ProTrustSchema.asn (ITU-T Q.3062 (09/2022))

-- ASN module extracted from ITU-T Q.3062 (09/2022)

ProTrustSchema {itu-t recommendation q 3062
  protrustschema(1)}
DEFINITIONS AUTOMATIC TAGS ::= BEGIN

IMPORTS

  -- from Rec. ITU-T X.509 | ISO/IEC 9594-8
  AlgorithmIdentifier{}, SIGNATURE{}, SIGNED
    FROM AuthenticationFramework authenticationFramework
	
  -- from Rec. ITU-T X.520 | ISO/IEC 9594-6
  UniqueIdentifier
    FROM SelectedAttributeTypes selectedAttributeTypes;

SaSignallingMessage  ::= SEQUENCE {
   SecurityHeader SEQUENCE {
       sai SEQUENCE {
            localSsgwId UTF8String,
            peerSsgwId UTF8String,
            tvp UTF8String
       },
       securityPayload SEQUENCE {
            digitalSignature SIGNATURE,
            eec UTF8String
       }
    }
}
Sc_IssueCAreqs  ::= SEQUENCE {
    sai SEQUENCE {
        localSsgwId UTF8String,
        peerSsgwId UTF8String,
        tvp UTF8String
}
}
Sc_IssueCAresponds ::= SEQUENCE {
    securityAsscociationIdentifier SEQUENCE {
        dsa INTEGER (0..15),
        sgc Certificate,
        expiryTime UTCTime
    }
}


/* The following ASN.1 data type specifies the syntax of public-key certificates which is defined in 7.2.1 of [ITU-T X.509]. */

Certificate ::= SIGNED{TBSCertificate}

TBSCertificate ::= SEQUENCE {
  version                  [0]  Version DEFAULT v1,
  serialNumber                  CertificateSerialNumber,
  signature                     AlgorithmIdentifier{{SupportedAlgorithms}},
  issuer                        Name,
  validity                      Validity,
  subject                       Name,
  subjectPublicKeyInfo          SubjectPublicKeyInfo,
  issuerUniqueIdentifier   [1] IMPLICIT UniqueIdentifier OPTIONAL,
  ...,
  [[2: -- if present, version shall be v2 or v3
  subjectUniqueIdentifier  [2] IMPLICIT UniqueIdentifier OPTIONAL]],
  [[3: -- if present, version shall be v2 or v3
  extensions               [3]  Extensions OPTIONAL]]
}
 
Version ::= INTEGER {v1(0), v2(1), v3(2)}

CertificateSerialNumber ::= INTEGER

Validity ::= SEQUENCE {
  notBefore  Time,
  notAfter   Time,
  ... }

SubjectPublicKeyInfo ::= SEQUENCE {
  algorithm         AlgorithmIdentifier{{SupportedAlgorithms}},
  subjectPublicKey  BIT STRING,
  ... }

Time ::= CHOICE {
  utcTime          UTCTime,
  generalizedTime  GeneralizedTime }

Extensions ::= SEQUENCE SIZE (1..MAX) OF Extension

Extension ::= SEQUENCE {
  extnId     EXTENSION.&id({ExtensionSet}),
  critical   BOOLEAN DEFAULT FALSE,
  extnValue  OCTET STRING
    (CONTAINING EXTENSION.&ExtnType({ExtensionSet}{@extnId})
       ENCODED BY der),
  ... }

der OBJECT IDENTIFIER ::=
  {joint-iso-itu-t asn1(1) ber-derived(2) distinguished-encoding(1)}

ExtensionSet EXTENSION ::= {...}

Name ::= UTF8String
END