Reference documentation and code samples for the Ceritificate Authority Service V1 API module Google::Cloud::Security::PrivateCA::V1::CertificateExtensionConstraints::KnownCertificateExtension.
Describes well-known X.509 extensions that can appear in a Certificate, not including the SubjectAltNames extension.
Constants
KNOWN_CERTIFICATE_EXTENSION_UNSPECIFIED
value: 0
Not specified.
BASE_KEY_USAGE
value: 1
Refers to a certificate's Key Usage extension, as described in RFC 5280
section 4.2.1.3.
This corresponds to the
KeyUsage.base_key_usage
field.
EXTENDED_KEY_USAGE
value: 2
Refers to a certificate's Extended Key Usage extension, as described in
RFC 5280
section 4.2.1.12.
This corresponds to the
KeyUsage.extended_key_usage
message.
CA_OPTIONS
value: 3
Refers to a certificate's Basic Constraints extension, as described in
RFC 5280
section 4.2.1.9.
This corresponds to the
X509Parameters.ca_options
field.
POLICY_IDS
value: 4
Refers to a certificate's Policy object identifiers, as described in
RFC 5280
section 4.2.1.4.
This corresponds to the
X509Parameters.policy_ids
field.
AIA_OCSP_SERVERS
value: 5
Refers to OCSP servers in a certificate's Authority Information Access
extension, as described in
RFC 5280
section 4.2.2.1,
This corresponds to the
X509Parameters.aia_ocsp_servers
field.
NAME_CONSTRAINTS
value: 6
Refers to Name Constraints extension as described in
RFC 5280
section 4.2.1.10