Click or drag to resize

X509ArchiveCutoffExtension Class

Represents X.509 Archive Cutoff extension which is first defined in RFC2560.
Inheritance Hierarchy

Namespace:  System.Security.Cryptography.X509Certificates
Assembly:  PKI.Core (in PKI.Core.dll) Version: (
public class X509ArchiveCutoffExtension : X509Extension

The X509ArchiveCutoffExtension type exposes the following members.

Public methodX509ArchiveCutoffExtension
Initializes a new instance of the X509ArchiveCutoffExtension class.
Public methodX509ArchiveCutoffExtension(DateTime)
Initializes a new instance of the X509ArchiveCutoffExtension class using a cutoff date.
Public methodX509ArchiveCutoffExtension(AsnEncodedData, Boolean)
Initializes a new instance of the X509ArchiveCutoffExtension class using an AsnEncodedData object and a value that identifies whether the extension is critical.
Public propertyCritical (Inherited from X509Extension.)
Public propertyCutoffDate
Gets a cutoff date and time.
Public propertyOid (Inherited from AsnEncodedData.)
Public propertyRawData (Inherited from AsnEncodedData.)
Public methodCopyFrom (Inherited from X509Extension.)
Public methodEquals (Inherited from Object.)
Protected methodFinalize (Inherited from Object.)
Public methodFormat
Returns a formatted version of the Abstract Syntax Notation One (ASN.1)-encoded data as a string.
(Overrides AsnEncodedDataFormat(Boolean).)
Public methodGetHashCode (Inherited from Object.)
Public methodGetType (Inherited from Object.)
Protected methodMemberwiseClone (Inherited from Object.)
Public methodToString (Inherited from Object.)
Extension Methods
Public Extension MethodEncode
Encodes current extension to ASN.1-encoded byte array.
(Defined by X509ExtensionExtensions.)
An OCSP responder MAY choose to retain revocation information beyond a certificate's expiration. The date obtained by subtracting this retention interval value from the producedAt time in a response is defined as the certificate's "archive cutoff" date. OCSP-enabled applications would use an OCSP archive cutoff date to contribute to a proof that a digital signature was (or was not) reliable on the date it was produced even if the certificate needed to validate the signature has long since expired.

To illustrate, if a server is operated with a 7-year retention interval policy and status was produced at time t1 then the value for ArchiveCutoff in the response would be (t1 - 7 years).

See Also