Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The CONDITIONLIST element of the UL contains a URL where an XrML revocation list can be retrieved. The revocation list located at the specified URL MUST be a signed XrML document containing a REVOCATIONLIST element as specified in section 3.17 of [XRML].
If present, the CONDITIONLIST element MUST use the following template.
-
<CONDITIONLIST> <REFRESH> <DISTRIBUTIONPOINT> <OBJECT type="Revocation"> <ID type="[[- type -]]">[[- id -]]</ID> <NAME>[[- name -]]</NAME> <ADDRESS type="URL">[[- address -]]</ADDRESS> </OBJECT> [[- publickey -]] </DISTRIBUTIONPOINT> <INTERVALTIME days="[[- days -]]" hours="[[- hours -]]" minutes="[[- minutes -]]" seconds="[[- seconds -]]" /> </REFRESH> </CONDITIONLIST>
[[- type -]]: MUST be the type of the ID of the issuer of the revocation list.
[[- id -]]: MUST be the ID of the issuer of the revocation list.
[[- name -]]: An optional field containing a human-readable name of the revocation list site.
[[- address -]]: MUST be the URL of a location to download a revocation list.
[[- publickey -]]: MUST be a PUBLICKEY element (section 2.2.9.1.6) that contains the public key used to sign the revocation list.
[[- days -]]: The number of days in the time interval for refreshing the revocation list. If this value is zero, the days attribute SHOULD be omitted.
[[- hours -]]: The number of hours in the time interval for refreshing the revocation list. If this value is zero, the hours attribute SHOULD be omitted.
[[- minutes -]]: The number of minutes in the time interval for refreshing the revocation list. If this value is zero, the minutes attribute SHOULD be omitted.
[[- seconds -]]: The number of seconds in the time interval for refreshing the revocation list. If this value is zero, the seconds attribute SHOULD be omitted.