PowerShell
PowerShell
Binary Certificate Extension Data
See more Certificates Examples
Demonstrates how to binary certificate extension data by OID.The GetExtensionBd method is added in Chilkat v9.5.0.96.
Chilkat PowerShell Downloads
Add-Type -Path "C:\chilkat\ChilkatDotNet47-x64\ChilkatDotNet47.dll"
$success = $false
$cert = New-Object Chilkat.Cert
$success = $cert.LoadFromFile("qa_data/certs/testCert.cer")
if ($success -eq $false) {
$($cert.LastErrorText)
exit
}
$bd = New-Object Chilkat.BinData
# The particular certificate in this test contains the following extensions
$oid = "1.2.250.1.71.1.2.5"
$success = $cert.GetExtensionBd($oid,$bd)
if ($success -eq $true) {
$($oid + ": " + $bd.GetEncoded("hex_lower"))
}
$oid = "1.2.250.1.71.1.2.2"
$success = $cert.GetExtensionBd($oid,$bd)
if ($success -eq $true) {
$($oid + ": " + $bd.GetEncoded("hex_lower"))
}
$oid = "1.2.250.1.71.1.2.3"
$success = $cert.GetExtensionBd($oid,$bd)
if ($success -eq $true) {
$($oid + ": " + $bd.GetEncoded("hex_lower"))
}
$oid = "1.2.250.1.71.1.2.7"
$success = $cert.GetExtensionBd($oid,$bd)
if ($success -eq $true) {
$($oid + ": " + $bd.GetEncoded("hex_lower"))
}
$oid = "1.2.250.1.71.4.2.5"
$success = $cert.GetExtensionBd($oid,$bd)
if ($success -eq $true) {
$($oid + ": " + $bd.GetEncoded("hex_lower"))
}
# Sample output:
# 1.2.250.1.71.1.2.5: 040180
# 1.2.250.1.71.1.2.2: 020100
# 1.2.250.1.71.1.2.3: 1315383032353030303030312f32393030303539313432
# 1.2.250.1.71.1.2.7: 02010a
# 1.2.250.1.71.4.2.5: 30060c04534d3236
# The above binary values are actually ASN.1
# You can get the ASN.1 decoed by calling GetExtensionAsXml to get it in XML format,
# and then you extract the values from the XML.
$oid = "1.2.250.1.71.1.2.5"
$strXml = $cert.GetExtensionAsXml($oid)
if ($cert.LastMethodSuccess -eq $true) {
$($oid + ": " + $strXml)
}
$oid = "1.2.250.1.71.1.2.2"
$strXml = $cert.GetExtensionAsXml($oid)
if ($cert.LastMethodSuccess -eq $true) {
$($oid + ": " + $strXml)
}
$oid = "1.2.250.1.71.1.2.3"
$strXml = $cert.GetExtensionAsXml($oid)
if ($cert.LastMethodSuccess -eq $true) {
$($oid + ": " + $strXml)
}
$oid = "1.2.250.1.71.1.2.7"
$strXml = $cert.GetExtensionAsXml($oid)
if ($cert.LastMethodSuccess -eq $true) {
$($oid + ": " + $strXml)
}
$oid = "1.2.250.1.71.4.2.5"
$strXml = $cert.GetExtensionAsXml($oid)
if ($cert.LastMethodSuccess -eq $true) {
$($oid + ": " + $strXml)
}
# Sample output:
# 1.2.250.1.71.1.2.5: <octets>gA==</octets>
# 1.2.250.1.71.1.2.2: <int>00</int>
# 1.2.250.1.71.1.2.3: <printable>8025000001/2900059142</printable>
# 1.2.250.1.71.1.2.7: <int>0A</int>
# 1.2.250.1.71.4.2.5: <sequence><utf8>SM26</utf8></sequence>
# "gA==" is the base64 encoded byte values
# "0A" is hex for decimal 1