Sample code for 30+ languages & platforms
Classic ASP

Create CAdES Signature (.p7s) Compliant with ICP-Brazil Digital Signature Standard PA AD RB v2.2

See more CAdES Examples

Demonstrates how to create a CMS signature w/ policy ID that is compliant with the ICP-Brazil Digital Signature Standard PA AD RB v2.2

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

' This example requires the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.

' ------------------------------------------------------------------------------------------------------
' Note: This example creates a CMS signature (.p7s) that contains the PDF.
' It is different than signing a PDF.  To sign a PDF where the resulting PDF contains the CMS signature,
' see this example:  Sign PDF for ICP-Brasil
' ------------------------------------------------------------------------------------------------------

set crypt = Server.CreateObject("Chilkat.Crypt2")

set cert = Server.CreateObject("Chilkat.Cert")
success = cert.LoadPfxFile("mySigningCert.pfx","pfxPassword")
If (success <> 1) Then
    Response.Write "<pre>" & Server.HTMLEncode( cert.LastErrorText) & "</pre>"
    Response.End
End If

success = crypt.SetSigningCert(cert)

' Create JSON to indicate which signing attributes to include.
set attrs = Server.CreateObject("Chilkat.JsonObject")
success = attrs.UpdateBool("contentType",1)
success = attrs.UpdateBool("signingTime",1)
success = attrs.UpdateBool("messageDigest",1)
success = attrs.UpdateBool("signingCertificateV2",1)

success = attrs.UpdateString("policyId.hashAlg","SHA256")

' Listed here are the currently existing profiles. (Chilkat will add additional ICP Brasil policy profiles in future versions as new ones are created.)
' See https://www.gov.br/iti/pt-br/assuntos/repositorio/artefatos-de-assinatura-digital for more information.
' 
' PA_AD_RA --> 2.16.76.1.7.1.5.1
' PA_AD_RA_v1_1 --> 2.16.76.1.7.1.5.1.1
' PA_AD_RA_v1_2 --> 2.16.76.1.7.1.5.1.2
' PA_AD_RA_v2_0 --> 2.16.76.1.7.1.5.2
' PA_AD_RA_v2_1 --> 2.16.76.1.7.1.5.2.1
' PA_AD_RA_v2_2 --> 2.16.76.1.7.1.5.2.2
' PA_AD_RA_v2_3 --> 2.16.76.1.7.1.5.2.3
' PA_AD_RA_v2_4 --> 2.16.76.1.7.1.5.2.4
' PA_AD_RB --> 2.16.76.1.7.1.1.1
' PA_AD_RB_v1_1 --> 2.16.76.1.7.1.1.1.1
' PA_AD_RB_v2_0 --> 2.16.76.1.7.1.1.2
' PA_AD_RB_v2_1 --> 2.16.76.1.7.1.1.2.1
' PA_AD_RB_v2_2 --> 2.16.76.1.7.1.1.2.2
' PA_AD_RB_v2_3 --> 2.16.76.1.7.1.1.2.3
' PA_AD_RC --> 2.16.76.1.7.1.4.1
' PA_AD_RC_v1_1 --> 2.16.76.1.7.1.4.1.1
' PA_AD_RC_v2_0 --> 2.16.76.1.7.1.4.2
' PA_AD_RC_v2_1 --> 2.16.76.1.7.1.4.2.1
' PA_AD_RC_v2_2 --> 2.16.76.1.7.1.4.2.2
' PA_AD_RC_v2_3 --> 2.16.76.1.7.1.4.2.3
' PA_AD_RT --> 2.16.76.1.7.1.2.1
' PA_AD_RT_v1_1 --> 2.16.76.1.7.1.2.1.1
' PA_AD_RT_v2_0 --> 2.16.76.1.7.1.2.2
' PA_AD_RT_v2_1 --> 2.16.76.1.7.1.2.2.1
' PA_AD_RT_v2_2 --> 2.16.76.1.7.1.2.2.2
' PA_AD_RT_v2_3 --> 2.16.76.1.7.1.2.2.3
' PA_AD_RV --> 2.16.76.1.7.1.3.1
' PA_AD_RV_v1_1 --> 2.16.76.1.7.1.3.1.1
' PA_AD_RV_v2_0 --> 2.16.76.1.7.1.3.2
' PA_AD_RV_v2_1 --> 2.16.76.1.7.1.3.2.1
' PA_AD_RV_v2_2 --> 2.16.76.1.7.1.3.2.2
' PA_AD_RV_v2_3 --> 2.16.76.1.7.1.3.2.3

' Set the policy OID and the profile name
' Typically you should use the latest version.
success = attrs.UpdateString("policyId.id","2.16.76.1.7.1.1.2.3")
success = attrs.UpdateString("policyId.profile","PA_AD_RB_v2_3")

' If you wish to use another, such as v2.2
success = attrs.UpdateString("policyId.id","2.16.76.1.7.1.1.2.2")
success = attrs.UpdateString("policyId.profile","PA_AD_RB_v2_2")

crypt.SigningAttributes = attrs.Emit()

' The input file can be any type of file.
inFile = "toBeSigned.pdf"
outFile = "signed.pdf.p7s"

success = crypt.CreateP7M(inFile,outFile)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( crypt.LastErrorText) & "</pre>"
    Response.End
End If

Response.Write "<pre>" & Server.HTMLEncode( "Success.") & "</pre>"

%>
</body>
</html>