Unicode C
Unicode C
Get Certificate CRL Distribution Points
See more Certificates Examples
Demonstrates how to get a certificate's CRL Distribution Points extension data (assuming it exists). In the vast majority of cases, there will be one CRL Distribution Point.Note: This example requires Chilkat v9.5.0.76 or greater.
Chilkat Unicode C Downloads
#include <C_CkCertW.h>
#include <C_CkXmlW.h>
#include <C_CkStringBuilderW.h>
void ChilkatSample(void)
{
BOOL success;
HCkCertW cert;
const wchar_t *extensionXmlStr;
HCkXmlW xml;
HCkStringBuilderW sbDistPoint;
success = FALSE;
cert = CkCertW_Create();
success = CkCertW_LoadFromFile(cert,L"qa_data/certs/test_haswdt.cer");
if (success != TRUE) {
wprintf(L"%s\n",CkCertW_lastErrorText(cert));
CkCertW_Dispose(cert);
return;
}
// Get the CRL Distribution Points extension, which is at OID 2.5.29.31
extensionXmlStr = CkCertW_getExtensionAsXml(cert,L"2.5.29.31");
if (CkCertW_getLastMethodSuccess(cert) == FALSE) {
wprintf(L"Certificate does not have the CDP extension.\n");
CkCertW_Dispose(cert);
return;
}
xml = CkXmlW_Create();
CkXmlW_LoadXml(xml,extensionXmlStr);
// See what we have..
wprintf(L"%s\n",CkXmlW_getXml(xml));
// We should get XML like this:
// <?xml version="1.0" encoding="utf-8" ?>
// <sequence>
// <sequence>
// <contextSpecific tag="0" constructed="1">
// <contextSpecific tag="0" constructed="1">
// <contextSpecific tag="6" constructed="0">aHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09NT0RPUlNBQ2xpZW50QXV0aGVudGljYXRpb25hbmRTZWN1
// cmVFbWFpbENBLmNybA==</contextSpecific>
// </contextSpecific>
// </contextSpecific>
// </sequence>
// </sequence>
//
// Assuming there is one CRL Distribution Point...
sbDistPoint = CkStringBuilderW_Create();
success = CkXmlW_GetChildContentSb(xml,L"sequence|contextSpecific|contextSpecific|contextSpecific",sbDistPoint);
if (success == TRUE) {
CkStringBuilderW_Decode(sbDistPoint,L"base64",L"utf-8");
wprintf(L"CRL Distribution Point: %s\n",CkStringBuilderW_getAsString(sbDistPoint));
}
// Sample output:
// CRL Distribution Point: http://crl.comodoca.com/COMODORSAClientAuthenticationandSecureEmailCA.crl
CkCertW_Dispose(cert);
CkXmlW_Dispose(xml);
CkStringBuilderW_Dispose(sbDistPoint);
}