X.501

ISO/IEC 9594-2:2020 (E)

8.2

ENTRY

Attribute

Attribute Type

Attribute Value(s)

Context(s) (Context List)

Context type

Context value

Fallback

9.2 Names in general

code:9.2

Name ::= CHOICE { -- 今使えるのはこれだけ -- rdnSequence RDNSequence }

RDNSequence ::= SEQUENCE OF RelativeDistinguishedName

9.3 Relative distinguished name

code:9.3

RelativeDistinguishedName ::= SET SIZE (1..MAX) OF AttributeTypeAndValue

AttributeTypeAndValue ::= SEQUENCE {

type ATTRIBUTE.&id({SupportedAttributes}),

value ATTRIBUTE.&Type({SupportedAttributes}{@type}),

...

}

SupportedAttributes ATTRIBUTE ::= {objectClass | aliasedEntryName, ...}

-- attributes

objectClass ATTRIBUTE ::= {

WITH SYNTAX OBJECT IDENTIFIER

EQUALITY MATCHING RULE objectIdentifierMatch

LDAP-SYNTAX oid.&id

LDAP-NAME {"objectClass"}

ID id-at-objectClass }

aliasedEntryName ATTRIBUTE ::= {

WITH SYNTAX DistinguishedName

EQUALITY MATCHING RULE distinguishedNameMatch

SINGLE VALUE TRUE

LDAP-SYNTAX dn.&id

LDAP-NAME {"aliasedObjectName"}

ID id-at-aliasedEntryName }

-- attributes

id-at-objectClass OBJECT IDENTIFIER ::= {id-at 0}

id-at-aliasedEntryName OBJECT IDENTIFIER ::= {id-at 1}

id-at ID ::= attributeType

attributeType ID ::= {ds 4}

ds ID ::= {joint-iso-itu-t ds(5)}

ID ::= OBJECT IDENTIFIER

RFC 4514 RFC 5280 でも参照可能

code:RFC 5280 4.1.2.4 Issuer

Name ::= CHOICE { -- only one possibility for now --

rdnSequence RDNSequence }

RDNSequence ::= SEQUENCE OF RelativeDistinguishedName

RelativeDistinguishedName ::=

SET SIZE (1..MAX) OF AttributeTypeAndValue

AttributeTypeAndValue ::= SEQUENCE {

type AttributeType,

value AttributeValue }

AttributeType ::= OBJECT IDENTIFIER

AttributeValue ::= ANY -- DEFINED BY AttributeType

DirectoryString ::= CHOICE {

teletexString TeletexString (SIZE (1..MAX)),

printableString PrintableString (SIZE (1..MAX)),

universalString UniversalString (SIZE (1..MAX)),

utf8String UTF8String (SIZE (1..MAX)),

bmpString BMPString (SIZE (1..MAX)) }

AttributeType は AttributeType によって決まる。 一般的には DirectoryString