3.6.4.1.3.2 RevocationAuthorityInformation
The RevocationAuthorityInformation element describes the public key of a third-party revocation authority that is allowed to revoke the SLC. If the Enroll request specifies CustomRevocation, at least one RevocationAuthorityInformation element MUST be present. A RevocationAuthorityInformation element MUST use the following template.
-
<RevocationAuthorityInformation> <aRevocationAuthorityPublicKey> [[- key -]] </aRevocationAuthorityPublicKey> </RevocationAuthorityInformation>
[[- key -]]: MUST contain the revocation authority's RSA PKCS#1-encoded public key as a base64-encoded string. If this revocation authority is required to issue a revocation list that revokes the SLC, it MUST be issued using this public key and signed with the corresponding private key.