subjectPublicKeyInfo
SubjectPublicKeyInfo is a data structure used in X.509 certificates and related PKI standards to convey the subject’s public key. It is defined in RFC 5280 as the portion of a certificate that allows others to obtain the public key corresponding to the subject’s private key, enabling signature verification and encryption operations.
The structure is a DER-encoded SEQUENCE with two components: algorithm and subjectPublicKey. The algorithm component is
For RSA keys, the algorithm identifier uses the OID rsaEncryption with NULL parameters, and subjectPublicKey contains
In practice, SubjectPublicKeyInfo appears in certificates, certificate signing requests, and other PKI artifacts to bind a