[xmlsec] How to verify
Jürgen Heiss
jheiss at Mesonic.com
Thu Apr 20 01:16:07 PDT 2006
Hi everybody,
I sign a xml file, but how somebody can check this signature now if I give him this file?
The signatur looks like this.
[....]
<dsig:Signature xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
<dsig:SignedInfo>
<dsig:CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
<dsig:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<dsig:Reference URI="">
<dsig:Transforms>
<dsig:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
</dsig:Transforms>
<dsig:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<dsig:DigestValue>KNp1ir+3R4HXMHr9PCHje7DYqY0=</dsig:DigestValue>
</dsig:Reference>
</dsig:SignedInfo>
<dsig:SignatureValue>G613XWM8mu88tgQm8EMXDOgiU7sBASKGeyUMkbEfEwTqq0VY937eB/aZXHYyhvQw
ld8IoTIBUN8vn6J/cyr6BW1GcHYkml9pyTnslrRVQB2jLroyJyEiTjaYiV4O1vRc
gUSZRiUd/MNs97R5yn5XdJrT9F0l8K1hObXcz7z1gMg=</dsig:SignatureValue>
<dsig:KeyInfo>
<dsig:KeyName>Juergen Heiss, (Test)</dsig:KeyName>
<dsig:X509Data>
<X509Certificate xmlns="http://www.w3.org/2000/09/xmldsig#">MIIFezCCBGOgAwIBAgICA5MwDQYJKoZIhvcNAQEFBQAwgcwxCzAJBgNVBAYTAkFU
MRAwDgYDVQQIEwdBdXN0cmlhMQ8wDQYDVQQHEwZWaWVubmExOjA4BgNVBAoTMUFS
R0UgREFURU4gLSBBdXN0cmlhbiBTb2NpZXR5IGZvciBEYXRhIFByb3RlY3Rpb24x
JTAjBgNVBAsTHEEtQ0VSVCBDZXJ0aWZpY2F0aW9uIFNlcnZpY2UxGDAWBgNVBAMT
D0EtQ0VSVCBBRFZBTkNFRDEdMBsGCSqGSIb3DQEJARYOaW5mb0BhLWNlcnQuYXQw
HhcNMDYwMzI4MDAwMDAwWhcNMDcwMzI4MDAwMDAwWjCBqjELMAkGA1UEBhMCQVQx
EjAQBgNVBAcTCU1hdWVyYmFjaDEtMCsGA1UEChMkVGVzdDogTUVTT05JQyBEYXRl
bnZlcmFyYmVpdHVuZyBHbWJIMRQwEgYDVQQLEwtEZXZlbG9wbWVudDEfMB0GA1UE
AxMWSnVlcmdlbiBIZWlzcywgIChUZXN0KTEhMB8GCSqGSIb3DQEJARYSamhlaXNz
QG1lc29uaWMuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAWFbBhGXf
YGinmUA7UD9C2Wp8HeR5V8LlWMXYXvwE25AjkhRFA6dCioO3m6kI+vTILMw1ZTaL
A1jqIGuD5dB6rPkiNy0/WAO/kuBGcWLZqoAE486QZBXoIbUz8h83TDgHExwKJ+Ri
Q10OKnoEspYPuVLFeAIHEnJnrpkIVuPXDQIDAQABo4ICCTCCAgUwDAYDVR0TAQH/
BAIwADAdBgNVHQ4EFgQUfdYGf3dEJccoa1DrTQ0D9VbMIOcwHwYDVR0jBBgwFoAU
N38+PplxYMok1JETedB0KbSoJNgwHQYDVR0RBBYwFIESamhlaXNzQG1lc29uaWMu
Y29tMC8GA1UdEgQoMCaBDmluZm9AYS1jZXJ0LmF0hhRodHRwOi8vd3d3LmEtY2Vy
dC5hdDA5BgNVHR8EMjAwMC6gLKAqhihodHRwOi8vd3d3LmEtY2VydC5hdC9zdGF0
aWMvYWR2YW5jZWQuY3JsMA4GA1UdDwEB/wQEAwIE8DAxBggrBgEFBQcBAQQlMCMw
IQYIKwYBBQUHMAGGFWh0dHA6Ly9vY3NwLmEtY2VydC5hdDARBglghkgBhvhCAQEE
BAMCBPAwUQYDVR0gBEowSDBGBggqKAAYAQEBAzA6MDgGCCsGAQUFBwIBFixodHRw
Oi8vd3d3LmEtY2VydC5hdC9jZXJ0aWZpY2F0ZS1wb2xpY3kuaHRtbDA7BglghkgB
hvhCAQgELhYsaHR0cDovL3d3dy5hLWNlcnQuYXQvY2VydGlmaWNhdGUtcG9saWN5
Lmh0bWwwNAYJYIZIAYb4QgENBCcWJUEtQ0VSVCBBRFZBTkNFRCBDZXJ0aWZpY2F0
aW9uIFNlcnZpY2UwDgYHKigAGAQBAAQDAQH/MA0GCSqGSIb3DQEBBQUAA4IBAQAN
GWHWLZHDXGJeISXmONePjdLKBay4jOiUzrN+xBeCwX5nwoAzOgs/F75x1vDE2NTb
Q2LLjlXJlTXwTDlZEt05GhHc7Ic6uX99pSrc2iWTyGP+XxnjV4CPB9y0nOLOHrVc
IdrTzfGgEtOSBVm3cO6FCwdFJKhRjf+vW9C7vkFhqFQoO/9lM2YILvFyvoi1jnZG
rjEFEbx/Gi9dMZbic/agIThnyCBs4PieIN5bEo0AaOrRC0Lj0/QNrXHh/S85pYsK
b1EICz/rpRHwpDZ1kxORCeW9Z13yCadInNdgYtdHLXJi1W50Jl6CFJF89BJDMiXd
ujw/yFRWk2wEmHn3NBtn</X509Certificate>
<X509SubjectName xmlns="http://www.w3.org/2000/09/xmldsig#">emailAddress=jheiss at mesonic.com, CN="Juergen Heiss, (Test)", OU=Development, O=Test: MESONIC Datenverarbeitung GmbH, L=Mauerbach, C=AT</X509SubjectName>
<X509IssuerSerial xmlns="http://www.w3.org/2000/09/xmldsig#">
<X509IssuerName>emailAddress=info at a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT</X509IssuerName>
<X509SerialNumber>915</X509SerialNumber>
</X509IssuerSerial>
</dsig:X509Data>
</dsig:KeyInfo>
</dsig:Signature>
[....]
Jürgen
More information about the xmlsec
mailing list