有和银行或者支付公司对接过API接口的人都知道,为了保证数据传输过程中的安全性,大部分公司会选择证书来进行签名和验证。证书有不同格式的,如 .cer .pfx .pem 等。下面就来看看 .pem格式证书如何转换成xml字符串。
1.假设证书路径存放在(F:/cer/public.pem 和 F:/cer/private.pem)
2.添加BouncyCastle.Crypto.dll 引用
代码如下:
using Org.BouncyCastle.Crypto.Parameters; using Org.BouncyCastle.Security; using System.IO; string privatekeyConent=privateKeyContent("F:/cer/private.pem");//获取pem私钥正文内容 string publickeyConent = Utils.PublicKeyContent(“F:/cer/public.pem”);//获取pem公钥正文内容 RSACryptoServiceProvider RSAalg = new RSACryptoServiceProvider(); string privatekeyXml = ConvertToXmlPrivateKey(RSAalg, privatekeyConent);//把java的私钥转换成.net的xml格式 string publickeyXml = ConvertToXmlPublicJavaKey(RSAalg, publickeyConent);//把java的公钥转换成.net的xml格式 /// <summary> ///获取pem私钥正文内容 /// </summary> /// <param name="filePath">私钥证书路径</param> /// <returns></returns> public static string privateKeyContent(string filePath) { string content= File.ReadAllText(filePath, Encoding.ASCII);//获取pem证书完整内容 if (string.IsNullOrEmpty(content)) { throw new ArgumentNullException("pemFileConent", "This arg cann't be empty."); } string privatekeyConent= content.Replace("-----BEGIN PRIVATE KEY-----", "").Replace("-----END PRIVATE KEY-----", "").Replace("\n", "").Replace("\r", "");//去掉证书的头部和尾部 return privatekeyConent; } /// <summary> ///获取pem公钥正文内容 /// </summary> /// <param name="filePath">私钥证书路径</param> /// <returns></returns> public static string publicKeyContent(string filePath) { string content= File.ReadAllText(filePath, Encoding.ASCII);//获取pem证书完整内容 if (string.IsNullOrEmpty(content)) { throw new ArgumentNullException("pemFileConent", "This arg cann't be empty."); } string publickeyConent = content.Replace("-----BEGIN PUBLIC KEY-----", "").Replace("-----END PUBLIC KEY-----", "").Replace("\n", "").Replace("\r", "");//去掉证书的头部和尾部 return publickeyConent ; } /// <summary> /// 把java的私钥转换成.net的xml格式 /// </summary> /// <param name="rsa"></param> /// <param name="privateJavaKey"></param> /// <returns></returns> public static string ConvertToXmlPrivateKey(this RSA rsa, string privateJavaKey) { RsaPrivateCrtKeyParameters privateKeyParam = (RsaPrivateCrtKeyParameters)PrivateKeyFactory.CreateKey(Convert.FromBase64String(privateJavaKey)); string xmlPrivateKey = string.Format("<RSAKeyValue><Modulus>{0}</Modulus><Exponent>{1}</Exponent><P>{2}</P><Q>{3}</Q><DP>{4}</DP><DQ>{5}</DQ><InverseQ>{6}</InverseQ><D>{7}</D></RSAKeyValue>", Convert.ToBase64String(privateKeyParam.Modulus.ToByteArrayUnsigned()), Convert.ToBase64String(privateKeyParam.PublicExponent.ToByteArrayUnsigned()), Convert.ToBase64String(privateKeyParam.P.ToByteArrayUnsigned()), Convert.ToBase64String(privateKeyParam.Q.ToByteArrayUnsigned()), Convert.ToBase64String(privateKeyParam.DP.ToByteArrayUnsigned()), Convert.ToBase64String(privateKeyParam.DQ.ToByteArrayUnsigned()), Convert.ToBase64String(privateKeyParam.QInv.ToByteArrayUnsigned()), Convert.ToBase64String(privateKeyParam.Exponent.ToByteArrayUnsigned())); return xmlPrivateKey; } /// <summary> /// 把java的公钥转换成.net的xml格式 /// </summary> /// <param name="privateKey">java提供的第三方公钥</param> /// <returns></returns> public static string ConvertToXmlPublicJavaKey(this RSA rsa, string publicJavaKey) { RsaKeyParameters publicKeyParam = (RsaKeyParameters)PublicKeyFactory.CreateKey(Convert.FromBase64String(publicJavaKey)); string xmlpublicKey = string.Format("<RSAKeyValue><Modulus>{0}</Modulus><Exponent>{1}</Exponent></RSAKeyValue>", Convert.ToBase64String(publicKeyParam.Modulus.ToByteArrayUnsigned()), Convert.ToBase64String(publicKeyParam.Exponent.ToByteArrayUnsigned())); return xmlpublicKey; }