X509RevocationFlag Enumeration
.NET Framework (current version)
Specifies which X509 certificates in the chain should be checked for revocation.
Assembly: System (in System.dll)
| Member name | Description | |
|---|---|---|
| EndCertificateOnly | Only the end certificate is checked for revocation. | |
| EntireChain | The entire chain of certificates is checked for revocation. | |
| ExcludeRoot | The entire chain, except the root certificate, is checked for revocation. |
Use this enumeration to specify which certificates in the chain are checked for revocation.
The following example opens the current user's personal certificate store, allows the user to select a certificate, then writes certificate and certificate chain information to the console. The output depends on the certificate you select.
//Output chain information of the selected certificate. X509Chain ^ ch = gcnew X509Chain; ch->Build( certificate ); Console::WriteLine( "Chain Information" ); ch->ChainPolicy->RevocationMode = X509RevocationMode::Online; Console::WriteLine( "Chain revocation flag: {0}", ch->ChainPolicy->RevocationFlag ); Console::WriteLine( "Chain revocation mode: {0}", ch->ChainPolicy->RevocationMode ); Console::WriteLine( "Chain verification flag: {0}", ch->ChainPolicy->VerificationFlags ); Console::WriteLine( "Chain verification time: {0}", ch->ChainPolicy->VerificationTime ); Console::WriteLine( "Chain status length: {0}", ch->ChainStatus->Length ); Console::WriteLine( "Chain application policy count: {0}", ch->ChainPolicy->ApplicationPolicy->Count ); Console::WriteLine( "Chain certificate policy count: {0} {1}", ch->ChainPolicy->CertificatePolicy->Count, Environment::NewLine );
.NET Framework
Available since 2.0
Available since 2.0
Show: