As a follow up of my previous post on Microsoft OIDs I add a list of the most common OIDs found in http://www.rsa.com/products/bsafe/documentation/sslc251html/group__AD__COMMON__OIDS.html
I add them in a format ready for openssl
0 undef Undefined
0.9.2342.19200300.100.1.1 userID User Identifier
0.9.2342.19200300.100.1.25 domainComponent Domain Component
1.2.643.2.2.24 gostR3411WithGost GOST
1.2.840.10040.4.1 dsa DSA
1.2.840.10040.4.3 dsaWithSHA1 Digital Signature Algorithm (DSA) with Secure Hash Algorithm 1 (SHA1)
1.2.840.10045.2.1 ecc Elliptic Curve Cryptography (ECC)
1.2.840.10045.4.1 ECDSAwithSHA1 Elliptic Curve DSA with SHA1
1.2.840.113533.7.66.10 cast5_cbc CAST Cipher Block Chaining (CBC)
1.2.840.113533.7.66.12 pbeWithMD5AndCast5_CBC CAST MD5 CBC
1.2.840.113549 rsadsi RSA Data Security Inc.
1.2.840.113549.1 pkcs Public Key Cryptography Standards (PKCS)
1.2.840.113549.1.1.1 rsaEncryption RSA Encryption
1.2.840.113549.1.1.2 md2WithRSAEncryption MD2 with RSA encryption
1.2.840.113549.1.1.4 md5WithRSAEncryption MD5 with RSA encryption
1.2.840.113549.1.1.7 rsaes_oaep RSAES Optimal Asymmetric Encryption Padding (OAEP)
1.2.840.113549.1.1.8 id_mgf Mask generation function OAEP padding
1.2.840.113549.1.1.9 id_pspecified Parameters source function OAEP padding
1.2.840.113549.1.3 pkcs3 PKCS #3
1.2.840.113549.1.3.1 dhKeyAgreement Diffie-Hellman key agreement
1.2.840.113549.1.5.1 pbeWithMD2AndDES_CBC Password Based Encryption algorithm with MD2 and DES_CBC
1.2.840.113549.1.5.11 pbeWithSHA1AndRC2_CBC Password Based Encryption algorithm with SHA1 and RC2_CBC
1.2.840.113549.1.5.12 pbeWithSHA1AndRC4 Password Based Encryption algorithm with SHA1 and RC4
1.2.840.113549.1.5.3 pbeWithMD5AndDES_CBC Password Based Encryption algorithm with MD5 and DES_CBC
1.2.840.113549.1.7 pkcs7 PKCS #7
1.2.840.113549.1.7.1 pkcs7_data PKCS #7 data
1.2.840.113549.1.7.2 pkcs7_signed PKCS #7 signed data
1.2.840.113549.1.7.3 pkcs7_enveloped PKCS #7 enveloped data
1.2.840.113549.1.7.4 pkcs7_signedAndEnveloped PKCS #7 signed and enveloped data
1.2.840.113549.1.7.5 pkcs7_digest PKCS #7 digest data
1.2.840.113549.1.7.6 pkcs7_encrypted PKCS #7 encrypted data
1.2.840.113549.1.9 pkcs9 PKCS #9
1.2.840.113549.1.9.1 pkcs9_emailAddress PKCS #9 e-mail address
1.2.840.113549.1.9.2 pkcs9_unstructuredName PKCS #9 unstructured name
1.2.840.113549.1.9.3 pkcs9_contentType PKCS #9 content type
1.2.840.113549.1.9.4 pkcs9_messageDigest PKCS #9 message digest
1.2.840.113549.1.9.5 pkcs9_signingTime PKCS #9 signing time
1.2.840.113549.1.9.6 pkcs9_countersignature PKCS #9 counter signature
1.2.840.113549.1.9.7 pkcs9_challengePassword PKCS #9 challenge password
1.2.840.113549.1.9.8 pkcs9_unstructuredAddress PKCS #9 unstructured address
1.2.840.113549.1.9.9 pkcs9_extCertAttributes PKCS #9 extended certificate attributes
1.2.840.113549.2.2 md2 MD2
1.2.840.113549.2.5 md5 MD5
1.2.840.113549.3.11.1 rc6_ebc RC6 Electronic Code Book (ECB)
1.2.840.113549.3.11.2 rc6_cbc RC6 CBC
1.2.840.113549.3.11.3 rc6_ofb128 RC6 128-bit Output Feedback (OFB)
1.2.840.113549.3.11.4 rc6_cfb128 RC6 128-bit Cipher Feedback (CFB)
1.2.840.113549.3.2 rc2_cbc RC2 with CBC
1.2.840.113549.3.4 rc4 RC4
1.2.840.113549.3.7 des_ede3_cbc DES with EDE3 CBC
1.2.840.113549.3.9 rc5_cbc RC5 CBC
1.2.840.1135491.1.1.5 sha1WithRSAEncryption SHA1 with RSA encryption
1.3.132.0.1 sigECDSAec239a01 Koblitz Elliptic Curve over F2m
1.3.132.0.2 sigECDSAec163b01 Random Elliptic Curve over F2m
1.3.132.0.3 sigECDSAec163a01 Koblitz Elliptic Curve over F2m
1.3.14.3.2 algorithm ALGORITHM
1.3.14.3.2.12 dsa_2 DSA
1.3.14.3.2.13 dsaWithSHA DSA with SHA
1.3.14.3.2.15 shaWithRSAEncryption SHA with RSA encryption
1.3.14.3.2.17 des_ede DES EDE
1.3.14.3.2.18 sha SHA
1.3.14.3.2.26 sha1 SHA1
1.3.14.3.2.27 dsaWithSHA1_2 DSA with SHA1
1.3.14.3.2.29 sha1WithRSA SHA1 with RSA
1.3.14.3.2.3 md5WithRSA MD5 RSA
1.3.14.3.2.6 des_ecb DES ECB
1.3.14.3.2.7 des_cbc DES CBC
1.3.14.3.2.8 des_ofb64 DES with 64-bit OFB
1.3.14.3.2.9 des_cfb64 DES with 64-bit CFB
1.3.36.3.2.1 ripemd160 RIPMD-160
1.3.36.3.3.1.2 ripemd160WithRSA RSA signature with RIPMD-160
1.3.6.1.4.1.311.10.3.3 ms_sgc Microsoft Server Gated Cryptography
1.3.6.1.5.5.7.3 id_kp Key purpose identifier
1.3.6.1.5.5.7.3.1 serverAuth Server authentication key usage extension
1.3.6.1.5.5.7.3.2 clientAuth Client authentication key usage extension
1.3.6.1.5.5.7.3.3 codeSigning Code signing key usage extension
1.3.6.1.5.5.7.3.4 emailProtection E-mail protection key usage extension
1.3.6.1.5.5.7.3.5 ipsecEndSystem IPSec end system key usage extension
1.3.6.1.5.5.7.3.6 ipsecTunnel IPSec tunnel key usage extension
1.3.6.1.5.5.7.3.7 ipsecUser IPSec user key usage extension
1.3.6.1.5.5.7.3.8 timeStamping Time stamping key usage extension
1.3.6.1.5.5.7.3.9 ocspSigning Online Certificate Status Protocol (OCSP) signing key usage extension
2.16.840.1.101.3.4.1 nistAlgorithms1 NIST-certified algorithms
2.16.840.1.101.3.4.1.1 aes128_ecb AES 128-bit ECB
2.16.840.1.101.3.4.1.2 aes128_cbc AES 128-bit CBC
2.16.840.1.101.3.4.1.21 aes192_ecb AES 192-bit ECB
2.16.840.1.101.3.4.1.22 aes192_cbc AES 192-bit CBC
2.16.840.1.101.3.4.1.23 aes192_ofb AES 192-bit OFB
2.16.840.1.101.3.4.1.24 aes192_cfb AES 192-bit CFB
2.16.840.1.101.3.4.1.3 aes128_ofb AES 128-bit OFB
2.16.840.1.101.3.4.1.4 aes128_cfb AES 128-bit CFB
2.16.840.1.101.3.4.1.41 aes256_ecb AES 256-bit ECB
2.16.840.1.101.3.4.1.42 aes256_cbc AES 256-bit CBC
2.16.840.1.101.3.4.1.43 aes256_ofb AES 256-bit OFB
2.16.840.1.101.3.4.1.44 aes256_cfb AES 256-bit CFB
2.16.840.1.101.3.4.2.1 sha256 SHA256
2.16.840.1.101.3.4.2.2 sha384 SHA384
2.16.840.1.101.3.4.2.3 sha512 SHA512
2.16.840.1.113730 netscape Netscape
2.16.840.1.113730.1 netscape_cert_extension Netscape certificate extension
2.16.840.1.113730.1.1 netscape_cert_type Netscape certificate type
2.16.840.1.113730.1.12 netscape_ssl_server_name Netscape SSL server name
2.16.840.1.113730.1.13 netscape_comment Netscape comment
2.16.840.1.113730.1.2 netscape_base_url Netscape base URL
2.16.840.1.113730.1.3 netscape_revocation_url Netscape revocation URL
2.16.840.1.113730.1.4 netscape_ca_revocation_url Netscape Certification Authority (CA) revocation URL
2.16.840.1.113730.1.7 netscape_renewal_url Netscape renewal URL
2.16.840.1.113730.1.8 netscape_ca_policy_url Netscape CA policy URL
2.16.840.1.113730.2 netscape_data_type Netscape data type
2.16.840.1.113730.2.5 netscape_cert_sequence Netscape certificate sequence
2.16.840.1.113730.4.1 ns_sgc Netscape Server Gated Cryptography
2.5 X500 X.500
2.5.29 id_ce Certificate extension identifier
2.5.29.14 subject_key_identifier X.509 version 3 subject key identifier
2.5.29.15 key_usage X.509 version 3 key usage identifier
2.5.29.16 private_key_usage_period X.509 version 3 private key usage period
2.5.29.17 subject_alt_name X.509 version 3 subject alternative name
2.5.29.18 issuer_alt_name X.509 version 3 issuer alternative name
2.5.29.19 basic_constraints X.509 version 3 basic constraints
2.5.29.20 crl_number X.509 version 3 Certificate Revocation List (CRL) number
2.5.29.21 reasonCode X.509 version 3 CRL reason code
2.5.29.23 instruction_code X.509 version 3 CRL instruction code
2.5.29.24 invalidity_date X.509 version 3 CRL invalidity date
2.5.29.27 delta_crl_indicator X.509 version 3 CRL delta CRL indicator
2.5.29.28 issuing_distribution_point X.509 version 3 CRL issuing distribution point
2.5.29.30 name_constraints X.509 version 3 CRL name constraints
2.5.29.30 name_constraints X.509 version 3 CRL name constraints
2.5.29.31 crl_distribution_points X.509 version 3 CRL distribution points
2.5.29.32 certificate_policies X.509 version 3 certificate policies
2.5.29.35 authority_key_identifier X.509 version 3 Authority Key Identifier
2.5.29.37 ext_key_usage X.509 version 3 extended key usage
2.5.4 X509 X.509
2.5.4.10 organizationName Organization name
2.5.4.11 organizationalUnitName Organizational unit name
2.5.4.12 title Title
2.5.4.13 description Description
2.5.4.3 commonName Common name
2.5.4.4 surname Surname
2.5.4.42 givenName Given name
2.5.4.43 initials Initials
2.5.4.44 generationQualifier Generation qualifier
2.5.4.45 uniqueIdentifier Unique identifier
2.5.4.46 dnQualifier Distinguished Name (DN) qualifier
2.5.4.5 serialNumber Serial number
2.5.4.6 countryName Country name
2.5.4.7 localityName Locality name
2.5.4.8 stateOrProvinceName State or province name
2.5.4.9 street Street
2.5.8.1.1 rsa RSA
Let's Kerberos
7 months ago
No comments:
Post a Comment