Package dev.sigstore.trustroot

Class CertificateAuthority

  • @Immutable
public abstract class CertificateAuthority
extends java.lang.Object

    • Constructor Detail

      • CertificateAuthority

        public CertificateAuthority()

    • Method Detail

      • getCertPath

        public abstract java.security.cert.CertPath getCertPath()

      • getUri

        public abstract java.net.URI getUri()

      • getValidFor

        public abstract ValidFor getValidFor()

      • getSubject

        public abstract Subject getSubject()

      • isCurrent

        public boolean isCurrent()

      • asTrustAnchor

        @Lazy
public java.security.cert.TrustAnchor asTrustAnchor()
                                             throws java.security.cert.CertificateException,
                                                    java.security.InvalidAlgorithmParameterException
        Throws:
        java.security.cert.CertificateException
        java.security.InvalidAlgorithmParameterException

      • find

        public static java.util.List<CertificateAuthority> find​(java.util.List<CertificateAuthority> all,
                                                        java.time.Instant time)
        Find a CA by validity time, users of this method will need to then compare the key in the leaf to find the exact CA to validate against
        Parameters:
        time - the time the CA was expected to be valid (usually tlog entry time)
        Returns:
        a list of CAs that were valid at time