openmedialibrary_platform_d.../lib/python3.5/site-packages/cryptography/x509/oid.py

# This file is dual licensed under the terms of the Apache License, Version
# 2.0, and the BSD License. See the LICENSE file in the root of this repository
# for complete details.

from __future__ import absolute_import, division, print_function

from cryptography import utils
from cryptography.hazmat.primitives import hashes


class ObjectIdentifier(object):
    def __init__(self, dotted_string):
        self._dotted_string = dotted_string

    def __eq__(self, other):
        if not isinstance(other, ObjectIdentifier):
            return NotImplemented

        return self.dotted_string == other.dotted_string

    def __ne__(self, other):
        return not self == other

    def __repr__(self):
        return "<ObjectIdentifier(oid={0}, name={1})>".format(
            self.dotted_string,
            self._name
        )

    def __hash__(self):
        return hash(self.dotted_string)

    @property
    def _name(self):
        return _OID_NAMES.get(self, "Unknown OID")

    dotted_string = utils.read_only_property("_dotted_string")


class ExtensionOID(object):
    SUBJECT_DIRECTORY_ATTRIBUTES = ObjectIdentifier("2.5.29.9")
    SUBJECT_KEY_IDENTIFIER = ObjectIdentifier("2.5.29.14")
    KEY_USAGE = ObjectIdentifier("2.5.29.15")
    SUBJECT_ALTERNATIVE_NAME = ObjectIdentifier("2.5.29.17")
    ISSUER_ALTERNATIVE_NAME = ObjectIdentifier("2.5.29.18")
    BASIC_CONSTRAINTS = ObjectIdentifier("2.5.29.19")
    NAME_CONSTRAINTS = ObjectIdentifier("2.5.29.30")
    CRL_DISTRIBUTION_POINTS = ObjectIdentifier("2.5.29.31")
    CERTIFICATE_POLICIES = ObjectIdentifier("2.5.29.32")
    POLICY_MAPPINGS = ObjectIdentifier("2.5.29.33")
    AUTHORITY_KEY_IDENTIFIER = ObjectIdentifier("2.5.29.35")
    POLICY_CONSTRAINTS = ObjectIdentifier("2.5.29.36")
    EXTENDED_KEY_USAGE = ObjectIdentifier("2.5.29.37")
    FRESHEST_CRL = ObjectIdentifier("2.5.29.46")
    INHIBIT_ANY_POLICY = ObjectIdentifier("2.5.29.54")
    AUTHORITY_INFORMATION_ACCESS = ObjectIdentifier("1.3.6.1.5.5.7.1.1")
    SUBJECT_INFORMATION_ACCESS = ObjectIdentifier("1.3.6.1.5.5.7.1.11")
    OCSP_NO_CHECK = ObjectIdentifier("1.3.6.1.5.5.7.48.1.5")


class CRLExtensionOID(object):
    CERTIFICATE_ISSUER = ObjectIdentifier("2.5.29.29")
    CRL_REASON = ObjectIdentifier("2.5.29.21")
    INVALIDITY_DATE = ObjectIdentifier("2.5.29.24")


class NameOID(object):
    COMMON_NAME = ObjectIdentifier("2.5.4.3")
    COUNTRY_NAME = ObjectIdentifier("2.5.4.6")
    LOCALITY_NAME = ObjectIdentifier("2.5.4.7")
    STATE_OR_PROVINCE_NAME = ObjectIdentifier("2.5.4.8")
    ORGANIZATION_NAME = ObjectIdentifier("2.5.4.10")
    ORGANIZATIONAL_UNIT_NAME = ObjectIdentifier("2.5.4.11")
    SERIAL_NUMBER = ObjectIdentifier("2.5.4.5")
    SURNAME = ObjectIdentifier("2.5.4.4")
    GIVEN_NAME = ObjectIdentifier("2.5.4.42")
    TITLE = ObjectIdentifier("2.5.4.12")
    GENERATION_QUALIFIER = ObjectIdentifier("2.5.4.44")
    DN_QUALIFIER = ObjectIdentifier("2.5.4.46")
    PSEUDONYM = ObjectIdentifier("2.5.4.65")
    DOMAIN_COMPONENT = ObjectIdentifier("0.9.2342.19200300.100.1.25")
    EMAIL_ADDRESS = ObjectIdentifier("1.2.840.113549.1.9.1")


class SignatureAlgorithmOID(object):
    RSA_WITH_MD5 = ObjectIdentifier("1.2.840.113549.1.1.4")
    RSA_WITH_SHA1 = ObjectIdentifier("1.2.840.113549.1.1.5")
    RSA_WITH_SHA224 = ObjectIdentifier("1.2.840.113549.1.1.14")
    RSA_WITH_SHA256 = ObjectIdentifier("1.2.840.113549.1.1.11")
    RSA_WITH_SHA384 = ObjectIdentifier("1.2.840.113549.1.1.12")
    RSA_WITH_SHA512 = ObjectIdentifier("1.2.840.113549.1.1.13")
    ECDSA_WITH_SHA1 = ObjectIdentifier("1.2.840.10045.4.1")
    ECDSA_WITH_SHA224 = ObjectIdentifier("1.2.840.10045.4.3.1")
    ECDSA_WITH_SHA256 = ObjectIdentifier("1.2.840.10045.4.3.2")
    ECDSA_WITH_SHA384 = ObjectIdentifier("1.2.840.10045.4.3.3")
    ECDSA_WITH_SHA512 = ObjectIdentifier("1.2.840.10045.4.3.4")
    DSA_WITH_SHA1 = ObjectIdentifier("1.2.840.10040.4.3")
    DSA_WITH_SHA224 = ObjectIdentifier("2.16.840.1.101.3.4.3.1")
    DSA_WITH_SHA256 = ObjectIdentifier("2.16.840.1.101.3.4.3.2")

_SIG_OIDS_TO_HASH = {
    SignatureAlgorithmOID.RSA_WITH_MD5.dotted_string: hashes.MD5(),
    SignatureAlgorithmOID.RSA_WITH_SHA1.dotted_string: hashes.SHA1(),
    SignatureAlgorithmOID.RSA_WITH_SHA224.dotted_string: hashes.SHA224(),
    SignatureAlgorithmOID.RSA_WITH_SHA256.dotted_string: hashes.SHA256(),
    SignatureAlgorithmOID.RSA_WITH_SHA384.dotted_string: hashes.SHA384(),
    SignatureAlgorithmOID.RSA_WITH_SHA512.dotted_string: hashes.SHA512(),
    SignatureAlgorithmOID.ECDSA_WITH_SHA1.dotted_string: hashes.SHA1(),
    SignatureAlgorithmOID.ECDSA_WITH_SHA224.dotted_string: hashes.SHA224(),
    SignatureAlgorithmOID.ECDSA_WITH_SHA256.dotted_string: hashes.SHA256(),
    SignatureAlgorithmOID.ECDSA_WITH_SHA384.dotted_string: hashes.SHA384(),
    SignatureAlgorithmOID.ECDSA_WITH_SHA512.dotted_string: hashes.SHA512(),
    SignatureAlgorithmOID.DSA_WITH_SHA1.dotted_string: hashes.SHA1(),
    SignatureAlgorithmOID.DSA_WITH_SHA224.dotted_string: hashes.SHA224(),
    SignatureAlgorithmOID.DSA_WITH_SHA256.dotted_string: hashes.SHA256()
}


class ExtendedKeyUsageOID(object):
    SERVER_AUTH = ObjectIdentifier("1.3.6.1.5.5.7.3.1")
    CLIENT_AUTH = ObjectIdentifier("1.3.6.1.5.5.7.3.2")
    CODE_SIGNING = ObjectIdentifier("1.3.6.1.5.5.7.3.3")
    EMAIL_PROTECTION = ObjectIdentifier("1.3.6.1.5.5.7.3.4")
    TIME_STAMPING = ObjectIdentifier("1.3.6.1.5.5.7.3.8")
    OCSP_SIGNING = ObjectIdentifier("1.3.6.1.5.5.7.3.9")


class AuthorityInformationAccessOID(object):
    CA_ISSUERS = ObjectIdentifier("1.3.6.1.5.5.7.48.2")
    OCSP = ObjectIdentifier("1.3.6.1.5.5.7.48.1")


class CertificatePoliciesOID(object):
    CPS_QUALIFIER = ObjectIdentifier("1.3.6.1.5.5.7.2.1")
    CPS_USER_NOTICE = ObjectIdentifier("1.3.6.1.5.5.7.2.2")
    ANY_POLICY = ObjectIdentifier("2.5.29.32.0")

_OID_NAMES = {
    NameOID.COMMON_NAME: "commonName",
    NameOID.COUNTRY_NAME: "countryName",
    NameOID.LOCALITY_NAME: "localityName",
    NameOID.STATE_OR_PROVINCE_NAME: "stateOrProvinceName",
    NameOID.ORGANIZATION_NAME: "organizationName",
    NameOID.ORGANIZATIONAL_UNIT_NAME: "organizationalUnitName",
    NameOID.SERIAL_NUMBER: "serialNumber",
    NameOID.SURNAME: "surname",
    NameOID.GIVEN_NAME: "givenName",
    NameOID.TITLE: "title",
    NameOID.GENERATION_QUALIFIER: "generationQualifier",
    NameOID.DN_QUALIFIER: "dnQualifier",
    NameOID.PSEUDONYM: "pseudonym",
    NameOID.DOMAIN_COMPONENT: "domainComponent",
    NameOID.EMAIL_ADDRESS: "emailAddress",
    SignatureAlgorithmOID.RSA_WITH_MD5: "md5WithRSAEncryption",
    SignatureAlgorithmOID.RSA_WITH_SHA1: "sha1WithRSAEncryption",
    SignatureAlgorithmOID.RSA_WITH_SHA224: "sha224WithRSAEncryption",
    SignatureAlgorithmOID.RSA_WITH_SHA256: "sha256WithRSAEncryption",
    SignatureAlgorithmOID.RSA_WITH_SHA384: "sha384WithRSAEncryption",
    SignatureAlgorithmOID.RSA_WITH_SHA512: "sha512WithRSAEncryption",
    SignatureAlgorithmOID.ECDSA_WITH_SHA1: "ecdsa-with-SHA1",
    SignatureAlgorithmOID.ECDSA_WITH_SHA224: "ecdsa-with-SHA224",
    SignatureAlgorithmOID.ECDSA_WITH_SHA256: "ecdsa-with-SHA256",
    SignatureAlgorithmOID.ECDSA_WITH_SHA384: "ecdsa-with-SHA384",
    SignatureAlgorithmOID.ECDSA_WITH_SHA512: "ecdsa-with-SHA512",
    SignatureAlgorithmOID.DSA_WITH_SHA1: "dsa-with-sha1",
    SignatureAlgorithmOID.DSA_WITH_SHA224: "dsa-with-sha224",
    SignatureAlgorithmOID.DSA_WITH_SHA256: "dsa-with-sha256",
    ExtendedKeyUsageOID.SERVER_AUTH: "serverAuth",
    ExtendedKeyUsageOID.CLIENT_AUTH: "clientAuth",
    ExtendedKeyUsageOID.CODE_SIGNING: "codeSigning",
    ExtendedKeyUsageOID.EMAIL_PROTECTION: "emailProtection",
    ExtendedKeyUsageOID.TIME_STAMPING: "timeStamping",
    ExtendedKeyUsageOID.OCSP_SIGNING: "OCSPSigning",
    ExtensionOID.SUBJECT_DIRECTORY_ATTRIBUTES: "subjectDirectoryAttributes",
    ExtensionOID.SUBJECT_KEY_IDENTIFIER: "subjectKeyIdentifier",
    ExtensionOID.KEY_USAGE: "keyUsage",
    ExtensionOID.SUBJECT_ALTERNATIVE_NAME: "subjectAltName",
    ExtensionOID.ISSUER_ALTERNATIVE_NAME: "issuerAltName",
    ExtensionOID.BASIC_CONSTRAINTS: "basicConstraints",
    CRLExtensionOID.CRL_REASON: "cRLReason",
    CRLExtensionOID.INVALIDITY_DATE: "invalidityDate",
    CRLExtensionOID.CERTIFICATE_ISSUER: "certificateIssuer",
    ExtensionOID.NAME_CONSTRAINTS: "nameConstraints",
    ExtensionOID.CRL_DISTRIBUTION_POINTS: "cRLDistributionPoints",
    ExtensionOID.CERTIFICATE_POLICIES: "certificatePolicies",
    ExtensionOID.POLICY_MAPPINGS: "policyMappings",
    ExtensionOID.AUTHORITY_KEY_IDENTIFIER: "authorityKeyIdentifier",
    ExtensionOID.POLICY_CONSTRAINTS: "policyConstraints",
    ExtensionOID.EXTENDED_KEY_USAGE: "extendedKeyUsage",
    ExtensionOID.FRESHEST_CRL: "freshestCRL",
    ExtensionOID.INHIBIT_ANY_POLICY: "inhibitAnyPolicy",
    ExtensionOID.AUTHORITY_INFORMATION_ACCESS: "authorityInfoAccess",
    ExtensionOID.SUBJECT_INFORMATION_ACCESS: "subjectInfoAccess",
    ExtensionOID.OCSP_NO_CHECK: "OCSPNoCheck",
    AuthorityInformationAccessOID.OCSP: "OCSP",
    AuthorityInformationAccessOID.CA_ISSUERS: "caIssuers",
    CertificatePoliciesOID.CPS_QUALIFIER: "id-qt-cps",
    CertificatePoliciesOID.CPS_USER_NOTICE: "id-qt-unotice",
}
split platform 2016-02-06 09:36:57 +00:00			`# This file is dual licensed under the terms of the Apache License, Version`
			`# 2.0, and the BSD License. See the LICENSE file in the root of this repository`
			`# for complete details.`

			`from __future__ import absolute_import, division, print_function`

			`from cryptography import utils`
			`from cryptography.hazmat.primitives import hashes`


			`class ObjectIdentifier(object):`
			`def __init__(self, dotted_string):`
			`self._dotted_string = dotted_string`

			`def __eq__(self, other):`
			`if not isinstance(other, ObjectIdentifier):`
			`return NotImplemented`

			`return self.dotted_string == other.dotted_string`

			`def __ne__(self, other):`
			`return not self == other`

			`def __repr__(self):`
			`return "<ObjectIdentifier(oid={0}, name={1})>".format(`
			`self.dotted_string,`
			`self._name`
			`)`

			`def __hash__(self):`
			`return hash(self.dotted_string)`

			`@property`
			`def _name(self):`
			`return _OID_NAMES.get(self, "Unknown OID")`

			`dotted_string = utils.read_only_property("_dotted_string")`


			`class ExtensionOID(object):`
			`SUBJECT_DIRECTORY_ATTRIBUTES = ObjectIdentifier("2.5.29.9")`
			`SUBJECT_KEY_IDENTIFIER = ObjectIdentifier("2.5.29.14")`
			`KEY_USAGE = ObjectIdentifier("2.5.29.15")`
			`SUBJECT_ALTERNATIVE_NAME = ObjectIdentifier("2.5.29.17")`
			`ISSUER_ALTERNATIVE_NAME = ObjectIdentifier("2.5.29.18")`
			`BASIC_CONSTRAINTS = ObjectIdentifier("2.5.29.19")`
			`NAME_CONSTRAINTS = ObjectIdentifier("2.5.29.30")`
			`CRL_DISTRIBUTION_POINTS = ObjectIdentifier("2.5.29.31")`
			`CERTIFICATE_POLICIES = ObjectIdentifier("2.5.29.32")`
			`POLICY_MAPPINGS = ObjectIdentifier("2.5.29.33")`
			`AUTHORITY_KEY_IDENTIFIER = ObjectIdentifier("2.5.29.35")`
			`POLICY_CONSTRAINTS = ObjectIdentifier("2.5.29.36")`
			`EXTENDED_KEY_USAGE = ObjectIdentifier("2.5.29.37")`
			`FRESHEST_CRL = ObjectIdentifier("2.5.29.46")`
			`INHIBIT_ANY_POLICY = ObjectIdentifier("2.5.29.54")`
			`AUTHORITY_INFORMATION_ACCESS = ObjectIdentifier("1.3.6.1.5.5.7.1.1")`
			`SUBJECT_INFORMATION_ACCESS = ObjectIdentifier("1.3.6.1.5.5.7.1.11")`
			`OCSP_NO_CHECK = ObjectIdentifier("1.3.6.1.5.5.7.48.1.5")`


			`class CRLExtensionOID(object):`
			`CERTIFICATE_ISSUER = ObjectIdentifier("2.5.29.29")`
			`CRL_REASON = ObjectIdentifier("2.5.29.21")`
			`INVALIDITY_DATE = ObjectIdentifier("2.5.29.24")`


			`class NameOID(object):`
			`COMMON_NAME = ObjectIdentifier("2.5.4.3")`
			`COUNTRY_NAME = ObjectIdentifier("2.5.4.6")`
			`LOCALITY_NAME = ObjectIdentifier("2.5.4.7")`
			`STATE_OR_PROVINCE_NAME = ObjectIdentifier("2.5.4.8")`
			`ORGANIZATION_NAME = ObjectIdentifier("2.5.4.10")`
			`ORGANIZATIONAL_UNIT_NAME = ObjectIdentifier("2.5.4.11")`
			`SERIAL_NUMBER = ObjectIdentifier("2.5.4.5")`
			`SURNAME = ObjectIdentifier("2.5.4.4")`
			`GIVEN_NAME = ObjectIdentifier("2.5.4.42")`
			`TITLE = ObjectIdentifier("2.5.4.12")`
			`GENERATION_QUALIFIER = ObjectIdentifier("2.5.4.44")`
			`DN_QUALIFIER = ObjectIdentifier("2.5.4.46")`
			`PSEUDONYM = ObjectIdentifier("2.5.4.65")`
			`DOMAIN_COMPONENT = ObjectIdentifier("0.9.2342.19200300.100.1.25")`
			`EMAIL_ADDRESS = ObjectIdentifier("1.2.840.113549.1.9.1")`


			`class SignatureAlgorithmOID(object):`
			`RSA_WITH_MD5 = ObjectIdentifier("1.2.840.113549.1.1.4")`
			`RSA_WITH_SHA1 = ObjectIdentifier("1.2.840.113549.1.1.5")`
			`RSA_WITH_SHA224 = ObjectIdentifier("1.2.840.113549.1.1.14")`
			`RSA_WITH_SHA256 = ObjectIdentifier("1.2.840.113549.1.1.11")`
			`RSA_WITH_SHA384 = ObjectIdentifier("1.2.840.113549.1.1.12")`
			`RSA_WITH_SHA512 = ObjectIdentifier("1.2.840.113549.1.1.13")`
			`ECDSA_WITH_SHA1 = ObjectIdentifier("1.2.840.10045.4.1")`
			`ECDSA_WITH_SHA224 = ObjectIdentifier("1.2.840.10045.4.3.1")`
			`ECDSA_WITH_SHA256 = ObjectIdentifier("1.2.840.10045.4.3.2")`
			`ECDSA_WITH_SHA384 = ObjectIdentifier("1.2.840.10045.4.3.3")`
			`ECDSA_WITH_SHA512 = ObjectIdentifier("1.2.840.10045.4.3.4")`
			`DSA_WITH_SHA1 = ObjectIdentifier("1.2.840.10040.4.3")`
			`DSA_WITH_SHA224 = ObjectIdentifier("2.16.840.1.101.3.4.3.1")`
			`DSA_WITH_SHA256 = ObjectIdentifier("2.16.840.1.101.3.4.3.2")`

			`_SIG_OIDS_TO_HASH = {`
			`SignatureAlgorithmOID.RSA_WITH_MD5.dotted_string: hashes.MD5(),`
			`SignatureAlgorithmOID.RSA_WITH_SHA1.dotted_string: hashes.SHA1(),`
			`SignatureAlgorithmOID.RSA_WITH_SHA224.dotted_string: hashes.SHA224(),`
			`SignatureAlgorithmOID.RSA_WITH_SHA256.dotted_string: hashes.SHA256(),`
			`SignatureAlgorithmOID.RSA_WITH_SHA384.dotted_string: hashes.SHA384(),`
			`SignatureAlgorithmOID.RSA_WITH_SHA512.dotted_string: hashes.SHA512(),`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA1.dotted_string: hashes.SHA1(),`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA224.dotted_string: hashes.SHA224(),`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA256.dotted_string: hashes.SHA256(),`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA384.dotted_string: hashes.SHA384(),`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA512.dotted_string: hashes.SHA512(),`
			`SignatureAlgorithmOID.DSA_WITH_SHA1.dotted_string: hashes.SHA1(),`
			`SignatureAlgorithmOID.DSA_WITH_SHA224.dotted_string: hashes.SHA224(),`
			`SignatureAlgorithmOID.DSA_WITH_SHA256.dotted_string: hashes.SHA256()`
			`}`


			`class ExtendedKeyUsageOID(object):`
			`SERVER_AUTH = ObjectIdentifier("1.3.6.1.5.5.7.3.1")`
			`CLIENT_AUTH = ObjectIdentifier("1.3.6.1.5.5.7.3.2")`
			`CODE_SIGNING = ObjectIdentifier("1.3.6.1.5.5.7.3.3")`
			`EMAIL_PROTECTION = ObjectIdentifier("1.3.6.1.5.5.7.3.4")`
			`TIME_STAMPING = ObjectIdentifier("1.3.6.1.5.5.7.3.8")`
			`OCSP_SIGNING = ObjectIdentifier("1.3.6.1.5.5.7.3.9")`


			`class AuthorityInformationAccessOID(object):`
			`CA_ISSUERS = ObjectIdentifier("1.3.6.1.5.5.7.48.2")`
			`OCSP = ObjectIdentifier("1.3.6.1.5.5.7.48.1")`


			`class CertificatePoliciesOID(object):`
			`CPS_QUALIFIER = ObjectIdentifier("1.3.6.1.5.5.7.2.1")`
			`CPS_USER_NOTICE = ObjectIdentifier("1.3.6.1.5.5.7.2.2")`
			`ANY_POLICY = ObjectIdentifier("2.5.29.32.0")`

			`_OID_NAMES = {`
			`NameOID.COMMON_NAME: "commonName",`
			`NameOID.COUNTRY_NAME: "countryName",`
			`NameOID.LOCALITY_NAME: "localityName",`
			`NameOID.STATE_OR_PROVINCE_NAME: "stateOrProvinceName",`
			`NameOID.ORGANIZATION_NAME: "organizationName",`
			`NameOID.ORGANIZATIONAL_UNIT_NAME: "organizationalUnitName",`
			`NameOID.SERIAL_NUMBER: "serialNumber",`
			`NameOID.SURNAME: "surname",`
			`NameOID.GIVEN_NAME: "givenName",`
			`NameOID.TITLE: "title",`
			`NameOID.GENERATION_QUALIFIER: "generationQualifier",`
			`NameOID.DN_QUALIFIER: "dnQualifier",`
			`NameOID.PSEUDONYM: "pseudonym",`
			`NameOID.DOMAIN_COMPONENT: "domainComponent",`
			`NameOID.EMAIL_ADDRESS: "emailAddress",`
			`SignatureAlgorithmOID.RSA_WITH_MD5: "md5WithRSAEncryption",`
			`SignatureAlgorithmOID.RSA_WITH_SHA1: "sha1WithRSAEncryption",`
			`SignatureAlgorithmOID.RSA_WITH_SHA224: "sha224WithRSAEncryption",`
			`SignatureAlgorithmOID.RSA_WITH_SHA256: "sha256WithRSAEncryption",`
			`SignatureAlgorithmOID.RSA_WITH_SHA384: "sha384WithRSAEncryption",`
			`SignatureAlgorithmOID.RSA_WITH_SHA512: "sha512WithRSAEncryption",`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA1: "ecdsa-with-SHA1",`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA224: "ecdsa-with-SHA224",`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA256: "ecdsa-with-SHA256",`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA384: "ecdsa-with-SHA384",`
			`SignatureAlgorithmOID.ECDSA_WITH_SHA512: "ecdsa-with-SHA512",`
			`SignatureAlgorithmOID.DSA_WITH_SHA1: "dsa-with-sha1",`
			`SignatureAlgorithmOID.DSA_WITH_SHA224: "dsa-with-sha224",`
			`SignatureAlgorithmOID.DSA_WITH_SHA256: "dsa-with-sha256",`
			`ExtendedKeyUsageOID.SERVER_AUTH: "serverAuth",`
			`ExtendedKeyUsageOID.CLIENT_AUTH: "clientAuth",`
			`ExtendedKeyUsageOID.CODE_SIGNING: "codeSigning",`
			`ExtendedKeyUsageOID.EMAIL_PROTECTION: "emailProtection",`
			`ExtendedKeyUsageOID.TIME_STAMPING: "timeStamping",`
			`ExtendedKeyUsageOID.OCSP_SIGNING: "OCSPSigning",`
			`ExtensionOID.SUBJECT_DIRECTORY_ATTRIBUTES: "subjectDirectoryAttributes",`
			`ExtensionOID.SUBJECT_KEY_IDENTIFIER: "subjectKeyIdentifier",`
			`ExtensionOID.KEY_USAGE: "keyUsage",`
			`ExtensionOID.SUBJECT_ALTERNATIVE_NAME: "subjectAltName",`
			`ExtensionOID.ISSUER_ALTERNATIVE_NAME: "issuerAltName",`
			`ExtensionOID.BASIC_CONSTRAINTS: "basicConstraints",`
			`CRLExtensionOID.CRL_REASON: "cRLReason",`
			`CRLExtensionOID.INVALIDITY_DATE: "invalidityDate",`
			`CRLExtensionOID.CERTIFICATE_ISSUER: "certificateIssuer",`
			`ExtensionOID.NAME_CONSTRAINTS: "nameConstraints",`
			`ExtensionOID.CRL_DISTRIBUTION_POINTS: "cRLDistributionPoints",`
			`ExtensionOID.CERTIFICATE_POLICIES: "certificatePolicies",`
			`ExtensionOID.POLICY_MAPPINGS: "policyMappings",`
			`ExtensionOID.AUTHORITY_KEY_IDENTIFIER: "authorityKeyIdentifier",`
			`ExtensionOID.POLICY_CONSTRAINTS: "policyConstraints",`
			`ExtensionOID.EXTENDED_KEY_USAGE: "extendedKeyUsage",`
			`ExtensionOID.FRESHEST_CRL: "freshestCRL",`
			`ExtensionOID.INHIBIT_ANY_POLICY: "inhibitAnyPolicy",`
			`ExtensionOID.AUTHORITY_INFORMATION_ACCESS: "authorityInfoAccess",`
			`ExtensionOID.SUBJECT_INFORMATION_ACCESS: "subjectInfoAccess",`
			`ExtensionOID.OCSP_NO_CHECK: "OCSPNoCheck",`
			`AuthorityInformationAccessOID.OCSP: "OCSP",`
			`AuthorityInformationAccessOID.CA_ISSUERS: "caIssuers",`
			`CertificatePoliciesOID.CPS_QUALIFIER: "id-qt-cps",`
			`CertificatePoliciesOID.CPS_USER_NOTICE: "id-qt-unotice",`
			`}`