def validate(self):
# Skip the policy binding (the last element)
pem = CERT_SEP.join(self.pem.split(CERT_SEP)[:-1])
# Generate policy binding from the pem
pi, _ = binding_from_pem(pem)
# Compare with the MSC's policy binding
try:
exts = self.policy_binding.extensions.get_extension_for_class(CertificatePolicies)
return pi == exts.value
except ExtensionNotFound:
logging.error("Certificate binding not found.")
return False
评论列表
文章目录
