] IMPLICIT INTEGER,
 //    extension-attribute-value [1] ANY DEFINED BY extension-attribute-type }
-export const ExtensionAttribute = asn1.define('ExtensionAttribute', function() {
+const ExtensionAttribute = asn1.define('ExtensionAttribute', function() {
   this.seq().obj(
     this.key('extensionAttributeType').implicit(0).int(),
     this.key('extensionAttributeValue').any().explicit(1).int()
   );
 });
+rfc5280.ExtensionAttribute = ExtensionAttribute;
 // SubjectKeyIdentifier ::= KeyIdentifier
-export const SubjectKeyIdentifier = asn1.define('SubjectKeyIdentifier', function() {
+const SubjectKeyIdentifier = asn1.define('SubjectKeyIdentifier', function() {
   this.use(KeyIdentifier);
 });
+rfc5280.SubjectKeyIdentifier = SubjectKeyIdentifier;
 // KeyUsage ::= BIT STRING {
 //      digitalSignature        (0),
@@ -501,157 +550,179 @@ export const SubjectKeyIdentifier = asn1.define('SubjectKeyIdentifier', function
 //      cRLSign                 (6),
 //      encipherOnly            (7),
 //      decipherOnly            (8) }
-export const KeyUsage = asn1.define('KeyUsage', function() {
+const KeyUsage = asn1.define('KeyUsage', function() {
   this.bitstr();
 });
+rfc5280.KeyUsage = KeyUsage;
 // CertificatePolicies ::= SEQUENCE SIZE (1..MAX) OF PolicyInformation
-export const CertificatePolicies = asn1.define('CertificatePolicies', function() {
+const CertificatePolicies = asn1.define('CertificatePolicies', function() {
   this.seqof(PolicyInformation);
 });
+rfc5280.CertificatePolicies = CertificatePolicies;
 // PolicyInformation ::= SEQUENCE {
 //      policyIdentifier   CertPolicyId,
 //      policyQualifiers   SEQUENCE SIZE (1..MAX) OF PolicyQualifierInfo
 //                           OPTIONAL }
-export const PolicyInformation = asn1.define('PolicyInformation', function() {
+const PolicyInformation = asn1.define('PolicyInformation', function() {
   this.seq().obj(
     this.key('policyIdentifier').use(CertPolicyId),
     this.key('policyQualifiers').optional().use(PolicyQualifiers)
   );
 });
+rfc5280.PolicyInformation = PolicyInformation;
 // CertPolicyId ::= OBJECT IDENTIFIER
-export const CertPolicyId = asn1.define('CertPolicyId', function() {
+const CertPolicyId = asn1.define('CertPolicyId', function() {
   this.objid();
 });
+rfc5280.CertPolicyId = CertPolicyId;
-export const PolicyQualifiers = asn1.define('PolicyQualifiers', function() {
+const PolicyQualifiers = asn1.define('PolicyQualifiers', function() {
   this.seqof(PolicyQualifierInfo);
 });
+rfc5280.PolicyQualifiers = PolicyQualifiers;
 // PolicyQualifierInfo ::= SEQUENCE {
 //      policyQualifierId  PolicyQualifierId,
 //      qualifier          ANY DEFINED BY policyQualifierId }
-export const PolicyQualifierInfo = asn1.define('PolicyQualifierInfo', function() {
+const PolicyQualifierInfo = asn1.define('PolicyQualifierInfo', function() {
   this.seq().obj(
     this.key('policyQualifierId').use(PolicyQualifierId),
     this.key('qualifier').any()
   );
 });
+rfc5280.PolicyQualifierInfo = PolicyQualifierInfo;
 // PolicyQualifierId ::= OBJECT IDENTIFIER
-export const PolicyQualifierId = asn1.define('PolicyQualifierId', function() {
+const PolicyQualifierId = asn1.define('PolicyQualifierId', function() {
   this.objid();
 });
+rfc5280.PolicyQualifierId = PolicyQualifierId;
 // PolicyMappings ::= SEQUENCE SIZE (1..MAX) OF SEQUENCE {
 //      issuerDomainPolicy      CertPolicyId,
 //      subjectDomainPolicy     CertPolicyId }
-export const PolicyMappings = asn1.define('PolicyMappings', function() {
+const PolicyMappings = asn1.define('PolicyMappings', function() {
   this.seqof(PolicyMapping);
 });
+rfc5280.PolicyMappings = PolicyMappings;
-export const PolicyMapping = asn1.define('PolicyMapping', function() {
+const PolicyMapping = asn1.define('PolicyMapping', function() {
   this.seq().obj(
     this.key('issuerDomainPolicy').use(CertPolicyId),
     this.key('subjectDomainPolicy').use(CertPolicyId)
   );
 });
+rfc5280.PolicyMapping = PolicyMapping;
 // SubjectAltName ::= GeneralNames
-export const SubjectAlternativeName = asn1.define('SubjectAlternativeName', function() {
+const SubjectAlternativeName = asn1.define('SubjectAlternativeName', function() {
   this.use(GeneralNames);
 });
+rfc5280.SubjectAlternativeName = SubjectAlternativeName;
 // IssuerAltName ::= GeneralNames
-export const IssuerAlternativeName = asn1.define('IssuerAlternativeName', function() {
+const IssuerAlternativeName = asn1.define('IssuerAlternativeName', function() {
   this.use(GeneralNames);
 });
+rfc5280.IssuerAlternativeName = IssuerAlternativeName;
 // SubjectDirectoryAttributes ::= SEQUENCE SIZE (1..MAX) OF Attribute
-export const SubjectDirectoryAttributes = asn1.define('SubjectDirectoryAttributes',
+const SubjectDirectoryAttributes = asn1.define('SubjectDirectoryAttributes',
   function() {
     this.seqof(Attribute);
   });
+rfc5280.SubjectDirectoryAttributes = SubjectDirectoryAttributes;
 // BasicConstraints ::= SEQUENCE {
 //         cA                      BOOLEAN DEFAULT FALSE,
 //         pathLenConstraint       INTEGER (0..MAX) OPTIONAL }
-export const BasicConstraints = asn1.define('BasicConstraints', function() {
+const BasicConstraints = asn1.define('BasicConstraints', function() {
   this.seq().obj(
     this.key('cA').bool().def(false),
     this.key('pathLenConstraint').optional().int()
   );
 });
+rfc5280.BasicConstraints = BasicConstraints;
 // NameConstraints ::= SEQUENCE {
 //            permittedSubtrees       [0]     GeneralSubtrees OPTIONAL,
 //            excludedSubtrees        [1]     GeneralSubtrees OPTIONAL }
-export const NameConstraints = asn1.define('NameConstraints', function() {
+const NameConstraints = asn1.define('NameConstraints', function() {
   this.seq().obj(
     this.key('permittedSubtrees').implicit(0).optional().use(GeneralSubtrees),
     this.key('excludedSubtrees').implicit(1).optional().use(GeneralSubtrees)
   );
 });
+rfc5280.NameConstraints = NameConstraints;
 // GeneralSubtrees ::= SEQUENCE SIZE (1..MAX) OF GeneralSubtree
-export const GeneralSubtrees = asn1.define('GeneralSubtrees', function() {
+const GeneralSubtrees = asn1.define('GeneralSubtrees', function() {
   this.seqof(GeneralSubtree);
 });
+rfc5280.GeneralSubtrees = GeneralSubtrees;
 // GeneralSubtree ::= SEQUENCE {
 //            base                    GeneralName,
 //            minimum         [0]     BaseDistance DEFAULT 0,
 //            maximum         [1]     BaseDistance OPTIONAL }
-export const GeneralSubtree = asn1.define('GeneralSubtree', function() {
+const GeneralSubtree = asn1.define('GeneralSubtree', function() {
   this.seq().obj(
     this.key('base').use(GeneralName),
     this.key('minimum').implicit(0).def(0).use(BaseDistance),
     this.key('maximum').implicit(0).optional().use(BaseDistance)
   );
 });
+rfc5280.GeneralSubtree = GeneralSubtree;
 // BaseDistance ::= INTEGER
-export const BaseDistance = asn1.define('BaseDistance', function() {
+const BaseDistance = asn1.define('BaseDistance', function() {
   this.int();
 });
+rfc5280.BaseDistance = BaseDistance;
 // PolicyConstraints ::= SEQUENCE {
 //         requireExplicitPolicy           [0] SkipCerts OPTIONAL,
 //         inhibitPolicyMapping            [1] SkipCerts OPTIONAL }
-export const PolicyConstraints = asn1.define('PolicyConstraints', function() {
+const PolicyConstraints = asn1.define('PolicyConstraints', function() {
   this.seq().obj(
     this.key('requireExplicitPolicy').implicit(0).optional().use(SkipCerts),
     this.key('inhibitPolicyMapping').implicit(1).optional().use(SkipCerts)
   );
 });
+rfc5280.PolicyConstraints = PolicyConstraints;
 // SkipCerts ::= INTEGER
-export const SkipCerts = asn1.define('SkipCerts', function() {
+const SkipCerts = asn1.define('SkipCerts', function() {
   this.int();
 });
+rfc5280.SkipCerts = SkipCerts;
 // ExtKeyUsageSyntax ::= SEQUENCE SIZE (1..MAX) OF KeyPurposeId
-export const ExtendedKeyUsage = asn1.define('ExtendedKeyUsage', function() {
+const ExtendedKeyUsage = asn1.define('ExtendedKeyUsage', function() {
   this.seqof(KeyPurposeId);
 });
+rfc5280.ExtendedKeyUsage = ExtendedKeyUsage;
 // KeyPurposeId ::= OBJECT IDENTIFIER
-export const KeyPurposeId = asn1.define('KeyPurposeId', function() {
+const KeyPurposeId = asn1.define('KeyPurposeId', function() {
   this.objid();
 });
+rfc5280.KeyPurposeId = KeyPurposeId;
 // RLDistributionPoints ::= SEQUENCE SIZE (1..MAX) OF DistributionPoint
-export const CRLDistributionPoints = asn1.define('CRLDistributionPoints', function() {
+const CRLDistributionPoints = asn1.define('CRLDistributionPoints', function() {
   this.seqof(DistributionPoint);
 });
+rfc5280.CRLDistributionPoints = CRLDistributionPoints;
 // DistributionPoint ::= SEQUENCE {
 //         distributionPoint       [0]     DistributionPointName OPTIONAL,
 //         reasons                 [1]     ReasonFlags OPTIONAL,
 //         cRLIssuer               [2]     GeneralNames OPTIONAL }
-export const DistributionPoint = asn1.define('DistributionPoint', function() {
+const DistributionPoint = asn1.define('DistributionPoint', function() {
   this.seq().obj(
     this.key('distributionPoint').optional().explicit(0)
       .use(DistributionPointName),
@@ -659,16 +730,18 @@ export const DistributionPoint = asn1.define('DistributionPoint', function() {
     this.key('cRLIssuer').optional().implicit(2).use(GeneralNames)
   );
 });
+rfc5280.DistributionPoint = DistributionPoint;
 // DistributionPointName ::= CHOICE {
 //         fullName                [0]     GeneralNames,
 //         nameRelativeToCRLIssuer [1]     RelativeDistinguishedName }
-export const DistributionPointName = asn1.define('DistributionPointName', function() {
+const DistributionPointName = asn1.define('DistributionPointName', function() {
   this.choice({
     fullName: this.implicit(0).use(GeneralNames),
     nameRelativeToCRLIssuer: this.implicit(1).use(RelativeDistinguishedName)
   });
 });
+rfc5280.DistributionPointName = DistributionPointName;
 // ReasonFlags ::= BIT STRING {
 //         unused                  (0),
@@ -680,54 +753,64 @@ export const DistributionPointName = asn1.define('DistributionPointName', functi
 //         certificateHold         (6),
 //         privilegeWithdrawn      (7),
 //         aACompromise            (8) }
-export const ReasonFlags = asn1.define('ReasonFlags', function() {
+const ReasonFlags = asn1.define('ReasonFlags', function() {
   this.bitstr();
 });
+rfc5280.ReasonFlags = ReasonFlags;
 // InhibitAnyPolicy ::= SkipCerts
-export const InhibitAnyPolicy = asn1.define('InhibitAnyPolicy', function() {
+const InhibitAnyPolicy = asn1.define('InhibitAnyPolicy', function() {
   this.use(SkipCerts);
 });
+rfc5280.InhibitAnyPolicy = InhibitAnyPolicy;
 // FreshestCRL ::= CRLDistributionPoints
-export const FreshestCRL = asn1.define('FreshestCRL', function() {
+const FreshestCRL = asn1.define('FreshestCRL', function() {
   this.use(CRLDistributionPoints);
 });
+rfc5280.FreshestCRL = FreshestCRL;
 // AuthorityInfoAccessSyntax  ::=
 //         SEQUENCE SIZE (1..MAX) OF AccessDescription
-export const AuthorityInfoAccessSyntax = asn1.define('AuthorityInfoAccessSyntax', function() {
-  this.seqof(AccessDescription);
-});
+const AuthorityInfoAccessSyntax = asn1.define('AuthorityInfoAccessSyntax',
+  function() {
+    this.seqof(AccessDescription);
+  });
+rfc5280.AuthorityInfoAccessSyntax = AuthorityInfoAccessSyntax;
 // AccessDescription  ::=  SEQUENCE {
 //         accessMethod          OBJECT IDENTIFIER,
 //         accessLocation        GeneralName  }
-export const AccessDescription = asn1.define('AccessDescription', function() {
+const AccessDescription = asn1.define('AccessDescription', function() {
   this.seq().obj(
     this.key('accessMethod').objid(),
     this.key('accessLocation').use(GeneralName)
   );
 });
+rfc5280.AccessDescription = AccessDescription;
 // SubjectInfoAccessSyntax  ::=
 //            SEQUENCE SIZE (1..MAX) OF AccessDescription
-export const SubjectInformationAccess = asn1.define('SubjectInformationAccess', function() {
-  this.seqof(AccessDescription);
-});
+const SubjectInformationAccess = asn1.define('SubjectInformationAccess',
+  function() {
+    this.seqof(AccessDescription);
+  });
+rfc5280.SubjectInformationAccess = SubjectInformationAccess;
 /**
  * CRL Extensions
  */
 // CRLNumber ::= INTEGER
-export const CRLNumber = asn1.define('CRLNumber', function() {
+const CRLNumber = asn1.define('CRLNumber', function() {
   this.int();
 });
+rfc5280.CRLNumber = CRLNumber;
-export const DeltaCRLIndicator = asn1.define('DeltaCRLIndicator', function() {
+const DeltaCRLIndicator = asn1.define('DeltaCRLIndicator', function() {
   this.use(CRLNumber);
 });
+rfc5280.DeltaCRLIndicator = DeltaCRLIndicator;
 // IssuingDistributionPoint ::= SEQUENCE {
 //         distributionPoint          [0] DistributionPointName OPTIONAL,
@@ -736,7 +819,7 @@ export const DeltaCRLIndicator = asn1.define('DeltaCRLIndicator', function() {
 //         onlySomeReasons            [3] ReasonFlags OPTIONAL,
 //         indirectCRL                [4] BOOLEAN DEFAULT FALSE,
 //         onlyContainsAttributeCerts [5] BOOLEAN DEFAULT FALSE }
-export const IssuingDistributionPoint = asn1.define('IssuingDistributionPoint',
+const IssuingDistributionPoint = asn1.define('IssuingDistributionPoint',
   function() {
     this.seq().obj(
       this.key('distributionPoint').explicit(0).optional()
@@ -748,6 +831,7 @@ export const IssuingDistributionPoint = asn1.define('IssuingDistributionPoint',
       this.key('onlyContainsAttributeCerts').implicit(5).def(false).bool()
     );
   });
+rfc5280.IssuingDistributionPoint = IssuingDistributionPoint;
 // CRLReason ::= ENUMERATED {
 //         unspecified             (0),
@@ -761,7 +845,7 @@ export const IssuingDistributionPoint = asn1.define('IssuingDistributionPoint',
 //         removeFromCRL           (8),
 //         privilegeWithdrawn      (9),
 //         aACompromise           (10) }
-export const ReasonCode = asn1.define('ReasonCode', function() {
+const ReasonCode = asn1.define('ReasonCode', function() {
   this.enum({
     0: 'unspecified',
     1: 'keyCompromise',
@@ -775,16 +859,19 @@ export const ReasonCode = asn1.define('ReasonCode', function() {
     10: 'aACompromise'
   });
 });
+rfc5280.ReasonCode = ReasonCode;
 // InvalidityDate ::=  GeneralizedTime
-export const InvalidityDate = asn1.define('InvalidityDate', function() {
+const InvalidityDate = asn1.define('InvalidityDate', function() {
   this.gentime();
 });
+rfc5280.InvalidityDate = InvalidityDate;
 // CertificateIssuer ::=     GeneralNames
-export const CertificateIssuer = asn1.define('CertificateIssuer', function() {
+const CertificateIssuer = asn1.define('CertificateIssuer', function() {
   this.use(GeneralNames);
 });
+rfc5280.CertificateIssuer = CertificateIssuer;
 // OID label to extension model mapping
 const x509Extensions = {