1# dumpasn1 Object Identifier configuration file, available from
2# http://www.cs.auckland.ac.nz/~pgut001/dumpasn1.cfg.  This is read by
3# dumpasn1.c and is used to display information on Object Identifiers found in
4# ASN.1 objects. This is merely a list of things which you might conceivably
5# find in use somewhere, and should in no way be taken as a guide to which OIDs
6# to use - many of these will never been seen in the wild, or should be shot on
7# sight if encountered.
8#
9# The format of this file is as follows:
10#
11# - All blank lines and lines beginning with a '#' are ignored.
12# - OIDs are described by a set of attributes, of which at least the 'OID' and
13#   'Description' must be present.  Optional attributes are a 'Comment' and a
14#   'Warning' (to indicate that dumpasn1 will display a warning if this OID is
15#   encountered).
16# - Attributes are listed one per line.  The first attribute should be an 'OID'
17#   attribute since this is used to denote the start of a new OID description.
18#   The other attributes may be given in any order.
19#
20# See the rest of this file for examples of what an OID description should look
21# like.
22
23# Some unknown X.500 attributes spec from the UK
24
25OID = 06 09 09 92 26 89 93 F2 2C 01 03
26Comment = Some oddball X.500 attribute collection
27Description = rfc822Mailbox (0 9 2342 19200300 1 3)
28
29# RFC 2247, How to Kludge an FQDN as a DN (or words to that effect)
30
31OID = 06 0A 09 92 26 89 93 F2 2C 64 01 01
32Comment = Men are from Mars, this OID is from Pluto
33Description = domainComponent (0 9 2342 19200300 100 1 25)
34
35# Certificates Australia
36
37OID = 06 0A 2A 24 A4 97 A3 53 01 64 01 01
38Comment = Certificates Australia CA
39Description = Certificates Australia policyIdentifier (1 2 36 75878867 1 100 1 1)
40
41# Signet
42
43OID = 06 09 2A 24 A0 F2 A0 7D 01 01 02
44Comment = Signet CA
45Description = Signet personal (1 2 36 68980861 1 1 2)
46
47OID = 06 09 2A 24 A0 F2 A0 7D 01 01 03
48Comment = Signet CA
49Description = Signet business (1 2 36 68980861 1 1 3)
50
51OID = 06 09 2A 24 A0 F2 A0 7D 01 01 04
52Comment = Signet CA
53Description = Signet legal (1 2 36 68980861 1 1 4)
54
55OID = 06 09 2A 24 A0 F2 A0 7D 01 01 0A
56Comment = Signet CA
57Description = Signet pilot (1 2 36 68980861 1 1 10)
58
59OID = 06 09 2A 24 A0 F2 A0 7D 01 01 0B
60Comment = Signet CA
61Description = Signet intraNet (1 2 36 68980861 1 1 11)
62
63OID = 06 09 2A 24 A0 F2 A0 7D 01 01 14
64Comment = Signet CA
65Description = Signet securityPolicy (1 2 36 68980861 1 1 20)
66
67# Mitsubishi
68
69OID = 06 0B 2A 83 08 8C 1A 4B 3D 01 01 01
70Comment = Mitsubishi security algorithm
71Description = symmetric-encryption-algorithm (1 2 392 200011 61 1 1 1)
72
73OID = 06 0C 2A 83 08 8C 9A 4B 3D 01 01 01 01
74Comment = Mitsubishi security algorithm
75Description = misty1-cbc (1 2 392 200011 61 1 1 1 1)
76
77# SEIS
78
79OID = 06 05 2A 85 70 22 01
80Comment = SEIS Project
81Description = seis-cp (1 2 752 34 1)
82
83OID = 06 06 2A 85 70 22 01 01
84Comment = SEIS Project certificate policies
85Description = SEIS high-assurnace certificatePolicy (1 2 752 34 1 1)
86
87OID = 06 06 2A 85 70 22 01 02
88Comment = SEIS Project certificate policies
89Description = SEIS GAK certificatePolicy (1 2 752 34 1 2)
90
91OID = 06 05 2A 85 70 22 02
92Comment = SEIS Project
93Description = SEIS pe (1 2 752 34 2)
94
95OID = 06 05 2A 85 70 22 03
96Comment = SEIS Project
97Description = SEIS at (1 2 752 34 3)
98
99OID = 06 06 2A 85 70 22 03 01
100Comment = SEIS Project attribute
101Description = SEIS at-personalIdentifier (1 2 752 34 3 1)
102
103# ANSI X9.57
104
105OID = 06 06 2A 86 48 CE 38 01
106Comment = ANSI X9.57
107Description = module (1 2 840 10040 1)
108
109OID = 06 07 2A 86 48 CE 38 01 01
110Comment = ANSI X9.57 module
111Description = x9f1-cert-mgmt (1 2 840 10040 1 1)
112
113OID = 06 06 2A 86 48 CE 38 02
114Comment = ANSI X9.57
115Description = holdinstruction (1 2 840 10040 2)
116
117OID = 06 07 2A 86 48 CE 38 02 01
118Comment = ANSI X9.57 hold instruction
119Description = holdinstruction-none (1 2 840 10040 2 1)
120
121OID = 06 07 2A 86 48 CE 38 02 02
122Comment = ANSI X9.57 hold instruction
123Description = callissuer (1 2 840 10040 2 2)
124
125OID = 06 07 2A 86 48 CE 38 02 03
126Comment = ANSI X9.57 hold instruction
127Description = reject (1 2 840 10040 2 3)
128
129OID = 06 07 2A 86 48 CE 38 02 04
130Comment = ANSI X9.57 hold instruction
131Description = pickupToken (1 2 840 10040 2 4)
132
133OID = 06 06 2A 86 48 CE 38 03
134Comment = ANSI X9.57
135Description = attribute (1 2 840 10040 3)
136
137OID = 06 06 2A 86 48 CE 38 03 01
138Comment = ANSI X9.57 attribute
139Description = countersignature (1 2 840 10040 3 1)
140
141OID = 06 06 2A 86 48 CE 38 03 02
142Comment = ANSI X9.57 attribute
143Description = attribute-cert (1 2 840 10040 3 2)
144
145OID = 06 06 2A 86 48 CE 38 04
146Comment = ANSI X9.57
147Description = algorithm (1 2 840 10040 4)
148
149# this is specified in sm_cms
150OID = 06 07 2A 86 48 CE 38 04 01
151Comment = ANSI X9.57 algorithm
152Description = dsa (1 2 840 10040 4 1)
153
154OID = 06 07 2A 86 48 CE 38 04 02
155Comment = ANSI X9.57 algorithm
156Description = dsa-match (1 2 840 10040 4 2)
157
158OID = 06 07 2A 86 48 CE 38 04 03
159Comment = ANSI X9.57 algorithm
160Description = dsaWithSha1 (1 2 840 10040 4 3)
161
162# ANSI X9.62
163
164OID = 06 06 2A 86 48 CE 3D 01
165Comment = ANSI X9.62.  This OID may also be assigned as ecdsa-with-SHA1
166Description = fieldType (1 2 840 10045 1)
167
168OID = 06 07 2A 86 48 CE 3D 01 01
169Comment = ANSI X9.62 field type
170Description = prime-field (1 2 840 10045 1 1)
171
172OID = 06 07 2A 86 48 CE 3D 01 02
173Comment = ANSI X9.62 field type
174Description = characteristic-two-field (1 2 840 10045 1 2)
175
176OID = 06 09 2A 86 48 CE 3D 01 02 03
177Comment = ANSI X9.62 field type
178Description = characteristic-two-basis (1 2 840 10045 1 2 3)
179
180OID = 06 0A 2A 86 48 CE 3D 01 02 03 01
181Comment = ANSI X9.62 field basis
182Description = onBasis (1 2 840 10045 1 2 3 1)
183
184OID = 06 0A 2A 86 48 CE 3D 01 02 03 02
185Comment = ANSI X9.62 field basis
186Description = tpBasis (1 2 840 10045 1 2 3 2)
187
188OID = 06 0A 2A 86 48 CE 3D 01 02 03 03
189Comment = ANSI X9.62 field basis
190Description = ppBasis (1 2 840 10045 1 2 3 3)
191
192OID = 06 07 2A 86 48 CE 3D 01 02
193Comment = ANSI X9.62
194Description = public-key-type (1 2 840 10045 1 2)
195
196OID = 06 08 2A 86 48 CE 3D 01 02 01
197Comment = ANSI X9.62 public key type
198Description = ecPublicKey (1 2 840 10045 1 2 1)
199
200# The definition for the following OID is somewhat confused, and is given as
201# keyType, publicKeyType, and public-key-type, all within 4 lines of text.
202# ecPublicKey is defined using the ID publicKeyType, so this is what's used
203# here.
204OID = 06 06 2A 86 48 CE 3D 02
205Comment = ANSI X9.62
206Description = publicKeyType (1 2 840 10045 2)
207
208OID = 06 07 2A 86 48 CE 3D 02 01
209Comment = ANSI X9.62 public key type
210Description = ecPublicKey (1 2 840 10045 2 1)
211
212# ANSI X9.42
213
214OID = 06 07 2A 86 48 CE 3E 02
215Comment = ANSI X9.42
216Description = number-type (1 2 840 10046 2)
217
218OID = 06 07 2A 86 48 CE 3E 02 01
219Comment = ANSI X9.42 number-type
220Description = dhPublicNumber (1 2 840 10046 2 1)
221
222# Nortel Secure Networks/Entrust
223
224OID = 06 07 2A 86 48 86 F6 7D 07
225Description = nsn (1 2 840 113533 7)
226
227OID = 06 08 2A 86 48 86 F6 7D 07 41
228Description = nsn-ce (1 2 840 113533 7 65)
229
230OID = 06 09 2A 86 48 86 F6 7D 07 41 00
231Comment = Nortel Secure Networks ce (1 2 840 113533 7 65)
232Description = entrustVersInfo (1 2 840 113533 7 65 0)
233
234OID = 06 08 2A 86 48 86 F6 7D 07 42
235Description = nsn-alg (1 2 840 113533 7 66)
236
237OID = 06 09 2A 86 48 86 F6 7D 07 42 03
238Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
239Description = cast3CBC (1 2 840 113533 7 66 3)
240
241OID = 06 09 2A 86 48 86 F6 7D 07 42 0A
242Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
243Description = cast5CBC (1 2 840 113533 7 66 10)
244
245OID = 06 09 2A 86 48 86 F6 7D 07 42 0B
246Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
247Description = cast5MAC (1 2 840 113533 7 66 11)
248
249OID = 06 09 2A 86 48 86 F6 7D 07 42 0C
250Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
251Description = pbeWithMD5AndCAST5-CBC (1 2 840 113533 7 66 12)
252
253OID = 06 09 2A 86 48 86 F6 7D 07 42 0D
254Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
255Description = passwordBasedMac (1 2 840 113533 7 66 13)
256
257OID = 06 08 2A 86 48 86 F6 7D 07 43
258Description = nsn-oc (1 2 840 113533 7 67)
259
260OID = 06 09 2A 86 48 86 F6 7D 07 43 0C
261Comment = Nortel Secure Networks oc (1 2 840 113533 7 67)
262Description = entrustUser (1 2 840 113533 7 67 0)
263
264OID = 06 08 2A 86 48 86 F6 7D 07 44
265Description = nsn-at (1 2 840 113533 7 68)
266
267OID = 06 09 2A 86 48 86 F6 7D 07 44 00
268Comment = Nortel Secure Networks at (1 2 840 113533 7 68)
269Description = entrustCAInfo (1 2 840 113533 7 68 0)
270
271OID = 06 09 2A 86 48 86 F6 7D 07 44 0A
272Comment = Nortel Secure Networks at (1 2 840 113533 7 68)
273Description = attributeCertificate (1 2 840 113533 7 68 10)
274
275# PKCS #1
276
277OID = 06 08 2A 86 48 86 F7 0D 01 01
278Description = pkcs-1 (1 2 840 113549 1 1)
279
280OID = 06 09 2A 86 48 86 F7 0D 01 01 01
281Comment = PKCS #1
282Description = rsaEncryption (1 2 840 113549 1 1 1)
283
284OID = 06 09 2A 86 48 86 F7 0D 01 01 02
285Comment = PKCS #1
286Description = md2withRSAEncryption (1 2 840 113549 1 1 2)
287
288OID = 06 09 2A 86 48 86 F7 0D 01 01 03
289Comment = PKCS #1
290Description = md4withRSAEncryption (1 2 840 113549 1 1 3)
291
292OID = 06 09 2A 86 48 86 F7 0D 01 01 04
293Comment = PKCS #1
294Description = md5withRSAEncryption (1 2 840 113549 1 1 4)
295
296OID = 06 09 2A 86 48 86 F7 0D 01 01 05
297Comment = PKCS #1
298Description = sha1withRSAEncryption (1 2 840 113549 1 1 5)
299
300# There is some confusion over the identity of the following OID.  The OAEP
301# one is more recent, but independant vendors have already used the RIPEMD
302# one, however it's likely that SET will be a bigger hammer so we report it
303# as that.
304OID = 06 09 2A 86 48 86 F7 0D 01 01 06
305Comment = PKCS #1.  This OID may also be assigned as ripemd160WithRSAEncryption
306Description = rsaOAEPEncryptionSET (1 2 840 113549 1 1 6)
307# ripemd160WithRSAEncryption (1 2 840 113549 1 1 6)
308
309# PKCS #3
310
311OID = 06 08 2A 86 48 86 F7 0D 01 03
312Description = pkcs-3 (1 2 840 113549 1 3)
313
314OID = 06 09 2A 86 48 86 F7 0D 01 03 01
315Comment = PKCS #3
316Description = dhKeyAgreement (1 2 840 113549 1 3 1)
317
318# PKCS #5
319
320OID = 06 09 2A 86 48 86 F7 0D 01 05
321Description = pkcs-5 (1 2 840 113549 1 5)
322
323OID = 06 09 2A 86 48 86 F7 0D 01 05 01
324Comment = PKCS #5
325Description = pbeWithMD2AndDES-CBC (1 2 840 113549 1 5 1)
326
327OID = 06 09 2A 86 48 86 F7 0D 01 05 03
328Comment = PKCS #5
329Description = pbeWithMD5AndDES-CBC (1 2 840 113549 1 5 3)
330
331OID = 06 09 2A 86 48 86 F7 0D 01 05 04
332Comment = PKCS #5
333Description = pbeWithMD2AndRC2-CBC (1 2 840 113549 1 5 4)
334
335OID = 06 09 2A 86 48 86 F7 0D 01 05 06
336Comment = PKCS #5
337Description = pbeWithMD5AndRC2-CBC (1 2 840 113549 1 5 6)
338
339OID = 06 09 2A 86 48 86 F7 0D 01 05 09
340Comment = PKCS #5, used in BSAFE only
341Description = pbeWithMD5AndXOR (1 2 840 113549 1 5 9)
342Warning
343
344OID = 06 09 2A 86 48 86 F7 0D 01 05 0A
345Comment = PKCS #5
346Description = pbeWithSHAAndDES-CBC (1 2 840 113549 1 5 10)
347
348# PKCS #7
349
350OID = 06 09 2A 86 48 86 F7 0D 01 07
351Description = pkcs-7 (1 2 840 113549 1 7)
352
353OID = 06 09 2A 86 48 86 F7 0D 01 07 01
354Comment = PKCS #7
355Description = data (1 2 840 113549 1 7 1)
356
357OID = 06 09 2A 86 48 86 F7 0D 01 07 02
358Comment = PKCS #7
359Description = signedData (1 2 840 113549 1 7 2)
360
361OID = 06 09 2A 86 48 86 F7 0D 01 07 03
362Comment = PKCS #7
363Description = envelopedData (1 2 840 113549 1 7 3)
364
365OID = 06 09 2A 86 48 86 F7 0D 01 07 04
366Comment = PKCS #7
367Description = signedAndEnvelopedData (1 2 840 113549 1 7 4)
368
369OID = 06 09 2A 86 48 86 F7 0D 01 07 05
370Comment = PKCS #7
371Description = digestedData (1 2 840 113549 1 7 5)
372
373OID = 06 09 2A 86 48 86 F7 0D 01 07 06
374Comment = PKCS #7
375Description = encryptedData (1 2 840 113549 1 7 6)
376
377OID = 06 09 2A 86 48 86 F7 0D 01 07 07
378Comment = PKCS #7 experimental
379Description = dataWithAttributes (1 2 840 113549 1 7 7)
380Warning
381
382OID = 06 09 2A 86 48 86 F7 0D 01 07 08
383Comment = PKCS #7 experimental
384Description = encryptedPrivateKeyInfo (1 2 840 113549 1 7 8)
385Warning
386
387# PKCS #9
388
389OID = 06 09 2A 86 48 86 F7 0D 01 09
390Description = pkcs-9 (1 2 840 113549 1 9)
391
392OID = 06 09 2A 86 48 86 F7 0D 01 09 01
393Comment = PKCS #9 (1 2 840 113549 1 9).  Deprecated, use an altName extension instead
394Description = emailAddress (1 2 840 113549 1 9 1)
395
396OID = 06 09 2A 86 48 86 F7 0D 01 09 02
397Comment = PKCS #9 (1 2 840 113549 1 9)
398Description = unstructuredName (1 2 840 113549 1 9 2)
399
400OID = 06 09 2A 86 48 86 F7 0D 01 09 03
401Comment = PKCS #9 (1 2 840 113549 1 9)
402Description = contentType (1 2 840 113549 1 9 3)
403
404OID = 06 09 2A 86 48 86 F7 0D 01 09 04
405Comment = PKCS #9 (1 2 840 113549 1 9)
406Description = messageDigest (1 2 840 113549 1 9 4)
407
408OID = 06 09 2A 86 48 86 F7 0D 01 09 05
409Comment = PKCS #9 (1 2 840 113549 1 9)
410Description = signingTime (1 2 840 113549 1 9 5)
411
412OID = 06 09 2A 86 48 86 F7 0D 01 09 06
413Comment = PKCS #9 (1 2 840 113549 1 9)
414Description = countersignature (1 2 840 113549 1 9 6)
415
416OID = 06 09 2A 86 48 86 F7 0D 01 09 07
417Comment = PKCS #9 (1 2 840 113549 1 9)
418Description = challengePassword (1 2 840 113549 1 9 7)
419
420OID = 06 09 2A 86 48 86 F7 0D 01 09 08
421Comment = PKCS #9 (1 2 840 113549 1 9)
422Description = unstructuredAddress (1 2 840 113549 1 9 8)
423
424OID = 06 09 2A 86 48 86 F7 0D 01 09 09
425Comment = PKCS #9 (1 2 840 113549 1 9)
426Description = extendedCertificateAttributes (1 2 840 113549 1 9 9)
427
428OID = 06 09 2A 86 48 86 F7 0D 01 09 0A
429Comment = PKCS #9 (1 2 840 113549 1 9) experimental
430Description = issuerAndSerialNumber (1 2 840 113549 1 9 10)
431Warning
432
433OID = 06 09 2A 86 48 86 F7 0D 01 09 0B
434Comment = PKCS #9 (1 2 840 113549 1 9) experimental
435Description = passwordCheck (1 2 840 113549 1 9 11)
436Warning
437
438OID = 06 09 2A 86 48 86 F7 0D 01 09 0C
439Comment = PKCS #9 (1 2 840 113549 1 9) experimental
440Description = publicKey (1 2 840 113549 1 9 12)
441Warning
442
443OID = 06 09 2A 86 48 86 F7 0D 01 09 0D
444Comment = PKCS #9 (1 2 840 113549 1 9) experimental
445Description = signingDescription (1 2 840 113549 1 9 13)
446Warning
447
448OID = 06 09 2A 86 48 86 F7 0D 01 09 0E
449Comment = PKCS #9 (1 2 840 113549 1 9) experimental
450Description = extensionReq (1 2 840 113549 1 9 14)
451
452# PKCS #9 for use with S/MIME
453
454OID = 06 09 2A 86 48 86 F7 0D 01 09 0F
455Comment = PKCS #9 (1 2 840 113549 1 9).  This OID was formerly assigned as symmetricCapabilities, then reassigned as SMIMECapabilities, then renamed to the current name
456Description = sMIMECapabilities (1 2 840 113549 1 9 15)
457
458OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 01
459Comment = sMIMECapabilities (1 2 840 113549 1 9 15)
460Description = preferSignedData (1 2 840 113549 1 9 15 1)
461
462OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 02
463Comment = sMIMECapabilities (1 2 840 113549 1 9 15)
464Description = canNotDecryptAny (1 2 840 113549 1 9 15 2)
465
466OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 03
467Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 2 1) instead
468Description = receiptRequest (1 2 840 113549 1 9 15 3)
469Warning
470
471OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 04
472Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 1 1) instead
473Description = receipt (1 2 840 113549 1 9 15 4)
474Warning
475
476OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 05
477Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 2 4) instead
478Description = contentHints (1 2 840 113549 1 9 15 5)
479Warning
480
481OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 06
482Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 2 3) instead
483Description = mlExpansionHistory (1 2 840 113549 1 9 15 6)
484Warning
485
486OID = 06 09 2A 86 48 86 F7 0D 01 09 10
487Comment = PKCS #9 (1 2 840 113549 1 9)
488Description = id-sMIME (1 2 840 113549 1 9 16)
489
490OID = 06 0A 2A 86 48 86 F7 0D 01 09 10 00
491Comment = id-sMIME (1 2 840 113549 1 9 16)
492Description = id-mod (1 2 840 113549 1 9 16 0)
493
494OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 00 01
495Comment = S/MIME Modules (1 2 840 113549 1 9 16 0)
496Description = id-mod-cms (1 2 840 113549 1 9 16 0 1)
497
498OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 00 02
499Comment = S/MIME Modules (1 2 840 113549 1 9 16 0)
500Description = id-mod-ess (1 2 840 113549 1 9 16 0 2)
501
502OID = 06 0A 2A 86 48 86 F7 0D 01 09 10 01
503Comment = id-sMIME (1 2 840 113549 1 9 16)
504Description = id-ct (1 2 840 113549 1 9 16 1)
505
506OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 01 01
507Comment = S/MIME Content Types (1 2 840 113549 1 9 16 1)
508Description = id-ct-receipt (1 2 840 113549 1 9 16 1 1)
509
510OID = 06 0A 2A 86 48 86 F7 0D 01 09 10 02
511Comment = id-sMIME (1 2 840 113549 1 9 16)
512Description = id-aa (1 2 840 113549 1 9 16 2)
513
514OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 01
515Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
516Description = id-aa-receiptRequest (1 2 840 113549 1 9 16 2 1)
517
518OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 02
519Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
520Description = id-aa-securityLabel (1 2 840 113549 1 9 16 2 2)
521
522OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 03
523Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
524Description = id-aa-mlExpandHistory (1 2 840 113549 1 9 16 2 3)
525
526OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 04
527Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
528Description = id-aa-contentHint (1 2 840 113549 1 9 16 2 4)
529
530OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 05
531Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
532Description = id-aa-msgSigDigest (1 2 840 113549 1 9 16 2 5)
533
534OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 07
535Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
536Description = id-aa-contentIdentifier (1 2 840 113549 1 9 16 2 7)
537
538OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 08
539Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
540Description = id-aa-macValue (1 2 840 113549 1 9 16 2 8)
541
542OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 09
543Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
544Description = id-aa-equivalentLabels (1 2 840 113549 1 9 16 2 9)
545
546OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 0A
547Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
548Description = id-aa-contentReference (1 2 840 113549 1 9 16 2 10)
549
550# PKCS #9 for use with PKCS #12
551
552OID = 06 09 2A 86 48 86 F7 0D 01 09 14
553Comment = PKCS #9 (1 2 840 113549 1 9)
554Description = friendlyName (for PKCS #12) (1 2 840 113549 1 9 20)
555
556OID = 06 09 2A 86 48 86 F7 0D 01 09 15
557Comment = PKCS #9 (1 2 840 113549 1 9)
558Description = localKeyID (for PKCS #12) (1 2 840 113549 1 9 21)
559
560OID = 06 09 2A 86 48 86 F7 0D 01 09 16
561Comment = PKCS #9 (1 2 840 113549 1 9)
562Description = certTypes (for PKCS #12) (1 2 840 113549 1 9 22)
563
564OID = 06 0A 2A 86 48 86 F7 0D 01 09 16 01
565Comment = PKCS #9 (1 2 840 113549 1 9)
566Description = x509Certificate (for PKCS #12) (1 2 840 113549 1 9 22 1)
567
568OID = 06 0A 2A 86 48 86 F7 0D 01 09 16 02
569Comment = PKCS #9 (1 2 840 113549 1 9)
570Description = sdsiCertificate (for PKCS #12) (1 2 840 113549 1 9 22 2)
571
572OID = 06 09 2A 86 48 86 F7 0D 01 09 17
573Comment = PKCS #9 (1 2 840 113549 1 9)
574Description = crlTypes (for PKCS #12) (1 2 840 113549 1 9 23)
575
576OID = 06 0A 2A 86 48 86 F7 0D 01 09 17 01
577Comment = PKCS #9 (1 2 840 113549 1 9)
578Description = x509Crl (for PKCS #12) (1 2 840 113549 1 9 23 1)
579
580# PKCS #12.  Note that current PKCS #12 implementations tend to be strange and
581# peculiar, with implementors misusing OIDs or basing their work on earlier PFX
582# drafts or defining their own odd OIDs.  In addition the PFX/PKCS #12 spec
583# itself is full of errors and inconsistencies, and a number of OIDs have been
584# redefined in different drafts (often multiple times), which doesn't make the
585# implementors job any easier.
586
587OID = 06 08 2A 86 48 86 F7 0D 01 0C
588Description = pkcs-12 (1 2 840 113549 1 12)
589
590OID = 06 09 2A 86 48 86 F7 0D 01 0C 01
591Comment = This OID was formerly assigned as PKCS #12 modeID
592Description = pkcs-12-PbeIds (1 2 840 113549 1 12 1)
593
594OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 01
595Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 1). This OID was formerly assigned as pkcs-12-OfflineTransportMode
596Description = pbeWithSHAAnd128BitRC4 (1 2 840 113549 1 12 1 1)
597
598OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 02
599Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 2). This OID was formerly assigned as pkcs-12-OnlineTransportMode
600Description = pbeWithSHAAnd40BitRC4 (1 2 840 113549 1 12 1 2)
601
602OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 03
603Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
604Description = pbeWithSHAAnd3-KeyTripleDES-CBC (1 2 840 113549 1 12 1 3)
605
606OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 04
607Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
608Description = pbeWithSHAAnd2-KeyTripleDES-CBC (1 2 840 113549 1 12 1 4)
609
610OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 05
611Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
612Description = pbeWithSHAAnd128BitRC2-CBC (1 2 840 113549 1 12 1 5)
613
614OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 06
615Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
616Description = pbeWithSHAAnd40BitRC2-CBC (1 2 840 113549 1 12 1 6)
617
618OID = 06 09 2A 86 48 86 F7 0D 01 0C 02
619Comment = Deprecated
620Description = pkcs-12-ESPVKID (1 2 840 113549 1 12 2)
621Warning
622
623OID = 06 0A 2A 86 48 86 F7 0D 01 0C 02 01
624Comment = PKCS #12 ESPVKID (1 2 840 113549 1 12 2). Deprecated, use (1 2 840 113549 1 12 3 5) instead
625Description = pkcs-12-PKCS8KeyShrouding (1 2 840 113549 1 12 2 1)
626Warning
627
628# The following appear to have been redefined yet again at 12 10 in the latest
629# PKCS #12 spec.
630OID = 06 09 2A 86 48 86 F7 0D 01 0C 03
631Description = pkcs-12-BagIds (1 2 840 113549 1 12 3)
632
633OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 01
634Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
635Description = pkcs-12-keyBagId (1 2 840 113549 1 12 3 1)
636
637OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 02
638Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
639Description = pkcs-12-certAndCRLBagId (1 2 840 113549 1 12 3 2)
640
641OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 03
642Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
643Description = pkcs-12-secretBagId (1 2 840 113549 1 12 3 3)
644
645OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 04
646Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
647Description = pkcs-12-safeContentsId (1 2 840 113549 1 12 3 4)
648
649OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 05
650Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
651Description = pkcs-12-pkcs-8ShroudedKeyBagId (1 2 840 113549 1 12 3 5)
652
653OID = 06 09 2A 86 48 86 F7 0D 01 0C 04
654Comment = Deprecated
655Description = pkcs-12-CertBagID (1 2 840 113549 1 12 4)
656Warning
657
658OID = 06 0A 2A 86 48 86 F7 0D 01 0C 04 01
659Comment = PKCS #12 CertBagID (1 2 840 113549 1 12 4).  This OID was formerly assigned as pkcs-12-X509CertCRLBag
660Description = pkcs-12-X509CertCRLBagID (1 2 840 113549 1 12 4 1)
661
662OID = 06 0A 2A 86 48 86 F7 0D 01 0C 04 02
663Comment = PKCS #12 CertBagID (1 2 840 113549 1 12 4).  This OID was formerly assigned as pkcs-12-SDSICertBag
664Description = pkcs-12-SDSICertBagID (1 2 840 113549 1 12 4 2)
665
666# The following are from PFX.  The ... 5 1 values have been reassigned to OIDs
667# with incompatible algorithms at ... 1, the 5 2 values seem to have vanished.
668OID = 06 09 2A 86 48 86 F7 0D 01 0C 05
669Description = pkcs-12-OID (1 2 840 113549 1 12 5)
670Warning
671
672OID = 06 0A 2A 86 48 86 F7 0D 01 0C 05 01
673Comment = PKCS #12 OID (1 2 840 113549 1 12 5).  Deprecated, use the partially compatible (1 2 840 113549 1 12 1) OIDs instead
674Description = pkcs-12-PBEID (1 2 840 113549 1 12 5 1)
675Warning
676
677OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 01
678Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 1) instead
679Description = pkcs-12-PBEWithSha1And128BitRC4 (1 2 840 113549 1 12 5 1 1)
680Warning
681
682OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 02
683Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 2) instead
684Description = pkcs-12-PBEWithSha1And40BitRC4 (1 2 840 113549 1 12 5 1 2)
685Warning
686
687OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 03
688Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use the incompatible but similar (1 2 840 113549 1 12 1 3) or (1 2 840 113549 1 12 1 4) instead
689Description = pkcs-12-PBEWithSha1AndTripleDESCBC (1 2 840 113549 1 12 5 1 3)
690Warning
691
692OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 04
693Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 5) instead
694Description = pkcs-12-PBEWithSha1And128BitRC2CBC (1 2 840 113549 1 12 5 1 4)
695Warning
696
697OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 05
698Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 6) instead
699Description = pkcs-12-PBEWithSha1And40BitRC2CBC (1 2 840 113549 1 12 5 1 5)
700Warning
701
702OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 06
703Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use the incompatible but similar (1 2 840 113549 1 12 1 1) or (1 2 840 113549 1 12 1 2) instead
704Description = pkcs-12-PBEWithSha1AndRC4 (1 2 840 113549 1 12 5 1 6)
705Warning
706
707OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 07
708Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use the incompatible but similar (1 2 840 113549 1 12 1 5) or (1 2 840 113549 1 12 1 6) instead
709Description = pkcs-12-PBEWithSha1AndRC2CBC (1 2 840 113549 1 12 5 1 7)
710Warning
711
712OID = 06 0A 2A 86 48 86 F7 0D 01 0C 05 02
713Description = pkcs-12-EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
714Warning
715
716OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 02 01
717Comment = PKCS #12 OID EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
718Description = pkcs-12-RSAEncryptionWith128BitRC4 (1 2 840 113549 1 12 5 2 1)
719Warning
720
721OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 02 02
722Comment = PKCS #12 OID EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
723Description = pkcs-12-RSAEncryptionWith40BitRC4 (1 2 840 113549 1 12 5 2 2)
724Warning
725
726OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 02 03
727Comment = PKCS #12 OID EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
728Description = pkcs-12-RSAEncryptionWithTripleDES (1 2 840 113549 1 12 5 2 3)
729Warning
730
731OID = 06 0A 2A 86 48 86 F7 0D 01 0C 05 03
732Description = pkcs-12-SignatureID (1 2 840 113549 1 12 5 3).  Deprecated, use the conventional PKCS #1 OIDs instead
733Warning
734
735OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 03 01
736Comment = PKCS #12 OID SignatureID (1 2 840 113549 1 12 5 3).  Deprecated, use the conventional PKCS #1 OIDs instead
737Description = pkcs-12-RSASignatureWithSHA1Digest (1 2 840 113549 1 12 5 3 1)
738Warning
739
740# Yet *another* redefinition of the PKCS #12 "bag" ID's, now in a different
741# order than the last redefinition at ... 12 3.
742OID = 06 09 2A 86 48 86 F7 0D 01 0C 0A
743Description = pkcs-12Version1 (1 2 840 113549 1 12 10)
744
745OID = 06 0A 2A 86 48 86 F7 0D 01 0C 0A 01
746Description = pkcs-12BadIds (1 2 840 113549 1 12 10 1)
747
748OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 01
749Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
750Description = pkcs-12-keyBag (1 2 840 113549 1 12 10 1 1)
751
752OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 02
753Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
754Description = pkcs-12-pkcs-8ShroudedKeyBag (1 2 840 113549 1 12 10 1 2)
755
756OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 03
757Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
758Description = pkcs-12-certBag (1 2 840 113549 1 12 10 1 3)
759
760OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 04
761Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
762Description = pkcs-12-crlBag (1 2 840 113549 1 12 10 1 4)
763
764OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 05
765Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
766Description = pkcs-12-secretBag (1 2 840 113549 1 12 10 1 5)
767
768OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 06
769Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
770Description = pkcs-12-safeContentsBag (1 2 840 113549 1 12 10 1 6)
771
772# RSADSI digest algorithms
773
774OID = 06 08 2A 86 48 86 F7 0D 02
775Description = digestAlgorithm (1 2 840 113549 2)
776
777OID = 06 08 2A 86 48 86 F7 0D 02 02
778Comment = RSADSI digestAlgorithm (1 2 840 113549 2)
779Description = md2 (1 2 840 113549 2 2)
780
781OID = 06 08 2A 86 48 86 F7 0D 02 04
782Comment = RSADSI digestAlgorithm (1 2 840 113549 2)
783Description = md4 (1 2 840 113549 2 4)
784
785OID = 06 08 2A 86 48 86 F7 0D 02 05
786Comment = RSADSI digestAlgorithm (1 2 840 113549 2)
787Description = md5 (1 2 840 113549 2 5)
788
789# RSADSI encryption algorithms
790
791OID = 06 08 2A 86 48 86 F7 0D 03
792Description = encryptionAlgorithm (1 2 840 113549 3)
793
794OID = 06 08 2A 86 48 86 F7 0D 03 02
795Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
796Description = rc2CBC (1 2 840 113549 3 2)
797
798OID = 06 08 2A 86 48 86 F7 0D 03 03
799Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
800Description = rc2ECB (1 2 840 113549 3 3)
801
802OID = 06 08 2A 86 48 86 F7 0D 03 04
803Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
804Description = rc4 (1 2 840 113549 3 4)
805
806OID = 06 08 2A 86 48 86 F7 0D 03 05
807Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
808Description = rc4WithMAC (1 2 840 113549 3 5)
809
810OID = 06 08 2A 86 48 86 F7 0D 03 06
811Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
812Description = desx-CBC (1 2 840 113549 3 6)
813
814OID = 06 08 2A 86 48 86 F7 0D 03 07
815Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
816Description = des-EDE3-CBC (1 2 840 113549 3 7)
817
818OID = 06 08 2A 86 48 86 F7 0D 03 08
819Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
820Description = rc5CBC (1 2 840 113549 3 8)
821
822OID = 06 08 2A 86 48 86 F7 0D 03 09
823Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
824Description = rc5-CBCPad (1 2 840 113549 3 9)
825
826OID = 06 08 2A 86 48 86 F7 0D 03 0A
827Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3).  Formerly called CDMFCBCPad
828Description = desCDMF (1 2 840 113549 3 10)
829
830# Ascom Systech
831
832OID = 06 0A 2B 06 01 04 01 81 3C 07 01 01
833Comment = Ascom Systech
834Description = ascom (1 3 6 1 4 1 188 7 1 1)
835
836OID = 06 0B 2B 06 01 04 01 81 3C 07 01 01 01
837Comment = Ascom Systech
838Description = ideaECB (1 3 6 1 4 1 188 7 1 1 1)
839
840# Microsoft
841
842OID = 06 08 2A 86 48 86 F7 14 04 03
843Comment = Microsoft
844Description = microsoftExcel (1 2 840 113556 4 3)
845
846OID = 06 08 2A 86 48 86 F7 14 04 04
847Comment = Microsoft
848Description = titledWithOID (1 2 840 113556 4 4)
849
850OID = 06 08 2A 86 48 86 F7 14 04 05
851Comment = Microsoft
852Description = microsoftPowerPoint (1 2 840 113556 4 5)
853
854OID = 06 0A 2B 06 01 04 01 82 37 02 01 04
855Comment = Microsoft code signing
856Description = spcIndirectDataContext (1 3 6 1 4 1 311 2 1 4)
857
858OID = 06 0A 2B 06 01 04 01 82 37 02 01 0A
859Comment = Microsoft code signing.  Also known as policyLink
860Description = spcAgencyInfo (1 3 6 1 4 1 311 2 1 10)
861
862OID = 06 0A 2B 06 01 04 01 82 37 02 01 0B
863Comment = Microsoft code signing
864Description = spcStatementType (1 3 6 1 4 1 311 2 1 11)
865
866OID = 06 0A 2B 06 01 04 01 82 37 02 01 0C
867Comment = Microsoft code signing
868Description = spcSpOpusInfo (1 3 6 1 4 1 311 2 1 12)
869
870OID = 06 0A 2B 06 01 04 01 82 37 02 01 0E
871Comment = Microsoft
872Description = certExtensions (1 3 6 1 4 1 311 2 1 14)
873
874OID = 06 0A 2B 06 01 04 01 82 37 02 01 0F
875Comment = Microsoft code signing
876Description = spcPelmageData (1 3 6 1 4 1 311 2 1 15)
877
878OID = 06 0A 2B 06 01 04 01 82 37 02 01 14
879Comment = Microsoft code signing.  Also known as "glue extension"
880Description = spcLink (type 1) (1 3 6 1 4 1 311 2 1 20)
881
882OID = 06 0A 2B 06 01 04 01 82 37 02 01 15
883Comment = Microsoft
884Description = individualCodeSigning (1 3 6 1 4 1 311 2 1 21)
885
886OID = 06 0A 2B 06 01 04 01 82 37 02 01 16
887Comment = Microsoft
888Description = commercialCodeSigning (1 3 6 1 4 1 311 2 1 22)
889
890OID = 06 0A 2B 06 01 04 01 82 37 02 01 19
891Comment = Microsoft code signing.  Also known as "glue extension"
892Description = spcLink (type 2) (1 3 6 1 4 1 311 2 1 25)
893
894OID = 06 0A 2B 06 01 04 01 82 37 02 01 1A
895Comment = Microsoft code signing
896Description = spcMinimalCriteriaInfo (1 3 6 1 4 1 311 2 1 26)
897
898OID = 06 0A 2B 06 01 04 01 82 37 02 01 1B
899Comment = Microsoft code signing
900Description = spcFinancialCriteriaInfo (1 3 6 1 4 1 311 2 1 27)
901
902OID = 06 0A 2B 06 01 04 01 82 37 02 01 1C
903Comment = Microsoft code signing.  Also known as "glue extension"
904Description = spcLink (type 3) (1 3 6 1 4 1 311 2 1 28)
905
906OID = 06 0A 2B 06 01 04 01 82 37 03 02 01
907Comment = Microsoft code signing
908Description = timestampCountersignature (1 3 6 1 4 1 311 3 2 1)
909
910OID = 06 0A 2B 06 01 04 01 82 37 0A 01
911Comment = Microsoft PKCS #7 contentType
912Description = certTrustList (1 3 6 1 4 1 311 10 1)
913
914OID = 06 0A 2B 06 01 04 01 82 37 0A 02
915Comment = Microsoft
916Description = nextUpdateLocation (1 3 6 1 4 1 311 10 2)
917
918OID = 06 0A 2B 06 01 04 01 82 37 0A 03 01
919Comment = Microsoft enhanced key usage
920Description = certTrustListSigning (1 3 6 1 4 1 311 10 3 1)
921
922OID = 06 0A 2B 06 01 04 01 82 37 0A 03 02
923Comment = Microsoft enhanced key usage
924Description = timeStampSigning (1 3 6 1 4 1 311 10 3 2)
925
926OID = 06 0A 2B 06 01 04 01 82 37 0A 03 03
927Comment = Microsoft enhanced key usage
928Description = serverGatedCrypto (1 3 6 1 4 1 311 10 3 3)
929
930OID = 06 0A 2B 06 01 04 01 82 37 0A 03 04
931Comment = Microsoft enhanced key usage
932Description = encryptedFileSystem (1 3 6 1 4 1 311 10 3 4)
933
934OID = 06 0A 2B 06 01 04 01 82 37 0A 04 01
935Comment = Microsoft attribute
936Description = yesnoTrustAttr (1 3 6 1 4 1 311 10 4 1)
937
938# UNINETT
939
940OID = 06 0A 2B 06 01 04 01 92 7C 0A 01 01
941Comment = UNINETT PCA
942Description = UNINETT policyIdentifier (1 3 6 1 4 1 2428 10 1 1)
943
944# ICE-TEL
945
946OID = 06 08 2B 06 01 04 01 95 18 0A
947Comment = ICE-TEL CA
948Description = ICE-TEL policyIdentifier (1 3 6 1 4 1 2712 10)
949
950OID = 06 0A 2B 06 01 04 01 95 62 01 01 01
951Comment = ICE-TEL CA policy
952Description = ICE-TEL Italian policyIdentifier (1 3 6 1 4 1 2786 1 1 1)
953
954# cryptlib
955
956OID = 06 09 2B 06 01 04 01 97 55 20 01
957Comment = cryptlib
958Description = cryptlibEnvelope (1 3 6 1 4 1 3029 32 1)
959
960OID = 06 09 2B 06 01 04 01 97 55 20 02
961Comment = cryptlib
962Description = cryptlibPrivateKey (1 3 6 1 4 1 3029 32 2)
963
964OID = 06 0B 2B 06 01 04 01 97 55 2A D7 24 01
965Comment = cryptlib special MPEG-of-cat OID
966Description = mpeg-1 (1 3 6 1 4 1 3029 42 11172 1)
967
968# PKIX
969
970OID = 06 06 2B 06 01 05 05 07
971Description = pkix (1 3 6 1 5 5 7)
972
973OID = 06 07 2B 06 01 05 05 07 01
974Comment = PKIX
975Description = privateExtension (1 3 6 1 5 5 7 1)
976
977OID = 06 08 2B 06 01 05 05 07 01 01
978Comment = PKIX private extension
979Description = authorityInfoAccess (1 3 6 1 5 5 7 1 1)
980
981OID = 06 07 2B 06 01 05 05 07 02
982Comment = PKIX
983Description = policyQualifierIds (1 3 6 1 5 5 7 2)
984
985OID = 06 08 2B 06 01 05 05 07 02 01
986Comment = PKIX policy qualifier
987Description = cps (1 3 6 1 5 5 7 2 1)
988
989OID = 06 08 2B 06 01 05 05 07 02 02
990Comment = PKIX policy qualifier
991Description = unotice (1 3 6 1 5 5 7 2 2)
992
993OID = 06 07 2B 06 01 05 05 07 03
994Comment = PKIX
995Description = keyPurpose (1 3 6 1 5 5 7 3)
996
997OID = 06 08 2B 06 01 05 05 07 03 01
998Comment = PKIX key purpose
999Description = serverAuth (1 3 6 1 5 5 7 3 1)
1000
1001OID = 06 08 2B 06 01 05 05 07 03 02
1002Comment = PKIX key purpose
1003Description = clientAuth (1 3 6 1 5 5 7 3 2)
1004
1005OID = 06 08 2B 06 01 05 05 07 03 03
1006Comment = PKIX key purpose
1007Description = codeSigning (1 3 6 1 5 5 7 3 3)
1008
1009OID = 06 08 2B 06 01 05 05 07 03 04
1010Comment = PKIX key purpose
1011Description = emailProtection (1 3 6 1 5 5 7 3 4)
1012
1013OID = 06 08 2B 06 01 05 05 07 03 05
1014Comment = PKIX key purpose
1015Description = ipsecEndSystem (1 3 6 1 5 5 7 3 5)
1016
1017OID = 06 08 2B 06 01 05 05 07 03 06
1018Comment = PKIX key purpose
1019Description = ipsecTunnel (1 3 6 1 5 5 7 3 6)
1020
1021OID = 06 08 2B 06 01 05 05 07 03 07
1022Comment = PKIX key purpose
1023Description = ipsecUser (1 3 6 1 5 5 7 3 7)
1024
1025OID = 06 08 2B 06 01 05 05 07 03 08
1026Comment = PKIX key purpose
1027Description = timeStamping (1 3 6 1 5 5 7 3 8)
1028
1029OID = 06 07 2B 06 01 05 05 07 04
1030Comment = PKIX
1031Description = cmpInformationTypes (1 3 6 1 5 5 7 4)
1032
1033OID = 06 08 2B 06 01 05 05 07 04 01
1034Comment = PKIX CMP information
1035Description = caProtEncCert (1 3 6 1 5 5 7 4 1)
1036
1037OID = 06 08 2B 06 01 05 05 07 04 02
1038Comment = PKIX CMP information
1039Description = signKeyPairTypes (1 3 6 1 5 5 7 4 2)
1040
1041OID = 06 08 2B 06 01 05 05 07 04 03
1042Comment = PKIX CMP information
1043Description = encKeyPairTypes (1 3 6 1 5 5 7 4 3)
1044
1045OID = 06 08 2B 06 01 05 05 07 04 04
1046Comment = PKIX CMP information
1047Description = preferredSymmAlg (1 3 6 1 5 5 7 4 4)
1048
1049OID = 06 08 2B 06 01 05 05 07 04 05
1050Comment = PKIX CMP information
1051Description = caKeyUpdateInfo (1 3 6 1 5 5 7 4 5)
1052
1053OID = 06 08 2B 06 01 05 05 07 04 06
1054Comment = PKIX CMP information
1055Description = currentCRL (1 3 6 1 5 5 7 4 6)
1056
1057OID = 06 08 2B 06 01 05 05 07 30 01
1058Comment = PKIX authority info access descriptor
1059Description = ocsp (1 3 6 1 5 5 7 48 1)
1060
1061OID = 06 08 2B 06 01 05 05 07 30 02
1062Comment = PKIX authority info access descriptor
1063Description = caIssuers (1 3 6 1 5 5 7 48 2)
1064
1065# ISAKMP
1066
1067OID = 06 08 2B 06 01 05 05 08 01 01
1068Comment = ISAKMP HMAC algorithm
1069Description = HMAC-MD5 (1 3 6 1 5 5 8 1 1)
1070
1071OID = 06 08 2B 06 01 05 05 08 01 02
1072Comment = ISAKMP HMAC algorithm
1073Description = HMAC-SHA (1 3 6 1 5 5 8 1 2)
1074
1075OID = 06 08 2B 06 01 05 05 08 01 03
1076Comment = ISAKMP HMAC algorithm
1077Description = HMAC-Tiger (1 3 6 1 5 5 8 1 3)
1078
1079# DEC (via ECMA)
1080
1081OID = 06 07 2B 0C 02 87 73 07 01
1082Comment = DASS algorithm
1083Description = decEncryptionAlgorithm (1 3 12 2 1011 7 1)
1084
1085OID = 06 08 2B 0C 02 87 73 07 01 02
1086Comment = DASS encryption algorithm
1087Description = decDEA (1 3 12 2 1011 7 1 2)
1088
1089OID = 06 07 2B 0C 02 87 73 07 02
1090Comment = DASS algorithm
1091Description = decHashAlgorithm (1 3 12 2 1011 7 2)
1092
1093OID = 06 07 2B 0C 02 87 73 07 02 01
1094Comment = DASS hash algorithm
1095Description = decMD2 (1 3 12 2 1011 7 2 1)
1096
1097OID = 06 07 2B 0C 02 87 73 07 02 02
1098Comment = DASS hash algorithm
1099Description = decMD4 (1 3 12 2 1011 7 2 2)
1100
1101OID = 06 07 2B 0C 02 87 73 07 03
1102Comment = DASS algorithm
1103Description = decSignatureAlgorithm (1 3 12 2 1011 7 3)
1104
1105OID = 06 07 2B 0C 02 87 73 07 03 01
1106Comment = DASS signature algorithm
1107Description = decMD2withRSA (1 3 12 2 1011 7 3 1)
1108
1109OID = 06 07 2B 0C 02 87 73 07 03 02
1110Comment = DASS signature algorithm
1111Description = decMD4withRSA (1 3 12 2 1011 7 3 2)
1112
1113OID = 06 07 2B 0C 02 87 73 07 03 03
1114Comment = DASS signature algorithm
1115Description = decDEAMAC (1 3 12 2 1011 7 3 3)
1116
1117# NIST Open Systems Environment (OSE) Implementor's Workshop (OIW),
1118# specialising in oddball and partially-defunct OIDs
1119
1120OID = 06 05 2B 0E 02 1A 05
1121Comment = Unsure about this OID
1122Description = sha (1 3 14 2 26 5)
1123
1124OID = 06 06 2B 0E 03 02 01 01
1125Comment = X.509.  Unsure about this OID
1126Description = rsa (1 3 14 3 2 1 1)
1127
1128OID = 06 05 2B 0E 03 02 02
1129Comment = Oddball OIW OID
1130Description = md4WitRSA (1 3 14 3 2 2)
1131
1132OID = 06 05 2B 0E 03 02 03
1133Comment = Oddball OIW OID
1134Description = md5WithRSA (1 3 14 3 2 3)
1135
1136OID = 06 05 2B 0E 03 02 04
1137Comment = Oddball OIW OID
1138Description = md4WithRSAEncryption (1 3 14 3 2 4)
1139
1140OID = 06 06 2B 0E 03 02 02 01
1141Comment = X.509.  Deprecated
1142Description = sqmod-N (1 3 14 3 2 2 1)
1143Warning
1144
1145OID = 06 06 2B 0E 03 02 03 01
1146Comment = X.509.  Deprecated
1147Description = sqmod-NwithRSA (1 3 14 3 2 3 1)
1148Warning
1149
1150OID = 06 05 2B 0E 03 02 06
1151Description = desECB (1 3 14 3 2 6)
1152
1153OID = 06 05 2B 0E 03 02 07
1154Description = desCBC (1 3 14 3 2 7)
1155
1156OID = 06 05 2B 0E 03 02 08
1157Description = desOFB (1 3 14 3 2 8)
1158
1159OID = 06 05 2B 0E 03 02 09
1160Description = desCFB (1 3 14 3 2 9)
1161
1162OID = 06 05 2B 0E 03 02 0A
1163Description = desMAC (1 3 14 3 2 10)
1164
1165OID = 06 05 2B 0E 03 02 0B
1166Comment = ISO 9796-2, also X9.31 Part 1
1167Description = rsaSignature (1 3 14 3 2 11)
1168
1169# this is used by BSAFE
1170OID = 06 05 2B 0E 03 02 0C
1171Comment = OIW?, supposedly from an incomplete version of SDN.702 (doesn't match final SDN.702)
1172Description = dsa-bsafe (1 3 14 3 2 12)
1173Warning
1174
1175OID = 06 05 2B 0E 03 02 0D
1176Comment = Oddball OIW OID.  Incorrectly used by JDK 1.1 in place of (1 3 14 3 2 27)
1177# Their response was that they know it's wrong, but noone uses SHA0 so it won't
1178# cause any problems, right? Note: BSAFE uses this as well!
1179Description = dsaWithSHA-bsafe (1 3 14 3 2 13)
1180Warning
1181
1182# The various md<x>WithRSASIsignature OIDs are for the ANSI X9.31 draft and use
1183# ISO 9796-2 padding rules.  This work was derailed during the PKP brouhaha and
1184# is still in progress
1185OID = 06 05 2B 0E 03 02 0E
1186Comment = Oddball OIW OID using 9796-2 padding rules
1187Description = mdc2WithRSASignature (1 3 14 3 2 14)
1188
1189OID = 06 05 2B 0E 03 02 0F
1190Comment = Oddball OIW OID using 9796-2 padding rules
1191Description = shaWithRSASignature (1 3 14 3 2 15)
1192
1193OID = 06 05 2B 0E 03 02 10
1194Comment = Oddball OIW OID.  Deprecated, use a plain DH OID instead
1195Description = dhWithCommonModulus (1 3 14 3 2 16)
1196Warning
1197
1198OID = 06 05 2B 0E 03 02 11
1199Comment = Oddball OIW OID.  Mode is ECB
1200Description = desEDE (1 3 14 3 2 17)
1201
1202OID = 06 05 2B 0E 03 02 12
1203Comment = Oddball OIW OID
1204Description = sha (1 3 14 3 2 18)
1205
1206OID = 06 05 2B 0E 03 02 13
1207Comment = Oddball OIW OID, DES-based hash, planned for X9.31 Part 2
1208Description = mdc-2 (1 3 14 3 2 19)
1209
1210OID = 06 05 2B 0E 03 02 14
1211Comment = Oddball OIW OID.  Deprecated, use a plain DSA OID instead
1212Description = dsaCommon (1 3 14 3 2 20)
1213Warning
1214
1215OID = 06 05 2B 0E 03 02 15
1216Comment = Oddball OIW OID.  Deprecated, use a plain dsaWithSHA OID instead
1217Description = dsaCommonWithSHA (1 3 14 3 2 21)
1218Warning
1219
1220OID = 06 05 2B 0E 03 02 16
1221Comment = Oddball OIW OID
1222Description = rsaKeyTransport (1 3 14 3 2 22)
1223
1224OID = 06 05 2B 0E 03 02 17
1225Comment = Oddball OIW OID
1226Description = keyed-hash-seal (1 3 14 3 2 23)
1227
1228OID = 06 05 2B 0E 03 02 18
1229Comment = Oddball OIW OID using 9796-2 padding rules
1230Description = md2WithRSASignature (1 3 14 3 2 24)
1231
1232OID = 06 05 2B 0E 03 02 19
1233Comment = Oddball OIW OID using 9796-2 padding rules
1234Description = md5WithRSASignature (1 3 14 3 2 25)
1235
1236OID = 06 05 2B 0E 03 02 1A
1237Comment = OIW
1238Description = sha1 (1 3 14 3 2 26)
1239
1240# Yet another multiply-assigned OID
1241OID = 06 05 2B 0E 03 02 1B
1242Comment = OIW.  This OID may also be assigned as ripemd-160
1243Description = dsaWithSHA1 (1 3 14 3 2 27)
1244
1245OID = 06 05 2B 0E 03 02 1C
1246Comment = OIW
1247Description = dsaWithCommonSHA1 (1 3 14 3 2 28)
1248
1249OID = 06 05 2B 0E 03 02 1D
1250Comment = Oddball OIW OID
1251Description = sha-1WithRSAEncryption (1 3 14 3 2 29)
1252
1253OID = 06 05 2B 0E 03 03 01
1254Comment = Oddball OIW OID
1255Description = simple-strong-auth-mechanism (1 3 14 3 3 1)
1256
1257OID = 06 06 2B 0E 07 02 01 01
1258Comment = Unsure about this OID
1259Description = ElGamal (1 3 14 7 2 1 1)
1260
1261OID = 06 06 2B 0E 07 02 03 01
1262Comment = Unsure about this OID
1263Description = md2WithRSA (1 3 14 7 2 3 1)
1264
1265OID = 06 06 2B 0E 07 02 03 02
1266Comment = Unsure about this OID
1267Description = md2WithElGamal (1 3 14 7 2 3 2)
1268
1269# Teletrust
1270
1271OID = 06 03 2B 24 01
1272Comment = Teletrust document
1273Description = document (1 3 36 1)
1274
1275OID = 06 04 2B 24 01 01
1276Comment = Teletrust document
1277Description = finalVersion (1 3 36 1 1)
1278
1279OID = 06 04 2B 24 01 02
1280Comment = Teletrust document
1281Description = draft (1 3 36 1 2)
1282
1283OID = 06 03 2B 24 02
1284Comment = Teletrust sio
1285Description = sio (1 3 36 2)
1286
1287OID = 06 04 2B 24 02 01      
1288Comment = Teletrust sio
1289Description = certificate (1 3 36 2 1)
1290
1291OID = 06 04 2B 24 02 01      
1292Comment = Teletrust sio
1293Description = sedu (1 3 36 2 1)
1294
1295OID = 06 03 2B 24 03
1296Comment = Teletrust algorithm
1297Description = algorithm (1 3 36 3)
1298
1299OID = 06 04 2B 24 03 01
1300Comment = Teletrust algorithm
1301Description = encryptionAlgorithm (1 3 36 3 1)
1302
1303OID = 06 05 2B 24 03 01 01
1304Comment = Teletrust encryption algorithm
1305Description = des (1 3 36 3 1 1)
1306
1307OID = 06 06 2B 24 03 01 01 01 
1308Comment = Teletrust encryption algorithm
1309Description = desECB_pad (1 3 36 3 1 1 1)
1310
1311OID = 06 07 2B 24 03 01 01 01 01
1312Comment = Teletrust encryption algorithm
1313Description = desECB_ISOpad (1 3 36 3 1 1 1 1)
1314
1315OID = 06 07 2B 24 03 01 01 02 01
1316Comment = Teletrust encryption algorithm
1317Description = desCBC_pad (1 3 36 3 1 1 2 1)
1318
1319OID = 06 08 2B 24 03 01 01 02 01 01
1320Comment = Teletrust encryption algorithm
1321Description = desCBC_ISOpad (1 3 36 3 1 1 2 1 1)
1322
1323OID = 06 05 2B 24 03 01 03
1324Comment = Teletrust encryption algorithm
1325Description = des_3 (1 3 36 3 1 3)
1326
1327OID = 06 07 2B 24 03 01 03 01 01
1328Comment = Teletrust encryption algorithm.  EDE triple DES
1329Description = des_3ECB_pad (1 3 36 3 1 3 1 1)
1330
1331OID = 06 08 2B 24 03 01 03 01 01 01
1332Comment = Teletrust encryption algorithm.  EDE triple DES
1333Description = des_3ECB_ISOpad (1 3 36 3 1 3 1 1 1)
1334
1335OID = 06 07 2B 24 03 01 03 02 01
1336Comment = Teletrust encryption algorithm.  EDE triple DES
1337Description = des_3CBC_pad (1 3 36 3 1 3 2 1)
1338
1339OID = 06 08 2B 24 03 01 03 02 01 01
1340Comment = Teletrust encryption algorithm.  EDE triple DES
1341Description = des_3CBC_ISOpad (1 3 36 3 1 3 2 1 1)
1342
1343OID = 06 05 2B 24 03 01 02
1344Comment = Teletrust encryption algorithm
1345Description = idea (1 3 36 3 1 2)
1346
1347OID = 06 06 2B 24 03 01 02 01
1348Comment = Teletrust encryption algorithm
1349Description = ideaECB (1 3 36 3 1 2 1)
1350
1351OID = 06 07 2B 24 03 01 02 01 01
1352Comment = Teletrust encryption algorithm
1353Description = ideaECB_pad (1 3 36 3 1 2 1 1)
1354
1355OID = 06 08 2B 24 03 01 02 01 01 01
1356Comment = Teletrust encryption algorithm
1357Description = ideaECB_ISOpad (1 3 36 3 1 2 1 1 1)
1358
1359OID = 06 06 2B 24 03 01 02 02
1360Comment = Teletrust encryption algorithm
1361Description = ideaCBC (1 3 36 3 1 2 2)
1362
1363OID = 06 07 2B 24 03 01 02 02 01
1364Comment = Teletrust encryption algorithm
1365Description = ideaCBC_pad (1 3 36 3 1 2 2 1)
1366
1367OID = 06 08 2B 24 03 01 02 02 01 01
1368Comment = Teletrust encryption algorithm
1369Description = ideaCBC_ISOpad (1 3 36 3 1 2 2 1 1)
1370
1371OID = 06 06 2B 24 03 01 02 03
1372Comment = Teletrust encryption algorithm
1373Description = ideaOFB (1 3 36 3 1 2 3)
1374
1375OID = 06 06 2B 24 03 01 02 04
1376Comment = Teletrust encryption algorithm
1377Description = ideaCFB (1 3 36 3 1 2 4)
1378
1379OID = 06 05 2B 24 03 01 04
1380Comment = Teletrust encryption algorithm
1381Description = rsaEncryption (1 3 36 3 1 4)
1382
1383OID = 06 08 2B 24 03 01 04 84 00 11
1384Comment = Teletrust encryption algorithm
1385Description = rsaEncryptionWithlmod512expe17 (1 3 36 3 1 4 512 17)
1386
1387OID = 06 05 2B 24 03 01 05
1388Comment = Teletrust encryption algorithm
1389Description = bsi-1 (1 3 36 3 1 5)
1390
1391OID = 06 06 2B 24 03 01 05 01
1392Comment = Teletrust encryption algorithm
1393Description = bsi_1ECB_pad (1 3 36 3 1 5 1)
1394
1395OID = 06 06 2B 24 03 01 05 02
1396Comment = Teletrust encryption algorithm
1397Description = bsi_1CBC_pad (1 3 36 3 1 5 2)
1398
1399OID = 06 07 2B 24 03 01 05 02 01
1400Comment = Teletrust encryption algorithm
1401Description = bsi_1CBC_PEMpad (1 3 36 3 1 5 2 1)
1402
1403OID = 06 04 2B 24 03 02
1404Comment = Teletrust algorithm
1405Description = hashAlgorithm (1 3 36 3 2)
1406
1407OID = 06 05 2B 24 03 02 01
1408Comment = Teletrust hash algorithm
1409Description = ripemd160 (1 3 36 3 2 1)
1410
1411OID = 06 05 2B 24 03 02 02
1412Comment = Teletrust hash algorithm
1413Description = ripemd128 (1 3 36 3 2 2)
1414
1415OID = 06 05 2B 24 03 02 03
1416Comment = Teletrust hash algorithm
1417Description = ripemd256 (1 3 36 3 2 3)
1418
1419OID = 06 05 2B 24 03 02 04
1420Comment = Teletrust hash algorithm
1421Description = mdc2singleLength (1 3 36 3 2 4)
1422
1423OID = 06 05 2B 24 03 02 05
1424Comment = Teletrust hash algorithm
1425Description = mdc2doubleLength (1 3 36 3 2 5)
1426
1427OID = 06 04 2B 24 03 03
1428Comment = Teletrust algorithm
1429Description = signatureAlgorithm (1 3 36 3 3)
1430
1431OID = 06 05 2B 24 03 03 01
1432Comment = Teletrust signature algorithm
1433Description = rsaSignature (1 3 36 3 3 1)
1434
1435OID = 06 06 2B 24 03 03 01 01
1436Comment = Teletrust signature algorithm
1437Description = rsaSignatureWithsha1 (1 3 36 3 3 1 1)
1438
1439# What *were* they thinking?
1440OID = 06 09 2B 24 03 03 01 01 84 00 02
1441Comment = Teletrust signature algorithm
1442Description = rsaSignatureWithsha1_l512_l2 (1 3 36 3 3 1 1 512 2)
1443OID = 06 09 2B 24 03 03 01 01 85 00 02
1444Comment = Teletrust signature algorithm
1445Description = rsaSignatureWithsha1_l640_l2 (1 3 36 3 3 1 1 640 2)
1446OID = 06 09 2B 24 03 03 01 01 86 00 02
1447Comment = Teletrust signature algorithm
1448Description = rsaSignatureWithsha1_l768_l2 (1 3 36 3 3 1 1 768 2)
1449OID = 06 09 2B 24 03 03 01 01 87 00 02
1450Comment = Teletrust signature algorithm
1451Description = rsaSignatureWithsha1_l896_l2 (1 3 36 3 3 1 1 892 2)
1452OID = 06 09 2B 24 03 03 01 01 88 00 02
1453Comment = Teletrust signature algorithm
1454Description = rsaSignatureWithsha1_l1024_l2 (1 3 36 3 3 1 1 1024 2)
1455OID = 06 09 2B 24 03 03 01 01 84 00 03
1456Comment = Teletrust signature algorithm
1457Description = rsaSignatureWithsha1_l512_l3 (1 3 36 3 3 1 1 512 3)
1458OID = 06 09 2B 24 03 03 01 01 85 00 03
1459Comment = Teletrust signature algorithm
1460Description = rsaSignatureWithsha1_l640_l3 (1 3 36 3 3 1 1 640 3)
1461OID = 06 09 2B 24 03 03 01 01 86 00 03
1462Comment = Teletrust signature algorithm
1463Description = rsaSignatureWithsha1_l768_l3 (1 3 36 3 3 1 1 768 3)
1464OID = 06 09 2B 24 03 03 01 01 87 00 03
1465Comment = Teletrust signature algorithm
1466Description = rsaSignatureWithsha1_l896_l3 (1 3 36 3 3 1 1 896 3)
1467OID = 06 09 2B 24 03 03 01 01 88 00 03
1468Comment = Teletrust signature algorithm
1469Description = rsaSignatureWithsha1_l1024_l3 (1 3 36 3 3 1 1 1024 3)
1470OID = 06 09 2B 24 03 03 01 01 84 00 05
1471Comment = Teletrust signature algorithm
1472Description = rsaSignatureWithsha1_l512_l5 (1 3 36 3 3 1 1 512 5)
1473OID = 06 09 2B 24 03 03 01 01 85 00 05
1474Comment = Teletrust signature algorithm
1475Description = rsaSignatureWithsha1_l640_l5 (1 3 36 3 3 1 1 640 5)
1476OID = 06 09 2B 24 03 03 01 01 86 00 05
1477Comment = Teletrust signature algorithm
1478Description = rsaSignatureWithsha1_l768_l5 (1 3 36 3 3 1 1 768 5)
1479OID = 06 09 2B 24 03 03 01 01 87 00 05
1480Comment = Teletrust signature algorithm
1481Description = rsaSignatureWithsha1_l896_l5 (1 3 36 3 3 1 1 896 5)
1482OID = 06 09 2B 24 03 03 01 01 88 00 05
1483Comment = Teletrust signature algorithm
1484Description = rsaSignatureWithsha1_l1024_l5 (1 3 36 3 3 1 1 1024 5)
1485OID = 06 09 2B 24 03 03 01 01 84 00 09
1486Comment = Teletrust signature algorithm
1487Description = rsaSignatureWithsha1_l512_l9 (1 3 36 3 3 1 1 512 9)
1488OID = 06 09 2B 24 03 03 01 01 85 00 09
1489Comment = Teletrust signature algorithm
1490Description = rsaSignatureWithsha1_l640_l9 (1 3 36 3 3 1 1 640 9)
1491OID = 06 09 2B 24 03 03 01 01 86 00 09
1492Comment = Teletrust signature algorithm
1493Description = rsaSignatureWithsha1_l768_l9 (1 3 36 3 3 1 1 768 9)
1494OID = 06 09 2B 24 03 03 01 01 87 00 09
1495Comment = Teletrust signature algorithm
1496Description = rsaSignatureWithsha1_l896_l9 (1 3 36 3 3 1 1 896 9) 
1497OID = 06 09 2B 24 03 03 01 01 88 00 09
1498Comment = Teletrust signature algorithm
1499Description = rsaSignatureWithsha1_l1024_l9 (1 3 36 3 3 1 1 1024 9)
1500OID = 06 09 2B 24 03 03 01 01 84 00 11
1501Comment = Teletrust signature algorithm
1502Description = rsaSignatureWithsha1_l512_l11 (1 3 36 3 3 1 1 512 11)
1503OID = 06 09 2B 24 03 03 01 01 85 00 11
1504Comment = Teletrust signature algorithm
1505Description = rsaSignatureWithsha1_l640_l11 (1 3 36 3 3 1 1 640 11)
1506OID = 06 09 2B 24 03 03 01 01 86 00 11
1507Comment = Teletrust signature algorithm
1508Description = rsaSignatureWithsha1_l768_l11 (1 3 36 3 3 1 1 768 11)
1509OID = 06 09 2B 24 03 03 01 01 87 00 11
1510Comment = Teletrust signature algorithm
1511Description = rsaSignatureWithsha1_l896_l11 (1 3 36 3 3 1 1 896 11)
1512OID = 06 09 2B 24 03 03 01 01 88 00 11
1513Comment = Teletrust signature algorithm
1514Description = rsaSignatureWithsha1_l1024_l11 (1 3 36 3 3 1 1 1024 11)
1515
1516OID = 06 06 2B 24 03 03 01 02
1517Comment = Teletrust signature algorithm
1518Description = rsaSignatureWithripemd160 (1 3 36 3 3 1 2)
1519
1520OID = 06 09 2B 24 03 03 01 02 84 00 02
1521Comment = Teletrust signature algorithm
1522Description = rsaSignatureWithripemd160_l512_l2 (1 3 36 3 3 1 2 512 2)
1523OID = 06 09 2B 24 03 03 01 02 85 00 02
1524Comment = Teletrust signature algorithm
1525Description = rsaSignatureWithripemd160_l640_l2 (1 3 36 3 3 1 2 640 2)
1526OID = 06 09 2B 24 03 03 01 02 86 00 02
1527Comment = Teletrust signature algorithm
1528Description = rsaSignatureWithripemd160_l768_l2 (1 3 36 3 3 1 2 768 2)
1529OID = 06 09 2B 24 03 03 01 02 87 00 02
1530Comment = Teletrust signature algorithm
1531Description = rsaSignatureWithripemd160_l896_l2 (1 3 36 3 3 1 2 892 2)
1532OID = 06 09 2B 24 03 03 01 02 88 00 02
1533Comment = Teletrust signature algorithm
1534Description = rsaSignatureWithripemd160_l1024_l2 (1 3 36 3 3 1 2 1024 2)
1535OID = 06 09 2B 24 03 03 01 02 84 00 03
1536Comment = Teletrust signature algorithm
1537Description = rsaSignatureWithripemd160_l512_l3 (1 3 36 3 3 1 2 512 3)
1538OID = 06 09 2B 24 03 03 01 02 85 00 03
1539Comment = Teletrust signature algorithm
1540Description = rsaSignatureWithripemd160_l640_l3 (1 3 36 3 3 1 2 640 3)
1541OID = 06 09 2B 24 03 03 01 02 86 00 03
1542Comment = Teletrust signature algorithm
1543Description = rsaSignatureWithripemd160_l768_l3 (1 3 36 3 3 1 2 768 3)
1544OID = 06 09 2B 24 03 03 01 02 87 00 03
1545Comment = Teletrust signature algorithm
1546Description = rsaSignatureWithripemd160_l896_l3 (1 3 36 3 3 1 2 896 3)
1547OID = 06 09 2B 24 03 03 01 02 88 00 03
1548Comment = Teletrust signature algorithm
1549Description = rsaSignatureWithripemd160_l1024_l3 (1 3 36 3 3 1 2 1024 3)
1550OID = 06 09 2B 24 03 03 01 02 84 00 05
1551Comment = Teletrust signature algorithm
1552Description = rsaSignatureWithripemd160_l512_l5 (1 3 36 3 3 1 2 512 5)
1553OID = 06 09 2B 24 03 03 01 02 85 00 05
1554Comment = Teletrust signature algorithm
1555Description = rsaSignatureWithripemd160_l640_l5 (1 3 36 3 3 1 2 640 5)
1556OID = 06 09 2B 24 03 03 01 02 86 00 05
1557Comment = Teletrust signature algorithm
1558Description = rsaSignatureWithripemd160_l768_l5 (1 3 36 3 3 1 2 768 5)
1559OID = 06 09 2B 24 03 03 01 02 87 00 05
1560Comment = Teletrust signature algorithm
1561Description = rsaSignatureWithripemd160_l896_l5 (1 3 36 3 3 1 2 896 5)
1562OID = 06 09 2B 24 03 03 01 02 88 00 05
1563Comment = Teletrust signature algorithm
1564Description = rsaSignatureWithripemd160_l1024_l5 (1 3 36 3 3 1 2 1024 5)
1565OID = 06 09 2B 24 03 03 01 02 84 00 09
1566Comment = Teletrust signature algorithm
1567Description = rsaSignatureWithripemd160_l512_l9 (1 3 36 3 3 1 2 512 9)
1568OID = 06 09 2B 24 03 03 01 02 85 00 09
1569Comment = Teletrust signature algorithm
1570Description = rsaSignatureWithripemd160_l640_l9 (1 3 36 3 3 1 2 640 9)
1571OID = 06 09 2B 24 03 03 01 02 86 00 09
1572Comment = Teletrust signature algorithm
1573Description = rsaSignatureWithripemd160_l768_l9 (1 3 36 3 3 1 2 768 9)
1574OID = 06 09 2B 24 03 03 01 02 87 00 09
1575Comment = Teletrust signature algorithm
1576Description = rsaSignatureWithripemd160_l896_l9 (1 3 36 3 3 1 2 896 9) 
1577OID = 06 09 2B 24 03 03 01 02 88 00 09
1578Comment = Teletrust signature algorithm
1579Description = rsaSignatureWithripemd160_l1024_l9 (1 3 36 3 3 1 2 1024 9)
1580OID = 06 09 2B 24 03 03 01 02 84 00 11
1581Comment = Teletrust signature algorithm
1582Description = rsaSignatureWithripemd160_l512_l11 (1 3 36 3 3 1 2 512 11)
1583OID = 06 09 2B 24 03 03 01 02 85 00 11
1584Comment = Teletrust signature algorithm
1585Description = rsaSignatureWithripemd160_l640_l11 (1 3 36 3 3 1 2 640 11)
1586OID = 06 09 2B 24 03 03 01 02 86 00 11
1587Comment = Teletrust signature algorithm
1588Description = rsaSignatureWithripemd160_l768_l11 (1 3 36 3 3 1 2 768 11)
1589OID = 06 09 2B 24 03 03 01 02 87 00 11
1590Comment = Teletrust signature algorithm
1591Description = rsaSignatureWithripemd160_l896_l11 (1 3 36 3 3 1 2 896 11)
1592OID = 06 09 2B 24 03 03 01 02 88 00 11
1593Comment = Teletrust signature algorithm
1594Description = rsaSignatureWithripemd160_l1024_l11 (1 3 36 3 3 1 2 1024 11)
1595
1596OID = 06 06 2B 24 03 03 01 03
1597Comment = Teletrust signature algorithm
1598Description = rsaSignatureWithrimpemd128 (1 3 36 3 3 1 3)
1599
1600OID = 06 06 2B 24 03 03 01 04
1601Comment = Teletrust signature algorithm
1602Description = rsaSignatureWithrimpemd256 (1 3 36 3 3 1 4)
1603
1604OID = 06 05 2B 24 03 03 02
1605Comment = Teletrust signature algorithm
1606Description = ecsieSign (1 3 36 3 3 2)
1607
1608OID = 06 06 2B 24 03 03 02 01
1609Comment = Teletrust signature algorithm
1610Description = ecsieSignWithsha1 (1 3 36 3 3 2 1)
1611
1612OID = 06 06 2B 24 03 03 02 02
1613Comment = Teletrust signature algorithm
1614Description = ecsieSignWithripemd160 (1 3 36 3 3 2 2)
1615
1616OID = 06 06 2B 24 03 03 02 03
1617Comment = Teletrust signature algorithm
1618Description = ecsieSignWithmd2 (1 3 36 3 3 2 3)
1619
1620OID = 06 06 2B 24 03 03 02 04
1621Comment = Teletrust signature algorithm
1622Description = ecsieSignWithmd5 (1 3 36 3 3 2 4)
1623
1624OID = 06 04 2B 24 03 04
1625Comment = Teletrust algorithm
1626Description = signatureScheme (1 3 36 3 4)
1627
1628OID = 06 05 2B 24 03 04 01
1629Comment = Teletrust signature scheme
1630Description = sigS_ISO9796-1 (1 3 36 3 4 1)
1631
1632OID = 06 05 2B 24 03 04 02
1633Comment = Teletrust signature scheme
1634Description = sigS_ISO9796-2 (1 3 36 3 4 2)
1635
1636OID = 06 05 2B 24 03 04 02 01
1637Comment = Teletrust signature scheme.  Unsure what this is supposed to be
1638Description = sigS_ISO9796-2Withred (1 3 36 3 4 2 1)
1639
1640OID = 06 06 2B 24 03 04 02 02
1641Comment = Teletrust signature scheme.  Unsure what this is supposed to be
1642Description = sigS_ISO9796-2Withrsa (1 3 36 3 4 2 2)
1643
1644OID = 06 06 2B 24 03 04 02 03
1645Comment = Teletrust signature scheme.  9796-2 with random number in padding field
1646Description = sigS_ISO9796-2Withrnd (1 3 36 3 4 2 3)
1647
1648OID = 06 03 2B 24 04
1649Comment = Teletrust attribute
1650Description = attribute (1 3 36 4)
1651
1652OID = 06 03 2B 24 05
1653Comment = Teletrust policy
1654Description = policy (1 3 36 5)
1655
1656OID = 06 03 2B 24 06
1657Comment = Teletrust API
1658Description = api (1 3 36 6)
1659
1660OID = 06 04 2B 24 06 01
1661Comment = Teletrust API
1662Description = manufacturer-specific_api (1 3 36 6 1)
1663
1664OID = 06 05 2B 24 06 01 01
1665Comment = Teletrust API
1666Description = utimaco-api (1 3 36 6 1 1)
1667
1668OID = 06 04 2B 24 06 02
1669Comment = Teletrust API
1670Description = functionality-specific_api (1 3 36 6 2)
1671
1672OID = 06 03 2B 24 07
1673Comment = Teletrust key management
1674Description = keymgmnt (1 3 36 7)
1675
1676OID = 06 04 2B 24 07 01
1677Comment = Teletrust key management
1678Description = keyagree (1 3 36 7 1)
1679
1680OID = 06 05 2B 24 07 01 01
1681Comment = Teletrust key management
1682Description = bsiPKE (1 3 36 7 1 1)
1683
1684OID = 06 04 2B 24 07 02
1685Comment = Teletrust key management
1686Description = keytrans (1 3 36 7 2)
1687
1688OID = 06 04 2B 24 07 02 01
1689Comment = Teletrust key management.  9796-2 with key stored in hash field
1690Description = encISO9796-2Withrsa (1 3 36 7 2 1)
1691
1692# Thawte
1693
1694OID = 06 04 2B 65 01 04
1695Comment = Thawte
1696Description = thawte-ce (1 3 101 1 4)
1697
1698OID = 06 05 2B 65 01 04 01
1699Comment = Thawte certificate extension
1700Description = strongExtranet (1 3 101 1 4 1)
1701
1702# X.520
1703
1704OID = 06 03 55 04 00
1705Comment = X.520 id-at (2 5 4)
1706Description = objectClass (2 5 4 0)
1707
1708OID = 06 03 55 04 01
1709Comment = X.520 id-at (2 5 4)
1710Description = aliasedEntryName (2 5 4 1)
1711
1712OID = 06 03 55 04 02
1713Comment = X.520 id-at (2 5 4)
1714Description = knowledgeInformation (2 5 4 2)
1715
1716OID = 06 03 55 04 03
1717Comment = X.520 id-at (2 5 4)
1718Description = commonName (2 5 4 3)
1719
1720OID = 06 03 55 04 04
1721Comment = X.520 id-at (2 5 4)
1722Description = surname (2 5 4 4)
1723
1724OID = 06 03 55 04 05
1725Comment = X.520 id-at (2 5 4)
1726Description = serialNumber (2 5 4 5)
1727
1728OID = 06 03 55 04 06
1729Comment = X.520 id-at (2 5 4)
1730Description = countryName (2 5 4 6)
1731
1732OID = 06 03 55 04 07
1733Comment = X.520 id-at (2 5 4)
1734Description = localityName (2 5 4 7)
1735
1736OID = 06 04 55 04 07 01
1737Comment = X.520 id-at (2 5 4)
1738Description = collectiveLocalityName (2 5 4 7 1)
1739
1740OID = 06 03 55 04 08
1741Comment = X.520 id-at (2 5 4)
1742Description = stateOrProvinceName (2 5 4 8)
1743
1744OID = 06 04 55 04 08 01
1745Comment = X.520 id-at (2 5 4)
1746Description = collectiveStateOrProvinceName (2 5 4 8 1)
1747
1748OID = 06 03 55 04 09
1749Comment = X.520 id-at (2 5 4)
1750Description = streetAddress (2 5 4 9)
1751
1752OID = 06 04 55 04 09 01
1753Comment = X.520 id-at (2 5 4)
1754Description = collectiveStreetAddress (2 5 4 9 1)
1755
1756OID = 06 03 55 04 0A
1757Comment = X.520 id-at (2 5 4)
1758Description = organizationName (2 5 4 10)
1759
1760OID = 06 04 55 04 0A 01
1761Comment = X.520 id-at (2 5 4)
1762Description = collectiveOrganizationName (2 5 4 10 1)
1763
1764OID = 06 03 55 04 0B
1765Comment = X.520 id-at (2 5 4)
1766Description = organizationalUnitName (2 5 4 11)
1767
1768OID = 06 04 55 04 0B 01
1769Comment = X.520 id-at (2 5 4)
1770Description = collectiveOrganizationalUnitName (2 5 4 11 1)
1771
1772OID = 06 03 55 04 0C
1773Comment = X.520 id-at (2 5 4)
1774Description = title (2 5 4 12)
1775
1776OID = 06 03 55 04 0D
1777Comment = X.520 id-at (2 5 4)
1778Description = description (2 5 4 13)
1779
1780OID = 06 03 55 04 0E
1781Comment = X.520 id-at (2 5 4)
1782Description = searchGuide (2 5 4 14)
1783
1784OID = 06 03 55 04 0F
1785Comment = X.520 id-at (2 5 4)
1786Description = businessCategory (2 5 4 15)
1787
1788OID = 06 03 55 04 10
1789Comment = X.520 id-at (2 5 4)
1790Description = postalAddress (2 5 4 16)
1791
1792OID = 06 04 55 04 10 01
1793Comment = X.520 id-at (2 5 4)
1794Description = collectivePostalAddress (2 5 4 16 1)
1795
1796OID = 06 03 55 04 11
1797Comment = X.520 id-at (2 5 4)
1798Description = postalCode (2 5 4 17)
1799
1800OID = 06 04 55 04 11 01
1801Comment = X.520 id-at (2 5 4)
1802Description = collectivePostalCode (2 5 4 17 1)
1803
1804OID = 06 03 55 04 12
1805Comment = X.520 id-at (2 5 4)
1806Description = postOfficeBox (2 5 4 18)
1807
1808OID = 06 04 55 04 12 01
1809Comment = X.520 id-at (2 5 4)
1810Description = collectivePostOfficeBox (2 5 4 18 1)
1811
1812OID = 06 03 55 04 13
1813Comment = X.520 id-at (2 5 4)
1814Description = physicalDeliveryOfficeName (2 5 4 19)
1815
1816OID = 06 04 55 04 13 01
1817Comment = X.520 id-at (2 5 4)
1818Description = collectivePhysicalDeliveryOfficeName (2 5 4 19 1)
1819
1820OID = 06 03 55 04 14
1821Comment = X.520 id-at (2 5 4)
1822Description = telephoneNumber (2 5 4 20)
1823
1824OID = 06 04 55 04 14 01
1825Comment = X.520 id-at (2 5 4)
1826Description = collectiveTelephoneNumber (2 5 4 20 1)
1827
1828OID = 06 03 55 04 15
1829Comment = X.520 id-at (2 5 4)
1830Description = telexNumber (2 5 4 21)
1831
1832OID = 06 04 55 04 15 01
1833Comment = X.520 id-at (2 5 4)
1834Description = collectiveTelexNumber (2 5 4 21 1)
1835
1836OID = 06 03 55 04 16
1837Comment = X.520 id-at (2 5 4)
1838Description = teletexTerminalIdentifier (2 5 4 22)
1839
1840OID = 06 04 55 04 16 01
1841Comment = X.520 id-at (2 5 4)
1842Description = collectiveTeletexTerminalIdentifier (2 5 4 22 1)
1843
1844OID = 06 03 55 04 17
1845Comment = X.520 id-at (2 5 4)
1846Description = facsimileTelephoneNumber (2 5 4 23)
1847
1848OID = 06 04 55 04 17 01
1849Comment = X.520 id-at (2 5 4)
1850Description = collectiveFacsimileTelephoneNumber (2 5 4 23 1)
1851
1852OID = 06 03 55 04 18
1853Comment = X.520 id-at (2 5 4)
1854Description = x121Address (2 5 4 24)
1855
1856OID = 06 03 55 04 19
1857Comment = X.520 id-at (2 5 4)
1858Description = internationalISDNNumber (2 5 4 25)
1859
1860OID = 06 04 55 04 19 01
1861Comment = X.520 id-at (2 5 4)
1862Description = collectiveInternationalISDNNumber (2 5 4 25 1)
1863
1864OID = 06 03 55 04 1A
1865Comment = X.520 id-at (2 5 4)
1866Description = registeredAddress (2 5 4 26)
1867
1868OID = 06 03 55 04 1B
1869Comment = X.520 id-at (2 5 4)
1870Description = destinationIndicator (2 5 4 27)
1871
1872OID = 06 03 55 04 1C
1873Comment = X.520 id-at (2 5 4)
1874Description = preferredDeliveryMehtod (2 5 4 28)
1875
1876OID = 06 03 55 04 1D
1877Comment = X.520 id-at (2 5 4)
1878Description = presentationAddress (2 5 4 29)
1879
1880OID = 06 03 55 04 1E
1881Comment = X.520 id-at (2 5 4)
1882Description = supportedApplicationContext (2 5 4 30)
1883
1884OID = 06 03 55 04 1F
1885Comment = X.520 id-at (2 5 4)
1886Description = member (2 5 4 31)
1887
1888OID = 06 03 55 04 20
1889Comment = X.520 id-at (2 5 4)
1890Description = owner (2 5 4 32)
1891
1892OID = 06 03 55 04 21
1893Comment = X.520 id-at (2 5 4)
1894Description = roleOccupant (2 5 4 33)
1895
1896OID = 06 03 55 04 22
1897Comment = X.520 id-at (2 5 4)
1898Description = seeAlso (2 5 4 34)
1899
1900OID = 06 03 55 04 23
1901Comment = X.520 id-at (2 5 4)
1902Description = userPassword (2 5 4 35)
1903
1904OID = 06 03 55 04 24
1905Comment = X.520 id-at (2 5 4)
1906Description = userCertificate (2 5 4 36)
1907
1908OID = 06 03 55 04 25
1909Comment = X.520 id-at (2 5 4)
1910Description = caCertificate (2 5 4 37)
1911
1912OID = 06 03 55 04 26
1913Comment = X.520 id-at (2 5 4)
1914Description = authorityRevocationList (2 5 4 38)
1915
1916OID = 06 03 55 04 27
1917Comment = X.520 id-at (2 5 4)
1918Description = certificateRevocationList (2 5 4 39)
1919
1920OID = 06 03 55 04 28
1921Comment = X.520 id-at (2 5 4)
1922Description = crossCertificatePair (2 5 4 40)
1923
1924OID = 06 03 55 04 29
1925Comment = X.520 id-at (2 5 4)
1926Description = name (2 5 4 41)
1927
1928OID = 06 03 55 04 2A
1929Comment = X.520 id-at (2 5 4)
1930Description = givenName (2 5 4 42)
1931
1932OID = 06 03 55 04 2B
1933Comment = X.520 id-at (2 5 4)
1934Description = initials (2 5 4 43)
1935
1936OID = 06 03 55 04 2C
1937Comment = X.520 id-at (2 5 4)
1938Description = generationQualifier (2 5 4 44)
1939
1940OID = 06 03 55 04 2D
1941Comment = X.520 id-at (2 5 4)
1942Description = uniqueIdentifier (2 5 4 45)
1943
1944OID = 06 03 55 04 2E
1945Comment = X.520 id-at (2 5 4)
1946Description = dnQualifier (2 5 4 46)
1947
1948OID = 06 03 55 04 2F
1949Comment = X.520 id-at (2 5 4)
1950Description = enhancedSearchGuide (2 5 4 47)
1951
1952OID = 06 03 55 04 30
1953Comment = X.520 id-at (2 5 4)
1954Description = protocolInformation (2 5 4 48)
1955
1956OID = 06 03 55 04 31
1957Comment = X.520 id-at (2 5 4)
1958Description = distinguishedName (2 5 4 49)
1959
1960OID = 06 03 55 04 32
1961Comment = X.520 id-at (2 5 4)
1962Description = uniqueMember (2 5 4 50)
1963
1964OID = 06 03 55 04 33
1965Comment = X.520 id-at (2 5 4)
1966Description = houseIdentifier (2 5 4 51)
1967
1968OID = 06 03 55 04 34
1969Comment = X.520 id-at (2 5 4)
1970Description = supportedAlgorithms (2 5 4 52)
1971
1972OID = 06 03 55 04 35
1973Comment = X.520 id-at (2 5 4)
1974Description = deltaRevocationList (2 5 4 53)
1975
1976OID = 06 03 55 04 3A
1977Comment = X.520 id-at (2 5 4)
1978Description = crossCertificatePair (2 5 4 58)
1979
1980# X500 algorithms
1981
1982OID = 06 02 55 08
1983Description = X.500-Algorithms (2 5 8)
1984
1985OID = 06 03 55 08 01
1986Description = X.500-Alg-Encryption (2 5 8 1)
1987
1988OID = 06 04 55 08 01 01
1989Comment = X.500 algorithms.  Ambiguous, since no padding rules specified
1990Description = rsa (2 5 8 1 1)
1991Warning
1992
1993# X.509.  Some of the smaller values are from early X.509 drafts with
1994# cross-pollination from X9.55 and are now deprecated.  Alternative OIDs are
1995# marked if these are known.  In some cases there are multiple generations of
1996# superseded OIDs
1997
1998OID = 06 03 55 1D 01
1999Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 35) instead
2000Description = authorityKeyIdentifier (2 5 29 1)
2001Warning
2002
2003OID = 06 03 55 1D 02
2004Comment = X.509 id-ce (2 5 29).  Obsolete, use keyUsage/extKeyUsage instead
2005Description = keyAttributes (2 5 29 2)
2006Warning
2007
2008OID = 06 03 55 1D 03
2009Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 32) instead
2010Description = certificatePolicies (2 5 29 3)
2011Warning
2012
2013OID = 06 03 55 1D 04
2014Comment = X.509 id-ce (2 5 29).  Obsolete, use keyUsage/extKeyUsage instead
2015Description = keyUsageRestriction (2 5 29 4)
2016Warning
2017
2018OID = 06 03 55 1D 05
2019Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 33) instead
2020Description = policyMapping (2 5 29 5)
2021Warning
2022
2023OID = 06 03 55 1D 06
2024Comment = X.509 id-ce (2 5 29).  Obsolete, use nameConstraints instead
2025Description = subtreesConstraint (2 5 29 6)
2026Warning
2027
2028OID = 06 03 55 1D 07
2029Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 17) instead
2030Description = subjectAltName (2 5 29 7)
2031Warning
2032
2033OID = 06 03 55 1D 08
2034Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 18) instead
2035Description = issuerAltName (2 5 29 8)
2036Warning
2037
2038OID = 06 03 55 1D 09
2039Comment = X.509 id-ce (2 5 29)
2040Description = subjectDirectoryAttributes (2 5 29 9)
2041
2042OID = 06 03 55 1D 0A
2043Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 19) instead
2044Description = basicConstraints (2 5 29 10)
2045Warning
2046
2047OID = 06 03 55 1D 0B
2048Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 30) instead
2049Description = nameConstraints (2 5 29 11)
2050Warning
2051
2052OID = 06 03 55 1D 0C
2053Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 36) instead
2054Description = policyConstraints (2 5 29 12)
2055Warning
2056
2057OID = 06 03 55 1D 0D
2058Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 19) instead
2059Description = basicConstraints (2 5 29 13)
2060Warning
2061
2062OID = 06 03 55 1D 0E
2063Comment = X.509 id-ce (2 5 29)
2064Description = subjectKeyIdentifier (2 5 29 14)
2065
2066OID = 06 03 55 1D 0F
2067Comment = X.509 id-ce (2 5 29)
2068Description = keyUsage (2 5 29 15)
2069
2070OID = 06 03 55 1D 10
2071Comment = X.509 id-ce (2 5 29)
2072Description = privateKeyUsagePeriod (2 5 29 16)
2073
2074OID = 06 03 55 1D 11
2075Comment = X.509 id-ce (2 5 29)
2076Description = subjectAltName (2 5 29 17)
2077
2078OID = 06 03 55 1D 12
2079Comment = X.509 id-ce (2 5 29)
2080Description = issuerAltName (2 5 29 18)
2081
2082OID = 06 03 55 1D 13
2083Comment = X.509 id-ce (2 5 29)
2084Description = basicConstraints (2 5 29 19)
2085
2086OID = 06 03 55 1D 14
2087Comment = X.509 id-ce (2 5 29)
2088Description = cRLNumber (2 5 29 20)
2089
2090OID = 06 03 55 1D 15
2091Comment = X.509 id-ce (2 5 29)
2092Description = cRLReason (2 5 29 21)
2093
2094OID = 06 03 55 1D 16
2095Comment = X.509 id-ce (2 5 29).  Deprecated, alternative OID uncertain
2096Description = expirationDate (2 5 29 22)
2097Warning
2098
2099OID = 06 03 55 1D 17
2100Comment = X.509 id-ce (2 5 29)
2101Description = instructionCode (2 5 29 23)
2102
2103OID = 06 03 55 1D 18
2104Comment = X.509 id-ce (2 5 29)
2105Description = invalidityDate (2 5 29 24)
2106
2107OID = 06 03 55 1D 19
2108Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 31) instead
2109Description = cRLDistributionPoints (2 5 29 25) deprecated
2110Warning
2111
2112OID = 06 03 55 1D 1A
2113Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 28) instead
2114Description = issuingDistributionPoint (2 5 29 26)
2115Warning
2116
2117OID = 06 03 55 1D 1B
2118Comment = X.509 id-ce (2 5 29)
2119Description = deltaCRLIndicator (2 5 29 27)
2120
2121OID = 06 03 55 1D 1C
2122Comment = X.509 id-ce (2 5 29)
2123Description = issuingDistributionPoint (2 5 29 28)
2124
2125OID = 06 03 55 1D 1D
2126Comment = X.509 id-ce (2 5 29)
2127Description = certificateIssuer (2 5 29 29)
2128
2129OID = 06 03 55 1D 1E
2130Comment = X.509 id-ce (2 5 29)
2131Description = nameConstraints (2 5 29 30)
2132
2133OID = 06 03 55 1D 1F
2134Comment = X.509 id-ce (2 5 29)
2135Description = cRLDistributionPoints (2 5 29 31)
2136
2137OID = 06 03 55 1D 20
2138Comment = X.509 id-ce (2 5 29)
2139Description = certificatePolicies (2 5 29 32)
2140
2141OID = 06 03 55 1D 21
2142Comment = X.509 id-ce (2 5 29)
2143Description = policyMappings (2 5 29 33)
2144
2145OID = 06 03 55 1D 22
2146Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 36) instead
2147Description = policyConstraints (2 5 29 34)
2148Warning
2149
2150OID = 06 03 55 1D 23
2151Comment = X.509 id-ce (2 5 29)
2152Description = authorityKeyIdentifier (2 5 29 35)
2153
2154OID = 06 03 55 1D 24
2155Comment = X.509 id-ce (2 5 29)
2156Description = policyConstraints (2 5 29 36)
2157
2158OID = 06 03 55 1D 25
2159Comment = X.509 id-ce (2 5 29)
2160Description = extKeyUsage (2 5 29 37)
2161
2162# DMS-SDN-702
2163
2164OID = 06 09 60 86 48 01 65 02 01 01 01
2165Comment = DMS-SDN-702
2166Description = sdnsSignatureAlgorithm (2 16 840 1 101 2 1 1 1)
2167
2168OID = 06 09 60 86 48 01 65 02 01 01 02
2169Comment = DMS-SDN-702.  Formerly known as mosaicSignatureAlgorithm, this OID is better known as dsaWithSHA-1.
2170Description = fortezzaSignatureAlgorithm (2 16 840 1 101 2 1 1 2)
2171
2172OID = 06 09 60 86 48 01 65 02 01 01 03
2173Comment = DMS-SDN-702
2174Description = sdnsConfidentialityAlgorithm (2 16 840 1 101 2 1 1 3)
2175
2176OID = 06 09 60 86 48 01 65 02 01 01 04
2177Comment = DMS-SDN-702.  Formerly known as mosaicConfidentialityAlgorithm
2178Description = fortezzaConfidentialityAlgorithm (2 16 840 1 101 2 1 1 4)
2179
2180OID = 06 09 60 86 48 01 65 02 01 01 05
2181Comment = DMS-SDN-702
2182Description = sdnsIntegrityAlgorithm (2 16 840 1 101 2 1 1 5)
2183
2184OID = 06 09 60 86 48 01 65 02 01 01 06
2185Comment = DMS-SDN-702.  Formerly known as mosaicIntegrityAlgorithm
2186Description = fortezzaIntegrityAlgorithm (2 16 840 1 101 2 1 1 6)
2187
2188OID = 06 09 60 86 48 01 65 02 01 01 07
2189Comment = DMS-SDN-702
2190Description = sdnsTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 7)
2191
2192OID = 06 09 60 86 48 01 65 02 01 01 08
2193Comment = DMS-SDN-702.  Formerly know as mosaicTokenProtectionAlgorithm
2194Description = fortezzaTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 8)
2195
2196OID = 06 09 60 86 48 01 65 02 01 01 09
2197Comment = DMS-SDN-702
2198Description = sdnsKeyManagementAlgorithm (2 16 840 1 101 2 1 1 9)
2199
2200OID = 06 09 60 86 48 01 65 02 01 01 0A
2201Comment = DMS-SDN-702.  Formerly known as mosaicKeyManagementAlgorithm
2202Description = fortezzaKeyManagementAlgorithm (2 16 840 1 101 2 1 1 10)
2203
2204OID = 06 09 60 86 48 01 65 02 01 01 0B
2205Comment = DMS-SDN-702
2206Description = sdnsKMandSigAlgorithm (2 16 840 1 101 2 1 1 11)
2207
2208OID = 06 09 60 86 48 01 65 02 01 01 0C
2209Comment = DMS-SDN-702.  Formerly known as mosaicKMandSigAlgorithm
2210Description = fortezzaKMandSigAlgorithm (2 16 840 1 101 2 1 1 12)
2211
2212OID = 06 09 60 86 48 01 65 02 01 01 0D
2213Comment = DMS-SDN-702
2214Description = SuiteASignatureAlgorithm (2 16 840 1 101 2 1 1 13)
2215
2216OID = 06 09 60 86 48 01 65 02 01 01 0E
2217Comment = DMS-SDN-702
2218Description = SuiteAConfidentialityAlgorithm (2 16 840 1 101 2 1 1 14)
2219
2220OID = 06 09 60 86 48 01 65 02 01 01 0F
2221Comment = DMS-SDN-702
2222Description = SuiteAIntegrityAlgorithm (2 16 840 1 101 2 1 1 15)
2223
2224OID = 06 09 60 86 48 01 65 02 01 01 10
2225Comment = DMS-SDN-702
2226Description = SuiteATokenProtectionAlgorithm (2 16 840 1 101 2 1 1 16)
2227
2228OID = 06 09 60 86 48 01 65 02 01 01 11
2229Comment = DMS-SDN-702
2230Description = SuiteAKeyManagementAlgorithm (2 16 840 1 101 2 1 1 17)
2231
2232OID = 06 09 60 86 48 01 65 02 01 01 12
2233Comment = DMS-SDN-702
2234Description = SuiteAKMandSigAlgorithm (2 16 840 1 101 2 1 1 18)
2235
2236OID = 06 09 60 86 48 01 65 02 01 01 13
2237Comment = DMS-SDN-702.  Formerly known as mosaicUpdatedSigAlgorithm
2238Description = fortezzaUpdatedSigAlgorithm (2 16 840 1 101 2 1 1 19)
2239
2240OID = 06 09 60 86 48 01 65 02 01 01 14
2241Comment = DMS-SDN-702.  Formerly known as mosaicKMandUpdSigAlgorithms
2242Description = fortezzaKMandUpdSigAlgorithms (2 16 840 1 101 2 1 1 20)
2243
2244OID = 06 09 60 86 48 01 65 02 01 01 15
2245Comment = DMS-SDN-702.  Formerly known as mosaicUpdatedIntegAlgorithm
2246Description = fortezzaUpdatedIntegAlgorithm (2 16 840 1 101 2 1 1 21)
2247
2248OID = 06 09 60 86 48 01 65 02 01 01 16
2249Comment = DMS-SDN-702.  Formerly known as mosaicKeyEncryptionAlgorithm
2250Description = keyExchangeAlgorithm (2 16 840 1 101 2 1 1 22)
2251
2252# CSOR (GAK-FIPS)
2253
2254OID = 06 07 60 86 48 01 65 03 01
2255Comment = CSOR GAK
2256Description = slabel (2 16 840 1 101 3 1)
2257Warning
2258
2259OID = 06 07 60 86 48 01 65 03 02
2260Comment = CSOR GAK
2261Description = pki (2 16 840 1 101 3 2)
2262Warning
2263
2264OID = 06 08 60 86 48 01 65 03 02 01
2265Comment = CSOR GAK policy
2266Description = GAK policyIdentifier (2 16 840 1 101 3 2 1)
2267Warning
2268
2269OID = 06 08 60 86 48 01 65 03 02 02
2270Comment = CSOR GAK extended key usage
2271Description = GAK (2 16 840 1 101 3 2 2)
2272Warning
2273
2274OID = 06 09 60 86 48 01 65 03 02 02 01
2275Comment = CSOR GAK extended key usage
2276Description = kRAKey (2 16 840 1 101 3 2 2 1)
2277Warning
2278
2279OID = 06 08 60 86 48 01 65 03 02 03
2280Comment = CSOR GAK extensions
2281Description = extensions (2 16 840 1 101 3 2 3)
2282Warning
2283
2284OID = 06 09 60 86 48 01 65 03 02 03 01
2285Comment = CSOR GAK extensions
2286Description = kRTechnique (2 16 840 1 101 3 2 3 1)
2287Warning
2288
2289OID = 06 09 60 86 48 01 65 03 02 03 02
2290Comment = CSOR GAK extensions
2291Description = kRecoveryCapable (2 16 840 1 101 3 2 3 2)
2292Warning
2293
2294OID = 06 09 60 86 48 01 65 03 02 03 03
2295Comment = CSOR GAK extensions
2296Description = kR (2 16 840 1 101 3 2 3 3)
2297Warning
2298
2299OID = 06 08 60 86 48 01 65 03 02 04
2300Comment = CSOR GAK
2301Description = keyrecoveryschemes (2 16 840 1 101 3 2 4)
2302Warning
2303
2304OID = 06 08 60 86 48 01 65 03 02 05
2305Comment = CSOR GAK
2306Description = krapola (2 16 840 1 101 3 2 5)
2307Warning
2308
2309OID = 06 07 60 86 48 01 65 03 03
2310Comment = CSOR GAK
2311Description = arpa (2 16 840 1 101 3 3)
2312Warning
2313
2314# Novell
2315
2316OID = 06 09 60 86 48 01 86 F8 37 01 09
2317Comment = Novell
2318Description = pki (2 16 840 1 113719 1 9)
2319
2320OID = 06 0A 60 86 48 01 86 F8 37 01 09 04
2321Comment = Novell PKI
2322Description = pkiAttributeType (2 16 840 1 113719 1 9 4)
2323
2324OID = 06 0B 60 86 48 01 86 F8 37 01 09 04 01
2325Comment = Novell PKI attribute type
2326Description = registeredAttributes (2 16 840 1 113719 1 9 4 1)
2327
2328OID = 06 0B 60 86 48 01 86 F8 37 01 09 04 02
2329Comment = Novell PKI attribute type
2330Description = relianceLimit (2 16 840 1 113719 1 9 4 2)
2331
2332# Netscape
2333
2334OID = 06 08 60 86 48 01 86 F8 42 01
2335Comment = Netscape
2336Description = cert-extension (2 16 840 1 113730 1)
2337
2338OID = 06 09 60 86 48 01 86 F8 42 01 01
2339Comment = Netscape certificate extension
2340Description = netscape-cert-type (2 16 840 1 113730 1 1)
2341
2342OID = 06 09 60 86 48 01 86 F8 42 01 02
2343Comment = Netscape certificate extension
2344Description = netscape-base-url (2 16 840 1 113730 1 2)
2345
2346OID = 06 09 60 86 48 01 86 F8 42 01 03
2347Comment = Netscape certificate extension
2348Description = netscape-revocation-url (2 16 840 1 113730 1 3)
2349
2350OID = 06 09 60 86 48 01 86 F8 42 01 04
2351Comment = Netscape certificate extension
2352Description = netscape-ca-revocation-url (2 16 840 1 113730 1 4)
2353
2354OID = 06 09 60 86 48 01 86 F8 42 02 05
2355Comment = Netscape certificate extension
2356Description = netscape-cert-sequence (2 16 840 1 113730 2 5)
2357
2358OID = 06 09 60 86 48 01 86 F8 42 02 06
2359Comment = Netscape certificate extension
2360Description = netscape-cert-url (2 16 840 1 113730 2 6)
2361
2362OID = 06 09 60 86 48 01 86 F8 42 01 07
2363Comment = Netscape certificate extension
2364Description = netscape-cert-renewal-url (2 16 840 1 113730 1 7)
2365
2366OID = 06 09 60 86 48 01 86 F8 42 01 08
2367Comment = Netscape certificate extension
2368Description = netscape-ca-policy-url (2 16 840 1 113730 1 8)
2369
2370OID = 06 09 60 86 48 01 86 F8 42 01 09
2371Comment = Netscape certificate extension
2372Description = HomePage-url (2 16 840 1 113730 1 9)
2373
2374OID = 06 09 60 86 48 01 86 F8 42 01 0A
2375Comment = Netscape certificate extension
2376Description = EntityLogo (2 16 840 1 113730 1 10)
2377
2378OID = 06 09 60 86 48 01 86 F8 42 01 0B
2379Comment = Netscape certificate extension
2380Description = UserPicture (2 16 840 1 113730 1 11)
2381
2382OID = 06 09 60 86 48 01 86 F8 42 01 0C
2383Comment = Netscape certificate extension
2384Description = netscape-ssl-server-name (2 16 840 1 113730 1 12)
2385
2386OID = 06 09 60 86 48 01 86 F8 42 01 0D
2387Comment = Netscape certificate extension
2388Description = netscape-comment (2 16 840 1 113730 1 13)
2389
2390OID = 06 08 60 86 48 01 86 F8 42 02
2391Comment = Netscape
2392Description = data-type (2 16 840 1 113730 2)
2393
2394OID = 06 09 60 86 48 01 86 F8 42 02 01
2395Comment = Netscape data type
2396Description = GIF (2 16 840 1 113730 2 1)
2397
2398OID = 06 09 60 86 48 01 86 F8 42 02 02
2399Comment = Netscape data type
2400Description = JPEG (2 16 840 1 113730 2 2)
2401
2402OID = 06 09 60 86 48 01 86 F8 42 02 03
2403Comment = Netscape data type
2404Description = URL (2 16 840 1 113730 2 3)
2405
2406OID = 06 09 60 86 48 01 86 F8 42 02 04
2407Comment = Netscape data type
2408Description = HTML (2 16 840 1 113730 2 4)
2409
2410OID = 06 09 60 86 48 01 86 F8 42 02 05
2411Comment = Netscape data type
2412Description = CertSeq (2 16 840 1 113730 2 5)
2413
2414OID = 06 08 60 86 48 01 86 F8 42 03
2415Comment = Netscape
2416Description = directory (2 16 840 1 113730 3)
2417
2418OID = 06 09 60 86 48 01 86 F8 42 03 01
2419Comment = Netscape directory
2420Description = ldapDefinitions (2 16 840 1 113730 3 1)
2421
2422OID = 06 0A 60 86 48 01 86 F8 42 03 01 01
2423Comment = Netscape LDAP definitions
2424Description = carLicense (2 16 840 1 113730 3 1 1)
2425
2426OID = 06 0A 60 86 48 01 86 F8 42 03 01 02
2427Comment = Netscape LDAP definitions
2428Description = departmentNumber (2 16 840 1 113730 3 1 2)
2429
2430OID = 06 0A 60 86 48 01 86 F8 42 03 01 03
2431Comment = Netscape LDAP definitions
2432Description = employeeNumber (2 16 840 1 113730 3 1 3)
2433
2434OID = 06 0A 60 86 48 01 86 F8 42 03 01 04
2435Comment = Netscape LDAP definitions
2436Description = employeeType (2 16 840 1 113730 3 1 4)
2437
2438OID = 06 0A 60 86 48 01 86 F8 42 03 02 02
2439Comment = Netscape LDAP definitions
2440Description = inetOrgPerson (2 16 840 1 113730 3 2 2)
2441
2442OID = 06 09 60 86 48 01 86 F8 42 04 01
2443Comment = Netscape
2444Description = serverGatedCrypto (2 16 840 1 113730 4 1)
2445
2446# Verisign
2447
2448OID = 06 0A 60 86 48 01 86 F8 45 01 06 03
2449Comment = Verisign
2450Description = Unknown Verisign extension (2 16 840 1 113733 1 6 3)
2451
2452OID = 06 0A 60 86 48 01 86 F8 45 01 06 06
2453Comment = Verisign
2454Description = Unknown Verisign extension (2 16 840 1 113733 1 6 6)
2455
2456OID = 06 0B 60 86 48 01 86 F8 45 01 07 01 01
2457Comment = Verisign
2458Description = Verisign certificatePolicy (2 16 840 1 113733 1 7 1 1)
2459
2460OID = 06 0C 60 86 48 01 86 F8 45 01 07 01 01 01
2461Comment = Verisign
2462Description = Unknown Verisign policy qualifier (2 16 840 1 113733 1 7 1 1 1)
2463
2464OID = 06 0C 60 86 48 01 86 F8 45 01 07 01 01 02
2465Comment = Verisign
2466Description = Unknown Verisign policy qualifier (2 16 840 1 113733 1 7 1 1 2)
2467
2468OID = 06 0A 60 86 48 01 86 F8 45 01 08 01
2469Comment = Verisign
2470Description = Verisign SGC CA? (2 16 840 1 113733 1 8 1)
2471
2472# SET
2473
2474OID = 06 03 67 2A 00
2475Comment = SET
2476Description = contentType (2 23 42 0)
2477
2478OID = 06 04 67 2A 00 00
2479Comment = SET contentType
2480Description = PANData (2 23 42 0 0)
2481
2482OID = 06 04 67 2A 00 01
2483Comment = SET contentType
2484Description = PANToken (2 23 42 0 1)
2485
2486OID = 06 04 67 2A 00 02
2487Comment = SET contentType
2488Description = PANOnly (2 23 42 0 2)
2489
2490# And on and on and on for another 80-odd OIDs which I'm not going to type in
2491
2492OID = 06 03 67 2A 01
2493Comment = SET
2494Description = msgExt (2 23 42 1)
2495
2496OID = 06 03 67 2A 02
2497Comment = SET
2498Description = field (2 23 42 2)
2499
2500OID = 06 04 67 2A 02 00
2501Comment = SET field
2502Description = fullName (2 23 42 2 0)
2503
2504OID = 06 04 67 2A 02 01
2505Comment = SET field
2506Description = givenName (2 23 42 2 1)
2507
2508OID = 06 04 67 2A 02 02
2509Comment = SET field
2510Description = familyName (2 23 42 2 2)
2511
2512OID = 06 04 67 2A 02 03
2513Comment = SET field
2514Description = birthFamilyName (2 23 42 2 3)
2515
2516OID = 06 04 67 2A 02 04
2517Comment = SET field
2518Description = placeName (2 23 42 2 4)
2519
2520OID = 06 04 67 2A 02 05
2521Comment = SET field
2522Description = identificationNumber (2 23 42 2 5)
2523
2524OID = 06 04 67 2A 02 06
2525Comment = SET field
2526Description = month (2 23 42 2 6)
2527
2528OID = 06 04 67 2A 02 07
2529Comment = SET field
2530Description = date (2 23 42 2 7)
2531
2532OID = 06 04 67 2A 02 08
2533Comment = SET field
2534Description = address (2 23 42 2 8)
2535
2536OID = 06 04 67 2A 02 09
2537Comment = SET field
2538Description = telephone (2 23 42 2 9)
2539
2540OID = 06 04 67 2A 02 0A
2541Comment = SET field
2542Description = amount (2 23 42 2 10)
2543
2544OID = 06 04 67 2A 02 0B
2545Comment = SET field
2546Description = accountNumber (2 23 42 2 7 11)
2547
2548OID = 06 04 67 2A 02 0C
2549Comment = SET field
2550Description = passPhrase (2 23 42 2 7 12)
2551
2552OID = 06 03 67 2A 03
2553Comment = SET
2554Description = attribute (2 23 42 3)
2555
2556OID = 06 04 67 2A 03 00
2557Comment = SET attribute
2558Description = cert (2 23 42 3 0)
2559
2560OID = 06 05 67 2A 03 00 00
2561Comment = SET cert attribute
2562Description = rootKeyThumb (2 23 42 3 0 0)
2563
2564OID = 06 05 67 2A 03 00 01
2565Comment = SET cert attribute
2566Description = additionalPolicy (2 23 42 3 0 1)
2567
2568OID = 06 03 67 2A 04
2569Comment = SET
2570Description = algorithm (2 23 42 4)
2571
2572OID = 06 03 67 2A 05
2573Comment = SET
2574Description = policy (2 23 42 5)
2575
2576OID = 06 04 67 2A 05 00
2577Comment = SET policy
2578Description = root (2 23 42 5 0)
2579
2580OID = 06 03 67 2A 06
2581Comment = SET
2582Description = module (2 23 42 6)
2583
2584OID = 06 03 67 2A 07
2585Comment = SET
2586Description = certExt (2 23 42 7)
2587
2588OID = 06 04 67 2A 07 00
2589Comment = SET cert extension
2590Description = hashedRootKey (2 23 42 7 0)
2591
2592OID = 06 04 67 2A 07 01
2593Comment = SET cert extension
2594Description = certificateType (2 23 42 7 1)
2595
2596OID = 06 04 67 2A 07 02
2597Comment = SET cert extension
2598Description = merchantData (2 23 42 7 2)
2599
2600OID = 06 04 67 2A 07 03
2601Comment = SET cert extension
2602Description = cardCertRequired (2 23 42 7 3)
2603
2604OID = 06 04 67 2A 07 04
2605Comment = SET cert extension
2606Description = tunneling (2 23 42 7 4)
2607
2608OID = 06 04 67 2A 07 05
2609Comment = SET cert extension
2610Description = setExtensions (2 23 42 7 5)
2611
2612OID = 06 04 67 2A 07 06
2613Comment = SET cert extension
2614Description = setQualifier (2 23 42 7 6)
2615
2616OID = 06 03 67 2A 08
2617Comment = SET
2618Description = brand (2 23 42 8)
2619
2620OID = 06 04 67 2A 08 01
2621Comment = SET brand
2622Description = IATA-ATA (2 23 42 8 1)
2623
2624OID = 06 04 67 2A 08 04
2625Comment = SET brand
2626Description = VISA (2 23 42 8 4)
2627
2628OID = 06 04 67 2A 08 05
2629Comment = SET brand
2630Description = MasterCard (2 23 42 8 5)
2631
2632OID = 06 04 67 2A 08 1E
2633Comment = SET brand
2634Description = Diners (2 23 42 8 30)
2635
2636OID = 06 04 67 2A 08 22
2637Comment = SET brand
2638Description = AmericanExpress (2 23 42 8 34)
2639
2640OID = 06 05 67 2A 08 AE 7B
2641Comment = SET brand
2642Description = Novus (2 23 42 8 6011)
2643
2644OID = 06 03 67 2A 09
2645Comment = SET
2646Description = vendor (2 23 42 9)
2647
2648OID = 06 04 67 2A 09 00
2649Comment = SET vendor
2650Description = GlobeSet (2 23 42 9 0)
2651
2652OID = 06 04 67 2A 09 01
2653Comment = SET vendor
2654Description = IBM (2 23 42 9 1)
2655
2656OID = 06 04 67 2A 09 02
2657Comment = SET vendor
2658Description = CyberCash (2 23 42 9 2)
2659
2660OID = 06 04 67 2A 09 03
2661Comment = SET vendor
2662Description = Terisa (2 23 42 9 3)
2663
2664OID = 06 04 67 2A 09 04
2665Comment = SET vendor
2666Description = RSADSI (2 23 42 9 4)
2667
2668OID = 06 04 67 2A 09 05
2669Comment = SET vendor
2670Description = VeriFone (2 23 42 9 5)
2671
2672OID = 06 04 67 2A 09 06
2673Comment = SET vendor
2674Description = TrinTech (2 23 42 9 6)
2675
2676OID = 06 04 67 2A 09 07
2677Comment = SET vendor
2678Description = BankGate (2 23 42 9 7)
2679
2680OID = 06 04 67 2A 09 08
2681Comment = SET vendor
2682Description = GTE (2 23 42 9 8)
2683
2684OID = 06 04 67 2A 09 09
2685Comment = SET vendor
2686Description = CompuSource (2 23 42 9 9)
2687
2688OID = 06 04 67 2A 09 0A
2689Comment = SET vendor
2690Description = Griffin (2 23 42 9 10)
2691
2692OID = 06 04 67 2A 09 0B
2693Comment = SET vendor
2694Description = Certicom (2 23 42 9 11)
2695
2696OID = 06 04 67 2A 09 0C
2697Comment = SET vendor
2698Description = OSS (2 23 42 9 12)
2699
2700OID = 06 04 67 2A 09 0D
2701Comment = SET vendor
2702Description = TenthMountain (2 23 42 9 13)
2703
2704OID = 06 04 67 2A 09 0E
2705Comment = SET vendor
2706Description = Antares (2 23 42 9 14)
2707
2708OID = 06 04 67 2A 09 0F
2709Comment = SET vendor
2710Description = ECC (2 23 42 9 15)
2711
2712OID = 06 04 67 2A 09 10
2713Comment = SET vendor
2714Description = Maithean (2 23 42 9 16)
2715
2716OID = 06 04 67 2A 09 11
2717Comment = SET vendor
2718Description = Netscape (2 23 42 9 17)
2719
2720OID = 06 04 67 2A 09 12
2721Comment = SET vendor
2722Description = Verisign (2 23 42 9 18)
2723
2724OID = 06 04 67 2A 09 13
2725Comment = SET vendor
2726Description = BlueMoney (2 23 42 9 19)
2727
2728OID = 06 04 67 2A 09 14
2729Comment = SET vendor
2730Description = Lacerte (2 23 42 9 20)
2731
2732OID = 06 04 67 2A 09 15
2733Comment = SET vendor
2734Description = Fujitsu (2 23 42 9 21)
2735
2736OID = 06 04 67 2A 09 16
2737Comment = SET vendor
2738Description = eLab (2 23 42 9 22)
2739
2740OID = 06 04 67 2A 09 17
2741Comment = SET vendor
2742Description = Entrust (2 23 42 9 23)
2743
2744OID = 06 04 67 2A 09 18
2745Comment = SET vendor
2746Description = VIAnet (2 23 42 9 24)
2747
2748OID = 06 04 67 2A 09 19
2749Comment = SET vendor
2750Description = III (2 23 42 9 25)
2751
2752OID = 06 04 67 2A 09 1A
2753Comment = SET vendor
2754Description = OpenMarket (2 23 42 9 26)
2755
2756OID = 06 04 67 2A 09 1B
2757Comment = SET vendor
2758Description = Lexem (2 23 42 9 27)
2759
2760OID = 06 04 67 2A 09 1C
2761Comment = SET vendor
2762Description = Intertrader (2 23 42 9 28)
2763
2764OID = 06 04 67 2A 09 1D
2765Comment = SET vendor
2766Description = Persimmon (2 23 42 9 29)
2767
2768OID = 06 04 67 2A 09 1E
2769Comment = SET vendor
2770Description = NABLE (2 23 42 9 30)
2771
2772OID = 06 04 67 2A 09 1F
2773Comment = SET vendor
2774Description = espace-net (2 23 42 9 31)
2775
2776OID = 06 04 67 2A 09 20
2777Comment = SET vendor
2778Description = Hitachi (2 23 42 9 32)
2779
2780OID = 06 04 67 2A 09 21
2781Comment = SET vendor
2782Description = Microsoft (2 23 42 9 33)
2783
2784OID = 06 04 67 2A 09 22
2785Comment = SET vendor
2786Description = NEC (2 23 42 9 34)
2787
2788OID = 06 04 67 2A 09 23
2789Comment = SET vendor
2790Description = Mitsubishi (2 23 42 9 35)
2791
2792OID = 06 04 67 2A 09 24
2793Comment = SET vendor
2794Description = NCR (2 23 42 9 36)
2795
2796OID = 06 04 67 2A 09 25
2797Comment = SET vendor
2798Description = e-COMM (2 23 42 9 37)
2799
2800OID = 06 04 67 2A 09 26
2801Comment = SET vendor
2802Description = Gemplus (2 23 42 9 38)
2803
2804OID = 06 03 67 2A 0A
2805Comment = SET
2806Description = national (2 23 42 10)
2807
2808OID = 06 05 67 2A 0A 81 40
2809Comment = SET national
2810Description = Japan (2 23 42 10 192)
2811
2812# Draft SET.  These were invented for testing in pre-1.0 drafts, but have
2813# been used nonetheless by implementors
2814
2815OID = 06 04 86 8D 6F 02
2816Comment = SET.  Deprecated, use (2 23 42 7 0) instead
2817Description = hashedRootKey (2 54 1775 2)
2818Warning
2819
2820OID = 06 04 86 8D 6F 03
2821Comment = SET.  Deprecated, use (2 23 42 7 0) instead
2822Description = certificateType (2 54 1775 3)
2823Warning
2824
2825OID = 06 04 86 8D 6F 04
2826Comment = SET.  Deprecated, use (2 23 42 7 0) instead
2827Description = merchantData (2 54 1775 4)
2828Warning
2829
2830OID = 06 04 86 8D 6F 05
2831Comment = SET.  Deprecated, use (2 23 42 7 0) instead
2832Description = cardCertRequired (2 54 1775 5)
2833Warning
2834
2835OID = 06 04 86 8D 6F 06
2836Comment = SET.  Deprecated, use (2 23 42 7 0) instead
2837Description = tunneling (2 54 1775 6)
2838Warning
2839
2840OID = 06 04 86 8D 6F 07
2841Comment = SET.  Deprecated, use (2 23 42 7 0) instead
2842Description = setQualifier (2 54 1775 7)
2843Warning
2844
2845OID = 06 04 86 8D 6F 63
2846Comment = SET.  Deprecated, use (2 23 42 7 0) instead
2847Description = set-data (2 54 1775 99)
2848Warning
2849
2850# Apple
2851
2852OID = 06 06 2A 86 48 86 F7 63
2853Comment = Apple Computer, Inc.
2854Description = apple (1 2 840 113635)
2855
2856OID = 6 07 2A 86 48 86 F7 63 64
2857Comment = Apple Data Security
2858Description = appleDataSecurity (1 2 840 113635 100)
2859
2860OID = 06 08 2A 86 48 86 F7 63 64 01
2861Comment = Apple Trust Policy
2862Description = appleTrustPolicy (1 2 840 113635 100 1)
2863
2864OID = 06 08 2A 86 48 86 F7 63 64 02
2865Comment = Apple Security Algorithms
2866Description = appleSecurityAlgorithm (1 2 840 113635 100 2)
2867
2868OID = 06 09 2A 86 48 86 F7 63 64 01 01
2869Comment = Apple iSign
2870Description = iSignTP (1 2 840 113635 100 1 1)
2871
2872OID = 06 09 2A 86 48 86 F7 63 64 01 02
2873Comment = Apple X509 Basic
2874Description = AppleX509Basic (1 2 840 113635 100 1 2)
2875
2876OID = 06 09 2A 86 48 86 F7 63 64 02 01
2877Comment = Apple FEE
2878Description = fee (1 2 840 113635 100 2 1)
2879
2880OID = 06 09 2A 86 48 86 F7 63 64 02 02
2881Comment = Apple ASC
2882Description = asc (1 2 840 113635 100 2 2)
2883
2884OID = 06 09 2A 86 48 86 F7 63 64 02 03
2885Comment = Apple FEE/MD5 signature
2886Description = feeMD5 (1 2 840 113635 100 2 3)
2887
2888OID = 06 09 2A 86 48 86 F7 63 64 02 04
2889Comment = Apple FEE/SHA1 signature
2890Description = feeSHA1 (1 2 840 113635 100 2 4)
2891
2892OID = 06 09 2A 86 48 86 F7 63 64 02 05
2893Comment = Apple FEED encryption
2894Description = appleFeed (1 2 840 113635 100 2 5)
2895
2896OID = 06 09 2A 86 48 86 F7 63 64 02 06
2897Comment = Apple FEEDExp signature
2898Description = appleFeedExp (1 2 840 113635 100 2 6)
2899
2900OID = 06 09 2A 86 48 86 F7 63 64 02 07
2901Comment = Apple FEE/ECDSA signature
2902Description = feeECDSA (1 2 840 113635 100 2 7)
2903
2904
2905# Extended key usage 
2906OID = 06 04 55 1D 25 03
2907Comment = Code Signing
2908Description = id-kp-codeSigning (OID 2 5 29 37 3)
2909
2910# Intel's CDSA-specific SHA1withECDSA
2911OID = 06 0B 60 86 48 01 86 F8 4D 02 02 05 51
2912Comment = CDSA SHA1 with ECDSA
2913Description = sha1WithECDSA (OID 2 16 840 1 113741 2 2 5 81)
2914
2915# Microsoft Cert Authority Renewal Version
2916OID = 06 09 2B 06 01 04 01 82 37 15 01
2917Comment = Microsoft Cert Authority Renewal Version
2918Description = certSrv-ca-version (OID 1 3 6 1 4 1 311 21 1)
2919
2920# Fictitious US DOD CRL entry extension
2921OID = 06 09 60 86 48 01 65 02 01 0C 02 
2922Comment = Fictitious US DOD CRL entry extension
2923Description = id-test-extension (OID 2 16 840 1 101 2 1 12 2)
2924
2925# End of Fahnenstange
2926