this section gives the syntax for private-key information.

private-key information shall have asn.1 type privatekeyinfo:

privatekeyinfo ::= sequence {

version version,

privatekeyalgorithm privatekeyalgorithmidentifier,

privatekey privatekey,

attributes [0] implicit attributes optional }

version ::= integer

privatekeyalgorithmidentifier ::= algorithmidentifier

privatekey ::= octet string

attributes ::= set of attribute

privatekeyalgorithmidentifier ::= algorithmidentifier

algorithmidentifier ::= sequence {

algorithm object identifier,

parameters any defined by algorithm optional }

an rsa private key should be represented with the asn.1 type rsaprivatekey:

rsaprivatekey ::= sequence {

version version,

modulus integer, -- n

publicexponent integer, -- e

privateexponent integer, -- d

prime1 integer, -- p

prime2 integer, -- q

exponent1 integer, -- d mod (p-1)

exponent2 integer, -- d mod (q-1)

coefficient integer, -- (inverse of q) mod p

otherprimeinfos otherprimeinfos optional

}