Generate certificates, public and private keys with Java [closed]

by

You can generate Certificate in java dynamically, by using a pair or keys. (Public Key, Private Keys). Get These keys as BigInteger format and checking the following code to generate certificate.

RSAPrivateKeySpec serPrivateSpec = new RSAPrivateKeySpec(
    new BigInteger(val of pub key), new BigInteger(val of pri key));
fact = KeyFactory.getInstance("RSA");
PrivateKey serverPrivateKey = fact.generatePrivate(serPrivateSpec);

RSAPublicKeySpec serPublicSpec = new RSAPublicKeySpec(
    new BigInteger(agentCL.getSerPubMod()), new BigInteger(agentCL.getSerPubExp()));
PublicKey serverPublicKey = fact.generatePublic(serPublicSpec);

keyStore = KeyStore.getInstance(IMXAgentCL.STORE_TYPE);
keyStore.load(null, SOMEPWD.toCharArray());

Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());

X509Certificate[] serverChain = new X509Certificate[1];
X509V3CertificateGenerator serverCertGen = new X509V3CertificateGenerator();
X500Principal serverSubjectName = new X500Principal("CN=OrganizationName");
serverCertGen.setSerialNumber(new BigInteger("123456789"));
// X509Certificate caCert=null;
serverCertGen.setIssuerDN(somename);
serverCertGen.setNotBefore(new Date());
serverCertGen.setNotAfter(new Date());
serverCertGen.setSubjectDN(somename);
serverCertGen.setPublicKey(serverPublicKey);
serverCertGen.setSignatureAlgorithm("MD5WithRSA");
// certGen.addExtension(X509Extensions.AuthorityKeyIdentifier, false,new
// AuthorityKeyIdentifierStructure(caCert));
serverCertGen.addExtension(X509Extensions.SubjectKeyIdentifier, false,
    new SubjectKeyIdentifierStructure(serverPublicKey));
serverChain[0] = serverCertGen.generateX509Certificate(serverPrivateKey, "BC"); // note: private key of CA

keyStore.setEntry("xyz",
    new KeyStore.PrivateKeyEntry(serverPrivateKey, serverChain),
    new KeyStore.PasswordProtection("".toCharArray()));

Hope this will help you.

More Related Contents:

  1. Accept server’s self-signed ssl certificate in Java client
  2. Unable to find valid certification path to requested target – error even after cert imported
  3. Trust Store vs Key Store – creating with keytool
  4. Importing the private-key/public-certificate pair in the Java KeyStore [duplicate]
  5. SSL Connection Reset
  6. How to use .key and .crt file in java that generated by openssl?
  7. Creating .p12 truststore with openssl
  8. Java Keytool error after importing certificate , “keytool error: java.io.FileNotFoundException & Access Denied”
  9. Resolving javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed Error?
  10. SSL handshake alert: unrecognized_name error since upgrade to Java 1.7.0
  11. Java SSLHandshakeException “no cipher suites in common”
  12. How to extract CN from X509Certificate in Java?
  13. HTTPS GET (SSL) with Android and self-signed server certificate
  14. How do I find out what keystore my JVM is using?
  15. Java keytool easy way to add server cert from url/port
  16. Programmatically Import CA trust cert into existing keystore file without using keytool
  17. How to decode a string encoded with openssl aes-128-cbc using java?
  18. HttpGet with HTTPS : SSLPeerUnverifiedException
  19. Why does Java’s SSLSocket send a version 2 client hello?
  20. JavaMail IMAP over SSL quite slow – Bulk fetching multiple messages
  21. SSLHandshakeException while connecting to a https site
  22. SSLHandShakeException No Appropriate Protocol
  23. Decrypting an OpenSSL PEM Encoded RSA private key with Java?
  24. Reading elliptic curve private key from file with BouncyCastle
  25. How can I know if the request to the servlet was executed using HTTP or HTTPS?
  26. Maven: resource binary changes file size after build
  27. Android SSL HttpGet (No peer certificate) error OR (Connection closed by peer) error
  28. SSL “Peer Not Authenticated” error with HttpClient 4.1
  29. How to build a SSLSocketFactory from PEM certificate and key without converting to keystore?
  30. Generate Subject Hash of X509Certificate in Java

Leave a Comment