ASN.1 Documenter · ASN.1 Documenter · ASN.1 Documenter · ASN.1 Documenter · ASN.1 Documenter · ASN.1 Documenter
--- a/EtsiTs102941BaseTypes.asn
+++ b/EtsiTs102941BaseTypes.asn
 EtsiTs102941BaseTypes
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1)}
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
  HashedId8, Time32, PublicEncryptionKey, PublicVerificationKey, Signature
 FROM
  Ieee1609Dot2BaseTypes {iso(1) identified-organization(3) ieee(111) 
  standards-association-numbered-series-standards(2) wave-stds(1609)  
  dot2(2) base(1) base-types(2) major-version-2(2) minor-version-4(4)}
--  WITH SUCCESSORS
+  WITH SUCCESSORS
  CertificateId, SubjectAssurance, SequenceOfPsidSsp, SequenceOfPsidGroupPermissions,
  ValidityPeriod, GeographicRegion, HashedData
 FROM 
  Ieee1609Dot2 {iso(1) identified-organization(3) ieee(111)
  standards-association-numbered-series-standards(2) wave-stds(1609)
  dot2(2) base (1) schema (1) major-version-2(2) minor-version-6(6)}
--  WITH SUCCESSORS
+  WITH SUCCESSORS
  EtsiTs103097Data, EtsiTs103097Data-Encrypted, EtsiTs103097Data-Signed,
  EtsiTs103097Data-SignedExternalPayload,
  EtsiTs103097Data-Unsecured, EtsiTs103097Data-Encrypted-Unicast, EtsiTs103097Data-SignedAndEncrypted-Unicast
 FROM
-  EtsiTs103097Module {itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1)}
+  EtsiTs103097Module {itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1)}
--  WITH SUCCESSORS
+  WITH SUCCESSORS
 ;
 CertificateFormat::= INTEGER {
  ts103097v131 (1)
  }(1..255)
 CertificateSubjectAttributes ::= SEQUENCE {
-  id 			CertificateId OPTIONAL,
+  id 					CertificateId OPTIONAL,
  validityPeriod        ValidityPeriod OPTIONAL,
  region                GeographicRegion OPTIONAL,
  assuranceLevel        SubjectAssurance OPTIONAL,
  appPermissions        SequenceOfPsidSsp OPTIONAL,
  certIssuePermissions  SequenceOfPsidGroupPermissions OPTIONAL,
  ...
  }(WITH COMPONENTS { ..., appPermissions PRESENT} |
   WITH COMPONENTS { ..., certIssuePermissions PRESENT})
 EcSignature::= CHOICE {
  encryptedEcSignature 	EtsiTs103097Data-Encrypted{EtsiTs103097Data-SignedExternalPayload}, 
  ecSignature           EtsiTs103097Data-SignedExternalPayload
  }
 PublicKeys ::= SEQUENCE {
  verificationKey       PublicVerificationKey,
  encryptionKey         PublicEncryptionKey OPTIONAL
  }
 Version ::= INTEGER {v1(1)}
 END
--- a/EtsiTs102941MessagesCa.asn
+++ b/EtsiTs102941MessagesCa.asn
 /*************************************************************************************
   This file contains the EtsiTs102941Messages module containing all possible PKI messages.
   It should be used when all PKI messages needs to be implemented (for example, for CA development)
 **************************************************************************************/
 EtsiTs102941MessagesCa
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) messagesCa(0) version-4(4) minor-version-1(1) }
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) messagesCa(0) major-version-3(3) minor-version-3(3)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
 EtsiTs103097Data,
 EtsiTs103097Data-Signed,
 EtsiTs103097Data-SignedExternalPayload,
 EtsiTs103097Data-Encrypted-Unicast,
 EtsiTs103097Data-SignedAndEncrypted-Unicast
 FROM EtsiTs103097Module
-{itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1)} 
+{itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1)} 
--WITH SUCCESSORS
+WITH SUCCESSORS
 Version
 FROM EtsiTs102941BaseTypes
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
-InnerEcRequestSignedForPop, InnerEcResponse
-FROM EtsiTs102941TypesEnrolment
+InnerEcRequestSignedForPop, InnerEcResponse
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) version-3(3) minor-version-1(1) }
+FROM EtsiTs102941TypesEnrolment
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) major-version-3(3) minor-version-1(1) }
-InnerAtRequest, InnerAtResponse
+WITH SUCCESSORS
-FROM EtsiTs102941TypesAuthorization
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) version-3(3) minor-version-1(1) }
+EtsiTs102941ButterflyAuthorizationRequest-X509Signed,
+InnerAtRequest, InnerAtResponse
-ToBeSignedCrl, ToBeSignedTlmCtl, ToBeSignedRcaCtl
+FROM EtsiTs102941TypesAuthorization
-FROM EtsiTs102941TrustLists
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) major-version-3(3) minor-version-3(3) }
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
-AuthorizationValidationRequest, AuthorizationValidationResponse
+ToBeSignedCrl, ToBeSignedTlmCtl, ToBeSignedRcaCtl
-FROM EtsiTs102941TypesAuthorizationValidation
+FROM EtsiTs102941TrustLists
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authValidation(7) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) major-version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
-CaCertificateRequest
-FROM EtsiTs102941TypesCaManagement
+AuthorizationValidationRequest, AuthorizationValidationResponse 
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) caManagement(8) version-3(3) minor-version-1(1) }
+FROM EtsiTs102941TypesAuthorizationValidation
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authValidation(7) major-version-3(3) minor-version-1(1) }
-ToBeSignedLinkCertificate, ToBeSignedLinkCertificateTlm, ToBeSignedLinkCertificateRca
+WITH SUCCESSORS
-FROM EtsiTs102941TypesLinkCertificate
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) version-3(3) minor-version-1(1) }
+CaCertificateRequest
+FROM EtsiTs102941TypesCaManagement
-EeRaInterfacePdu, EeRaCertRequest, RaEeCertInfo, EeRaDownloadRequest
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) caManagement(8) major-version-3(3) minor-version-1(1) }
-FROM Ieee1609Dot2Dot1EeRaInterface
+WITH SUCCESSORS
-{iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) ee-ra(11) major-version-2(2) minor-version-2(2)}
+ToBeSignedLinkCertificate, ToBeSignedLinkCertificateTlm, ToBeSignedLinkCertificateRca
-RaAcaCertRequest, AcaRaCertResponse
+FROM EtsiTs102941TypesLinkCertificate
-FROM Ieee1609Dot2Dot1AcaRaInterface
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) major-version-3(3) minor-version-1(1) }
-{iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) aca-ra(4) major-version-2(2) minor-version-2(2)}
+WITH SUCCESSORS
-Ieee1609Dot2Data-SignedX509AuthenticatedCertRequest, ScmsPdu-Scoped, SignerSingleX509Cert
+EeRaCertRequest, RaEeCertInfo, EeRaDownloadRequest
-FROM Ieee1609Dot2Dot1Protocol
+FROM Ieee1609Dot2Dot1EeRaInterface
-{iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) protocol(17) major-version-2(2) minor-version-2(2)}
+{iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) ee-ra(11) major-version-2(2) minor-version-2(2)}
+WITH SUCCESSORS
-;
+RaAcaCertRequest, AcaRaCertResponse 
-/************
+FROM Ieee1609Dot2Dot1AcaRaInterface
-- Messages
+{iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) aca-ra(4) major-version-2(2) minor-version-2(2)}
-************/
+WITH SUCCESSORS
-EnrolmentRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentRequest PRESENT})})} 
+;
-EnrolmentResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentResponse PRESENT})})} 
-AuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
+/************
-AuthorizationRequestMessageWithPop ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
+-- Messages
-AuthorizationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationResponse PRESENT})})} 
+************/
-CertificateRevocationListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateRevocationList PRESENT})})}
+EnrolmentRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentRequest PRESENT})})} 
-TlmCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListTlm PRESENT})})}
+EnrolmentResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentResponse PRESENT})})} 
-RcaCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListRca PRESENT})})}
+AuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-AuthorizationValidationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationValidationRequest PRESENT})})} 
+AuthorizationRequestMessageWithPop ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-AuthorizationValidationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationValidationResponse PRESENT})})} 
+AuthorizationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationResponse PRESENT})})} 
-CaCertificateRequestMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data(WITH COMPONENTS{..., content (WITH COMPONENTS{caCertificateRequest PRESENT})})}
+CertificateRevocationListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateRevocationList PRESENT})})}
-CaCertificateRekeyingMessage ::= EtsiTs103097Data-Signed {EtsiTs103097Data-Signed {EtsiTs102941Data(WITH COMPONENTS{..., content (WITH COMPONENTS{caCertificateRequest PRESENT})})}}
+TlmCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListTlm PRESENT})})}
-TlmLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{linkCertificateTlm PRESENT})})}
+RcaCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListRca PRESENT})})}
-RcaSingleSignedLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{singleSignedLinkCertificateRca PRESENT})})}
+AuthorizationValidationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationValidationRequest PRESENT})})} 
-RcaDoubleSignedLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{doubleSignedlinkCertificateRca PRESENT})})}
+AuthorizationValidationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationValidationResponse PRESENT})})} 
-ButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationRequest PRESENT})})}
+CaCertificateRequestMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data(WITH COMPONENTS{..., content (WITH COMPONENTS{caCertificateRequest PRESENT})})}
-X509SignedButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941ButterflyAuthorizationRequest-X509Signed} 
+CaCertificateRekeyingMessage ::= EtsiTs103097Data-Signed {EtsiTs103097Data-Signed {EtsiTs102941Data(WITH COMPONENTS{..., content (WITH COMPONENTS{caCertificateRequest PRESENT})})}}
-ButterflyAuthorizationResponseMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationResponse PRESENT})})}
+TlmLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{linkCertificateTlm PRESENT})})}
-ButterflyAtDownloadRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAtDownloadRequest PRESENT})})}
+RcaSingleSignedLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{singleSignedLinkCertificateRca PRESENT})})}
-ButterflyCertRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyCertificateRequest PRESENT})})}
+RcaDoubleSignedLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{doubleSignedlinkCertificateRca PRESENT})})}
-ButterflyCertResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyCertificateResponse PRESENT})})}
+ButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationRequest PRESENT})})}
+X509SignedButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{x509SignedbutterflyAuthorizationRequest PRESENT})})}
-/************
+ButterflyAuthorizationResponseMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationResponse PRESENT})})}
-- EtsiTs102941Data
+ButterflyAtDownloadRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAtDownloadRequest PRESENT})})}
-************/
+ButterflyCertRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyCertificateRequest PRESENT})})}
+ButterflyCertResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyCertificateResponse PRESENT})})}
-EtsiTs102941Data::= SEQUENCE {
-  version Version (v1),
+/************
-  content EtsiTs102941DataContent
+-- EtsiTs102941Data
-  }
+************/
-EtsiTs102941DataContent ::= CHOICE {
+EtsiTs102941Data::= SEQUENCE {
-  enrolmentRequest                        InnerEcRequestSignedForPop,
+  version Version (v1),
-  enrolmentResponse                       InnerEcResponse,
+  content EtsiTs102941DataContent
-  authorizationRequest                    InnerAtRequest,
+  }
-  authorizationResponse                   InnerAtResponse,
-  certificateRevocationList               ToBeSignedCrl,
+EtsiTs102941DataContent ::= CHOICE {
-  certificateTrustListTlm                 ToBeSignedTlmCtl,
+  enrolmentRequest                        InnerEcRequestSignedForPop,
-  certificateTrustListRca                 ToBeSignedRcaCtl,
+  enrolmentResponse                       InnerEcResponse,
-  authorizationValidationRequest          AuthorizationValidationRequest,
+  authorizationRequest                    InnerAtRequest,
-  authorizationValidationResponse         AuthorizationValidationResponse,
+  authorizationResponse                   InnerAtResponse,
-  caCertificateRequest                    CaCertificateRequest,
+  certificateRevocationList               ToBeSignedCrl,
-  ...,
+  certificateTrustListTlm                 ToBeSignedTlmCtl,
-  linkCertificateTlm                      ToBeSignedLinkCertificateTlm,
+  certificateTrustListRca                 ToBeSignedRcaCtl,
-  singleSignedLinkCertificateRca          ToBeSignedLinkCertificateRca,
+  authorizationValidationRequest          AuthorizationValidationRequest,
-  doubleSignedlinkCertificateRca          RcaSingleSignedLinkCertificateMessage,
+  authorizationValidationResponse         AuthorizationValidationResponse,
-  /* Extension for butterfly key provisioning */
+  caCertificateRequest                    CaCertificateRequest,
-  [[butterflyAuthorizationRequest         EeRaCertRequest,
+  ...,
-  butterflyAuthorizationResponse          RaEeCertInfo,
+  linkCertificateTlm                      ToBeSignedLinkCertificateTlm,
-  butterflyCertificateRequest             RaAcaCertRequest,
+  singleSignedLinkCertificateRca          ToBeSignedLinkCertificateRca,
-  butterflyCertificateResponse            AcaRaCertResponse,
+  doubleSignedlinkCertificateRca          RcaSingleSignedLinkCertificateMessage,
-  butterflyAtDownloadRequest              EeRaDownloadRequest]]
+  /* Extension for butterfly key provisioning */
-  }
+  [[butterflyAuthorizationRequest         EeRaCertRequest,
+  x509SignedbutterflyAuthorizationRequest EtsiTs102941ButterflyAuthorizationRequest-X509Signed,
-/************
+  butterflyAuthorizationResponse          RaEeCertInfo,
-- X509 structures
+  butterflyCertificateRequest             RaAcaCertRequest,
-************/
+  butterflyCertificateResponse            AcaRaCertResponse,
+  butterflyAtDownloadRequest              EeRaDownloadRequest]]
-/**
+  }
- * @class EtsiTs102941ButterflyAuthorizationRequest-X509Signed
- *
- * @brief This structure defines a butterfly authorization request,
- * signed with a X.509 certificate, by redefining structures from
+END
- * IEEE 1609.2.1 to fit into the ETSI naming schema.
- */
-EtsiTs102941ButterflyAuthorizationRequest-X509Signed ::= Ieee1609Dot2Data-SignedX509AuthenticatedCertRequest {
-	ScmsPdu-Scoped {
-		EeRaInterfacePdu (WITH COMPONENTS {
-			eeRaCertRequest})
-		},
-	SignerSingleX509Cert
-}
-END
--- a/EtsiTs102941MessagesItss-OptionalPrivacy.asn
+++ b/EtsiTs102941MessagesItss-OptionalPrivacy.asn
 /*************************************************************************************
   This file contains the EtsiTs102941MessagesItss-OptionalPrivacy module providing the
   same subset of messages as the EtsiTs102941MessagesItss module.
   It should never be used together with the EtsiTs102941MessagesCA and EtsiTs102941MessagesItss
   This module allows the usage of unencrypted EC signature for AA requests.
 **************************************************************************************/
 EtsiTs102941MessagesItss-OptionalPrivacy
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) messagesItssOp(2) version-4(4) minor-version-1(1)}
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) messagesItssOp(2) major-version-3(3) minor-version-3(3)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
-EtsiTs103097Data-Signed,
+EtsiTs103097Data,
-EtsiTs103097Data-Encrypted-Unicast,
+EtsiTs103097Data-Signed,
-EtsiTs103097Data-SignedAndEncrypted-Unicast
+EtsiTs103097Data-Encrypted-Unicast,
-FROM EtsiTs103097Module
+EtsiTs103097Data-SignedAndEncrypted-Unicast
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1) } 
+FROM EtsiTs103097Module
--WITH SUCCESSORS
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1) } 
+WITH SUCCESSORS
-Version
-FROM EtsiTs102941BaseTypes
+Version
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+FROM EtsiTs102941BaseTypes
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
-InnerEcRequestSignedForPop, InnerEcResponse
+WITH SUCCESSORS
-FROM EtsiTs102941TypesEnrolment
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) version-3(3) minor-version-1(1) }
+InnerEcRequestSignedForPop, InnerEcResponse
+FROM EtsiTs102941TypesEnrolment
-InnerAtRequest, InnerAtResponse
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) major-version-3(3) minor-version-1(1) }
-FROM EtsiTs102941TypesAuthorization
+WITH SUCCESSORS
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) version-3(3) minor-version-1(1) }
+EtsiTs102941ButterflyAuthorizationRequest-X509Signed,
-ToBeSignedCrl, ToBeSignedTlmCtl, ToBeSignedRcaCtl
+InnerAtRequest, InnerAtResponse
-FROM EtsiTs102941TrustLists
+FROM EtsiTs102941TypesAuthorization
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) major-version-3(3) minor-version-3(3) }
+WITH SUCCESSORS
-ToBeSignedLinkCertificate, ToBeSignedLinkCertificateTlm
-FROM EtsiTs102941TypesLinkCertificate
+ToBeSignedCrl, ToBeSignedTlmCtl, ToBeSignedRcaCtl
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) version-3(3) minor-version-1(1)}
+FROM EtsiTs102941TrustLists
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) major-version-3(3) minor-version-1(1) }
-EeRaInterfacePdu, EeRaCertRequest, RaEeCertInfo, EeRaDownloadRequest
+WITH SUCCESSORS
-FROM Ieee1609Dot2Dot1EeRaInterface
-{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) ee-ra(11) major-version-3(3) minor-version-1(1)}
+ToBeSignedLinkCertificate, ToBeSignedLinkCertificateTlm
+FROM EtsiTs102941TypesLinkCertificate
-Ieee1609Dot2Data-SignedX509AuthenticatedCertRequest, ScmsPdu-Scoped, SignerSingleX509Cert
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) major-version-3(3) minor-version-1(1)}
-FROM Ieee1609Dot2Dot1Protocol
+WITH SUCCESSORS
-{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) protocol(17) major-version-3(3) minor-version-1(1)}
+EeRaCertRequest, RaEeCertInfo, EeRaDownloadRequest
+FROM Ieee1609Dot2Dot1EeRaInterface
-;
+{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) ee-ra(11) major-version-3(3) minor-version-1(1)}
+WITH SUCCESSORS
-/************
-- Messages
+;
-************/
+/************
-EnrolmentRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentRequest PRESENT})})} 
+-- Messages
-EnrolmentResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentResponse PRESENT})})} 
+************/
-AuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-AuthorizationRequestMessageWithPop ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
+EnrolmentRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentRequest PRESENT})})} 
-AuthorizationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationResponse PRESENT})})} 
+EnrolmentResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentResponse PRESENT})})} 
-CertificateRevocationListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateRevocationList PRESENT})})}
+AuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-TlmCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListTlm PRESENT})})}
+AuthorizationRequestMessageWithPop ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-RcaCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListRca PRESENT})})}
+AuthorizationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationResponse PRESENT})})} 
-TlmLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{linkCertificateTlm PRESENT})})}
+CertificateRevocationListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateRevocationList PRESENT})})}
-ButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationRequest PRESENT})})}
+TlmCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListTlm PRESENT})})}
-X509SignedButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941ButterflyAuthorizationRequest-X509Signed} 
+RcaCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListRca PRESENT})})}
-ButterflyAuthorizationResponseMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationResponse PRESENT})})}
+TlmLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{linkCertificateTlm PRESENT})})}
-ButterflyAtDownloadRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAtDownloadRequest PRESENT})})}
+ButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationRequest PRESENT})})}
+X509SignedButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{x509SignedbutterflyAuthorizationRequest PRESENT})})} 
-/************
+ButterflyAuthorizationResponseMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationResponse PRESENT})})}
-- EtsiTs102941Data
+ButterflyAtDownloadRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAtDownloadRequest PRESENT})})}
-************/
+/************
-EtsiTs102941Data::= SEQUENCE {
+-- EtsiTs102941Data
-  version Version (v1),
+************/
-  content EtsiTs102941DataContent
-  }
+EtsiTs102941Data::= SEQUENCE {
+  version Version (v1),
-EtsiTs102941DataContent ::= CHOICE {
+  content EtsiTs102941DataContent
-  enrolmentRequest                        InnerEcRequestSignedForPop,
+  }
-  enrolmentResponse                       InnerEcResponse,
-  authorizationRequest                    InnerAtRequest,
+EtsiTs102941DataContent ::= CHOICE {
-  authorizationResponse                   InnerAtResponse,
+  enrolmentRequest                        InnerEcRequestSignedForPop,
-  certificateRevocationList               ToBeSignedCrl,
+  enrolmentResponse                       InnerEcResponse,
-  certificateTrustListTlm                 ToBeSignedTlmCtl,
+  authorizationRequest                    InnerAtRequest,
-  certificateTrustListRca                 ToBeSignedRcaCtl,
+  authorizationResponse                   InnerAtResponse,
-  authorizationValidationRequest          NULL,
+  certificateRevocationList               ToBeSignedCrl,
-  authorizationValidationResponse         NULL,
+  certificateTrustListTlm                 ToBeSignedTlmCtl,
-  caCertificateRequest                    NULL,
+  certificateTrustListRca                 ToBeSignedRcaCtl,
-  ...,
+  authorizationValidationRequest          NULL,
-  linkCertificateTlm                      ToBeSignedLinkCertificateTlm,
+  authorizationValidationResponse         NULL,
-  singleSignedLinkCertificateRca          NULL,
+  caCertificateRequest                    NULL,
-  doubleSignedlinkCertificateRca          NULL,
+  ...,
-  /* Extension for butterfly key provisioning */
+  linkCertificateTlm                      ToBeSignedLinkCertificateTlm,
-  [[butterflyAuthorizationRequest         EeRaCertRequest,
+  singleSignedLinkCertificateRca          NULL,
-  butterflyAuthorizationResponse          RaEeCertInfo,
+  doubleSignedlinkCertificateRca          NULL,
-  butterflyCertificateRequest             NULL,
+  /* Extension for butterfly key provisioning */
-  butterflyCertificateResponse            NULL,
+  [[butterflyAuthorizationRequest         EeRaCertRequest,
-  butterflyAtDownloadRequest              EeRaDownloadRequest]]
+  x509SignedbutterflyAuthorizationRequest EtsiTs102941ButterflyAuthorizationRequest-X509Signed,
-  } 
+  butterflyAuthorizationResponse          RaEeCertInfo,
+  butterflyCertificateRequest             NULL,
-END
+  butterflyCertificateResponse            NULL,
+  butterflyAtDownloadRequest              EeRaDownloadRequest]]
+  } 
+END
--- a/EtsiTs102941MessagesItss.asn
+++ b/EtsiTs102941MessagesItss.asn
 /*************************************************************************************
   This file contains the EtsiTs102941MessagesItss module providing the ITS-S subset 
   of messages defined in the module EtsiTs102941MessagesCA
   It should never be imported together with the module EtsiTs102941MessagesCA.
   Use the EtsiTs102941MessagesCA if all possible PKI message types are needed.
   This module blocks the usage of unencrypted EC signature for AA requests.
 **************************************************************************************/
 EtsiTs102941MessagesItss
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) messagesItss(1) version4(4)}
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) messagesItss(1) major-version-3(3) minor-version-3(3)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
-EtsiTs103097Data-Signed,
+EtsiTs103097Data,
-EtsiTs103097Data-Encrypted-Unicast,
+EtsiTs103097Data-Signed,
-EtsiTs103097Data-SignedAndEncrypted-Unicast
+EtsiTs103097Data-Encrypted-Unicast,
-FROM EtsiTs103097Module
+EtsiTs103097Data-SignedAndEncrypted-Unicast
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1) } 
+FROM EtsiTs103097Module
--WITH SUCCESSORS
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1) } 
+WITH SUCCESSORS
-Version
-FROM EtsiTs102941BaseTypes
+Version
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+FROM EtsiTs102941BaseTypes
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
-InnerEcRequestSignedForPop, InnerEcResponse
+WITH SUCCESSORS
-FROM EtsiTs102941TypesEnrolment
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) version-3(3) minor-version-1(1) }
+InnerEcRequestSignedForPop, InnerEcResponse
+FROM EtsiTs102941TypesEnrolment
-InnerAtRequest, InnerAtResponse
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) major-version-3(3) minor-version-1(1) }
-FROM EtsiTs102941TypesAuthorization
+WITH SUCCESSORS
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) version-3(3) minor-version-1(1) }
+EtsiTs102941ButterflyAuthorizationRequest-X509Signed,
-ToBeSignedCrl, ToBeSignedTlmCtl, ToBeSignedRcaCtl
+InnerAtRequest, InnerAtResponse
-FROM EtsiTs102941TrustLists
+FROM EtsiTs102941TypesAuthorization
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) major-version-3(3) minor-version-3(3) }
+WITH SUCCESSORS
-ToBeSignedLinkCertificate, ToBeSignedLinkCertificateTlm
-FROM EtsiTs102941TypesLinkCertificate
+ToBeSignedCrl, ToBeSignedTlmCtl, ToBeSignedRcaCtl
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) version-3(3) minor-version-1(1) }
+FROM EtsiTs102941TrustLists
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) major-version-3(3) minor-version-1(1) }
-EeRaInterfacePdu, EeRaCertRequest, RaEeCertInfo, EeRaDownloadRequest
+WITH SUCCESSORS
-FROM Ieee1609Dot2Dot1EeRaInterface
-{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) ee-ra(11) major-version-3(3) minor-version-1(1)}
+ToBeSignedLinkCertificate, ToBeSignedLinkCertificateTlm
+FROM EtsiTs102941TypesLinkCertificate
-Ieee1609Dot2Data-SignedX509AuthenticatedCertRequest, ScmsPdu-Scoped, SignerSingleX509Cert
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) major-version-3(3) minor-version-1(1) }
-FROM Ieee1609Dot2Dot1Protocol
+WITH SUCCESSORS
-{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) protocol(17) major-version-3(3) minor-version-1(1)}
+EeRaCertRequest, RaEeCertInfo, EeRaDownloadRequest
-;
+FROM Ieee1609Dot2Dot1EeRaInterface
+{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) ee-ra(11) major-version-2(2) minor-version-2(2)}
-/************
+WITH SUCCESSORS
-- Messages
+;
-************/
+/************
-EnrolmentRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentRequest PRESENT})})} 
+-- Messages
-EnrolmentResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentResponse PRESENT})})} 
+************/
-AuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-AuthorizationRequestMessageWithPop ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
+EnrolmentRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentRequest PRESENT})})} 
-AuthorizationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationResponse PRESENT})})} 
+EnrolmentResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentResponse PRESENT})})} 
-CertificateRevocationListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateRevocationList PRESENT})})}
+AuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-TlmCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListTlm PRESENT})})}
+AuthorizationRequestMessageWithPop ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
-RcaCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListRca PRESENT})})}
+AuthorizationResponseMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationResponse PRESENT})})} 
-TlmLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{linkCertificateTlm PRESENT})})}
+CertificateRevocationListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateRevocationList PRESENT})})}
-ButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationRequest PRESENT})})}
+TlmCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListTlm PRESENT})})}
-X509SignedButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941ButterflyAuthorizationRequest-X509Signed} 
+RcaCertificateTrustListMessage ::= EtsiTs103097Data-Signed{EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{certificateTrustListRca PRESENT})})}
-ButterflyAuthorizationResponseMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationResponse PRESENT})})}
+TlmLinkCertificateMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{linkCertificateTlm PRESENT})})}
-ButterflyAtDownloadRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAtDownloadRequest PRESENT})})}
+ButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationRequest PRESENT})})}
+X509SignedButterflyAuthorizationRequestMessage ::= EtsiTs103097Data-Encrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{x509SignedbutterflyAuthorizationRequest PRESENT})})}
-/************
+ButterflyAuthorizationResponseMessage ::= EtsiTs103097Data-Signed {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAuthorizationResponse PRESENT})})}
-- EtsiTs102941Data
+ButterflyAtDownloadRequestMessage ::= EtsiTs103097Data-SignedAndEncrypted-Unicast {EtsiTs102941Data (WITH COMPONENTS{..., content (WITH COMPONENTS{butterflyAtDownloadRequest PRESENT})})}
-************/
+/************
-EtsiTs102941Data::= SEQUENCE {
+-- EtsiTs102941Data
-  version Version (v1),
+************/
-  content EtsiTs102941DataContent
-  }
+EtsiTs102941Data::= SEQUENCE {
+  version Version (v1),
-EtsiTs102941DataContent ::= CHOICE {
+  content EtsiTs102941DataContent
-  enrolmentRequest                        InnerEcRequestSignedForPop,
+  }
-  enrolmentResponse                       InnerEcResponse,
-  authorizationRequest                    InnerAtRequest,
+EtsiTs102941DataContent ::= CHOICE {
-  authorizationResponse                   InnerAtResponse,
+  enrolmentRequest                        InnerEcRequestSignedForPop,
-  certificateRevocationList               ToBeSignedCrl,
+  enrolmentResponse                       InnerEcResponse,
-  certificateTrustListTlm                 ToBeSignedTlmCtl,
+  authorizationRequest                    InnerAtRequest,
-  certificateTrustListRca                 ToBeSignedRcaCtl,
+  authorizationResponse                   InnerAtResponse,
-  authorizationValidationRequest          NULL,
+  certificateRevocationList               ToBeSignedCrl,
-  authorizationValidationResponse         NULL,
+  certificateTrustListTlm                 ToBeSignedTlmCtl,
-  caCertificateRequest                    NULL,
+  certificateTrustListRca                 ToBeSignedRcaCtl,
-  ...,
+  authorizationValidationRequest          NULL,
-  linkCertificateTlm                      ToBeSignedLinkCertificateTlm,
+  authorizationValidationResponse         NULL,
-  singleSignedLinkCertificateRca          NULL,
+  caCertificateRequest                    NULL,
-  doubleSignedlinkCertificateRca          NULL,
+  ...,
-  /* Extension for butterfly key provisioning */
+  linkCertificateTlm                      ToBeSignedLinkCertificateTlm,
-  [[butterflyAuthorizationRequest         EeRaCertRequest,
+  singleSignedLinkCertificateRca          NULL,
-  butterflyAuthorizationResponse          RaEeCertInfo,
+  doubleSignedlinkCertificateRca          NULL,
-  butterflyCertificateRequest             NULL,
+  /* Extension for butterfly key provisioning */
-  butterflyCertificateResponse            NULL,
+  [[butterflyAuthorizationRequest         EeRaCertRequest,
-  butterflyAtDownloadRequest              EeRaDownloadRequest]]
+  x509SignedbutterflyAuthorizationRequest EtsiTs102941ButterflyAuthorizationRequest-X509Signed,
-  } (WITH COMPONENTS{...,
+  butterflyAuthorizationResponse          RaEeCertInfo,
-    authorizationRequest (WITH COMPONENTS{...,
+  butterflyCertificateRequest             NULL,
-      ecSignature (WITH COMPONENTS{...,
+  butterflyCertificateResponse            NULL,
-        encryptedEcSignature PRESENT
+  butterflyAtDownloadRequest              EeRaDownloadRequest]]
-      })
+  } (WITH COMPONENTS{...,
-    })
+    authorizationRequest (WITH COMPONENTS{...,
-  })
+      ecSignature (WITH COMPONENTS{...,
+        encryptedEcSignature PRESENT
-END
+      })
+    })
+  })
+END
--- a/EtsiTs102941TrustLists.asn
+++ b/EtsiTs102941TrustLists.asn
 EtsiTs102941TrustLists
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) version-3(3) minor-version-1(1)}
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) trustLists(6) major-version-3(3) minor-version-1(1)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
 EtsiTs103097Certificate, EtsiTs103097Data-SignedAndEncrypted, EtsiTs103097Data-Signed 
 FROM	
 EtsiTs103097Module
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1) } 
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1) } 
--WITH SUCCESSORS
+WITH SUCCESSORS
 HashedId8, Time32, Version --, CertificateAuthorityConstraints
 FROM EtsiTs102941BaseTypes 
-{itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+{itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
 ;
 /************
 -- CRL
 ************/
 ToBeSignedCrl ::= SEQUENCE {
  version    Version,
  thisUpdate Time32,
  nextUpdate Time32,
  entries SEQUENCE OF CrlEntry,
  ...
 }
 CrlEntry ::= HashedId8
 /************
 -- TLM CTL
 ************/
 ToBeSignedTlmCtl ::= CtlFormat (FullCtl | DeltaCtl) (WITH COMPONENTS {...,
  ctlCommands ( WITH COMPONENT( 
    ( WITH COMPONENTS {..., 
      add ( WITH COMPONENTS {..., 
        ea ABSENT,
        aa ABSENT
      })
    })
  ))
 })
 /************
 -- RCA CTL
 ************/
 ToBeSignedRcaCtl ::= CtlFormat (FullCtl | DeltaCtl) ( WITH COMPONENTS {...,
  ctlCommands ( WITH COMPONENT( 
    ( WITH COMPONENTS {..., 
      add ( WITH COMPONENTS {..., 
        rca ABSENT,
        tlm ABSENT
      })
    })
  ))
 })
 /************
 -- CTL
 ************/
 FullCtl::= CtlFormat ( WITH COMPONENTS {...,
  isFullCtl ( TRUE ),
  ctlCommands ( WITH COMPONENT( 
    ( WITH COMPONENTS {..., 
      delete ABSENT
    })
  )) 
 })
 DeltaCtl::= CtlFormat (WITH COMPONENTS {...,
  isFullCtl(FALSE)
 })
 CtlFormat ::= SEQUENCE {
  version     Version,
  nextUpdate  Time32, 
  isFullCtl   BOOLEAN,
  ctlSequence INTEGER (0..255),
  ctlCommands SEQUENCE OF CtlCommand,
  ...
 }
 CtlCommand ::= CHOICE {
  add 	  CtlEntry,
  delete  CtlDelete,
  ...
 }
 CtlEntry ::= CHOICE {
  rca   RootCaEntry,
  ea    EaEntry,
  aa    AaEntry,
  dc    DcEntry,
  tlm   TlmEntry,
  ...
 }
 CtlDelete ::= CHOICE {
  cert  HashedId8,
  dc    DcDelete,
  ...
 }
 TlmEntry::= SEQUENCE {
  selfSignedTLMCertificate EtsiTs103097Certificate,
  successorTo              EtsiTs103097Certificate OPTIONAL,
  accessPoint              Url
 }
 RootCaEntry ::= SEQUENCE {
  selfsignedRootCa EtsiTs103097Certificate,
  successorTo      EtsiTs103097Certificate OPTIONAL
 }
 EaEntry ::= SEQUENCE {
  eaCertificate     EtsiTs103097Certificate,
  aaAccessPoint     Url,
  itsAccessPoint    Url OPTIONAL
 }
 AaEntry ::= SEQUENCE {
  aaCertificate EtsiTs103097Certificate,
  accessPoint Url
 }
 DcEntry ::= SEQUENCE {
  url   Url,
  cert  SEQUENCE OF HashedId8
 }
 DcDelete ::= Url
 Url::= IA5String
 END
--- a/EtsiTs102941TypesAuthorization.asn
+++ b/EtsiTs102941TypesAuthorization.asn
 EtsiTs102941TypesAuthorization
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) version-3(3) minor-version-1(1)}
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) major-version-3(3) minor-version-3(3)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
 EtsiTs103097Certificate,
 EtsiTs103097Data-Signed
 FROM EtsiTs103097Module
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1) } 
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1) } 
--WITH SUCCESSORS
+WITH SUCCESSORS
 CertificateFormat, CertificateSubjectAttributes, EcSignature, HashedId8, PublicKeys, Version
 FROM EtsiTs102941BaseTypes
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
-;
+EeRaInterfacePdu
-/************
+FROM Ieee1609Dot2Dot1EeRaInterface
-- AuthorizationRequest/Response
+{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) ee-ra(11) major-version-2(2) minor-version-2(2)}
-************/
+WITH SUCCESSORS
-AuthorizationResponseCode ::= ENUMERATED {
+Ieee1609Dot2Data-SignedX509AuthenticatedCertRequest, ScmsPdu-Scoped, SignerSingleX509Cert
-  ok(0),
+FROM Ieee1609Dot2Dot1Protocol
-  -- ITS->AA
+{ iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) protocol(17) major-version-2(2) minor-version-2(2)}
-  its-aa-cantparse, -- valid for any structure
+WITH SUCCESSORS
-  its-aa-badcontenttype, -- not encrypted, not signed, not authorizationrequest
-  its-aa-imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me
+;
-  its-aa-unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm
-  its-aa-decryptionfailed, -- works for ECIES-HMAC and AES-CCM
+/************
-  its-aa-keysdontmatch, -- HMAC keyTag verification fails
+-- AuthorizationRequest/Response
-  its-aa-incompleterequest, -- some elements are missing
+************/
-  its-aa-invalidencryptionkey, -- the responseEncryptionKey is bad
-  its-aa-outofsyncrequest, -- signingTime is outside acceptable limits
+AuthorizationResponseCode ::= ENUMERATED {
-  its-aa-unknownea, -- the EA identified by eaId is unknown to me
+  ok(0),
-  its-aa-invalidea, -- the EA certificate is revoked
+  -- ITS->AA
-  its-aa-deniedpermissions, -- I, the AA, deny the requested permissions
+  its-aa-cantparse, -- valid for any structure
-  -- AA->EA
+  its-aa-badcontenttype, -- not encrypted, not signed, not authorizationrequest
-  aa-ea-cantreachea, -- the EA is unreachable (network error?)
+  its-aa-imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me
-  -- EA->AA
+  its-aa-unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm
-  ea-aa-cantparse, -- valid for any structure
+  its-aa-decryptionfailed, -- works for ECIES-HMAC and AES-CCM
-  ea-aa-badcontenttype, -- not encrypted, not signed, not authorizationrequest
+  its-aa-keysdontmatch, -- HMAC keyTag verification fails
-  ea-aa-imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me
+  its-aa-incompleterequest, -- some elements are missing
-  ea-aa-unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm
+  its-aa-invalidencryptionkey, -- the responseEncryptionKey is bad
-  ea-aa-decryptionfailed, -- works for ECIES-HMAC and AES-CCM
+  its-aa-outofsyncrequest, -- signingTime is outside acceptable limits
-  -- TODO: to be continued...
+  its-aa-unknownea, -- the EA identified by eaId is unknown to me
-  invalidaa, -- the AA certificate presented is invalid/revoked/whatever
+  its-aa-invalidea, -- the EA certificate is revoked
-  invalidaasignature, -- the AA certificate presented can't validate the request signature
+  its-aa-deniedpermissions, -- I, the AA, deny the requested permissions
-  wrongea, -- the encrypted signature doesn't designate me as the EA
+  -- AA->EA
-  unknownits, -- can't retrieve the EC/ITS in my DB
+  aa-ea-cantreachea, -- the EA is unreachable (network error?)
-  invalidsignature, -- signature verification of the request by the EC fails
+  -- EA->AA
-  invalidencryptionkey, -- signature is good, but the key is bad
+  ea-aa-cantparse, -- valid for any structure
-  deniedpermissions, -- permissions not granted
+  ea-aa-badcontenttype, -- not encrypted, not signed, not authorizationrequest
-  deniedtoomanycerts, -- parallel limit
+  ea-aa-imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me
-  ... }
+  ea-aa-unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm
+  ea-aa-decryptionfailed, -- works for ECIES-HMAC and AES-CCM
+  -- TODO: to be continued...
-InnerAtRequest ::= SEQUENCE {
+  invalidaa, -- the AA certificate presented is invalid/revoked/whatever
-  publicKeys                    PublicKeys,
+  invalidaasignature, -- the AA certificate presented can't validate the request signature
-  hmacKey                       OCTET STRING (SIZE(32)),
+  wrongea, -- the encrypted signature doesn't designate me as the EA
-  sharedAtRequest               SharedAtRequest, 
+  unknownits, -- can't retrieve the EC/ITS in my DB
-  ecSignature                   EcSignature,
+  invalidsignature, -- signature verification of the request by the EC fails
-  ...
+  invalidencryptionkey, -- signature is good, but the key is bad
-  } 
+  deniedpermissions, -- permissions not granted
+  deniedtoomanycerts, -- parallel limit
-SharedAtRequest ::= SEQUENCE {
+  ... }
-  eaId                          HashedId8,
-  keyTag                        OCTET STRING (SIZE(16)),
-  certificateFormat             CertificateFormat,
+InnerAtRequest ::= SEQUENCE {
-  requestedSubjectAttributes    CertificateSubjectAttributes (WITH COMPONENTS{..., certIssuePermissions ABSENT}),
+  publicKeys                    PublicKeys,
-  ...
+  hmacKey                       OCTET STRING (SIZE(32)),
-  }
+  sharedAtRequest               SharedAtRequest, 
+  ecSignature                   EcSignature,
-InnerAtResponse ::= SEQUENCE {
+  ...
-  requestHash                   OCTET STRING (SIZE(16)),
+  } 
-  responseCode                  AuthorizationResponseCode,
-  certificate                   EtsiTs103097Certificate OPTIONAL,
+SharedAtRequest ::= SEQUENCE {
-  ... 
+  eaId                          HashedId8,
- }
+  keyTag                        OCTET STRING (SIZE(16)),
-  (WITH COMPONENTS { responseCode (ok), certificate PRESENT }
+  certificateFormat             CertificateFormat,
-  | WITH COMPONENTS { responseCode (ALL EXCEPT ok), certificate ABSENT }
+  requestedSubjectAttributes    CertificateSubjectAttributes (WITH COMPONENTS{..., certIssuePermissions ABSENT}),
-  )
+  ...
+  }
-END
+InnerAtResponse ::= SEQUENCE {
+  requestHash                   OCTET STRING (SIZE(16)),
+  responseCode                  AuthorizationResponseCode,
+  certificate                   EtsiTs103097Certificate OPTIONAL,
+  ... 
+ }
+  (WITH COMPONENTS { responseCode (ok), certificate PRESENT }
+  | WITH COMPONENTS { responseCode (ALL EXCEPT ok), certificate ABSENT }
+  )
+EtsiTs102941ButterflyAuthorizationRequest-X509Signed ::= Ieee1609Dot2Data-SignedX509AuthenticatedCertRequest {
+	ScmsPdu-Scoped {
+		EeRaInterfacePdu (WITH COMPONENTS {
+			eeRaCertRequest})
+		},
+	SignerSingleX509Cert
+}
+END
--- a/EtsiTs102941TypesAuthorizationValidation.asn
+++ b/EtsiTs102941TypesAuthorizationValidation.asn
 EtsiTs102941TypesAuthorizationValidation
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authValidation(7) version-3(3) minor-version-1(1)}
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authValidation(7) major-version-3(3) minor-version-1(1)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
 EtsiTs103097Certificate
 FROM EtsiTs103097Module
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1) } 
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1) } 
--WITH SUCCESSORS
+WITH SUCCESSORS
 CertificateFormat, CertificateSubjectAttributes,EcSignature, HashedId8, PublicKeys, Version
 FROM EtsiTs102941BaseTypes
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
-SharedAtRequest
-FROM EtsiTs102941TypesAuthorization
+SharedAtRequest
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) version-3(3) minor-version-1(1) }
+FROM EtsiTs102941TypesAuthorization
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) authorization(5) major-version-3(3) minor-version-3(3) }
-;
+WITH SUCCESSORS
+;
-/************
-- AuthorizationValidationRequest/Response
+/************
-************/
+-- AuthorizationValidationRequest/Response
+************/
-AuthorizationValidationResponseCode ::= ENUMERATED {
-  ok(0),
+AuthorizationValidationResponseCode ::= ENUMERATED {
-  cantparse, -- valid for any structure
+  ok(0),
-  badcontenttype, -- not encrypted, not signed, not permissionsverificationrequest
+  cantparse, -- valid for any structure
-  imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me
+  badcontenttype, -- not encrypted, not signed, not permissionsverificationrequest
-  unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm
+  imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me
-  decryptionfailed, -- works for ECIES-HMAC and AES-CCM
+  unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm
-  invalidaa, -- the AA certificate presented is invalid/revoked/whatever
+  decryptionfailed, -- works for ECIES-HMAC and AES-CCM
-  invalidaasignature, -- the AA certificate presented can't validate the request signature
+  invalidaa, -- the AA certificate presented is invalid/revoked/whatever
-  wrongea, -- the encrypted signature doesn't designate me as the EA
+  invalidaasignature, -- the AA certificate presented can't validate the request signature
-  unknownits, -- can't retrieve the EC/ITS in my DB
+  wrongea, -- the encrypted signature doesn't designate me as the EA
-  invalidsignature, -- signature verification of the request by the EC fails
+  unknownits, -- can't retrieve the EC/ITS in my DB
-  invalidencryptionkey, -- signature is good, but the responseEncryptionKey is bad
+  invalidsignature, -- signature verification of the request by the EC fails
-  deniedpermissions, -- requested permissions not granted
+  invalidencryptionkey, -- signature is good, but the responseEncryptionKey is bad
-  deniedtoomanycerts, -- parallel limit
+  deniedpermissions, -- requested permissions not granted
-  deniedrequest, -- any other reason?
+  deniedtoomanycerts, -- parallel limit
-  ... }
+  deniedrequest, -- any other reason?
+  ... }
-AuthorizationValidationRequest ::= SEQUENCE {
-  sharedAtRequest               SharedAtRequest,
+AuthorizationValidationRequest ::= SEQUENCE {
-  ecSignature                   EcSignature,
+  sharedAtRequest               SharedAtRequest,
-  ...
+  ecSignature                   EcSignature,
-  }
+  ...
+  }
-AuthorizationValidationResponse ::= SEQUENCE { 
-  requestHash                   OCTET STRING (SIZE(16)),
+AuthorizationValidationResponse ::= SEQUENCE { 
-  responseCode                  AuthorizationValidationResponseCode,
+  requestHash                   OCTET STRING (SIZE(16)),
-  confirmedSubjectAttributes    CertificateSubjectAttributes (WITH COMPONENTS{..., certIssuePermissions ABSENT}) OPTIONAL,
+  responseCode                  AuthorizationValidationResponseCode,
-  ...
+  confirmedSubjectAttributes    CertificateSubjectAttributes (WITH COMPONENTS{..., certIssuePermissions ABSENT}) OPTIONAL,
-  }
+  ...
-  (WITH COMPONENTS { responseCode (ok), confirmedSubjectAttributes PRESENT }
+  }
-  | WITH COMPONENTS { responseCode (ALL EXCEPT ok), confirmedSubjectAttributes ABSENT }
+  (WITH COMPONENTS { responseCode (ok), confirmedSubjectAttributes PRESENT }
-  )
+  | WITH COMPONENTS { responseCode (ALL EXCEPT ok), confirmedSubjectAttributes ABSENT }
+  )
-END
+END
--- a/EtsiTs102941TypesCaManagement.asn
+++ b/EtsiTs102941TypesCaManagement.asn
 EtsiTs102941TypesCaManagement
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) caManagement(8) version-3(3) minor-version-1(1)}
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) caManagement(8) major-version-3(3) minor-version-1(1)}
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
 EtsiTs103097Certificate, EtsiTs103097Data-Signed 
 FROM	
 EtsiTs103097Module 
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1) } 
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1) } 
--WITH SUCCESSORS
+WITH SUCCESSORS
 PublicKeys, CertificateSubjectAttributes
 FROM EtsiTs102941BaseTypes
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
 ;
 /************
 -- CA certificate request 
 ************/
 CaCertificateRequest ::= SEQUENCE {
  publicKeys                  PublicKeys,
  requestedSubjectAttributes  CertificateSubjectAttributes,
  ...	 
 }
 END
--- a/EtsiTs102941TypesEnrolment.asn
+++ b/EtsiTs102941TypesEnrolment.asn
 EtsiTs102941TypesEnrolment
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) version-3(3) minor-version-1(1) }
+  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) enrolment(4) major-version-3(3) minor-version-1(1) }
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
 EtsiTs103097Certificate,
 EtsiTs103097Data-Signed
 FROM EtsiTs103097Module
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) version-3(3) minor-version-1(1) } 
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) secHeaders(103097) core(1) major-version-3(3) minor-version-1(1) } 
--WITH SUCCESSORS
+WITH SUCCESSORS
 CertificateFormat, CertificateSubjectAttributes, EcSignature, HashedId8, PublicKeys, Version
 FROM EtsiTs102941BaseTypes
-{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1) }
+WITH SUCCESSORS
 ;
 /************
 -- EnrolmentRequest/Response
 ************/
 EnrolmentResponseCode ::= ENUMERATED {
  ok(0),
  cantparse, -- valid for any structure
  badcontenttype, -- not encrypted, not signed, not enrolmentrequest
  imnottherecipient, -- the "recipients" doesn't include me
  unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm
  decryptionfailed, -- works for ECIES-HMAC and AES-CCM
  unknownits, -- can't retrieve the ITS from the itsId
  invalidsignature, -- signature verification of the request fails
  invalidencryptionkey, -- signature is good, but the responseEncryptionKey is bad
  baditsstatus, -- revoked, not yet active
  incompleterequest, -- some elements are missing
  deniedpermissions, -- requested permissions are not granted
  invalidkeys, -- either the verification_key of the encryption_key is bad
  deniedrequest, -- any other reason?
  ... }
 InnerEcRequestSignedForPop::= EtsiTs103097Data-Signed{InnerEcRequest}
 InnerEcRequest ::= SEQUENCE {
  itsId                                 OCTET STRING,
  certificateFormat                     CertificateFormat,
  publicKeys                            PublicKeys,
  requestedSubjectAttributes            CertificateSubjectAttributes (WITH COMPONENTS{..., certIssuePermissions ABSENT}),
  ...
 }
 InnerEcResponse ::= SEQUENCE {
  requestHash                           OCTET STRING (SIZE(16)),
  responseCode                          EnrolmentResponseCode,
  certificate                           EtsiTs103097Certificate OPTIONAL,
  ... 
 }
  (WITH COMPONENTS { responseCode (ok), certificate PRESENT }
     | WITH COMPONENTS { responseCode (ALL EXCEPT ok), certificate ABSENT }
  )
 END
--- a/EtsiTs102941TypesLinkCertificate.asn
+++ b/EtsiTs102941TypesLinkCertificate.asn
 EtsiTs102941TypesLinkCertificate
-  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) version-3(3) minor-version-1(1) }
+{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) linkCertificate(9) major-version-3(3) minor-version-1(1) }
 DEFINITIONS AUTOMATIC TAGS ::=
 BEGIN
 IMPORTS
 Time32, HashedData
 FROM EtsiTs102941BaseTypes 
-{itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) version-3(3) minor-version-1(1)}
+{itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(3) major-version-3(3) minor-version-1(1)}
--WITH SUCCESSORS
+WITH SUCCESSORS
 ;
 /************
 -- Link certificate messages  
 ************/
 ToBeSignedLinkCertificate ::= SEQUENCE {
  expiryTime          Time32,	
  certificateHash     HashedData,
  ...
 }
 ToBeSignedLinkCertificateTlm ::= ToBeSignedLinkCertificate
 ToBeSignedLinkCertificateRca ::= ToBeSignedLinkCertificate
 END
--- a/ieee_1609.2.1 @ 79b58deb
+++ b/ieee_1609.2.1 @ 79b58deb
-Subproject commit cd51198b6757e8080b0c56b5b4621fb2a243fbe3
+Subproject commit 79b58debdf3f6467680f5a2de4d05ae7246f9b33
--- a/sec @ 330b1b2d
+++ b/sec @ 330b1b2d
-Subproject commit 4f4087b965700c5fc83845dd9088ab7d1435eee0
+Subproject commit 330b1b2dc31827d34d3d1f4bd03632ac91490c3c