How to add Authority Ket Identifier Extension to my certificate?

275 Views Asked by Murrchalkina At 26 January 2023 at 04:42

I used default X509Extension: certificateRequest.CertificateExtensions.Add(new X509Extension(new Oid("2.5.29.35"), issuer.GetPublicKey(), false));

But when i decode it, this extension is broken and has a strange order of random symbols. In .NET 7 i have a class X509AuthorityKeyIdentifierExtension, but i need do the same on .NET Framework 4.8. How i can do it?

Original Q&A

There are 1 best solutions below

Crypt32 On 26 January 2023 at 09:36

There is no built-in way to do this in legacy .NET Framework without using 3rd party libraries.

For instance, I have my own PKI extension library for .NET Framework that contains classes for most common certificate extensions. Here is an example of X509AuthorityKeyIdentifierExtension class: https://github.com/PKISolutions/pkix.net/blob/master/PKI/Cryptography/X509Certificates/X509AuthorityKeyIdentifierExtension.cs

And the usage could be:

var aki = new X509AuthorityKeyIdentifierExtension(issuer, AuthorityKeyIdentifierFlags.KeyIdentifier, false);
certificateRequest.CertificateExtensions.Add(aki);

p.s. I'm the author of pkix.net library.

How to add Authority Ket Identifier Extension to my certificate?

There are 1 best solutions below

Related Questions in X509CERTIFICATE2

Related Questions in .NET-4.8

Related Questions in AUTHORITYKEYIDENTIFIER

Trending Questions

Popular # Hahtags

Popular Questions