Sample code for 30+ languages & platforms
Lianja

Sign Mexico Pedimento

See more Misc Examples

Add a signature to a Mexico pedimento file.

Chilkat Lianja Downloads

Lianja
llSuccess = .F.

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// This is the contents before signing:

// 500|1|3621|4199800|400||
// 601|3621|4199800|400|IN|1||EKU9003173C9|EKU9003173C9FRNN09|1||
// 507|4199800|IM|2006-7888">
// 507|4199800|MS|2">
// 800|4199800|1">
// 801|M3621037.222|1|5|011|

// This is the contents after signing

// 500|1|3621|4199800|400||
// 601|3621|4199800|400|IN|1||EKU9003173C9|EKU9003173C9FRNN09|1||
// 507|4199800|IM|2006-7888">
// 507|4199800|MS|2">
// 800|4199800|1|fhP2Ker54D2+3+UZch23F0E72 .... 9qNSPIuAqpj524qLZbbA==|30001000000500003416|
// 801|M3621037.222|1|5|011|

// First create the text to be signed.
llBCRLF = .T.
loSb = createobject("CkStringBuilder")
// Use CRLF line endings.
loSb.AppendLine("500|1|3621|4199800|400||",llBCRLF)
loSb.AppendLine("601|3621|4199800|400|IN|1||EKU9003173C9|EKU9003173C9FRNN09|1||",llBCRLF)
loSb.AppendLine("507|4199800|IM|2006-7888">",llBCRLF)
loSb.AppendLine("507|4199800|MS|2">",llBCRLF)

// Generate the MD5 hash of what we have so far..
lcMd5_base64 = loSb.GetHash("md5","base64","utf-8")
? "MD5 hash = " + lcMd5_base64

// Complete the original file.
// After signing, we'll update the BASE64_SIGNATURE and CERT_SERIAL
loSb.AppendLine("800|4199800|1|BASE64_SIGNATURE|CERT_SERIAL|",llBCRLF)
loSb.AppendLine("801|M3621037.222|1|5|011|",llBCRLF)

// We're going to sign the MD5 hash using the private key.
loPrivKey = createobject("CkPrivateKey")
llSuccess = loPrivKey.LoadAnyFormatFile("qa_data/certs/mexico_test/Certificados_de_Prueba/Certificados_Pruebas/Personas Morales/EKU9003173C9_20230517223532/CSD_EKU9003173C9_20230517223903/CSD_Sucursal_1_EKU9003173C9_20230517_223850.key","12345678a")
if (llSuccess = .F.) then
    ? loPrivKey.LastErrorText
    release loSb
    release loPrivKey
    return
endif

// Generate the ASN.1 to be signed.

// <sequence>
//     <sequence>
//         <oid>1.2.840.113549.2.5</oid>
//         <null/>
//     </sequence>
//     <octets>SwxHfaJhG+N3pPqay6UzVA==</octets>
// </sequence>

loXml = createobject("CkXml")
loXml.Tag = "sequence"
loXml.UpdateChildContent("sequence|oid","1.2.840.113549.2.5")
loXml.UpdateChildContent("sequence|null","")
loXml.UpdateChildContent("octets",lcMd5_base64)

loAsn = createobject("CkAsn")
loAsn.LoadAsnXml(loXml.GetXml())
? "ASN.1 = " + loAsn.GetEncodedDer("base64")

// Sign with the private key.
loRsa = createobject("CkRsa")
llSuccess = loRsa.UsePrivateKey(loPrivKey)
if (llSuccess = .F.) then
    ? loRsa.LastErrorText
    release loSb
    release loPrivKey
    release loXml
    release loAsn
    release loRsa
    return
endif

// Create the opaque signature.
loBdSig = createobject("CkBinData")
loBdSig.AppendEncoded(loAsn.GetEncodedDer("base64"),"base64")
llSuccess = loRsa.SignRawBd(loBdSig)
if (llSuccess = .F.) then
    ? loRsa.LastErrorText
    release loSb
    release loPrivKey
    release loXml
    release loAsn
    release loRsa
    release loBdSig
    return
endif

// bd now contains the opaque signature, which embeds the ASN.1, which contains the MD5 hash.
// We're going to add this line:
// 800|4199800|1|BASE64_SIGNATURE|CERT_SERIAL_NUM|

loCert = createobject("CkCert")
llSuccess = loCert.LoadFromFile("qa_data/certs/mexico_test/Certificados_de_Prueba/Certificados_Pruebas/Personas Morales/EKU9003173C9_20230517223532/CSD_EKU9003173C9_20230517223903/CSD_Sucursal_1_EKU9003173C9_20230517_223850.cer")
if (llSuccess = .F.) then
    ? loCert.LastErrorText
    release loSb
    release loPrivKey
    release loXml
    release loAsn
    release loRsa
    release loBdSig
    release loCert
    return
endif

lcSerialHex = loCert.SerialNumber
// The serial in hex form looks like this:   3330303031303030303030353030303033343136
// Decode to us-ascii.
loSbSerial = createobject("CkStringBuilder")
loSbSerial.DecodeAndAppend(lcSerialHex,"hex","us-ascii")
? "serial number in us-ascii: " + loSbSerial.GetAsString()

lnNumReplaced = loSb.Replace("CERT_SERIAL",loSbSerial.GetAsString())
lnNumReplaced = loSb.Replace("BASE64_SIGNATURE",loBdSig.GetEncoded("base64"))

? "------------------------------------"
? "Result:"
? loSb.GetAsString()


release loSb
release loPrivKey
release loXml
release loAsn
release loRsa
release loBdSig
release loCert
release loSbSerial