XAdEs Validator

Overview

The XAdES validator validates the signature of XAdES documents and validates the certificate chain. The validator will also validate embedded timestamp tokens in XAdES form T-signed documents.

Available Properties

Property

Description

TRUSTANCHORS

Trusted certificates. In PEM format. When validating a XAdES form T-signed document, must include the trusted certificate for the time stamp authority as well. Required.

CERTIFICATES

Intermediate CA certificates that might be needed to build a trust path from the signer certificates to any of the trusted certificates. In PEM format.

REVOCATION_CHECKING

True if revocation checking should be performed. The intermediate CA certificates (if any) and the signer certificate needs to have an Authority Information Access URL to an online OCSP responder or an CRL Distribution Point from where a CRL can be downloaded. If both are available the OCSP responder will be consulted first and then the CRL if the reseponder were unavailable. Default: true