Commit f857ebe3 authored by filatov's avatar filatov
Browse files

IUT certificates with various region issues

parent da2e30bd
<!-- Authorization ticket certificate with a rectangular region restriction
containing 2 rectangles with only 1 common point at base point
-->
<certificate name="CERT_IUT_C_5_BV_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_C_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="0">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="region">
<rectangle>
<location latitude="+5km" longitude="-5km"/>
<location latitude="+0km" longitude="-0km" />
<location latitude="-0km" longitude="+0km"/>
<location latitude="-5km" longitude="+5km" />
</rectangle>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization ticket certificate with a polygonal region restriction
representing a square centered at base point and having a side length of 10km
containing 12 points
-->
<certificate name="CERT_IUT_D_1_BV_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_D_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="0">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="region">
<polygon>
<location latitude="+5km" longitude="-5km"/>
<location latitude="+5km" longitude="-2km"/>
<location latitude="+5km" longitude="+2km"/>
<location latitude="+5km" longitude="+5km"/>
<location latitude="+2km" longitude="+5km"/>
<location latitude="-2km" longitude="+5km"/>
<location latitude="-5km" longitude="+5km"/>
<location latitude="-5km" longitude="+2km"/>
<location latitude="-5km" longitude="-2km"/>
<location latitude="-5km" longitude="-5km"/>
<location latitude="-2km" longitude="-5km"/>
<location latitude="+2km" longitude="-5km"/>
</polygon>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization ticket certificate with a polygonal region restriction
representing a square centered at base point and having a side length of 10km
containing 13 points
-->
<certificate name="CERT_IUT_D_2_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_D_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="0">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="region">
<polygon>
<location latitude="+5km" longitude="-5km"/>
<location latitude="+5km" longitude="-2km"/>
<location latitude="+5km" longitude="+2km"/>
<location latitude="+5km" longitude="+5km"/>
<location latitude="+2km" longitude="+5km"/>
<location latitude="-2km" longitude="+5km"/>
<location latitude="-5km" longitude="+5km"/>
<location latitude="-5km" longitude="+2km"/>
<location latitude="-5km" longitude="-2km"/>
<location latitude="-5km" longitude="-5km"/>
<location latitude="-2km" longitude="-5km"/>
<location latitude="+1km" longitude="-5km"/>
<location latitude="+3km" longitude="-5km"/>
</polygon>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization ticket certificate with a polygonal region restriction
containing 4 points with intersection
-->
<certificate name="CERT_IUT_D_3_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_D_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="0">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="region">
<polygon>
<location latitude="+5km" longitude="-5km"/>
<location latitude="-5km" longitude="+5km"/>
<location latitude="+5km" longitude="+5km"/>
<location latitude="-5km" longitude="-5km"/>
</polygon>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization authority certificate without any region restriction -->
<certificate name="CERT_TS_10_02_BO_AA">
<version>2</version>
<signer type="digest" name="CERT_TEST_ROOT"/>
<subject type="AA" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="4" confidence="0"/>
</attribute>
<!-- its_aid_list -->
<attribute type="its_aid_list">
<aid value="36"/> <!--CAM--> <!-- CAM -->
<aid value="37"/> <!--DENM--> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- The AT certificate signed with CERT_TS_A_AA and containing
validity restrictions of type time_start_and_end and time_ end
-->
<certificate name="CERT_TS_10_02_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_A_AA"/>
<signer type="digest" name="CERT_TS_10_02_BO_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
......@@ -17,13 +14,12 @@
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
<ssp aid="36">&#x01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#x01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="time" end="+365d"/>
<restriction type="time" start="-0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
......
<!-- The AT certificate signed with CERT_TS_A_AA and containing
validity restrictions of types ‘time_start_and_end’ and ‘time_start_and_duration’
<!-- The AT certificate signed with CERT_TS_A_AA and containing validity restrictions of time_end
-->
<certificate name="CERT_TS_10_03_BO_AT">
<version>2</version>
......@@ -22,8 +21,7 @@
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="time" start="+0d" duration="365d"/>
<restriction type="time" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
......
<!-- The AT certificate signed with CERT_TS_A_AA and containing validity restrictions of type time_start_and_duration
-->
<certificate name="CERT_TS_10_04_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_A_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" duration="365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization authority certificate containing validity restrictions of type time_end -->
<certificate name="CERT_TS_10_05_BO_AA">
<version>2</version>
<signer type="digest" name="CERT_TEST_ROOT"/>
<subject type="AA" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="4" confidence="0"/>
</attribute>
<!-- its_aid_list -->
<attribute type="its_aid_list">
<aid value="36"/> <!--CAM--> <!-- CAM -->
<aid value="37"/> <!--DENM--> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<certificate name="CERT_TS_10_05_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_10_05_BO_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#x01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#x01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="today" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization authority certificate containing validity restrictions of type time_start_and_duration -->
<certificate name="CERT_TS_10_06_BO_AA">
<version>2</version>
<signer type="digest" name="CERT_TEST_ROOT"/>
<subject type="AA" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="4" confidence="0"/>
</attribute>
<!-- its_aid_list -->
<attribute type="its_aid_list">
<aid value="36"/> <!--CAM--> <!-- CAM -->
<aid value="37"/> <!--DENM--> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" duration="365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<certificate name="CERT_TS_10_06_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_10_06_BO_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#x01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#x01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization authority certificate without AID list -->
<certificate name="CERT_TS_13_03_BO_AA">
<version>2</version>
<signer type="digest" name="CERT_TEST_ROOT"/>
<subject type="AA" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="4" confidence="0"/>
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<certificate name="CERT_TS_13_03_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_13_03_BO_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="+0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- AT certificate with signer info of type certificate -->
<certificate name="CERT_TS_14_01_BO_AT">
<version>2</version>
<signer type="certificate" name="CERT_TS_A_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#x01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#x01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="-0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- AT certificate with signer info of type certificate chain -->
<certificate name="CERT_TS_14_02_BO_AT">
<version>2</version>
<signer type="certificate_chain" name="CERT_TEST_ROOT CERT_TS_A_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#x01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#x01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="-0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- AT certificate with signer info of type digest_with_other_algorithm -->
<certificate name="CERT_TS_14_03_BO_AT">
<version>2</version>
<signer type="other_digest" algorithm="ecdsa_nistp256_with_sha256" name="CERT_TS_A_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#x01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#x01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="-0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization authority certificate with signer info of type cesrtificate -->
<certificate name="CERT_TS_15_01_BO_AA">
<version>2</version>
<signer type="certificate" name="CERT_TEST_ROOT"/>
<subject type="AA" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="4" confidence="0"/>
</attribute>
<!-- its_aid_list -->
<attribute type="its_aid_list">
<aid value="36"/> <!--CAM--> <!-- CAM -->
<aid value="37"/> <!--DENM--> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="-365d" end="+730d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- AT sigfned by AA certificate with signer info of type certificate -->
<certificate name="CERT_TS_15_01_BO_AT">
<version>2</version>
<signer type="digest" name="CERT_TS_15_01_BO_AA"/>
<subject type="AT" name="">
<!-- verification_key -->
<attribute type="verification_key">
<public_key algorythm="ecdsa_nistp256_with_sha256">
<ecc_point type="uncompressed"/>
</public_key>
</attribute>
<!-- assurance_level -->
<attribute type="assurance_level">
<assurance level="3"/>
</attribute>
<!-- its_aid_ssp_list -->
<attribute type="its_aid_ssp_list">
<ssp aid="36">&#x01;&#xFF;&#xFF;</ssp> <!-- CAM -->
<ssp aid="37">&#x01;&#xFF;&#xFF;&#xFF;</ssp> <!-- DENM -->
</attribute>
</subject>
<validity>
<restriction type="time" start="-0d" end="+365d"/>
<restriction type="region">
<none/>
</restriction>
</validity>
<signature algorithm="0"/>
</certificate>
<!-- Authorization authority certificate with signer info of type certificate_chain -->
<certificate name="CERT_TS_15_02_BO_AA">