2 iso 2 : member-body : ISO Member Body
3 member-body 840 : ISO-US : ISO US Member Body
4 ISO-US 10040 : X9-57 : X9.57
5 X9-57 4 : X9cm : X9.57 CM ?
8 X9cm 1 : DSA : dsaEncryption
9 X9cm 3 : DSA-SHA1 : dsaWithSHA1
11 ISO-US 113533 7 66 10 : CAST5-CBC : cast5-cbc
12 : CAST5-ECB : cast5-ecb
14 : CAST5-CFB : cast5-cfb
16 : CAST5-OFB : cast5-ofb
17 !Cname pbeWithMD5AndCast5-CBC
18 ISO-US 113533 7 66 12 : : pbeWithMD5AndCast5CBC
20 ISO-US 113549 : rsadsi : RSA Data Security, Inc.
22 rsadsi 1 : pkcs : RSA Data Security, Inc. PKCS
25 pkcs1 1 : : rsaEncryption
26 pkcs1 2 : RSA-MD2 : md2WithRSAEncryption
27 pkcs1 4 : RSA-MD5 : md5WithRSAEncryption
28 pkcs1 5 : RSA-SHA1 : sha1WithRSAEncryption
31 pkcs3 1 : : dhKeyAgreement
34 pkcs5 1 : PBE-MD2-DES : pbeWithMD2AndDES-CBC
35 pkcs5 3 : PBE-MD5-DES : pbeWithMD5AndDES-CBC
36 pkcs5 4 : PBE-MD2-RC2-64 : pbeWithMD2AndRC2-CBC
37 pkcs5 6 : PBE-MD5-RC2-64 : pbeWithMD5AndRC2-CBC
38 pkcs5 10 : PBE-SHA1-DES : pbeWithSHA1AndDES-CBC
39 pkcs5 11 : PBE-SHA1-RC2-64 : pbeWithSHA1AndRC2-CBC
48 pkcs7 1 : : pkcs7-data
50 pkcs7 2 : : pkcs7-signedData
51 !Cname pkcs7-enveloped
52 pkcs7 3 : : pkcs7-envelopedData
53 !Cname pkcs7-signedAndEnveloped
54 pkcs7 4 : : pkcs7-signedAndEnvelopedData
56 pkcs7 5 : : pkcs7-digestData
57 !Cname pkcs7-encrypted
58 pkcs7 6 : : pkcs7-encryptedData
62 pkcs9 1 : Email : emailAddress
63 pkcs9 2 : : unstructuredName
64 pkcs9 3 : : contentType
65 pkcs9 4 : : messageDigest
66 pkcs9 5 : : signingTime
67 pkcs9 6 : : countersignature
68 pkcs9 7 : : challengePassword
69 pkcs9 8 : : unstructuredAddress
70 !Cname extCertAttributes
71 pkcs9 9 : : extendedCertificateAttributes
75 pkcs9 14 : extReq : Extension Request
77 !Cname SMIMECapabilities
78 pkcs9 15 : SMIME-CAPS : S/MIME Capabilities
82 pkcs9 16 : SMIME : S/MIME
83 SMIME 0 : id-smime-mod
86 SMIME 3 : id-smime-alg
88 SMIME 5 : id-smime-spq
89 SMIME 6 : id-smime-cti
92 id-smime-mod 1 : id-smime-mod-cms
93 id-smime-mod 2 : id-smime-mod-ess
94 id-smime-mod 3 : id-smime-mod-oid
95 id-smime-mod 4 : id-smime-mod-msg-v3
96 id-smime-mod 5 : id-smime-mod-ets-eSignature-88
97 id-smime-mod 6 : id-smime-mod-ets-eSignature-97
98 id-smime-mod 7 : id-smime-mod-ets-eSigPolicy-88
99 id-smime-mod 8 : id-smime-mod-ets-eSigPolicy-97
101 # S/MIME Content Types
102 id-smime-ct 1 : id-smime-ct-receipt
103 id-smime-ct 2 : id-smime-ct-authData
104 id-smime-ct 3 : id-smime-ct-publishCert
105 id-smime-ct 4 : id-smime-ct-TSTInfo
106 id-smime-ct 5 : id-smime-ct-TDTInfo
107 id-smime-ct 6 : id-smime-ct-contentInfo
108 id-smime-ct 7 : id-smime-ct-DVCSRequestData
109 id-smime-ct 8 : id-smime-ct-DVCSResponseData
112 id-smime-aa 1 : id-smime-aa-receiptRequest
113 id-smime-aa 2 : id-smime-aa-securityLabel
114 id-smime-aa 3 : id-smime-aa-mlExpandHistory
115 id-smime-aa 4 : id-smime-aa-contentHint
116 id-smime-aa 5 : id-smime-aa-msgSigDigest
118 id-smime-aa 6 : id-smime-aa-encapContentType
119 id-smime-aa 7 : id-smime-aa-contentIdentifier
121 id-smime-aa 8 : id-smime-aa-macValue
122 id-smime-aa 9 : id-smime-aa-equivalentLabels
123 id-smime-aa 10 : id-smime-aa-contentReference
124 id-smime-aa 11 : id-smime-aa-encrypKeyPref
125 id-smime-aa 12 : id-smime-aa-signingCertificate
126 id-smime-aa 13 : id-smime-aa-smimeEncryptCerts
127 id-smime-aa 14 : id-smime-aa-timeStampToken
128 id-smime-aa 15 : id-smime-aa-ets-sigPolicyId
129 id-smime-aa 16 : id-smime-aa-ets-commitmentType
130 id-smime-aa 17 : id-smime-aa-ets-signerLocation
131 id-smime-aa 18 : id-smime-aa-ets-signerAttr
132 id-smime-aa 19 : id-smime-aa-ets-otherSigCert
133 id-smime-aa 20 : id-smime-aa-ets-contentTimestamp
134 id-smime-aa 21 : id-smime-aa-ets-CertificateRefs
135 id-smime-aa 22 : id-smime-aa-ets-RevocationRefs
136 id-smime-aa 23 : id-smime-aa-ets-certValues
137 id-smime-aa 24 : id-smime-aa-ets-revocationValues
138 id-smime-aa 25 : id-smime-aa-ets-escTimeStamp
139 id-smime-aa 26 : id-smime-aa-ets-certCRLTimestamp
140 id-smime-aa 27 : id-smime-aa-ets-archiveTimeStamp
141 id-smime-aa 28 : id-smime-aa-signatureType
142 id-smime-aa 29 : id-smime-aa-dvcs-dvc
144 # S/MIME Algorithm Identifiers
146 id-smime-alg 1 : id-smime-alg-ESDHwith3DES
148 id-smime-alg 2 : id-smime-alg-ESDHwithRC2
150 id-smime-alg 3 : id-smime-alg-3DESwrap
152 id-smime-alg 4 : id-smime-alg-RC2wrap
153 id-smime-alg 5 : id-smime-alg-ESDH
154 id-smime-alg 6 : id-smime-alg-CMS3DESwrap
155 id-smime-alg 7 : id-smime-alg-CMSRC2wrap
157 # S/MIME Certificate Distribution
158 id-smime-cd 1 : id-smime-cd-ldap
160 # S/MIME Signature Policy Qualifier
161 id-smime-spq 1 : id-smime-spq-ets-sqt-uri
162 id-smime-spq 2 : id-smime-spq-ets-sqt-unotice
164 # S/MIME Commitment Type Identifier
165 id-smime-cti 1 : id-smime-cti-ets-proofOfOrigin
166 id-smime-cti 2 : id-smime-cti-ets-proofOfReceipt
167 id-smime-cti 3 : id-smime-cti-ets-proofOfDelivery
168 id-smime-cti 4 : id-smime-cti-ets-proofOfSender
169 id-smime-cti 5 : id-smime-cti-ets-proofOfApproval
170 id-smime-cti 6 : id-smime-cti-ets-proofOfCreation
172 pkcs9 20 : : friendlyName
173 pkcs9 21 : : localKeyID
174 !Alias certTypes pkcs9 22
175 certTypes 1 : : x509Certificate
176 certTypes 2 : : sdsiCertificate
177 !Alias crlTypes pkcs9 23
178 crlTypes 1 : : x509Crl
180 !Alias pkcs12 pkcs 12
181 !Alias pkcs12-pbeids pkcs12 1
183 !Cname pbe-WithSHA1And128BitRC4
184 pkcs12-pbeids 1 : PBE-SHA1-RC4-128 : pbeWithSHA1And128BitRC4
185 !Cname pbe-WithSHA1And40BitRC4
186 pkcs12-pbeids 2 : PBE-SHA1-RC4-40 : pbeWithSHA1And40BitRC4
187 !Cname pbe-WithSHA1And3_Key_TripleDES-CBC
188 pkcs12-pbeids 3 : PBE-SHA1-3DES : pbeWithSHA1And3-KeyTripleDES-CBC
189 !Cname pbe-WithSHA1And2_Key_TripleDES-CBC
190 pkcs12-pbeids 4 : PBE-SHA1-2DES : pbeWithSHA1And2-KeyTripleDES-CBC
191 !Cname pbe-WithSHA1And128BitRC2-CBC
192 pkcs12-pbeids 5 : PBE-SHA1-RC2-128 : pbeWithSHA1And128BitRC2-CBC
193 !Cname pbe-WithSHA1And40BitRC2-CBC
194 pkcs12-pbeids 6 : PBE-SHA1-RC2-40 : pbeWithSHA1And40BitRC2-CBC
196 !Alias pkcs12-Version1 pkcs12 10
197 !Alias pkcs12-BagIds pkcs12-Version1 1
198 pkcs12-BagIds 1 : : keyBag
199 pkcs12-BagIds 2 : : pkcs8ShroudedKeyBag
200 pkcs12-BagIds 3 : : certBag
201 pkcs12-BagIds 4 : : crlBag
202 pkcs12-BagIds 5 : : secretBag
203 pkcs12-BagIds 6 : : safeContentsBag
205 rsadsi 2 2 : MD2 : md2
206 rsadsi 2 4 : MD4 : md4
207 rsadsi 2 5 : MD5 : md5
208 : MD5-SHA1 : md5-sha1
209 rsadsi 2 7 : : hmacWithSHA1
210 rsadsi 3 2 : RC2-CBC : rc2-cbc
216 : RC2-40-CBC : rc2-40-cbc
217 : RC2-64-CBC : rc2-64-cbc
218 rsadsi 3 4 : RC4 : rc4
220 rsadsi 3 7 : DES-EDE3-CBC : des-ede3-cbc
221 rsadsi 3 8 : RC5-CBC : rc5-cbc
229 1 3 6 1 4 1 311 2 1 14 : msExtReq : Microsoft Extension Request
231 1 3 6 1 4 1 311 2 1 21 : msCodeInd : Microsoft Individual Code Signing
233 1 3 6 1 4 1 311 2 1 22 : msCodeCom : Microsoft Commercial Code Signing
235 1 3 6 1 4 1 311 10 3 1 : msCTLSign : Microsoft Trust List Signing
237 1 3 6 1 4 1 311 10 3 3 : msSGC : Microsoft Server Gated Crypto
239 1 3 6 1 4 1 311 10 3 4 : msEFS : Microsoft Encrypted File System
241 1 3 6 1 4 1 188 7 1 1 2 : IDEA-CBC : idea-cbc
242 : IDEA-ECB : idea-ecb
244 : IDEA-CFB : idea-cfb
246 : IDEA-OFB : idea-ofb
248 1 3 6 1 4 1 3029 1 2 : BF-CBC : bf-cbc
259 id-pkix 0 : id-pkix-mod
275 id-pkix-mod 1 : id-pkix1-explicit-88
276 id-pkix-mod 2 : id-pkix1-implicit-88
277 id-pkix-mod 3 : id-pkix1-explicit-93
278 id-pkix-mod 4 : id-pkix1-implicit-93
279 id-pkix-mod 5 : id-mod-crmf
280 id-pkix-mod 6 : id-mod-cmc
281 id-pkix-mod 7 : id-mod-kea-profile-88
282 id-pkix-mod 8 : id-mod-kea-profile-93
283 id-pkix-mod 9 : id-mod-cmp
284 id-pkix-mod 10 : id-mod-qualified-cert-88
285 id-pkix-mod 11 : id-mod-qualified-cert-93
286 id-pkix-mod 12 : id-mod-attribute-cert
287 id-pkix-mod 13 : id-mod-timestamp-protocol
288 id-pkix-mod 14 : id-mod-ocsp
289 id-pkix-mod 15 : id-mod-dvcs
290 id-pkix-mod 16 : id-mod-cmp2000
292 # PKIX Private Extensions
294 id-pe 1 : authorityInfoAccess : Authority Information Access
295 id-pe 2 : biometricInfo : Biometric Info
296 id-pe 3 : qcStatements
297 id-pe 4 : ac-auditEntity
298 id-pe 5 : ac-targeting
300 id-pe 7 : sbqp-ipAddrBlock
301 id-pe 8 : sbqp-autonomousSysNum
302 id-pe 9 : sbqp-routerIdentifier
304 # PKIX policyQualifiers for Internet policy qualifiers
305 id-qt 1 : id-qt-cps : Policy Qualifier CPS
306 id-qt 2 : id-qt-unotice : Policy Qualifier User Notice
309 # PKIX key purpose identifiers
311 id-kp 1 : serverAuth : TLS Web Server Authentication
313 id-kp 2 : clientAuth : TLS Web Client Authentication
315 id-kp 3 : codeSigning : Code Signing
317 id-kp 4 : emailProtection : E-mail Protection
318 id-kp 5 : ipsecEndSystem : IPSec End System
319 id-kp 6 : ipsecTunnel : IPSec Tunnel
320 id-kp 7 : ipsecUser : IPSec User
322 id-kp 8 : timeStamping : Time Stamping
323 # From OCSP spec RFC2560
325 id-kp 9 : OCSPSigning : OCSP Signing
326 id-kp 10 : DVCS : dvcs
328 # CMP information types
329 id-it 1 : id-it-caProtEncCert
330 id-it 2 : id-it-signKeyPairTypes
331 id-it 3 : id-it-encKeyPairTypes
332 id-it 4 : id-it-preferredSymmAlg
333 id-it 5 : id-it-caKeyUpdateInfo
334 id-it 6 : id-it-currentCRL
335 id-it 7 : id-it-unsupportedOIDs
337 id-it 8 : id-it-subscriptionRequest
339 id-it 9 : id-it-subscriptionResponse
340 id-it 10 : id-it-keyPairParamReq
341 id-it 11 : id-it-keyPairParamRep
342 id-it 12 : id-it-revPassphrase
343 id-it 13 : id-it-implicitConfirm
344 id-it 14 : id-it-confirmWaitTime
345 id-it 15 : id-it-origPKIMessage
348 id-pkip 1 : id-regCtrl
349 id-pkip 2 : id-regInfo
351 # CRMF registration controls
352 id-regCtrl 1 : id-regCtrl-regToken
353 id-regCtrl 2 : id-regCtrl-authenticator
354 id-regCtrl 3 : id-regCtrl-pkiPublicationInfo
355 id-regCtrl 4 : id-regCtrl-pkiArchiveOptions
356 id-regCtrl 5 : id-regCtrl-oldCertID
357 id-regCtrl 6 : id-regCtrl-protocolEncrKey
359 # CRMF registration information
360 id-regInfo 1 : id-regInfo-utf8Pairs
361 id-regInfo 2 : id-regInfo-certReq
364 id-alg 1 : id-alg-des40
365 id-alg 2 : id-alg-noSignature
366 id-alg 3 : id-alg-dh-sig-hmac-sha1
367 id-alg 4 : id-alg-dh-pop
370 id-cmc 1 : id-cmc-statusInfo
371 id-cmc 2 : id-cmc-identification
372 id-cmc 3 : id-cmc-identityProof
373 id-cmc 4 : id-cmc-dataReturn
374 id-cmc 5 : id-cmc-transactionId
375 id-cmc 6 : id-cmc-senderNonce
376 id-cmc 7 : id-cmc-recipientNonce
377 id-cmc 8 : id-cmc-addExtensions
378 id-cmc 9 : id-cmc-encryptedPOP
379 id-cmc 10 : id-cmc-decryptedPOP
380 id-cmc 11 : id-cmc-lraPOPWitness
381 id-cmc 15 : id-cmc-getCert
382 id-cmc 16 : id-cmc-getCRL
383 id-cmc 17 : id-cmc-revokeRequest
384 id-cmc 18 : id-cmc-regInfo
385 id-cmc 19 : id-cmc-responseInfo
386 id-cmc 21 : id-cmc-queryPending
387 id-cmc 22 : id-cmc-popLinkRandom
388 id-cmc 23 : id-cmc-popLinkWitness
389 id-cmc 24 : id-cmc-confirmCertAcceptance
392 id-on 1 : id-on-personalData
394 # personal data attributes
395 id-pda 1 : id-pda-dateOfBirth
396 id-pda 2 : id-pda-placeOfBirth
397 id-pda 3 : id-pda-pseudonym
398 id-pda 4 : id-pda-gender
399 id-pda 5 : id-pda-countryOfCitizenship
400 id-pda 6 : id-pda-countryOfResidence
402 # attribute certificate attributes
403 id-aca 1 : id-aca-authenticationInfo
404 id-aca 2 : id-aca-accessIdentity
405 id-aca 3 : id-aca-chargingIdentity
406 id-aca 4 : id-aca-group
407 id-aca 5 : id-aca-role
409 # qualified certificate statements
410 id-qcs 1 : id-qcs-pkixQCSyntax-v1
413 id-cct 1 : id-cct-crs
414 id-cct 2 : id-cct-PKIData
415 id-cct 3 : id-cct-PKIResponse
417 # access descriptors for authority info access extension
419 id-ad 1 : OCSP : OCSP
421 id-ad 2 : caIssuers : CA Issuers
422 !Cname ad-timeStamping
423 id-ad 3 : ad_timestamping : AD Time Stamping
425 id-ad 4 : AD_DVCS : ad dvcs
428 !Alias id-pkix-OCSP ad-OCSP
431 id-pkix-OCSP 1 : basicOCSPResponse : Basic OCSP Response
432 id-pkix-OCSP 2 : Nonce : OCSP Nonce
433 id-pkix-OCSP 3 : CrlID : OCSP CRL ID
434 id-pkix-OCSP 4 : acceptableResponses : Acceptable OCSP Responses
435 id-pkix-OCSP 5 : noCheck
436 id-pkix-OCSP 6 : archiveCutoff : OCSP Archive Cutoff
437 id-pkix-OCSP 7 : serviceLocator : OCSP Service Locator
438 id-pkix-OCSP 8 : extendedStatus : Extended OCSP Status
439 id-pkix-OCSP 9 : valid
440 id-pkix-OCSP 10 : path
441 id-pkix-OCSP 11 : trustRoot : Trust Root
444 1 3 14 3 2 : algorithm : algorithm
445 algorithm 3 : RSA-NP-MD5 : md5WithRSA
446 algorithm 6 : DES-ECB : des-ecb
447 algorithm 7 : DES-CBC : des-cbc
449 algorithm 8 : DES-OFB : des-ofb
451 algorithm 9 : DES-CFB : des-cfb
452 algorithm 11 : rsaSignature
454 algorithm 12 : DSA-old : dsaEncryption-old
455 algorithm 13 : DSA-SHA : dsaWithSHA
456 algorithm 15 : RSA-SHA : shaWithRSAEncryption
457 algorithm 17 : DES-EDE : des-ede
458 : DES-EDE3 : des-ede3
459 : DES-EDE-CBC : des-ede-cbc
461 : DES-EDE-CFB : des-ede-cfb
462 !Cname des-ede3-cfb64
463 : DES-EDE3-CFB : des-ede3-cfb
465 : DES-EDE-OFB : des-ede-ofb
466 !Cname des-ede3-ofb64
467 : DES-EDE3-OFB : des-ede3-ofb
468 : DESX-CBC : desx-cbc
469 algorithm 18 : SHA : sha
470 algorithm 26 : SHA1 : sha1
472 algorithm 27 : DSA-SHA1-old : dsaWithSHA1-old
473 algorithm 29 : RSA-SHA1-2 : sha1WithRSA
475 1 3 36 3 2 1 : RIPEMD160 : ripemd160
476 1 3 36 3 3 1 2 : RSA-RIPEMD160 : ripemd160WithRSA
479 1 3 101 1 4 1 : SXNetID : Strong Extranet ID
481 2 5 : X500 : directory services (X.500)
484 X509 3 : CN : commonName
486 X509 5 : SN : serialNumber
487 X509 6 : C : countryName
488 X509 7 : L : localityName
489 X509 8 : ST : stateOrProvinceName
490 X509 10 : O : organizationName
491 X509 11 : OU : organizationalUnitName
493 X509 13 : D : description
494 X509 41 : name : name
495 X509 42 : G : givenName
496 X509 43 : I : initials
497 X509 45 : UID : uniqueIdentifier
498 X509 46 : dnQualifier : dnQualifier
500 X500 8 : X500algorithms : directory services - algorithms
501 X500algorithms 1 1 : RSA : rsa
502 X500algorithms 3 100 : RSA-MDC2 : mdc2WithRSA
503 X500algorithms 3 101 : MDC2 : mdc2
506 !Cname subject-key-identifier
507 id-ce 14 : subjectKeyIdentifier : X509v3 Subject Key Identifier
509 id-ce 15 : keyUsage : X509v3 Key Usage
510 !Cname private-key-usage-period
511 id-ce 16 : privateKeyUsagePeriod : X509v3 Private Key Usage Period
512 !Cname subject-alt-name
513 id-ce 17 : subjectAltName : X509v3 Subject Alternative Name
514 !Cname issuer-alt-name
515 id-ce 18 : issuerAltName : X509v3 Issuer Alternative Name
516 !Cname basic-constraints
517 id-ce 19 : basicConstraints : X509v3 Basic Constraints
519 id-ce 20 : crlNumber : X509v3 CRL Number
521 id-ce 21 : CRLReason : X509v3 CRL Reason Code
522 !Cname invalidity-date
523 id-ce 24 : invalidityDate : Invalidity Date
525 id-ce 27 : deltaCRL : X509v3 Delta CRL Indicator
526 !Cname crl-distribution-points
527 id-ce 31 : crlDistributionPoints : X509v3 CRL Distribution Points
528 !Cname certificate-policies
529 id-ce 32 : certificatePolicies : X509v3 Certificate Policies
530 !Cname authority-key-identifier
531 id-ce 35 : authorityKeyIdentifier : X509v3 Authority Key Identifier
533 id-ce 37 : extendedKeyUsage : X509v3 Extended Key Usage
536 2 16 840 1 113730 : Netscape : Netscape Communications Corp.
537 !Cname netscape-cert-extension
538 netscape 1 : nsCertExt : Netscape Certificate Extension
539 !Cname netscape-data-type
540 netscape 2 : nsDataType : Netscape Data Type
541 !Cname netscape-cert-type
542 netscape-cert-extension 1 : nsCertType : Netscape Cert Type
543 !Cname netscape-base-url
544 netscape-cert-extension 2 : nsBaseUrl : Netscape Base Url
545 !Cname netscape-revocation-url
546 netscape-cert-extension 3 : nsRevocationUrl : Netscape Revocation Url
547 !Cname netscape-ca-revocation-url
548 netscape-cert-extension 4 : nsCaRevocationUrl : Netscape CA Revocation Url
549 !Cname netscape-renewal-url
550 netscape-cert-extension 7 : nsRenewalUrl : Netscape Renewal Url
551 !Cname netscape-ca-policy-url
552 netscape-cert-extension 8 : nsCaPolicyUrl : Netscape CA Policy Url
553 !Cname netscape-ssl-server-name
554 netscape-cert-extension 12 : nsSslServerName : Netscape SSL Server Name
555 !Cname netscape-comment
556 netscape-cert-extension 13 : nsComment : Netscape Comment
557 !Cname netscape-cert-sequence
558 netscape-data-type 5 : nsCertSequence : Netscape Certificate Sequence
560 netscape 4 1 : nsSGC : Netscape Server Gated Crypto
562 # What the hell are these OIDs, really?
563 !Cname rle-compression
564 1 1 1 1 666 1 : RLE : run length compression
565 !Cname zlib-compression
566 1 1 1 1 666 2 : ZLIB : zlib compression