npm - @small-tech/auto-encrypt - Versions diffs - 2.3.0 → 3.1.0 - Mend

@small-tech/auto-encrypt 2.3.0 → 3.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (33) hide show

package/README.md +8 -10
package/index.js +34 -37
package/lib/Account.js +4 -6
package/lib/AcmeRequest.js +29 -32
package/lib/Authorisation.js +7 -9
package/lib/Certificate.js +20 -26
package/lib/Configuration.js +16 -11
package/lib/Directory.js +24 -26
package/lib/HttpServer.js +5 -7
package/lib/Identity.js +6 -8
package/lib/LetsEncryptServer.js +2 -4
package/lib/Nonce.js +4 -6
package/lib/Order.js +15 -17
package/lib/acme-requests/AuthorisationRequest.js +3 -5
package/lib/acme-requests/CertificateRequest.js +3 -5
package/lib/acme-requests/CheckOrderStatusRequest.js +3 -5
package/lib/acme-requests/FinaliseOrderRequest.js +3 -5
package/lib/acme-requests/NewAccountRequest.js +2 -4
package/lib/acme-requests/NewOrderRequest.js +3 -5
package/lib/acme-requests/ReadyForChallengeValidationRequest.js +3 -5
package/lib/acmeCsr.js +2 -2
package/lib/identities/AccountIdentity.js +3 -5
package/lib/identities/CertificateIdentity.js +3 -5
package/lib/staging/monkeyPatchTls.js +7 -6
package/lib/test-helpers/index.js +31 -39
package/lib/util/Pluralise.js +1 -3
package/lib/util/Throws.js +3 -7
package/lib/util/async-foreach.js +1 -3
package/lib/util/log.js +1 -3
package/lib/util/waitFor.js +1 -3
package/lib/x.509/rfc5280.js +84 -171
package/package.json +20 -19
package/typedefs/lib/AcmeRequest.js +1 -1

package/lib/x.509/rfc5280.js CHANGED Viewed

@@ -1,8 +1,6 @@
-'use strict';
 // Require @panva’s fork of ASN1 that’s already included as part of the Jose library.
 // https://github.com/panva/asn1.js/
-const asn1 = require('@panva/asn1.js');
+import asn1 from '@panva/asn1.js';
 /**
  * RFC5280 X509 and Extension Definitions
@@ -13,8 +11,6 @@ const asn1 = require('@panva/asn1.js');
  * stripped. There’s no reason to include the whole library again.)
  */
-const rfc5280 = exports;
 // OIDs
 const x509OIDs = {
   '2 5 29 9': 'subjectDirectoryAttributes',
@@ -46,38 +42,35 @@ const x509OIDs = {
 //      tbsCertList          TBSCertList,
 //      signatureAlgorithm   AlgorithmIdentifier,
 //      signature            BIT STRING  }
-const CertificateList = asn1.define('CertificateList', function() {
+export const CertificateList = asn1.define('CertificateList', function() {
   this.seq().obj(
     this.key('tbsCertList').use(TBSCertList),
     this.key('signatureAlgorithm').use(AlgorithmIdentifier),
     this.key('signature').bitstr()
   );
 });
-rfc5280.CertificateList = CertificateList;
 // AlgorithmIdentifier  ::=  SEQUENCE  {
 //      algorithm               OBJECT IDENTIFIER,
 //      parameters              ANY DEFINED BY algorithm OPTIONAL  }
-const AlgorithmIdentifier = asn1.define('AlgorithmIdentifier', function() {
+export const AlgorithmIdentifier = asn1.define('AlgorithmIdentifier', function() {
   this.seq().obj(
     this.key('algorithm').objid(),
     this.key('parameters').optional().any()
   );
 });
-rfc5280.AlgorithmIdentifier = AlgorithmIdentifier;
 // Certificate  ::=  SEQUENCE  {
 //      tbsCertificate       TBSCertificate,
 //      signatureAlgorithm   AlgorithmIdentifier,
 //      signature            BIT STRING  }
-const Certificate = asn1.define('Certificate', function() {
+export const Certificate = asn1.define('Certificate', function() {
   this.seq().obj(
     this.key('tbsCertificate').use(TBSCertificate),
     this.key('signatureAlgorithm').use(AlgorithmIdentifier),
     this.key('signature').bitstr()
   );
 });
-rfc5280.Certificate = Certificate;
 // TBSCertificate  ::=  SEQUENCE  {
 //      version         [0]  Version DEFAULT v1,
@@ -90,7 +83,7 @@ rfc5280.Certificate = Certificate;
 //      issuerUniqueID  [1]  IMPLICIT UniqueIdentifier OPTIONAL,
 //      subjectUniqueID [2]  IMPLICIT UniqueIdentifier OPTIONAL,
 //      extensions      [3]  Extensions OPTIONAL
-const TBSCertificate = asn1.define('TBSCertificate', function() {
+export const TBSCertificate = asn1.define('TBSCertificate', function() {
   this.seq().obj(
     this.key('version').def('v1').explicit(0).use(Version),
     this.key('serialNumber').int(),
@@ -104,50 +97,45 @@ const TBSCertificate = asn1.define('TBSCertificate', function() {
     this.key('extensions').optional().explicit(3).seqof(Extension)
   );
 });
-rfc5280.TBSCertificate = TBSCertificate;
 // Version  ::=  INTEGER  {  v1(0), v2(1), v3(2)  }
-const Version = asn1.define('Version', function() {
+export const Version = asn1.define('Version', function() {
   this.int({
     0: 'v1',
     1: 'v2',
     2: 'v3'
   });
 });
-rfc5280.Version = Version;
 // Validity ::= SEQUENCE {
 //      notBefore      Time,
 //      notAfter       Time  }
-const Validity = asn1.define('Validity', function() {
+export const Validity = asn1.define('Validity', function() {
   this.seq().obj(
     this.key('notBefore').use(Time),
     this.key('notAfter').use(Time)
   );
 });
-rfc5280.Validity = Validity;
 // Time ::= CHOICE {
 //      utcTime        UTCTime,
 //      generalTime    GeneralizedTime }
-const Time = asn1.define('Time', function() {
+export const Time = asn1.define('Time', function() {
   this.choice({
     utcTime: this.utctime(),
     genTime: this.gentime()
   });
 });
-rfc5280.Time = Time;
 // SubjectPublicKeyInfo  ::=  SEQUENCE  {
 //      algorithm            AlgorithmIdentifier,
 //      subjectPublicKey     BIT STRING  }
-const SubjectPublicKeyInfo = asn1.define('SubjectPublicKeyInfo', function() {
+export const SubjectPublicKeyInfo = asn1.define('SubjectPublicKeyInfo', function() {
   this.seq().obj(
     this.key('algorithm').use(AlgorithmIdentifier),
     this.key('subjectPublicKey').bitstr()
   );
 });
-rfc5280.SubjectPublicKeyInfo = SubjectPublicKeyInfo;
 // TBSCertList  ::=  SEQUENCE  {
 //      version                 Version OPTIONAL,
@@ -161,7 +149,7 @@ rfc5280.SubjectPublicKeyInfo = SubjectPublicKeyInfo;
 //           crlEntryExtensions      Extensions OPTIONAL
 //      }  OPTIONAL,
 //      crlExtensions           [0] Extensions OPTIONAL }
-const TBSCertList = asn1.define('TBSCertList', function() {
+export const TBSCertList = asn1.define('TBSCertList', function() {
   this.seq().obj(
     this.key('version').optional().int(),
     this.key('signature').use(AlgorithmIdentifier),
@@ -172,7 +160,6 @@ const TBSCertList = asn1.define('TBSCertList', function() {
     this.key('crlExtensions').explicit(0).optional().seqof(Extension)
   );
 });
-rfc5280.TBSCertList = TBSCertList;
 const RevokedCertificate = asn1.define('RevokedCertificate', function() {
   this.seq().obj(
@@ -186,7 +173,7 @@ const RevokedCertificate = asn1.define('RevokedCertificate', function() {
 //      extnID      OBJECT IDENTIFIER,
 //      critical    BOOLEAN DEFAULT FALSE,
 //      extnValue   OCTET STRING }
-const Extension = asn1.define('Extension', function() {
+export const Extension = asn1.define('Extension', function() {
   this.seq().obj(
     this.key('extnID').objid(x509OIDs),
     this.key('critical').bool().def(false),
@@ -197,16 +184,14 @@ const Extension = asn1.define('Extension', function() {
     })
   );
 });
-rfc5280.Extension = Extension;
 // Name ::= CHOICE { -- only one possibility for now --
 //      rdnSequence  RDNSequence }
-const Name = asn1.define('Name', function() {
+export const Name = asn1.define('Name', function() {
   this.choice({
     rdnSequence: this.use(RDNSequence)
   });
 });
-rfc5280.Name = Name;
 // GeneralName ::= CHOICE {
 //      otherName                 [0]  AnotherName,
@@ -218,7 +203,7 @@ rfc5280.Name = Name;
 //      uniformResourceIdentifier [6]  IA5String,
 //      iPAddress                 [7]  OCTET STRING,
 //      registeredID              [8]  OBJECT IDENTIFIER }
-const GeneralName = asn1.define('GeneralName', function() {
+export const GeneralName = asn1.define('GeneralName', function() {
   this.choice({
     otherName: this.implicit(0).use(AnotherName),
     rfc822Name: this.implicit(1).ia5str(),
@@ -230,83 +215,73 @@ const GeneralName = asn1.define('GeneralName', function() {
     registeredID: this.implicit(8).objid()
   });
 });
-rfc5280.GeneralName = GeneralName;
 // GeneralNames ::= SEQUENCE SIZE (1..MAX) OF GeneralName
-const GeneralNames = asn1.define('GeneralNames', function() {
+export const GeneralNames = asn1.define('GeneralNames', function() {
   this.seqof(GeneralName);
 });
-rfc5280.GeneralNames = GeneralNames;
 // AnotherName ::= SEQUENCE {
 //      type-id    OBJECT IDENTIFIER,
 //      value      [0] EXPLICIT ANY DEFINED BY type-id }
-const AnotherName = asn1.define('AnotherName', function() {
+export const AnotherName = asn1.define('AnotherName', function() {
   this.seq().obj(
     this.key('type-id').objid(),
     this.key('value').explicit(0).any()
   );
 });
-rfc5280.AnotherName = AnotherName;
 // EDIPartyName ::= SEQUENCE {
 //      nameAssigner              [0]  DirectoryString OPTIONAL,
 //      partyName                 [1]  DirectoryString }
-const EDIPartyName = asn1.define('EDIPartyName', function() {
+export const EDIPartyName = asn1.define('EDIPartyName', function() {
   this.seq().obj(
     this.key('nameAssigner').implicit(0).optional().use(DirectoryString),
     this.key('partyName').implicit(1).use(DirectoryString)
   );
 });
-rfc5280.EDIPartyName = EDIPartyName;
 // RDNSequence ::= SEQUENCE OF RelativeDistinguishedName
-const RDNSequence = asn1.define('RDNSequence', function() {
+export const RDNSequence = asn1.define('RDNSequence', function() {
   this.seqof(RelativeDistinguishedName);
 });
-rfc5280.RDNSequence = RDNSequence;
 // RelativeDistinguishedName ::=
 //      SET SIZE (1..MAX) OF AttributeTypeAndValue
-const RelativeDistinguishedName = asn1.define('RelativeDistinguishedName',
+export const RelativeDistinguishedName = asn1.define('RelativeDistinguishedName',
   function() {
     this.setof(AttributeTypeAndValue);
   });
-rfc5280.RelativeDistinguishedName = RelativeDistinguishedName;
 // AttributeTypeAndValue ::= SEQUENCE {
 //      type     AttributeType,
 //      value    AttributeValue }
-const AttributeTypeAndValue = asn1.define('AttributeTypeAndValue', function() {
+export const AttributeTypeAndValue = asn1.define('AttributeTypeAndValue', function() {
   this.seq().obj(
     this.key('type').use(AttributeType),
     this.key('value').use(AttributeValue)
   );
 });
-rfc5280.AttributeTypeAndValue = AttributeTypeAndValue;
 // Attribute               ::= SEQUENCE {
 //       type             AttributeType,
 //       values    SET OF AttributeValue }
-const Attribute = asn1.define('Attribute', function() {
+export const Attribute = asn1.define('Attribute', function() {
   this.seq().obj(
     this.key('type').use(AttributeType),
     this.key('values').setof(AttributeValue)
   );
 });
-rfc5280.Attribute = Attribute;
 // AttributeType ::= OBJECT IDENTIFIER
-const AttributeType = asn1.define('AttributeType', function() {
+export const AttributeType = asn1.define('AttributeType', function() {
   this.objid();
 });
-rfc5280.AttributeType = AttributeType;
 // AttributeValue ::= ANY -- DEFINED BY AttributeType
-const AttributeValue = asn1.define('AttributeValue', function() {
+export const AttributeValue = asn1.define('AttributeValue', function() {
   this.any();
 });
-rfc5280.AttributeValue = AttributeValue;
 // DirectoryString ::= CHOICE {
 //       teletexString           TeletexString (SIZE (1..MAX)),
@@ -314,7 +289,7 @@ rfc5280.AttributeValue = AttributeValue;
 //       universalString         UniversalString (SIZE (1..MAX)),
 //       utf8String              UTF8String (SIZE (1..MAX)),
 //       bmpString               BMPString (SIZE (1..MAX)) }
-const DirectoryString = asn1.define('DirectoryString', function() {
+export const DirectoryString = asn1.define('DirectoryString', function() {
   this.choice({
     teletexString: this.t61str(),
     printableString: this.printstr(),
@@ -323,13 +298,12 @@ const DirectoryString = asn1.define('DirectoryString', function() {
     bmpString: this.bmpstr()
   });
 });
-rfc5280.DirectoryString = DirectoryString;
 // AuthorityKeyIdentifier ::= SEQUENCE {
 //     keyIdentifier             [0] KeyIdentifier            OPTIONAL,
 //     authorityCertIssuer       [1] GeneralNames             OPTIONAL,
 //     authorityCertSerialNumber [2] CertificateSerialNumber  OPTIONAL }
-const AuthorityKeyIdentifier = asn1.define('AuthorityKeyIdentifier', function() {
+export const AuthorityKeyIdentifier = asn1.define('AuthorityKeyIdentifier', function() {
   this.seq().obj(
     this.key('keyIdentifier').implicit(0).optional().use(KeyIdentifier),
     this.key('authorityCertIssuer').implicit(1).optional().use(GeneralNames),
@@ -337,27 +311,24 @@ const AuthorityKeyIdentifier = asn1.define('AuthorityKeyIdentifier', function()
       .use(CertificateSerialNumber)
   );
 });
-rfc5280.AuthorityKeyIdentifier = AuthorityKeyIdentifier;
 // KeyIdentifier ::= OCTET STRING
-const KeyIdentifier = asn1.define('KeyIdentifier', function() {
+export const KeyIdentifier = asn1.define('KeyIdentifier', function() {
   this.octstr();
 });
-rfc5280.KeyIdentifier = KeyIdentifier;
 // CertificateSerialNumber  ::=  INTEGER
-const CertificateSerialNumber = asn1.define('CertificateSerialNumber',
+export const CertificateSerialNumber = asn1.define('CertificateSerialNumber',
   function() {
     this.int();
   });
-rfc5280.CertificateSerialNumber = CertificateSerialNumber;
 // ORAddress ::= SEQUENCE {
 //    built-in-standard-attributes BuiltInStandardAttributes,
 //    built-in-domain-defined-attributes    BuiltInDomainDefinedAttributes
 //                                            OPTIONAL,
 //    extension-attributes ExtensionAttributes OPTIONAL }
-const ORAddress = asn1.define('ORAddress', function() {
+export const ORAddress = asn1.define('ORAddress', function() {
   this.seq().obj(
     this.key('builtInStandardAttributes').use(BuiltInStandardAttributes),
     this.key('builtInDomainDefinedAttributes').optional()
@@ -365,7 +336,6 @@ const ORAddress = asn1.define('ORAddress', function() {
     this.key('extensionAttributes').optional().use(ExtensionAttributes)
   );
 });
-rfc5280.ORAddress = ORAddress;
 // BuiltInStandardAttributes ::= SEQUENCE {
 //    country-name                  CountryName OPTIONAL,
@@ -377,7 +347,7 @@ rfc5280.ORAddress = ORAddress;
 //    numeric-user-identifier   [4] IMPLICIT NumericUserIdentifier OPTIONAL,
 //    personal-name             [5] IMPLICIT PersonalName OPTIONAL,
 //    organizational-unit-names [6] IMPLICIT OrganizationalUnitNames OPTIONAL }
-const BuiltInStandardAttributes = asn1.define('BuiltInStandardAttributes',
+export const BuiltInStandardAttributes = asn1.define('BuiltInStandardAttributes',
   function() {
     this.seq().obj(
       this.key('countryName').optional().use(CountryName),
@@ -395,79 +365,69 @@ const BuiltInStandardAttributes = asn1.define('BuiltInStandardAttributes',
         .use(OrganizationalUnitNames)
     );
   });
-rfc5280.BuiltInStandardAttributes = BuiltInStandardAttributes;
 // CountryName ::= CHOICE {
 //    x121-dcc-code         NumericString,
 //    iso-3166-alpha2-code  PrintableString }
-const CountryName = asn1.define('CountryName', function() {
+export const CountryName = asn1.define('CountryName', function() {
   this.choice({
     x121DccCode: this.numstr(),
     iso3166Alpha2Code: this.printstr()
   });
 });
-rfc5280.CountryName = CountryName;
 // AdministrationDomainName ::= CHOICE {
 //    numeric   NumericString,
 //    printable PrintableString }
-const AdministrationDomainName = asn1.define('AdministrationDomainName',
+export const AdministrationDomainName = asn1.define('AdministrationDomainName',
   function() {
     this.choice({
       numeric: this.numstr(),
       printable: this.printstr()
     });
   });
-rfc5280.AdministrationDomainName = AdministrationDomainName;
 // NetworkAddress ::= X121Address
-const NetworkAddress = asn1.define('NetworkAddress', function() {
+export const NetworkAddress = asn1.define('NetworkAddress', function() {
   this.use(X121Address);
 });
-rfc5280.NetworkAddress = NetworkAddress;
 // X121Address ::= NumericString
-const X121Address = asn1.define('X121Address', function() {
+export const X121Address = asn1.define('X121Address', function() {
   this.numstr();
 });
-rfc5280.X121Address = X121Address;
 // TerminalIdentifier ::= PrintableString
-const TerminalIdentifier = asn1.define('TerminalIdentifier', function() {
+export const TerminalIdentifier = asn1.define('TerminalIdentifier', function() {
   this.printstr();
 });
-rfc5280.TerminalIdentifier = TerminalIdentifier;
 // PrivateDomainName ::= CHOICE {
 //    numeric   NumericString,
 //    printable PrintableString }
-const PrivateDomainName = asn1.define('PrivateDomainName', function() {
+export const PrivateDomainName = asn1.define('PrivateDomainName', function() {
   this.choice({
     numeric: this.numstr(),
     printable: this.printstr()
   });
 });
-rfc5280.PrivateDomainName = PrivateDomainName;
 // OrganizationName ::= PrintableString
-const OrganizationName = asn1.define('OrganizationName', function() {
+export const OrganizationName = asn1.define('OrganizationName', function() {
   this.printstr();
 });
-rfc5280.OrganizationName = OrganizationName;
 // NumericUserIdentifier ::= NumericString
-const NumericUserIdentifier = asn1.define('NumericUserIdentifier', function() {
+export const NumericUserIdentifier = asn1.define('NumericUserIdentifier', function() {
   this.numstr();
 });
-rfc5280.NumericUserIdentifier = NumericUserIdentifier;
 // PersonalName ::= SET {
 //    surname     [0] IMPLICIT PrintableString,
 //    given-name  [1] IMPLICIT PrintableString OPTIONAL,
 //    initials    [2] IMPLICIT PrintableString OPTIONAL,
 //    generation-qualifier [3] IMPLICIT PrintableString OPTIONAL }
-const PersonalName = asn1.define('PersonalName', function() {
+export const PersonalName = asn1.define('PersonalName', function() {
   this.set().obj(
     this.key('surname').implicit(0).printstr(),
     this.key('givenName').implicit(1).printstr(),
@@ -475,69 +435,60 @@ const PersonalName = asn1.define('PersonalName', function() {
     this.key('generationQualifier').implicit(3).printstr()
   );
 });
-rfc5280.PersonalName = PersonalName;
 // OrganizationalUnitNames ::= SEQUENCE SIZE (1..ub-organizational-units)
 //                              OF OrganizationalUnitName
-const OrganizationalUnitNames = asn1.define('OrganizationalUnitNames',
+export const OrganizationalUnitNames = asn1.define('OrganizationalUnitNames',
   function() {
     this.seqof(OrganizationalUnitName);
   });
-rfc5280.OrganizationalUnitNames = OrganizationalUnitNames;
 // OrganizationalUnitName ::= PrintableString (SIZE
 //                     (1..ub-organizational-unit-name-length))
-const OrganizationalUnitName = asn1.define('OrganizationalUnitName', function() {
+export const OrganizationalUnitName = asn1.define('OrganizationalUnitName', function() {
   this.printstr();
 });
-rfc5280.OrganizationalUnitName = OrganizationalUnitName;
 // uiltInDomainDefinedAttributes ::= SEQUENCE SIZE
 //                     (1..ub-domain-defined-attributes)
 //                       OF BuiltInDomainDefinedAttribute
-const BuiltInDomainDefinedAttributes = asn1.define(
+export const BuiltInDomainDefinedAttributes = asn1.define(
   'BuiltInDomainDefinedAttributes', function() {
     this.seqof(BuiltInDomainDefinedAttribute);
   });
-rfc5280.BuiltInDomainDefinedAttributes = BuiltInDomainDefinedAttributes;
 // BuiltInDomainDefinedAttribute ::= SEQUENCE {
 //    type PrintableString (SIZE (1..ub-domain-defined-attribute-type-length)),
 //    value PrintableString (SIZE (1..ub-domain-defined-attribute-value-length))
 //}
-const BuiltInDomainDefinedAttribute = asn1.define('BuiltInDomainDefinedAttribute',
+export const BuiltInDomainDefinedAttribute = asn1.define('BuiltInDomainDefinedAttribute',
   function() {
     this.seq().obj(
       this.key('type').printstr(),
       this.key('value').printstr()
     );
   });
-rfc5280.BuiltInDomainDefinedAttribute = BuiltInDomainDefinedAttribute;
 // ExtensionAttributes ::= SET SIZE (1..ub-extension-attributes) OF
 //                ExtensionAttribute
-const ExtensionAttributes = asn1.define('ExtensionAttributes', function() {
+export const ExtensionAttributes = asn1.define('ExtensionAttributes', function() {
   this.seqof(ExtensionAttribute);
 });
-rfc5280.ExtensionAttributes = ExtensionAttributes;
 // ExtensionAttribute ::=  SEQUENCE {
 //    extension-attribute-type [0] IMPLICIT INTEGER,
 //    extension-attribute-value [1] ANY DEFINED BY extension-attribute-type }
-const ExtensionAttribute = asn1.define('ExtensionAttribute', function() {
+export const ExtensionAttribute = asn1.define('ExtensionAttribute', function() {
   this.seq().obj(
     this.key('extensionAttributeType').implicit(0).int(),
     this.key('extensionAttributeValue').any().explicit(1).int()
   );
 });
-rfc5280.ExtensionAttribute = ExtensionAttribute;
 // SubjectKeyIdentifier ::= KeyIdentifier
-const SubjectKeyIdentifier = asn1.define('SubjectKeyIdentifier', function() {
+export const SubjectKeyIdentifier = asn1.define('SubjectKeyIdentifier', function() {
   this.use(KeyIdentifier);
 });
-rfc5280.SubjectKeyIdentifier = SubjectKeyIdentifier;
 // KeyUsage ::= BIT STRING {
 //      digitalSignature        (0),
@@ -550,179 +501,157 @@ rfc5280.SubjectKeyIdentifier = SubjectKeyIdentifier;
 //      cRLSign                 (6),
 //      encipherOnly            (7),
 //      decipherOnly            (8) }
-const KeyUsage = asn1.define('KeyUsage', function() {
+export const KeyUsage = asn1.define('KeyUsage', function() {
   this.bitstr();
 });
-rfc5280.KeyUsage = KeyUsage;
 // CertificatePolicies ::= SEQUENCE SIZE (1..MAX) OF PolicyInformation
-const CertificatePolicies = asn1.define('CertificatePolicies', function() {
+export const CertificatePolicies = asn1.define('CertificatePolicies', function() {
   this.seqof(PolicyInformation);
 });
-rfc5280.CertificatePolicies = CertificatePolicies;
 // PolicyInformation ::= SEQUENCE {
 //      policyIdentifier   CertPolicyId,
 //      policyQualifiers   SEQUENCE SIZE (1..MAX) OF PolicyQualifierInfo
 //                           OPTIONAL }
-const PolicyInformation = asn1.define('PolicyInformation', function() {
+export const PolicyInformation = asn1.define('PolicyInformation', function() {
   this.seq().obj(
     this.key('policyIdentifier').use(CertPolicyId),
     this.key('policyQualifiers').optional().use(PolicyQualifiers)
   );
 });
-rfc5280.PolicyInformation = PolicyInformation;
 // CertPolicyId ::= OBJECT IDENTIFIER
-const CertPolicyId = asn1.define('CertPolicyId', function() {
+export const CertPolicyId = asn1.define('CertPolicyId', function() {
   this.objid();
 });
-rfc5280.CertPolicyId = CertPolicyId;
-const PolicyQualifiers = asn1.define('PolicyQualifiers', function() {
+export const PolicyQualifiers = asn1.define('PolicyQualifiers', function() {
   this.seqof(PolicyQualifierInfo);
 });
-rfc5280.PolicyQualifiers = PolicyQualifiers;
 // PolicyQualifierInfo ::= SEQUENCE {
 //      policyQualifierId  PolicyQualifierId,
 //      qualifier          ANY DEFINED BY policyQualifierId }
-const PolicyQualifierInfo = asn1.define('PolicyQualifierInfo', function() {
+export const PolicyQualifierInfo = asn1.define('PolicyQualifierInfo', function() {
   this.seq().obj(
     this.key('policyQualifierId').use(PolicyQualifierId),
     this.key('qualifier').any()
   );
 });
-rfc5280.PolicyQualifierInfo = PolicyQualifierInfo;
 // PolicyQualifierId ::= OBJECT IDENTIFIER
-const PolicyQualifierId = asn1.define('PolicyQualifierId', function() {
+export const PolicyQualifierId = asn1.define('PolicyQualifierId', function() {
   this.objid();
 });
-rfc5280.PolicyQualifierId = PolicyQualifierId;
 // PolicyMappings ::= SEQUENCE SIZE (1..MAX) OF SEQUENCE {
 //      issuerDomainPolicy      CertPolicyId,
 //      subjectDomainPolicy     CertPolicyId }
-const PolicyMappings = asn1.define('PolicyMappings', function() {
+export const PolicyMappings = asn1.define('PolicyMappings', function() {
   this.seqof(PolicyMapping);
 });
-rfc5280.PolicyMappings = PolicyMappings;
-const PolicyMapping = asn1.define('PolicyMapping', function() {
+export const PolicyMapping = asn1.define('PolicyMapping', function() {
   this.seq().obj(
     this.key('issuerDomainPolicy').use(CertPolicyId),
     this.key('subjectDomainPolicy').use(CertPolicyId)
   );
 });
-rfc5280.PolicyMapping = PolicyMapping;
 // SubjectAltName ::= GeneralNames
-const SubjectAlternativeName = asn1.define('SubjectAlternativeName', function() {
+export const SubjectAlternativeName = asn1.define('SubjectAlternativeName', function() {
   this.use(GeneralNames);
 });
-rfc5280.SubjectAlternativeName = SubjectAlternativeName;
 // IssuerAltName ::= GeneralNames
-const IssuerAlternativeName = asn1.define('IssuerAlternativeName', function() {
+export const IssuerAlternativeName = asn1.define('IssuerAlternativeName', function() {
   this.use(GeneralNames);
 });
-rfc5280.IssuerAlternativeName = IssuerAlternativeName;
 // SubjectDirectoryAttributes ::= SEQUENCE SIZE (1..MAX) OF Attribute
-const SubjectDirectoryAttributes = asn1.define('SubjectDirectoryAttributes',
+export const SubjectDirectoryAttributes = asn1.define('SubjectDirectoryAttributes',
   function() {
     this.seqof(Attribute);
   });
-rfc5280.SubjectDirectoryAttributes = SubjectDirectoryAttributes;
 // BasicConstraints ::= SEQUENCE {
 //         cA                      BOOLEAN DEFAULT FALSE,
 //         pathLenConstraint       INTEGER (0..MAX) OPTIONAL }
-const BasicConstraints = asn1.define('BasicConstraints', function() {
+export const BasicConstraints = asn1.define('BasicConstraints', function() {
   this.seq().obj(
     this.key('cA').bool().def(false),
     this.key('pathLenConstraint').optional().int()
   );
 });
-rfc5280.BasicConstraints = BasicConstraints;
 // NameConstraints ::= SEQUENCE {
 //            permittedSubtrees       [0]     GeneralSubtrees OPTIONAL,
 //            excludedSubtrees        [1]     GeneralSubtrees OPTIONAL }
-const NameConstraints = asn1.define('NameConstraints', function() {
+export const NameConstraints = asn1.define('NameConstraints', function() {
   this.seq().obj(
     this.key('permittedSubtrees').implicit(0).optional().use(GeneralSubtrees),
     this.key('excludedSubtrees').implicit(1).optional().use(GeneralSubtrees)
   );
 });
-rfc5280.NameConstraints = NameConstraints;
 // GeneralSubtrees ::= SEQUENCE SIZE (1..MAX) OF GeneralSubtree
-const GeneralSubtrees = asn1.define('GeneralSubtrees', function() {
+export const GeneralSubtrees = asn1.define('GeneralSubtrees', function() {
   this.seqof(GeneralSubtree);
 });
-rfc5280.GeneralSubtrees = GeneralSubtrees;
 // GeneralSubtree ::= SEQUENCE {
 //            base                    GeneralName,
 //            minimum         [0]     BaseDistance DEFAULT 0,
 //            maximum         [1]     BaseDistance OPTIONAL }
-const GeneralSubtree = asn1.define('GeneralSubtree', function() {
+export const GeneralSubtree = asn1.define('GeneralSubtree', function() {
   this.seq().obj(
     this.key('base').use(GeneralName),
     this.key('minimum').implicit(0).def(0).use(BaseDistance),
     this.key('maximum').implicit(0).optional().use(BaseDistance)
   );
 });
-rfc5280.GeneralSubtree = GeneralSubtree;
 // BaseDistance ::= INTEGER
-const BaseDistance = asn1.define('BaseDistance', function() {
+export const BaseDistance = asn1.define('BaseDistance', function() {
   this.int();
 });
-rfc5280.BaseDistance = BaseDistance;
 // PolicyConstraints ::= SEQUENCE {
 //         requireExplicitPolicy           [0] SkipCerts OPTIONAL,
 //         inhibitPolicyMapping            [1] SkipCerts OPTIONAL }
-const PolicyConstraints = asn1.define('PolicyConstraints', function() {
+export const PolicyConstraints = asn1.define('PolicyConstraints', function() {
   this.seq().obj(
     this.key('requireExplicitPolicy').implicit(0).optional().use(SkipCerts),
     this.key('inhibitPolicyMapping').implicit(1).optional().use(SkipCerts)
   );
 });
-rfc5280.PolicyConstraints = PolicyConstraints;
 // SkipCerts ::= INTEGER
-const SkipCerts = asn1.define('SkipCerts', function() {
+export const SkipCerts = asn1.define('SkipCerts', function() {
   this.int();
 });
-rfc5280.SkipCerts = SkipCerts;
 // ExtKeyUsageSyntax ::= SEQUENCE SIZE (1..MAX) OF KeyPurposeId
-const ExtendedKeyUsage = asn1.define('ExtendedKeyUsage', function() {
+export const ExtendedKeyUsage = asn1.define('ExtendedKeyUsage', function() {
   this.seqof(KeyPurposeId);
 });
-rfc5280.ExtendedKeyUsage = ExtendedKeyUsage;
 // KeyPurposeId ::= OBJECT IDENTIFIER
-const KeyPurposeId = asn1.define('KeyPurposeId', function() {
+export const KeyPurposeId = asn1.define('KeyPurposeId', function() {
   this.objid();
 });
-rfc5280.KeyPurposeId = KeyPurposeId;
 // RLDistributionPoints ::= SEQUENCE SIZE (1..MAX) OF DistributionPoint
-const CRLDistributionPoints = asn1.define('CRLDistributionPoints', function() {
+export const CRLDistributionPoints = asn1.define('CRLDistributionPoints', function() {
   this.seqof(DistributionPoint);
 });
-rfc5280.CRLDistributionPoints = CRLDistributionPoints;
 // DistributionPoint ::= SEQUENCE {
 //         distributionPoint       [0]     DistributionPointName OPTIONAL,
 //         reasons                 [1]     ReasonFlags OPTIONAL,
 //         cRLIssuer               [2]     GeneralNames OPTIONAL }
-const DistributionPoint = asn1.define('DistributionPoint', function() {
+export const DistributionPoint = asn1.define('DistributionPoint', function() {
   this.seq().obj(
     this.key('distributionPoint').optional().explicit(0)
       .use(DistributionPointName),
@@ -730,18 +659,16 @@ const DistributionPoint = asn1.define('DistributionPoint', function() {
     this.key('cRLIssuer').optional().implicit(2).use(GeneralNames)
   );
 });
-rfc5280.DistributionPoint = DistributionPoint;
 // DistributionPointName ::= CHOICE {
 //         fullName                [0]     GeneralNames,
 //         nameRelativeToCRLIssuer [1]     RelativeDistinguishedName }
-const DistributionPointName = asn1.define('DistributionPointName', function() {
+export const DistributionPointName = asn1.define('DistributionPointName', function() {
   this.choice({
     fullName: this.implicit(0).use(GeneralNames),
     nameRelativeToCRLIssuer: this.implicit(1).use(RelativeDistinguishedName)
   });
 });
-rfc5280.DistributionPointName = DistributionPointName;
 // ReasonFlags ::= BIT STRING {
 //         unused                  (0),
@@ -753,64 +680,54 @@ rfc5280.DistributionPointName = DistributionPointName;
 //         certificateHold         (6),
 //         privilegeWithdrawn      (7),
 //         aACompromise            (8) }
-const ReasonFlags = asn1.define('ReasonFlags', function() {
+export const ReasonFlags = asn1.define('ReasonFlags', function() {
   this.bitstr();
 });
-rfc5280.ReasonFlags = ReasonFlags;
 // InhibitAnyPolicy ::= SkipCerts
-const InhibitAnyPolicy = asn1.define('InhibitAnyPolicy', function() {
+export const InhibitAnyPolicy = asn1.define('InhibitAnyPolicy', function() {
   this.use(SkipCerts);
 });
-rfc5280.InhibitAnyPolicy = InhibitAnyPolicy;
 // FreshestCRL ::= CRLDistributionPoints
-const FreshestCRL = asn1.define('FreshestCRL', function() {
+export const FreshestCRL = asn1.define('FreshestCRL', function() {
   this.use(CRLDistributionPoints);
 });
-rfc5280.FreshestCRL = FreshestCRL;
 // AuthorityInfoAccessSyntax  ::=
 //         SEQUENCE SIZE (1..MAX) OF AccessDescription
-const AuthorityInfoAccessSyntax = asn1.define('AuthorityInfoAccessSyntax',
-  function() {
-    this.seqof(AccessDescription);
-  });
-rfc5280.AuthorityInfoAccessSyntax = AuthorityInfoAccessSyntax;
+export const AuthorityInfoAccessSyntax = asn1.define('AuthorityInfoAccessSyntax', function() {
+  this.seqof(AccessDescription);
+});
 // AccessDescription  ::=  SEQUENCE {
 //         accessMethod          OBJECT IDENTIFIER,
 //         accessLocation        GeneralName  }
-const AccessDescription = asn1.define('AccessDescription', function() {
+export const AccessDescription = asn1.define('AccessDescription', function() {
   this.seq().obj(
     this.key('accessMethod').objid(),
     this.key('accessLocation').use(GeneralName)
   );
 });
-rfc5280.AccessDescription = AccessDescription;
 // SubjectInfoAccessSyntax  ::=
 //            SEQUENCE SIZE (1..MAX) OF AccessDescription
-const SubjectInformationAccess = asn1.define('SubjectInformationAccess',
-  function() {
-    this.seqof(AccessDescription);
-  });
-rfc5280.SubjectInformationAccess = SubjectInformationAccess;
+export const SubjectInformationAccess = asn1.define('SubjectInformationAccess', function() {
+  this.seqof(AccessDescription);
+});
 /**
  * CRL Extensions
  */
 // CRLNumber ::= INTEGER
-const CRLNumber = asn1.define('CRLNumber', function() {
+export const CRLNumber = asn1.define('CRLNumber', function() {
   this.int();
 });
-rfc5280.CRLNumber = CRLNumber;
-const DeltaCRLIndicator = asn1.define('DeltaCRLIndicator', function() {
+export const DeltaCRLIndicator = asn1.define('DeltaCRLIndicator', function() {
   this.use(CRLNumber);
 });
-rfc5280.DeltaCRLIndicator = DeltaCRLIndicator;
 // IssuingDistributionPoint ::= SEQUENCE {
 //         distributionPoint          [0] DistributionPointName OPTIONAL,
@@ -819,7 +736,7 @@ rfc5280.DeltaCRLIndicator = DeltaCRLIndicator;
 //         onlySomeReasons            [3] ReasonFlags OPTIONAL,
 //         indirectCRL                [4] BOOLEAN DEFAULT FALSE,
 //         onlyContainsAttributeCerts [5] BOOLEAN DEFAULT FALSE }
-const IssuingDistributionPoint = asn1.define('IssuingDistributionPoint',
+export const IssuingDistributionPoint = asn1.define('IssuingDistributionPoint',
   function() {
     this.seq().obj(
       this.key('distributionPoint').explicit(0).optional()
@@ -831,7 +748,6 @@ const IssuingDistributionPoint = asn1.define('IssuingDistributionPoint',
       this.key('onlyContainsAttributeCerts').implicit(5).def(false).bool()
     );
   });
-rfc5280.IssuingDistributionPoint = IssuingDistributionPoint;
 // CRLReason ::= ENUMERATED {
 //         unspecified             (0),
@@ -845,7 +761,7 @@ rfc5280.IssuingDistributionPoint = IssuingDistributionPoint;
 //         removeFromCRL           (8),
 //         privilegeWithdrawn      (9),
 //         aACompromise           (10) }
-const ReasonCode = asn1.define('ReasonCode', function() {
+export const ReasonCode = asn1.define('ReasonCode', function() {
   this.enum({
     0: 'unspecified',
     1: 'keyCompromise',
@@ -859,19 +775,16 @@ const ReasonCode = asn1.define('ReasonCode', function() {
     10: 'aACompromise'
   });
 });
-rfc5280.ReasonCode = ReasonCode;
 // InvalidityDate ::=  GeneralizedTime
-const InvalidityDate = asn1.define('InvalidityDate', function() {
+export const InvalidityDate = asn1.define('InvalidityDate', function() {
   this.gentime();
 });
-rfc5280.InvalidityDate = InvalidityDate;
 // CertificateIssuer ::=     GeneralNames
-const CertificateIssuer = asn1.define('CertificateIssuer', function() {
+export const CertificateIssuer = asn1.define('CertificateIssuer', function() {
   this.use(GeneralNames);
 });
-rfc5280.CertificateIssuer = CertificateIssuer;
 // OID label to extension model mapping
 const x509Extensions = {