PK { }

DEFINITIONS EXPLICIT TAGS ::=

BEGIN

-- This file contains parts of PKCS-1 structures and some stuff
-- required for DSA keys.

RSAPublicKey ::= SEQUENCE {
        modulus                 INTEGER, -- n
        publicExponent          INTEGER  -- e 
}

-- 
-- Representation of RSA private key with information for the 
-- CRT algorithm.
--
RSAPrivateKey ::= SEQUENCE {
        version          	Version,
        modulus          	INTEGER, -- (Usually large) n
        publicExponent   	INTEGER, -- (Usually small) e
        privateExponent  	INTEGER, -- (Usually large) d
        prime1           	INTEGER, -- (Usually large) p
	prime2           	INTEGER, -- (Usually large) q
	exponent1        	INTEGER, -- (Usually large) d mod (p-1)
	exponent2        	INTEGER, -- (Usually large) d mod (q-1)
	coefficient      	INTEGER, -- (Usually large) (inverse of q) mod p
	otherPrimeInfos 	OtherPrimeInfos OPTIONAL
}

Version ::= INTEGER { two-prime(0), multi(1) }
-- version must be multi if otherPrimeInfos present --

RSAParameters ::= NULL

OtherPrimeInfos ::= SEQUENCE SIZE(1..MAX) OF OtherPrimeInfo

OtherPrimeInfo ::= SEQUENCE {
	prime INTEGER,  -- ri
	exponent INTEGER, -- di
	coefficient INTEGER -- ti 
}

-- for signature calculation
-- added by nmav

AlgorithmIdentifier ::= SEQUENCE  {
     algorithm               OBJECT IDENTIFIER,
     parameters              ANY DEFINED BY algorithm OPTIONAL  
}
                                -- contains a value of the type
                                -- registered for use with the
                                -- algorithm object identifier value

DigestInfo ::= SEQUENCE {
     digestAlgorithm DigestAlgorithmIdentifier,
     digest Digest 
}

DigestAlgorithmIdentifier ::= AlgorithmIdentifier

Digest ::= OCTET STRING

DSAPublicPart ::= INTEGER

DSAPublicKey ::= SEQUENCE {
        version          	INTEGER, -- should be zero
        p          		INTEGER,
        q   			INTEGER,
        g  			INTEGER,
        Y	     	      	INTEGER  -- public
}

DSAParameters ::= SEQUENCE {
        p                   INTEGER,
        q                   INTEGER,
        g                   INTEGER
}

DSASignatureValue ::= SEQUENCE {
        r                   INTEGER,
        s                   INTEGER
}

DSAPrivatePart ::= INTEGER

DSAPrivateKey ::= SEQUENCE {
        version          	INTEGER, -- should be zero
        p          		INTEGER,
        q   			INTEGER,
        g  			INTEGER,
        Y	     	      	INTEGER, -- public
	priv           		INTEGER
}

-- from PKCS#3
DHParameter ::= SEQUENCE {
	prime INTEGER, -- p
	base INTEGER, -- g
	privateValueLength INTEGER OPTIONAL 
}

ECPoint ::= OCTET STRING

-- The EC parameters structure was amended by RFC 5480

ECParameters ::= CHOICE {
  namedCurve         OBJECT IDENTIFIER
  -- implicitCurve   NULL
  -- specifiedCurve  SpecifiedECDomain
}
  -- implicitCurve and specifiedCurve MUST NOT be used in PKIX.
  -- Details for SpecifiedECDomain can be found in [X9.62].
  -- Any future additions to this CHOICE should be coordinated
  -- with ANSI X9.


-- rfc5915 (EC private key structure)

ECPrivateKey ::= SEQUENCE {
  version        INTEGER { ecPrivkeyVer1(1) },
  privateKey     OCTET STRING,
  parameters [0] ECParameters OPTIONAL,
  publicKey  [1] BIT STRING OPTIONAL
}

-- The GOST public key parameters, defined by RFC 4491

GostR3410-2001-PublicKeyParameters ::= SEQUENCE {
  publicKeyParamSet OBJECT IDENTIFIER,
  digestParamSet OBJECT IDENTIFIER,
  encryptionParamSet OBJECT IDENTIFIER OPTIONAL
}

GostR3410-2012-PublicKeyParameters ::= SEQUENCE {
  publicKeyParamSet OBJECT IDENTIFIER,
  digestParamSet OBJECT IDENTIFIER OPTIONAL
}

END