This library does not support whole feature of X.509, it just parse and verify a message and signature. So it can not verify certificate itself.
Exports X.509 utility procedures.
Creates an X.509 certificate object from given binary input port or ASN.1 sequence object (second form).
Return #t if the o is X.509 certificate object, otherwise #f.
Return version of given X.509 certificate object.
Return serial number of given X.509 certificate object.
Return issuer DN of given X.509 certificate object as X.509 principal.
Return subject DN of given X.509 certificate object as X.509 principal.
NOTE: These Issuer DN and Subject DN getters return <x.509-principal> object, however I did not implement any utility for this class, so it's just useless for now.
Return start date of given X.509 certificate object.
Return end date of given X.509 certificate object.
Return signature of given X.509 certificate object.
NOTE: This signature is not for verify described below.
Return signature algorithm of given X.509 certificate object as an OID string.
Return public key of given X.509 certificate object. The return value is
<public-key> described in the section
(crypto) - Cryptographic library.
_ :key (verify pkcs1-emsa-v1.5-verify) (hash SHA-1)
message and signature must be bytevector.
Verify given message with signature and x509 certificate.
This procedure uses the verify procedure in (crypto) library. The
keyword arguments will be passed to it. For more detail, see
(crypto) - Cryptographic library.
Validate if the given certificate is valid in given date. Return #t
if it's valid, otherwise raises &assertion.