Security-57740.31.2.tar.gz

[apple/security.git] / SecurityTests / clxutils / dumpasn1.cfg

# dumpasn1 Object Identifier configuration file, available from
# http://www.cs.auckland.ac.nz/~pgut001/dumpasn1.cfg.  This is read by
# dumpasn1.c and is used to display information on Object Identifiers found in
# ASN.1 objects. This is merely a list of things which you might conceivably
# find in use somewhere, and should in no way be taken as a guide to which OIDs
# to use - many of these will never been seen in the wild, or should be shot on
# sight if encountered.
#
# The format of this file is as follows:
#
# - All blank lines and lines beginning with a '#' are ignored.
# - OIDs are described by a set of attributes, of which at least the 'OID' and
#   'Description' must be present.  Optional attributes are a 'Comment' and a
#   'Warning' (to indicate that dumpasn1 will display a warning if this OID is
#   encountered).
# - Attributes are listed one per line.  The first attribute should be an 'OID'
#   attribute since this is used to denote the start of a new OID description.
#   The other attributes may be given in any order.
#
# See the rest of this file for examples of what an OID description should look
# like.

# Some unknown X.500 attributes spec from the UK

OID = 06 09 09 92 26 89 93 F2 2C 01 03
Comment = Some oddball X.500 attribute collection
Description = rfc822Mailbox (0 9 2342 19200300 1 3)

# RFC 2247, How to Kludge an FQDN as a DN (or words to that effect)

OID = 06 0A 09 92 26 89 93 F2 2C 64 01 01
Comment = Men are from Mars, this OID is from Pluto
Description = domainComponent (0 9 2342 19200300 100 1 25)

# Certificates Australia

OID = 06 0A 2A 24 A4 97 A3 53 01 64 01 01
Comment = Certificates Australia CA
Description = Certificates Australia policyIdentifier (1 2 36 75878867 1 100 1 1)

# Signet

OID = 06 09 2A 24 A0 F2 A0 7D 01 01 02
Comment = Signet CA
Description = Signet personal (1 2 36 68980861 1 1 2)

OID = 06 09 2A 24 A0 F2 A0 7D 01 01 03
Comment = Signet CA
Description = Signet business (1 2 36 68980861 1 1 3)

OID = 06 09 2A 24 A0 F2 A0 7D 01 01 04
Comment = Signet CA
Description = Signet legal (1 2 36 68980861 1 1 4)

OID = 06 09 2A 24 A0 F2 A0 7D 01 01 0A
Comment = Signet CA
Description = Signet pilot (1 2 36 68980861 1 1 10)

OID = 06 09 2A 24 A0 F2 A0 7D 01 01 0B
Comment = Signet CA
Description = Signet intraNet (1 2 36 68980861 1 1 11)

OID = 06 09 2A 24 A0 F2 A0 7D 01 01 14
Comment = Signet CA
Description = Signet securityPolicy (1 2 36 68980861 1 1 20)

# Mitsubishi

OID = 06 0B 2A 83 08 8C 1A 4B 3D 01 01 01
Comment = Mitsubishi security algorithm
Description = symmetric-encryption-algorithm (1 2 392 200011 61 1 1 1)

OID = 06 0C 2A 83 08 8C 9A 4B 3D 01 01 01 01
Comment = Mitsubishi security algorithm
Description = misty1-cbc (1 2 392 200011 61 1 1 1 1)

# SEIS

OID = 06 05 2A 85 70 22 01
Comment = SEIS Project
Description = seis-cp (1 2 752 34 1)

OID = 06 06 2A 85 70 22 01 01
Comment = SEIS Project certificate policies
Description = SEIS high-assurnace certificatePolicy (1 2 752 34 1 1)

OID = 06 06 2A 85 70 22 01 02
Comment = SEIS Project certificate policies
Description = SEIS GAK certificatePolicy (1 2 752 34 1 2)

OID = 06 05 2A 85 70 22 02
Comment = SEIS Project
Description = SEIS pe (1 2 752 34 2)

OID = 06 05 2A 85 70 22 03
Comment = SEIS Project
Description = SEIS at (1 2 752 34 3)

OID = 06 06 2A 85 70 22 03 01
Comment = SEIS Project attribute
Description = SEIS at-personalIdentifier (1 2 752 34 3 1)

# ANSI X9.57

OID = 06 06 2A 86 48 CE 38 01
Comment = ANSI X9.57
Description = module (1 2 840 10040 1)

OID = 06 07 2A 86 48 CE 38 01 01
Comment = ANSI X9.57 module
Description = x9f1-cert-mgmt (1 2 840 10040 1 1)

OID = 06 06 2A 86 48 CE 38 02
Comment = ANSI X9.57
Description = holdinstruction (1 2 840 10040 2)

OID = 06 07 2A 86 48 CE 38 02 01
Comment = ANSI X9.57 hold instruction
Description = holdinstruction-none (1 2 840 10040 2 1)

OID = 06 07 2A 86 48 CE 38 02 02
Comment = ANSI X9.57 hold instruction
Description = callissuer (1 2 840 10040 2 2)

OID = 06 07 2A 86 48 CE 38 02 03
Comment = ANSI X9.57 hold instruction
Description = reject (1 2 840 10040 2 3)

OID = 06 07 2A 86 48 CE 38 02 04
Comment = ANSI X9.57 hold instruction
Description = pickupToken (1 2 840 10040 2 4)

OID = 06 06 2A 86 48 CE 38 03
Comment = ANSI X9.57
Description = attribute (1 2 840 10040 3)

OID = 06 06 2A 86 48 CE 38 03 01
Comment = ANSI X9.57 attribute
Description = countersignature (1 2 840 10040 3 1)

OID = 06 06 2A 86 48 CE 38 03 02
Comment = ANSI X9.57 attribute
Description = attribute-cert (1 2 840 10040 3 2)

OID = 06 06 2A 86 48 CE 38 04
Comment = ANSI X9.57
Description = algorithm (1 2 840 10040 4)

# this is specified in sm_cms
OID = 06 07 2A 86 48 CE 38 04 01
Comment = ANSI X9.57 algorithm
Description = dsa (1 2 840 10040 4 1)

OID = 06 07 2A 86 48 CE 38 04 02
Comment = ANSI X9.57 algorithm
Description = dsa-match (1 2 840 10040 4 2)

OID = 06 07 2A 86 48 CE 38 04 03
Comment = ANSI X9.57 algorithm
Description = dsaWithSha1 (1 2 840 10040 4 3)

# ANSI X9.62

OID = 06 06 2A 86 48 CE 3D 01
Comment = ANSI X9.62.  This OID may also be assigned as ecdsa-with-SHA1
Description = fieldType (1 2 840 10045 1)

OID = 06 07 2A 86 48 CE 3D 01 01
Comment = ANSI X9.62 field type
Description = prime-field (1 2 840 10045 1 1)

OID = 06 07 2A 86 48 CE 3D 01 02
Comment = ANSI X9.62 field type
Description = characteristic-two-field (1 2 840 10045 1 2)

OID = 06 09 2A 86 48 CE 3D 01 02 03
Comment = ANSI X9.62 field type
Description = characteristic-two-basis (1 2 840 10045 1 2 3)

OID = 06 0A 2A 86 48 CE 3D 01 02 03 01
Comment = ANSI X9.62 field basis
Description = qnBasis (1 2 840 10045 1 2 3 1)

OID = 06 0A 2A 86 48 CE 3D 01 02 03 02
Comment = ANSI X9.62 field basis
Description = tpBasis (1 2 840 10045 1 2 3 2)

OID = 06 0A 2A 86 48 CE 3D 01 02 03 03
Comment = ANSI X9.62 field basis
Description = ppBasis (1 2 840 10045 1 2 3 3)

OID = 06 07 2A 86 48 CE 3D 01 02
Comment = ANSI X9.62
Description = public-key-type (1 2 840 10045 1 2)

# this seems bogus - (1 2 840 10045 2 1) is used now
OID = 06 08 2A 86 48 CE 3D 01 02 01
Comment = ANSI X9.62 public key type
Description = ecPublicKey (1 2 840 10045 1 2 1)

# The definition for the following OID is somewhat confused, and is given as
# keyType, publicKeyType, and public-key-type, all within 4 lines of text.
# ecPublicKey is defined using the ID publicKeyType, so this is what's used
# here.
OID = 06 06 2A 86 48 CE 3D 02
Comment = ANSI X9.62
Description = publicKeyType (1 2 840 10045 2)

OID = 06 07 2A 86 48 CE 3D 02 01
Comment = ANSI X9.62 public key type
Description = ecPublicKey (1 2 840 10045 2 1)

# ANSI X9.42

OID = 06 07 2A 86 48 CE 3E 02
Comment = ANSI X9.42
Description = number-type (1 2 840 10046 2)

OID = 06 07 2A 86 48 CE 3E 02 01
Comment = ANSI X9.42 number-type
Description = dhPublicNumber (1 2 840 10046 2 1)

# Nortel Secure Networks/Entrust

OID = 06 07 2A 86 48 86 F6 7D 07
Description = nsn (1 2 840 113533 7)

OID = 06 08 2A 86 48 86 F6 7D 07 41
Description = nsn-ce (1 2 840 113533 7 65)

OID = 06 09 2A 86 48 86 F6 7D 07 41 00
Comment = Nortel Secure Networks ce (1 2 840 113533 7 65)
Description = entrustVersInfo (1 2 840 113533 7 65 0)

OID = 06 08 2A 86 48 86 F6 7D 07 42
Description = nsn-alg (1 2 840 113533 7 66)

OID = 06 09 2A 86 48 86 F6 7D 07 42 03
Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
Description = cast3CBC (1 2 840 113533 7 66 3)

OID = 06 09 2A 86 48 86 F6 7D 07 42 0A
Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
Description = cast5CBC (1 2 840 113533 7 66 10)

OID = 06 09 2A 86 48 86 F6 7D 07 42 0B
Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
Description = cast5MAC (1 2 840 113533 7 66 11)

OID = 06 09 2A 86 48 86 F6 7D 07 42 0C
Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
Description = pbeWithMD5AndCAST5-CBC (1 2 840 113533 7 66 12)

OID = 06 09 2A 86 48 86 F6 7D 07 42 0D
Comment = Nortel Secure Networks alg (1 2 840 113533 7 66)
Description = passwordBasedMac (1 2 840 113533 7 66 13)

OID = 06 08 2A 86 48 86 F6 7D 07 43
Description = nsn-oc (1 2 840 113533 7 67)

OID = 06 09 2A 86 48 86 F6 7D 07 43 0C
Comment = Nortel Secure Networks oc (1 2 840 113533 7 67)
Description = entrustUser (1 2 840 113533 7 67 0)

OID = 06 08 2A 86 48 86 F6 7D 07 44
Description = nsn-at (1 2 840 113533 7 68)

OID = 06 09 2A 86 48 86 F6 7D 07 44 00
Comment = Nortel Secure Networks at (1 2 840 113533 7 68)
Description = entrustCAInfo (1 2 840 113533 7 68 0)

OID = 06 09 2A 86 48 86 F6 7D 07 44 0A
Comment = Nortel Secure Networks at (1 2 840 113533 7 68)
Description = attributeCertificate (1 2 840 113533 7 68 10)

# PKCS #1

OID = 06 08 2A 86 48 86 F7 0D 01 01
Description = pkcs-1 (1 2 840 113549 1 1)

OID = 06 09 2A 86 48 86 F7 0D 01 01 01
Comment = PKCS #1
Description = rsaEncryption (1 2 840 113549 1 1 1)

OID = 06 09 2A 86 48 86 F7 0D 01 01 02
Comment = PKCS #1
Description = md2withRSAEncryption (1 2 840 113549 1 1 2)

OID = 06 09 2A 86 48 86 F7 0D 01 01 03
Comment = PKCS #1
Description = md4withRSAEncryption (1 2 840 113549 1 1 3)

OID = 06 09 2A 86 48 86 F7 0D 01 01 04
Comment = PKCS #1
Description = md5withRSAEncryption (1 2 840 113549 1 1 4)

OID = 06 09 2A 86 48 86 F7 0D 01 01 05
Comment = PKCS #1
Description = sha1withRSAEncryption (1 2 840 113549 1 1 5)

# There is some confusion over the identity of the following OID.  The OAEP
# one is more recent, but independant vendors have already used the RIPEMD
# one, however it's likely that SET will be a bigger hammer so we report it
# as that.
OID = 06 09 2A 86 48 86 F7 0D 01 01 06
Comment = PKCS #1.  This OID may also be assigned as ripemd160WithRSAEncryption
Description = rsaOAEPEncryptionSET (1 2 840 113549 1 1 6)
# ripemd160WithRSAEncryption (1 2 840 113549 1 1 6)

# PKCS #3

OID = 06 08 2A 86 48 86 F7 0D 01 03
Description = pkcs-3 (1 2 840 113549 1 3)

OID = 06 09 2A 86 48 86 F7 0D 01 03 01
Comment = PKCS #3
Description = dhKeyAgreement (1 2 840 113549 1 3 1)

# PKCS #5

OID = 06 09 2A 86 48 86 F7 0D 01 05
Description = pkcs-5 (1 2 840 113549 1 5)

OID = 06 09 2A 86 48 86 F7 0D 01 05 01
Comment = PKCS #5
Description = pbeWithMD2AndDES-CBC (1 2 840 113549 1 5 1)

OID = 06 09 2A 86 48 86 F7 0D 01 05 03
Comment = PKCS #5
Description = pbeWithMD5AndDES-CBC (1 2 840 113549 1 5 3)

OID = 06 09 2A 86 48 86 F7 0D 01 05 04
Comment = PKCS #5
Description = pbeWithMD2AndRC2-CBC (1 2 840 113549 1 5 4)

OID = 06 09 2A 86 48 86 F7 0D 01 05 06
Comment = PKCS #5
Description = pbeWithMD5AndRC2-CBC (1 2 840 113549 1 5 6)

OID = 06 09 2A 86 48 86 F7 0D 01 05 09
Comment = PKCS #5, used in BSAFE only
Description = pbeWithMD5AndXOR (1 2 840 113549 1 5 9)
Warning

OID = 06 09 2A 86 48 86 F7 0D 01 05 0A
Comment = PKCS #5
Description = pbeWithSHA1AndDES-CBC (1 2 840 113549 1 5 10)

OID = 06 09 2A 86 48 86 F7 0D 01 05 0B
Comment = PKCS #5
Description = pbeWithSHA1AndRC2-CBC (1 2 840 113549 1 5 11)

OID = 06 09 2A 86 48 86 F7 0D 01 05 0C
Comment = PKCS #5
Description = id-PBKDF2 (1 2 840 113549 1 5 12)

OID = 06 09 2A 86 48 86 F7 0D 01 05 0D
Comment = PKCS #5
Description = id-PBES2 (1 2 840 113549 1 5 13)

OID = 06 09 2A 86 48 86 F7 0D 01 05 0E
Comment = PKCS #5
Description = id-PBMAC1 (1 2 840 113549 1 5 14)

# PKCS #7

OID = 06 09 2A 86 48 86 F7 0D 01 07
Description = pkcs-7 (1 2 840 113549 1 7)

OID = 06 09 2A 86 48 86 F7 0D 01 07 01
Comment = PKCS #7
Description = data (1 2 840 113549 1 7 1)

OID = 06 09 2A 86 48 86 F7 0D 01 07 02
Comment = PKCS #7
Description = signedData (1 2 840 113549 1 7 2)

OID = 06 09 2A 86 48 86 F7 0D 01 07 03
Comment = PKCS #7
Description = envelopedData (1 2 840 113549 1 7 3)

OID = 06 09 2A 86 48 86 F7 0D 01 07 04
Comment = PKCS #7
Description = signedAndEnvelopedData (1 2 840 113549 1 7 4)

OID = 06 09 2A 86 48 86 F7 0D 01 07 05
Comment = PKCS #7
Description = digestedData (1 2 840 113549 1 7 5)

OID = 06 09 2A 86 48 86 F7 0D 01 07 06
Comment = PKCS #7
Description = encryptedData (1 2 840 113549 1 7 6)

OID = 06 09 2A 86 48 86 F7 0D 01 07 07
Comment = PKCS #7 experimental
Description = dataWithAttributes (1 2 840 113549 1 7 7)
Warning

OID = 06 09 2A 86 48 86 F7 0D 01 07 08
Comment = PKCS #7 experimental
Description = encryptedPrivateKeyInfo (1 2 840 113549 1 7 8)
Warning

# PKCS #9

OID = 06 09 2A 86 48 86 F7 0D 01 09
Description = pkcs-9 (1 2 840 113549 1 9)

OID = 06 09 2A 86 48 86 F7 0D 01 09 01
Comment = PKCS #9 (1 2 840 113549 1 9).  Deprecated, use an altName extension instead
Description = emailAddress (1 2 840 113549 1 9 1)

OID = 06 09 2A 86 48 86 F7 0D 01 09 02
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = unstructuredName (1 2 840 113549 1 9 2)

OID = 06 09 2A 86 48 86 F7 0D 01 09 03
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = contentType (1 2 840 113549 1 9 3)

OID = 06 09 2A 86 48 86 F7 0D 01 09 04
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = messageDigest (1 2 840 113549 1 9 4)

OID = 06 09 2A 86 48 86 F7 0D 01 09 05
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = signingTime (1 2 840 113549 1 9 5)

OID = 06 09 2A 86 48 86 F7 0D 01 09 06
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = countersignature (1 2 840 113549 1 9 6)

OID = 06 09 2A 86 48 86 F7 0D 01 09 07
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = challengePassword (1 2 840 113549 1 9 7)

OID = 06 09 2A 86 48 86 F7 0D 01 09 08
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = unstructuredAddress (1 2 840 113549 1 9 8)

OID = 06 09 2A 86 48 86 F7 0D 01 09 09
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = extendedCertificateAttributes (1 2 840 113549 1 9 9)

OID = 06 09 2A 86 48 86 F7 0D 01 09 0A
Comment = PKCS #9 (1 2 840 113549 1 9) experimental
Description = issuerAndSerialNumber (1 2 840 113549 1 9 10)
Warning

OID = 06 09 2A 86 48 86 F7 0D 01 09 0B
Comment = PKCS #9 (1 2 840 113549 1 9) experimental
Description = passwordCheck (1 2 840 113549 1 9 11)
Warning

OID = 06 09 2A 86 48 86 F7 0D 01 09 0C
Comment = PKCS #9 (1 2 840 113549 1 9) experimental
Description = publicKey (1 2 840 113549 1 9 12)
Warning

OID = 06 09 2A 86 48 86 F7 0D 01 09 0D
Comment = PKCS #9 (1 2 840 113549 1 9) experimental
Description = signingDescription (1 2 840 113549 1 9 13)
Warning

OID = 06 09 2A 86 48 86 F7 0D 01 09 0E
Comment = PKCS #9 (1 2 840 113549 1 9) experimental
Description = extensionReq (1 2 840 113549 1 9 14)

# PKCS #9 for use with S/MIME

OID = 06 09 2A 86 48 86 F7 0D 01 09 0F
Comment = PKCS #9 (1 2 840 113549 1 9).  This OID was formerly assigned as symmetricCapabilities, then reassigned as SMIMECapabilities, then renamed to the current name
Description = sMIMECapabilities (1 2 840 113549 1 9 15)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 01
Comment = sMIMECapabilities (1 2 840 113549 1 9 15)
Description = preferSignedData (1 2 840 113549 1 9 15 1)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 02
Comment = sMIMECapabilities (1 2 840 113549 1 9 15)
Description = canNotDecryptAny (1 2 840 113549 1 9 15 2)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 03
Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 2 1) instead
Description = receiptRequest (1 2 840 113549 1 9 15 3)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 04
Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 1 1) instead
Description = receipt (1 2 840 113549 1 9 15 4)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 05
Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 2 4) instead
Description = contentHints (1 2 840 113549 1 9 15 5)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 09 0F 06
Comment = sMIMECapabilities (1 2 840 113549 1 9 15).  Deprecated, use (1 2 840 113549 1 9 16 2 3) instead
Description = mlExpansionHistory (1 2 840 113549 1 9 15 6)
Warning

OID = 06 09 2A 86 48 86 F7 0D 01 09 10
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = id-sMIME (1 2 840 113549 1 9 16)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 10 00
Comment = id-sMIME (1 2 840 113549 1 9 16)
Description = id-mod (1 2 840 113549 1 9 16 0)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 00 01
Comment = S/MIME Modules (1 2 840 113549 1 9 16 0)
Description = id-mod-cms (1 2 840 113549 1 9 16 0 1)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 00 02
Comment = S/MIME Modules (1 2 840 113549 1 9 16 0)
Description = id-mod-ess (1 2 840 113549 1 9 16 0 2)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 10 01
Comment = id-sMIME (1 2 840 113549 1 9 16)
Description = id-ct (1 2 840 113549 1 9 16 1)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 01 01
Comment = S/MIME Content Types (1 2 840 113549 1 9 16 1)
Description = id-ct-receipt (1 2 840 113549 1 9 16 1 1)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 10 02
Comment = id-sMIME (1 2 840 113549 1 9 16)
Description = id-aa (1 2 840 113549 1 9 16 2)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 01
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-receiptRequest (1 2 840 113549 1 9 16 2 1)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 02
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-securityLabel (1 2 840 113549 1 9 16 2 2)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 03
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-mlExpandHistory (1 2 840 113549 1 9 16 2 3)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 04
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-contentHint (1 2 840 113549 1 9 16 2 4)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 05
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-msgSigDigest (1 2 840 113549 1 9 16 2 5)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 07
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-contentIdentifier (1 2 840 113549 1 9 16 2 7)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 08
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-macValue (1 2 840 113549 1 9 16 2 8)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 09
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-equivalentLabels (1 2 840 113549 1 9 16 2 9)

OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 0A
Comment = S/MIME Authenticated Attributes (1 2 840 113549 1 9 16 2)
Description = id-aa-contentReference (1 2 840 113549 1 9 16 2 10)

# PKCS #9 for use with PKCS #12

OID = 06 09 2A 86 48 86 F7 0D 01 09 14
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = friendlyName (for PKCS #12) (1 2 840 113549 1 9 20)

OID = 06 09 2A 86 48 86 F7 0D 01 09 15
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = localKeyID (for PKCS #12) (1 2 840 113549 1 9 21)

OID = 06 09 2A 86 48 86 F7 0D 01 09 16
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = certTypes (for PKCS #12) (1 2 840 113549 1 9 22)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 16 01
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = x509Certificate (for PKCS #12) (1 2 840 113549 1 9 22 1)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 16 02
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = sdsiCertificate (for PKCS #12) (1 2 840 113549 1 9 22 2)

OID = 06 09 2A 86 48 86 F7 0D 01 09 17
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = crlTypes (for PKCS #12) (1 2 840 113549 1 9 23)

OID = 06 0A 2A 86 48 86 F7 0D 01 09 17 01
Comment = PKCS #9 (1 2 840 113549 1 9)
Description = x509Crl (for PKCS #12) (1 2 840 113549 1 9 23 1)

# PKCS #12.  Note that current PKCS #12 implementations tend to be strange and
# peculiar, with implementors misusing OIDs or basing their work on earlier PFX
# drafts or defining their own odd OIDs.  In addition the PFX/PKCS #12 spec
# itself is full of errors and inconsistencies, and a number of OIDs have been
# redefined in different drafts (often multiple times), which doesn't make the
# implementors job any easier.

OID = 06 08 2A 86 48 86 F7 0D 01 0C
Description = pkcs-12 (1 2 840 113549 1 12)

OID = 06 09 2A 86 48 86 F7 0D 01 0C 01
Comment = This OID was formerly assigned as PKCS #12 modeID
Description = pkcs-12-PbeIds (1 2 840 113549 1 12 1)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 01
Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 1). This OID was formerly assigned as pkcs-12-OfflineTransportMode
Description = pbeWithSHAAnd128BitRC4 (1 2 840 113549 1 12 1 1)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 02
Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 2). This OID was formerly assigned as pkcs-12-OnlineTransportMode
Description = pbeWithSHAAnd40BitRC4 (1 2 840 113549 1 12 1 2)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 03
Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
Description = pbeWithSHAAnd3-KeyTripleDES-CBC (1 2 840 113549 1 12 1 3)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 04
Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
Description = pbeWithSHAAnd2-KeyTripleDES-CBC (1 2 840 113549 1 12 1 4)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 05
Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
Description = pbeWithSHAAnd128BitRC2-CBC (1 2 840 113549 1 12 1 5)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 01 06
Comment = PKCS #12 PbeIds (1 2 840 113549 1 12 3)
Description = pbeWithSHAAnd40BitRC2-CBC (1 2 840 113549 1 12 1 6)

OID = 06 09 2A 86 48 86 F7 0D 01 0C 02
Comment = Deprecated
Description = pkcs-12-ESPVKID (1 2 840 113549 1 12 2)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 02 01
Comment = PKCS #12 ESPVKID (1 2 840 113549 1 12 2). Deprecated, use (1 2 840 113549 1 12 3 5) instead
Description = pkcs-12-PKCS8KeyShrouding (1 2 840 113549 1 12 2 1)
Warning

# The following appear to have been redefined yet again at 12 10 in the latest
# PKCS #12 spec.
OID = 06 09 2A 86 48 86 F7 0D 01 0C 03
Description = pkcs-12-BagIds (1 2 840 113549 1 12 3)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 01
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
Description = pkcs-12-keyBagId (1 2 840 113549 1 12 3 1)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 02
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
Description = pkcs-12-certAndCRLBagId (1 2 840 113549 1 12 3 2)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 03
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
Description = pkcs-12-secretBagId (1 2 840 113549 1 12 3 3)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 04
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
Description = pkcs-12-safeContentsId (1 2 840 113549 1 12 3 4)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 03 05
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 3)
Description = pkcs-12-pkcs-8ShroudedKeyBagId (1 2 840 113549 1 12 3 5)

OID = 06 09 2A 86 48 86 F7 0D 01 0C 04
Comment = Deprecated
Description = pkcs-12-CertBagID (1 2 840 113549 1 12 4)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 04 01
Comment = PKCS #12 CertBagID (1 2 840 113549 1 12 4).  This OID was formerly assigned as pkcs-12-X509CertCRLBag
Description = pkcs-12-X509CertCRLBagID (1 2 840 113549 1 12 4 1)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 04 02
Comment = PKCS #12 CertBagID (1 2 840 113549 1 12 4).  This OID was formerly assigned as pkcs-12-SDSICertBag
Description = pkcs-12-SDSICertBagID (1 2 840 113549 1 12 4 2)

# The following are from PFX.  The ... 5 1 values have been reassigned to OIDs
# with incompatible algorithms at ... 1, the 5 2 values seem to have vanished.
OID = 06 09 2A 86 48 86 F7 0D 01 0C 05
Description = pkcs-12-OID (1 2 840 113549 1 12 5)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 05 01
Comment = PKCS #12 OID (1 2 840 113549 1 12 5).  Deprecated, use the partially compatible (1 2 840 113549 1 12 1) OIDs instead
Description = pkcs-12-PBEID (1 2 840 113549 1 12 5 1)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 01
Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 1) instead
Description = pkcs-12-PBEWithSha1And128BitRC4 (1 2 840 113549 1 12 5 1 1)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 02
Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 2) instead
Description = pkcs-12-PBEWithSha1And40BitRC4 (1 2 840 113549 1 12 5 1 2)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 03
Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use the incompatible but similar (1 2 840 113549 1 12 1 3) or (1 2 840 113549 1 12 1 4) instead
Description = pkcs-12-PBEWithSha1AndTripleDESCBC (1 2 840 113549 1 12 5 1 3)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 04
Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 5) instead
Description = pkcs-12-PBEWithSha1And128BitRC2CBC (1 2 840 113549 1 12 5 1 4)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 05
Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use (1 2 840 113549 1 12 1 6) instead
Description = pkcs-12-PBEWithSha1And40BitRC2CBC (1 2 840 113549 1 12 5 1 5)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 06
Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use the incompatible but similar (1 2 840 113549 1 12 1 1) or (1 2 840 113549 1 12 1 2) instead
Description = pkcs-12-PBEWithSha1AndRC4 (1 2 840 113549 1 12 5 1 6)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 01 07
Comment = PKCS #12 OID PBEID (1 2 840 113549 1 12 5 1).  Deprecated, use the incompatible but similar (1 2 840 113549 1 12 1 5) or (1 2 840 113549 1 12 1 6) instead
Description = pkcs-12-PBEWithSha1AndRC2CBC (1 2 840 113549 1 12 5 1 7)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 05 02
Description = pkcs-12-EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 02 01
Comment = PKCS #12 OID EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
Description = pkcs-12-RSAEncryptionWith128BitRC4 (1 2 840 113549 1 12 5 2 1)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 02 02
Comment = PKCS #12 OID EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
Description = pkcs-12-RSAEncryptionWith40BitRC4 (1 2 840 113549 1 12 5 2 2)
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 02 03
Comment = PKCS #12 OID EnvelopingID (1 2 840 113549 1 12 5 2).  Deprecated, use the conventional PKCS #1 OIDs instead
Description = pkcs-12-RSAEncryptionWithTripleDES (1 2 840 113549 1 12 5 2 3)
Warning

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 05 03
Description = pkcs-12-SignatureID (1 2 840 113549 1 12 5 3).  Deprecated, use the conventional PKCS #1 OIDs instead
Warning

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 05 03 01
Comment = PKCS #12 OID SignatureID (1 2 840 113549 1 12 5 3).  Deprecated, use the conventional PKCS #1 OIDs instead
Description = pkcs-12-RSASignatureWithSHA1Digest (1 2 840 113549 1 12 5 3 1)
Warning

# Yet *another* redefinition of the PKCS #12 "bag" ID's, now in a different
# order than the last redefinition at ... 12 3.
OID = 06 09 2A 86 48 86 F7 0D 01 0C 0A
Description = pkcs-12Version1 (1 2 840 113549 1 12 10)

OID = 06 0A 2A 86 48 86 F7 0D 01 0C 0A 01
Description = pkcs-12BadIds (1 2 840 113549 1 12 10 1)

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 01
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
Description = pkcs-12-keyBag (1 2 840 113549 1 12 10 1 1)

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 02
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
Description = pkcs-12-pkcs-8ShroudedKeyBag (1 2 840 113549 1 12 10 1 2)

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 03
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
Description = pkcs-12-certBag (1 2 840 113549 1 12 10 1 3)

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 04
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
Description = pkcs-12-crlBag (1 2 840 113549 1 12 10 1 4)

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 05
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
Description = pkcs-12-secretBag (1 2 840 113549 1 12 10 1 5)

OID = 06 0B 2A 86 48 86 F7 0D 01 0C 0A 01 06
Comment = PKCS #12 BagIds (1 2 840 113549 1 12 10 1)
Description = pkcs-12-safeContentsBag (1 2 840 113549 1 12 10 1 6)

# RSADSI digest algorithms

OID = 06 08 2A 86 48 86 F7 0D 02
Description = digestAlgorithm (1 2 840 113549 2)

OID = 06 08 2A 86 48 86 F7 0D 02 02
Comment = RSADSI digestAlgorithm (1 2 840 113549 2)
Description = md2 (1 2 840 113549 2 2)

OID = 06 08 2A 86 48 86 F7 0D 02 04
Comment = RSADSI digestAlgorithm (1 2 840 113549 2)
Description = md4 (1 2 840 113549 2 4)

OID = 06 08 2A 86 48 86 F7 0D 02 05
Comment = RSADSI digestAlgorithm (1 2 840 113549 2)
Description = md5 (1 2 840 113549 2 5)

# RSADSI encryption algorithms

OID = 06 08 2A 86 48 86 F7 0D 03
Description = encryptionAlgorithm (1 2 840 113549 3)

OID = 06 08 2A 86 48 86 F7 0D 03 02
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = rc2CBC (1 2 840 113549 3 2)

OID = 06 08 2A 86 48 86 F7 0D 03 03
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = rc2ECB (1 2 840 113549 3 3)

OID = 06 08 2A 86 48 86 F7 0D 03 04
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = rc4 (1 2 840 113549 3 4)

OID = 06 08 2A 86 48 86 F7 0D 03 05
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = rc4WithMAC (1 2 840 113549 3 5)

OID = 06 08 2A 86 48 86 F7 0D 03 06
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = desx-CBC (1 2 840 113549 3 6)

OID = 06 08 2A 86 48 86 F7 0D 03 07
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = des-EDE3-CBC (1 2 840 113549 3 7)

OID = 06 08 2A 86 48 86 F7 0D 03 08
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = rc5CBC (1 2 840 113549 3 8)

OID = 06 08 2A 86 48 86 F7 0D 03 09
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3)
Description = rc5-CBCPad (1 2 840 113549 3 9)

OID = 06 08 2A 86 48 86 F7 0D 03 0A
Comment = RSADSI encryptionAlgorithm (1 2 840 113549 3).  Formerly called CDMFCBCPad
Description = desCDMF (1 2 840 113549 3 10)

# Ascom Systech

OID = 06 0A 2B 06 01 04 01 81 3C 07 01 01
Comment = Ascom Systech
Description = ascom (1 3 6 1 4 1 188 7 1 1)

OID = 06 0B 2B 06 01 04 01 81 3C 07 01 01 01
Comment = Ascom Systech
Description = ideaECB (1 3 6 1 4 1 188 7 1 1 1)

# Microsoft

OID = 06 08 2A 86 48 86 F7 14 04 03
Comment = Microsoft
Description = microsoftExcel (1 2 840 113556 4 3)

OID = 06 08 2A 86 48 86 F7 14 04 04
Comment = Microsoft
Description = titledWithOID (1 2 840 113556 4 4)

OID = 06 08 2A 86 48 86 F7 14 04 05
Comment = Microsoft
Description = microsoftPowerPoint (1 2 840 113556 4 5)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 04
Comment = Microsoft code signing
Description = spcIndirectDataContext (1 3 6 1 4 1 311 2 1 4)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 0A
Comment = Microsoft code signing.  Also known as policyLink
Description = spcAgencyInfo (1 3 6 1 4 1 311 2 1 10)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 0B
Comment = Microsoft code signing
Description = spcStatementType (1 3 6 1 4 1 311 2 1 11)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 0C
Comment = Microsoft code signing
Description = spcSpOpusInfo (1 3 6 1 4 1 311 2 1 12)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 0E
Comment = Microsoft
Description = certExtensions (1 3 6 1 4 1 311 2 1 14)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 0F
Comment = Microsoft code signing
Description = spcPelmageData (1 3 6 1 4 1 311 2 1 15)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 14
Comment = Microsoft code signing.  Also known as "glue extension"
Description = spcLink (type 1) (1 3 6 1 4 1 311 2 1 20)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 15
Comment = Microsoft
Description = individualCodeSigning (1 3 6 1 4 1 311 2 1 21)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 16
Comment = Microsoft
Description = commercialCodeSigning (1 3 6 1 4 1 311 2 1 22)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 19
Comment = Microsoft code signing.  Also known as "glue extension"
Description = spcLink (type 2) (1 3 6 1 4 1 311 2 1 25)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 1A
Comment = Microsoft code signing
Description = spcMinimalCriteriaInfo (1 3 6 1 4 1 311 2 1 26)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 1B
Comment = Microsoft code signing
Description = spcFinancialCriteriaInfo (1 3 6 1 4 1 311 2 1 27)

OID = 06 0A 2B 06 01 04 01 82 37 02 01 1C
Comment = Microsoft code signing.  Also known as "glue extension"
Description = spcLink (type 3) (1 3 6 1 4 1 311 2 1 28)

OID = 06 0A 2B 06 01 04 01 82 37 03 02 01
Comment = Microsoft code signing
Description = timestampCountersignature (1 3 6 1 4 1 311 3 2 1)

OID = 06 0A 2B 06 01 04 01 82 37 0A 01
Comment = Microsoft PKCS #7 contentType
Description = certTrustList (1 3 6 1 4 1 311 10 1)

OID = 06 0A 2B 06 01 04 01 82 37 0A 02
Comment = Microsoft
Description = nextUpdateLocation (1 3 6 1 4 1 311 10 2)

OID = 06 0A 2B 06 01 04 01 82 37 0A 03 01
Comment = Microsoft enhanced key usage
Description = certTrustListSigning (1 3 6 1 4 1 311 10 3 1)

OID = 06 0A 2B 06 01 04 01 82 37 0A 03 02
Comment = Microsoft enhanced key usage
Description = timeStampSigning (1 3 6 1 4 1 311 10 3 2)

OID = 06 0A 2B 06 01 04 01 82 37 0A 03 03
Comment = Microsoft enhanced key usage
Description = serverGatedCrypto (1 3 6 1 4 1 311 10 3 3)

OID = 06 0A 2B 06 01 04 01 82 37 0A 03 04
Comment = Microsoft enhanced key usage
Description = encryptedFileSystem (1 3 6 1 4 1 311 10 3 4)

OID = 06 0A 2B 06 01 04 01 82 37 0A 04 01
Comment = Microsoft attribute
Description = yesnoTrustAttr (1 3 6 1 4 1 311 10 4 1)

# UNINETT

OID = 06 0A 2B 06 01 04 01 92 7C 0A 01 01
Comment = UNINETT PCA
Description = UNINETT policyIdentifier (1 3 6 1 4 1 2428 10 1 1)

# ICE-TEL

OID = 06 08 2B 06 01 04 01 95 18 0A
Comment = ICE-TEL CA
Description = ICE-TEL policyIdentifier (1 3 6 1 4 1 2712 10)

OID = 06 0A 2B 06 01 04 01 95 62 01 01 01
Comment = ICE-TEL CA policy
Description = ICE-TEL Italian policyIdentifier (1 3 6 1 4 1 2786 1 1 1)

# cryptlib

OID = 06 09 2B 06 01 04 01 97 55 20 01
Comment = cryptlib
Description = cryptlibEnvelope (1 3 6 1 4 1 3029 32 1)

OID = 06 09 2B 06 01 04 01 97 55 20 02
Comment = cryptlib
Description = cryptlibPrivateKey (1 3 6 1 4 1 3029 32 2)

OID = 06 0B 2B 06 01 04 01 97 55 2A D7 24 01
Comment = cryptlib special MPEG-of-cat OID
Description = mpeg-1 (1 3 6 1 4 1 3029 42 11172 1)

# PKIX

OID = 06 06 2B 06 01 05 05 07
Comment = PKIX base
Description = pkix (1 3 6 1 5 5 7)

OID = 06 07 2B 06 01 05 05 07 01
Comment = PKIX
Description = privateExtension (1 3 6 1 5 5 7 1)

OID = 06 08 2B 06 01 05 05 07 01 01
Comment = PKIX private extension
Description = authorityInfoAccess (1 3 6 1 5 5 7 1 1)

OID = 06 07 2B 06 01 05 05 07 02
Comment = PKIX
Description = policyQualifierIds (1 3 6 1 5 5 7 2)

OID = 06 08 2B 06 01 05 05 07 02 01
Comment = PKIX policy qualifier
Description = cps (1 3 6 1 5 5 7 2 1)

OID = 06 08 2B 06 01 05 05 07 02 02
Comment = PKIX policy qualifier
Description = unotice (1 3 6 1 5 5 7 2 2)

OID = 06 07 2B 06 01 05 05 07 03
Comment = PKIX
Description = keyPurpose (1 3 6 1 5 5 7 3)

OID = 06 08 2B 06 01 05 05 07 03 01
Comment = PKIX key purpose
Description = serverAuth (1 3 6 1 5 5 7 3 1)

OID = 06 08 2B 06 01 05 05 07 03 02
Comment = PKIX key purpose
Description = clientAuth (1 3 6 1 5 5 7 3 2)

OID = 06 08 2B 06 01 05 05 07 03 03
Comment = PKIX key purpose
Description = codeSigning (1 3 6 1 5 5 7 3 3)

OID = 06 08 2B 06 01 05 05 07 03 04
Comment = PKIX key purpose
Description = emailProtection (1 3 6 1 5 5 7 3 4)

OID = 06 08 2B 06 01 05 05 07 03 05
Comment = PKIX key purpose
Description = ipsecEndSystem (1 3 6 1 5 5 7 3 5)

OID = 06 08 2B 06 01 05 05 07 03 06
Comment = PKIX key purpose
Description = ipsecTunnel (1 3 6 1 5 5 7 3 6)

OID = 06 08 2B 06 01 05 05 07 03 07
Comment = PKIX key purpose
Description = ipsecUser (1 3 6 1 5 5 7 3 7)

OID = 06 08 2B 06 01 05 05 07 03 08
Comment = PKIX key purpose
Description = timeStamping (1 3 6 1 5 5 7 3 8)

OID = 06 08 2B 06 01 05 05 07 03 08
Comment = PKIX key purpose
Description = OCSPSigning (1 3 6 1 5 5 7 3 9)

OID = 06 07 2B 06 01 05 05 07 04
Comment = PKIX
Description = cmpInformationTypes (1 3 6 1 5 5 7 4)

OID = 06 08 2B 06 01 05 05 07 04 01
Comment = PKIX CMP information
Description = caProtEncCert (1 3 6 1 5 5 7 4 1)

OID = 06 08 2B 06 01 05 05 07 04 02
Comment = PKIX CMP information
Description = signKeyPairTypes (1 3 6 1 5 5 7 4 2)

OID = 06 08 2B 06 01 05 05 07 04 03
Comment = PKIX CMP information
Description = encKeyPairTypes (1 3 6 1 5 5 7 4 3)

OID = 06 08 2B 06 01 05 05 07 04 04
Comment = PKIX CMP information
Description = preferredSymmAlg (1 3 6 1 5 5 7 4 4)

OID = 06 08 2B 06 01 05 05 07 04 05
Comment = PKIX CMP information
Description = caKeyUpdateInfo (1 3 6 1 5 5 7 4 5)

OID = 06 08 2B 06 01 05 05 07 04 06
Comment = PKIX CMP information
Description = currentCRL (1 3 6 1 5 5 7 4 6)

OID = 06 08 2B 06 01 05 05 07 30 01
Comment = PKIX authority info access descriptor
Description = ocsp (1 3 6 1 5 5 7 48 1)

OID = 06 08 2B 06 01 05 05 07 30 02
Comment = PKIX authority info access descriptor
Description = caIssuers (1 3 6 1 5 5 7 48 2)

# ISAKMP

OID = 06 08 2B 06 01 05 05 08 01 01
Comment = ISAKMP HMAC algorithm
Description = HMAC-MD5 (1 3 6 1 5 5 8 1 1)

OID = 06 08 2B 06 01 05 05 08 01 02
Comment = ISAKMP HMAC algorithm
Description = HMAC-SHA (1 3 6 1 5 5 8 1 2)

OID = 06 08 2B 06 01 05 05 08 01 03
Comment = ISAKMP HMAC algorithm
Description = HMAC-Tiger (1 3 6 1 5 5 8 1 3)

# DEC (via ECMA)

OID = 06 07 2B 0C 02 87 73 07 01
Comment = DASS algorithm
Description = decEncryptionAlgorithm (1 3 12 2 1011 7 1)

OID = 06 08 2B 0C 02 87 73 07 01 02
Comment = DASS encryption algorithm
Description = decDEA (1 3 12 2 1011 7 1 2)

OID = 06 07 2B 0C 02 87 73 07 02
Comment = DASS algorithm
Description = decHashAlgorithm (1 3 12 2 1011 7 2)

OID = 06 07 2B 0C 02 87 73 07 02 01
Comment = DASS hash algorithm
Description = decMD2 (1 3 12 2 1011 7 2 1)

OID = 06 07 2B 0C 02 87 73 07 02 02
Comment = DASS hash algorithm
Description = decMD4 (1 3 12 2 1011 7 2 2)

OID = 06 07 2B 0C 02 87 73 07 03
Comment = DASS algorithm
Description = decSignatureAlgorithm (1 3 12 2 1011 7 3)

OID = 06 07 2B 0C 02 87 73 07 03 01
Comment = DASS signature algorithm
Description = decMD2withRSA (1 3 12 2 1011 7 3 1)

OID = 06 07 2B 0C 02 87 73 07 03 02
Comment = DASS signature algorithm
Description = decMD4withRSA (1 3 12 2 1011 7 3 2)

OID = 06 07 2B 0C 02 87 73 07 03 03
Comment = DASS signature algorithm
Description = decDEAMAC (1 3 12 2 1011 7 3 3)

# NIST Open Systems Environment (OSE) Implementor's Workshop (OIW),
# specialising in oddball and partially-defunct OIDs

OID = 06 05 2B 0E 02 1A 05
Comment = Unsure about this OID
Description = sha (1 3 14 2 26 5)

OID = 06 06 2B 0E 03 02 01 01
Comment = X.509.  Unsure about this OID
Description = rsa (1 3 14 3 2 1 1)

OID = 06 05 2B 0E 03 02 02
Comment = Oddball OIW OID
Description = md4WitRSA (1 3 14 3 2 2)

OID = 06 05 2B 0E 03 02 03
Comment = Oddball OIW OID
Description = md5WithRSA (1 3 14 3 2 3)

OID = 06 05 2B 0E 03 02 04
Comment = Oddball OIW OID
Description = md4WithRSAEncryption (1 3 14 3 2 4)

OID = 06 06 2B 0E 03 02 02 01
Comment = X.509.  Deprecated
Description = sqmod-N (1 3 14 3 2 2 1)
Warning

OID = 06 06 2B 0E 03 02 03 01
Comment = X.509.  Deprecated
Description = sqmod-NwithRSA (1 3 14 3 2 3 1)
Warning

OID = 06 05 2B 0E 03 02 06
Description = desECB (1 3 14 3 2 6)

OID = 06 05 2B 0E 03 02 07
Description = desCBC (1 3 14 3 2 7)

OID = 06 05 2B 0E 03 02 08
Description = desOFB (1 3 14 3 2 8)

OID = 06 05 2B 0E 03 02 09
Description = desCFB (1 3 14 3 2 9)

OID = 06 05 2B 0E 03 02 0A
Description = desMAC (1 3 14 3 2 10)

OID = 06 05 2B 0E 03 02 0B
Comment = ISO 9796-2, also X9.31 Part 1
Description = rsaSignature (1 3 14 3 2 11)

# this is used by BSAFE
OID = 06 05 2B 0E 03 02 0C
Comment = OIW?, supposedly from an incomplete version of SDN.702 (doesn't match final SDN.702)
Description = dsa-bsafe (1 3 14 3 2 12)
Warning

OID = 06 05 2B 0E 03 02 0D
Comment = Oddball OIW OID.  Incorrectly used by JDK 1.1 in place of (1 3 14 3 2 27)
# Their response was that they know it's wrong, but noone uses SHA0 so it won't
# cause any problems, right? Note: BSAFE uses this as well!
Description = dsaWithSHA-bsafe (1 3 14 3 2 13)
Warning

# The various md<x>WithRSASIsignature OIDs are for the ANSI X9.31 draft and use
# ISO 9796-2 padding rules.  This work was derailed during the PKP brouhaha and
# is still in progress
OID = 06 05 2B 0E 03 02 0E
Comment = Oddball OIW OID using 9796-2 padding rules
Description = mdc2WithRSASignature (1 3 14 3 2 14)

OID = 06 05 2B 0E 03 02 0F
Comment = Oddball OIW OID using 9796-2 padding rules
Description = shaWithRSASignature (1 3 14 3 2 15)

OID = 06 05 2B 0E 03 02 10
Comment = Oddball OIW OID.  Deprecated, use a plain DH OID instead
Description = dhWithCommonModulus (1 3 14 3 2 16)
Warning

OID = 06 05 2B 0E 03 02 11
Comment = Oddball OIW OID.  Mode is ECB
Description = desEDE (1 3 14 3 2 17)

OID = 06 05 2B 0E 03 02 12
Comment = Oddball OIW OID
Description = sha (1 3 14 3 2 18)

OID = 06 05 2B 0E 03 02 13
Comment = Oddball OIW OID, DES-based hash, planned for X9.31 Part 2
Description = mdc-2 (1 3 14 3 2 19)

OID = 06 05 2B 0E 03 02 14
Comment = Oddball OIW OID.  Deprecated, use a plain DSA OID instead
Description = dsaCommon (1 3 14 3 2 20)
Warning

OID = 06 05 2B 0E 03 02 15
Comment = Oddball OIW OID.  Deprecated, use a plain dsaWithSHA OID instead
Description = dsaCommonWithSHA (1 3 14 3 2 21)
Warning

OID = 06 05 2B 0E 03 02 16
Comment = Oddball OIW OID
Description = rsaKeyTransport (1 3 14 3 2 22)

OID = 06 05 2B 0E 03 02 17
Comment = Oddball OIW OID
Description = keyed-hash-seal (1 3 14 3 2 23)

OID = 06 05 2B 0E 03 02 18
Comment = Oddball OIW OID using 9796-2 padding rules
Description = md2WithRSASignature (1 3 14 3 2 24)

OID = 06 05 2B 0E 03 02 19
Comment = Oddball OIW OID using 9796-2 padding rules
Description = md5WithRSASignature (1 3 14 3 2 25)

OID = 06 05 2B 0E 03 02 1A
Comment = OIW
Description = sha1 (1 3 14 3 2 26)

# Yet another multiply-assigned OID
OID = 06 05 2B 0E 03 02 1B
Comment = OIW.  This OID may also be assigned as ripemd-160
Description = dsaWithSHA1 (1 3 14 3 2 27)

OID = 06 05 2B 0E 03 02 1C
Comment = OIW
Description = dsaWithCommonSHA1 (1 3 14 3 2 28)

OID = 06 05 2B 0E 03 02 1D
Comment = Oddball OIW OID
Description = sha-1WithRSAEncryption (1 3 14 3 2 29)

OID = 06 05 2B 0E 03 03 01
Comment = Oddball OIW OID
Description = simple-strong-auth-mechanism (1 3 14 3 3 1)

OID = 06 06 2B 0E 07 02 01 01
Comment = Unsure about this OID
Description = ElGamal (1 3 14 7 2 1 1)

OID = 06 06 2B 0E 07 02 03 01
Comment = Unsure about this OID
Description = md2WithRSA (1 3 14 7 2 3 1)

OID = 06 06 2B 0E 07 02 03 02
Comment = Unsure about this OID
Description = md2WithElGamal (1 3 14 7 2 3 2)

# Teletrust

OID = 06 03 2B 24 01
Comment = Teletrust document
Description = document (1 3 36 1)

OID = 06 04 2B 24 01 01
Comment = Teletrust document
Description = finalVersion (1 3 36 1 1)

OID = 06 04 2B 24 01 02
Comment = Teletrust document
Description = draft (1 3 36 1 2)

OID = 06 03 2B 24 02
Comment = Teletrust sio
Description = sio (1 3 36 2)

OID = 06 04 2B 24 02 01      
Comment = Teletrust sio
Description = certificate (1 3 36 2 1)

OID = 06 04 2B 24 02 01      
Comment = Teletrust sio
Description = sedu (1 3 36 2 1)

OID = 06 03 2B 24 03
Comment = Teletrust algorithm
Description = algorithm (1 3 36 3)

OID = 06 04 2B 24 03 01
Comment = Teletrust algorithm
Description = encryptionAlgorithm (1 3 36 3 1)

OID = 06 05 2B 24 03 01 01
Comment = Teletrust encryption algorithm
Description = des (1 3 36 3 1 1)

OID = 06 06 2B 24 03 01 01 01 
Comment = Teletrust encryption algorithm
Description = desECB_pad (1 3 36 3 1 1 1)

OID = 06 07 2B 24 03 01 01 01 01
Comment = Teletrust encryption algorithm
Description = desECB_ISOpad (1 3 36 3 1 1 1 1)

OID = 06 07 2B 24 03 01 01 02 01
Comment = Teletrust encryption algorithm
Description = desCBC_pad (1 3 36 3 1 1 2 1)

OID = 06 08 2B 24 03 01 01 02 01 01
Comment = Teletrust encryption algorithm
Description = desCBC_ISOpad (1 3 36 3 1 1 2 1 1)

OID = 06 05 2B 24 03 01 03
Comment = Teletrust encryption algorithm
Description = des_3 (1 3 36 3 1 3)

OID = 06 07 2B 24 03 01 03 01 01
Comment = Teletrust encryption algorithm.  EDE triple DES
Description = des_3ECB_pad (1 3 36 3 1 3 1 1)

OID = 06 08 2B 24 03 01 03 01 01 01
Comment = Teletrust encryption algorithm.  EDE triple DES
Description = des_3ECB_ISOpad (1 3 36 3 1 3 1 1 1)

OID = 06 07 2B 24 03 01 03 02 01
Comment = Teletrust encryption algorithm.  EDE triple DES
Description = des_3CBC_pad (1 3 36 3 1 3 2 1)

OID = 06 08 2B 24 03 01 03 02 01 01
Comment = Teletrust encryption algorithm.  EDE triple DES
Description = des_3CBC_ISOpad (1 3 36 3 1 3 2 1 1)

OID = 06 05 2B 24 03 01 02
Comment = Teletrust encryption algorithm
Description = idea (1 3 36 3 1 2)

OID = 06 06 2B 24 03 01 02 01
Comment = Teletrust encryption algorithm
Description = ideaECB (1 3 36 3 1 2 1)

OID = 06 07 2B 24 03 01 02 01 01
Comment = Teletrust encryption algorithm
Description = ideaECB_pad (1 3 36 3 1 2 1 1)

OID = 06 08 2B 24 03 01 02 01 01 01
Comment = Teletrust encryption algorithm
Description = ideaECB_ISOpad (1 3 36 3 1 2 1 1 1)

OID = 06 06 2B 24 03 01 02 02
Comment = Teletrust encryption algorithm
Description = ideaCBC (1 3 36 3 1 2 2)

OID = 06 07 2B 24 03 01 02 02 01
Comment = Teletrust encryption algorithm
Description = ideaCBC_pad (1 3 36 3 1 2 2 1)

OID = 06 08 2B 24 03 01 02 02 01 01
Comment = Teletrust encryption algorithm
Description = ideaCBC_ISOpad (1 3 36 3 1 2 2 1 1)

OID = 06 06 2B 24 03 01 02 03
Comment = Teletrust encryption algorithm
Description = ideaOFB (1 3 36 3 1 2 3)

OID = 06 06 2B 24 03 01 02 04
Comment = Teletrust encryption algorithm
Description = ideaCFB (1 3 36 3 1 2 4)

OID = 06 05 2B 24 03 01 04
Comment = Teletrust encryption algorithm
Description = rsaEncryption (1 3 36 3 1 4)

OID = 06 08 2B 24 03 01 04 84 00 11
Comment = Teletrust encryption algorithm
Description = rsaEncryptionWithlmod512expe17 (1 3 36 3 1 4 512 17)

OID = 06 05 2B 24 03 01 05
Comment = Teletrust encryption algorithm
Description = bsi-1 (1 3 36 3 1 5)

OID = 06 06 2B 24 03 01 05 01
Comment = Teletrust encryption algorithm
Description = bsi_1ECB_pad (1 3 36 3 1 5 1)

OID = 06 06 2B 24 03 01 05 02
Comment = Teletrust encryption algorithm
Description = bsi_1CBC_pad (1 3 36 3 1 5 2)

OID = 06 07 2B 24 03 01 05 02 01
Comment = Teletrust encryption algorithm
Description = bsi_1CBC_PEMpad (1 3 36 3 1 5 2 1)

OID = 06 04 2B 24 03 02
Comment = Teletrust algorithm
Description = hashAlgorithm (1 3 36 3 2)

OID = 06 05 2B 24 03 02 01
Comment = Teletrust hash algorithm
Description = ripemd160 (1 3 36 3 2 1)

OID = 06 05 2B 24 03 02 02
Comment = Teletrust hash algorithm
Description = ripemd128 (1 3 36 3 2 2)

OID = 06 05 2B 24 03 02 03
Comment = Teletrust hash algorithm
Description = ripemd256 (1 3 36 3 2 3)

OID = 06 05 2B 24 03 02 04
Comment = Teletrust hash algorithm
Description = mdc2singleLength (1 3 36 3 2 4)

OID = 06 05 2B 24 03 02 05
Comment = Teletrust hash algorithm
Description = mdc2doubleLength (1 3 36 3 2 5)

OID = 06 04 2B 24 03 03
Comment = Teletrust algorithm
Description = signatureAlgorithm (1 3 36 3 3)

OID = 06 05 2B 24 03 03 01
Comment = Teletrust signature algorithm
Description = rsaSignature (1 3 36 3 3 1)

OID = 06 06 2B 24 03 03 01 01
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1 (1 3 36 3 3 1 1)

# What *were* they thinking?
OID = 06 09 2B 24 03 03 01 01 84 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l512_l2 (1 3 36 3 3 1 1 512 2)
OID = 06 09 2B 24 03 03 01 01 85 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l640_l2 (1 3 36 3 3 1 1 640 2)
OID = 06 09 2B 24 03 03 01 01 86 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l768_l2 (1 3 36 3 3 1 1 768 2)
OID = 06 09 2B 24 03 03 01 01 87 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l896_l2 (1 3 36 3 3 1 1 892 2)
OID = 06 09 2B 24 03 03 01 01 88 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l1024_l2 (1 3 36 3 3 1 1 1024 2)
OID = 06 09 2B 24 03 03 01 01 84 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l512_l3 (1 3 36 3 3 1 1 512 3)
OID = 06 09 2B 24 03 03 01 01 85 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l640_l3 (1 3 36 3 3 1 1 640 3)
OID = 06 09 2B 24 03 03 01 01 86 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l768_l3 (1 3 36 3 3 1 1 768 3)
OID = 06 09 2B 24 03 03 01 01 87 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l896_l3 (1 3 36 3 3 1 1 896 3)
OID = 06 09 2B 24 03 03 01 01 88 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l1024_l3 (1 3 36 3 3 1 1 1024 3)
OID = 06 09 2B 24 03 03 01 01 84 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l512_l5 (1 3 36 3 3 1 1 512 5)
OID = 06 09 2B 24 03 03 01 01 85 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l640_l5 (1 3 36 3 3 1 1 640 5)
OID = 06 09 2B 24 03 03 01 01 86 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l768_l5 (1 3 36 3 3 1 1 768 5)
OID = 06 09 2B 24 03 03 01 01 87 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l896_l5 (1 3 36 3 3 1 1 896 5)
OID = 06 09 2B 24 03 03 01 01 88 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l1024_l5 (1 3 36 3 3 1 1 1024 5)
OID = 06 09 2B 24 03 03 01 01 84 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l512_l9 (1 3 36 3 3 1 1 512 9)
OID = 06 09 2B 24 03 03 01 01 85 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l640_l9 (1 3 36 3 3 1 1 640 9)
OID = 06 09 2B 24 03 03 01 01 86 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l768_l9 (1 3 36 3 3 1 1 768 9)
OID = 06 09 2B 24 03 03 01 01 87 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l896_l9 (1 3 36 3 3 1 1 896 9) 
OID = 06 09 2B 24 03 03 01 01 88 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l1024_l9 (1 3 36 3 3 1 1 1024 9)
OID = 06 09 2B 24 03 03 01 01 84 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l512_l11 (1 3 36 3 3 1 1 512 11)
OID = 06 09 2B 24 03 03 01 01 85 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l640_l11 (1 3 36 3 3 1 1 640 11)
OID = 06 09 2B 24 03 03 01 01 86 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l768_l11 (1 3 36 3 3 1 1 768 11)
OID = 06 09 2B 24 03 03 01 01 87 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l896_l11 (1 3 36 3 3 1 1 896 11)
OID = 06 09 2B 24 03 03 01 01 88 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithsha1_l1024_l11 (1 3 36 3 3 1 1 1024 11)

OID = 06 06 2B 24 03 03 01 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160 (1 3 36 3 3 1 2)

OID = 06 09 2B 24 03 03 01 02 84 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l512_l2 (1 3 36 3 3 1 2 512 2)
OID = 06 09 2B 24 03 03 01 02 85 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l640_l2 (1 3 36 3 3 1 2 640 2)
OID = 06 09 2B 24 03 03 01 02 86 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l768_l2 (1 3 36 3 3 1 2 768 2)
OID = 06 09 2B 24 03 03 01 02 87 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l896_l2 (1 3 36 3 3 1 2 892 2)
OID = 06 09 2B 24 03 03 01 02 88 00 02
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l1024_l2 (1 3 36 3 3 1 2 1024 2)
OID = 06 09 2B 24 03 03 01 02 84 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l512_l3 (1 3 36 3 3 1 2 512 3)
OID = 06 09 2B 24 03 03 01 02 85 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l640_l3 (1 3 36 3 3 1 2 640 3)
OID = 06 09 2B 24 03 03 01 02 86 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l768_l3 (1 3 36 3 3 1 2 768 3)
OID = 06 09 2B 24 03 03 01 02 87 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l896_l3 (1 3 36 3 3 1 2 896 3)
OID = 06 09 2B 24 03 03 01 02 88 00 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l1024_l3 (1 3 36 3 3 1 2 1024 3)
OID = 06 09 2B 24 03 03 01 02 84 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l512_l5 (1 3 36 3 3 1 2 512 5)
OID = 06 09 2B 24 03 03 01 02 85 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l640_l5 (1 3 36 3 3 1 2 640 5)
OID = 06 09 2B 24 03 03 01 02 86 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l768_l5 (1 3 36 3 3 1 2 768 5)
OID = 06 09 2B 24 03 03 01 02 87 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l896_l5 (1 3 36 3 3 1 2 896 5)
OID = 06 09 2B 24 03 03 01 02 88 00 05
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l1024_l5 (1 3 36 3 3 1 2 1024 5)
OID = 06 09 2B 24 03 03 01 02 84 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l512_l9 (1 3 36 3 3 1 2 512 9)
OID = 06 09 2B 24 03 03 01 02 85 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l640_l9 (1 3 36 3 3 1 2 640 9)
OID = 06 09 2B 24 03 03 01 02 86 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l768_l9 (1 3 36 3 3 1 2 768 9)
OID = 06 09 2B 24 03 03 01 02 87 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l896_l9 (1 3 36 3 3 1 2 896 9) 
OID = 06 09 2B 24 03 03 01 02 88 00 09
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l1024_l9 (1 3 36 3 3 1 2 1024 9)
OID = 06 09 2B 24 03 03 01 02 84 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l512_l11 (1 3 36 3 3 1 2 512 11)
OID = 06 09 2B 24 03 03 01 02 85 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l640_l11 (1 3 36 3 3 1 2 640 11)
OID = 06 09 2B 24 03 03 01 02 86 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l768_l11 (1 3 36 3 3 1 2 768 11)
OID = 06 09 2B 24 03 03 01 02 87 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l896_l11 (1 3 36 3 3 1 2 896 11)
OID = 06 09 2B 24 03 03 01 02 88 00 11
Comment = Teletrust signature algorithm
Description = rsaSignatureWithripemd160_l1024_l11 (1 3 36 3 3 1 2 1024 11)

OID = 06 06 2B 24 03 03 01 03
Comment = Teletrust signature algorithm
Description = rsaSignatureWithrimpemd128 (1 3 36 3 3 1 3)

OID = 06 06 2B 24 03 03 01 04
Comment = Teletrust signature algorithm
Description = rsaSignatureWithrimpemd256 (1 3 36 3 3 1 4)

OID = 06 05 2B 24 03 03 02
Comment = Teletrust signature algorithm
Description = ecsieSign (1 3 36 3 3 2)

OID = 06 06 2B 24 03 03 02 01
Comment = Teletrust signature algorithm
Description = ecsieSignWithsha1 (1 3 36 3 3 2 1)

OID = 06 06 2B 24 03 03 02 02
Comment = Teletrust signature algorithm
Description = ecsieSignWithripemd160 (1 3 36 3 3 2 2)

OID = 06 06 2B 24 03 03 02 03
Comment = Teletrust signature algorithm
Description = ecsieSignWithmd2 (1 3 36 3 3 2 3)

OID = 06 06 2B 24 03 03 02 04
Comment = Teletrust signature algorithm
Description = ecsieSignWithmd5 (1 3 36 3 3 2 4)

OID = 06 04 2B 24 03 04
Comment = Teletrust algorithm
Description = signatureScheme (1 3 36 3 4)

OID = 06 05 2B 24 03 04 01
Comment = Teletrust signature scheme
Description = sigS_ISO9796-1 (1 3 36 3 4 1)

OID = 06 05 2B 24 03 04 02
Comment = Teletrust signature scheme
Description = sigS_ISO9796-2 (1 3 36 3 4 2)

OID = 06 05 2B 24 03 04 02 01
Comment = Teletrust signature scheme.  Unsure what this is supposed to be
Description = sigS_ISO9796-2Withred (1 3 36 3 4 2 1)

OID = 06 06 2B 24 03 04 02 02
Comment = Teletrust signature scheme.  Unsure what this is supposed to be
Description = sigS_ISO9796-2Withrsa (1 3 36 3 4 2 2)

OID = 06 06 2B 24 03 04 02 03
Comment = Teletrust signature scheme.  9796-2 with random number in padding field
Description = sigS_ISO9796-2Withrnd (1 3 36 3 4 2 3)

OID = 06 03 2B 24 04
Comment = Teletrust attribute
Description = attribute (1 3 36 4)

OID = 06 03 2B 24 05
Comment = Teletrust policy
Description = policy (1 3 36 5)

OID = 06 03 2B 24 06
Comment = Teletrust API
Description = api (1 3 36 6)

OID = 06 04 2B 24 06 01
Comment = Teletrust API
Description = manufacturer-specific_api (1 3 36 6 1)

OID = 06 05 2B 24 06 01 01
Comment = Teletrust API
Description = utimaco-api (1 3 36 6 1 1)

OID = 06 04 2B 24 06 02
Comment = Teletrust API
Description = functionality-specific_api (1 3 36 6 2)

OID = 06 03 2B 24 07
Comment = Teletrust key management
Description = keymgmnt (1 3 36 7)

OID = 06 04 2B 24 07 01
Comment = Teletrust key management
Description = keyagree (1 3 36 7 1)

OID = 06 05 2B 24 07 01 01
Comment = Teletrust key management
Description = bsiPKE (1 3 36 7 1 1)

OID = 06 04 2B 24 07 02
Comment = Teletrust key management
Description = keytrans (1 3 36 7 2)

OID = 06 04 2B 24 07 02 01
Comment = Teletrust key management.  9796-2 with key stored in hash field
Description = encISO9796-2Withrsa (1 3 36 7 2 1)

# Thawte

OID = 06 04 2B 65 01 04
Comment = Thawte
Description = thawte-ce (1 3 101 1 4)

OID = 06 05 2B 65 01 04 01
Comment = Thawte certificate extension
Description = strongExtranet (1 3 101 1 4 1)

# X.520

OID = 06 03 55 04 00
Comment = X.520 id-at (2 5 4)
Description = objectClass (2 5 4 0)

OID = 06 03 55 04 01
Comment = X.520 id-at (2 5 4)
Description = aliasedEntryName (2 5 4 1)

OID = 06 03 55 04 02
Comment = X.520 id-at (2 5 4)
Description = knowledgeInformation (2 5 4 2)

OID = 06 03 55 04 03
Comment = X.520 id-at (2 5 4)
Description = commonName (2 5 4 3)

OID = 06 03 55 04 04
Comment = X.520 id-at (2 5 4)
Description = surname (2 5 4 4)

OID = 06 03 55 04 05
Comment = X.520 id-at (2 5 4)
Description = serialNumber (2 5 4 5)

OID = 06 03 55 04 06
Comment = X.520 id-at (2 5 4)
Description = countryName (2 5 4 6)

OID = 06 03 55 04 07
Comment = X.520 id-at (2 5 4)
Description = localityName (2 5 4 7)

OID = 06 04 55 04 07 01
Comment = X.520 id-at (2 5 4)
Description = collectiveLocalityName (2 5 4 7 1)

OID = 06 03 55 04 08
Comment = X.520 id-at (2 5 4)
Description = stateOrProvinceName (2 5 4 8)

OID = 06 04 55 04 08 01
Comment = X.520 id-at (2 5 4)
Description = collectiveStateOrProvinceName (2 5 4 8 1)

OID = 06 03 55 04 09
Comment = X.520 id-at (2 5 4)
Description = streetAddress (2 5 4 9)

OID = 06 04 55 04 09 01
Comment = X.520 id-at (2 5 4)
Description = collectiveStreetAddress (2 5 4 9 1)

OID = 06 03 55 04 0A
Comment = X.520 id-at (2 5 4)
Description = organizationName (2 5 4 10)

OID = 06 04 55 04 0A 01
Comment = X.520 id-at (2 5 4)
Description = collectiveOrganizationName (2 5 4 10 1)

OID = 06 03 55 04 0B
Comment = X.520 id-at (2 5 4)
Description = organizationalUnitName (2 5 4 11)

OID = 06 04 55 04 0B 01
Comment = X.520 id-at (2 5 4)
Description = collectiveOrganizationalUnitName (2 5 4 11 1)

OID = 06 03 55 04 0C
Comment = X.520 id-at (2 5 4)
Description = title (2 5 4 12)

OID = 06 03 55 04 0D
Comment = X.520 id-at (2 5 4)
Description = description (2 5 4 13)

OID = 06 03 55 04 0E
Comment = X.520 id-at (2 5 4)
Description = searchGuide (2 5 4 14)

OID = 06 03 55 04 0F
Comment = X.520 id-at (2 5 4)
Description = businessCategory (2 5 4 15)

OID = 06 03 55 04 10
Comment = X.520 id-at (2 5 4)
Description = postalAddress (2 5 4 16)

OID = 06 04 55 04 10 01
Comment = X.520 id-at (2 5 4)
Description = collectivePostalAddress (2 5 4 16 1)

OID = 06 03 55 04 11
Comment = X.520 id-at (2 5 4)
Description = postalCode (2 5 4 17)

OID = 06 04 55 04 11 01
Comment = X.520 id-at (2 5 4)
Description = collectivePostalCode (2 5 4 17 1)

OID = 06 03 55 04 12
Comment = X.520 id-at (2 5 4)
Description = postOfficeBox (2 5 4 18)

OID = 06 04 55 04 12 01
Comment = X.520 id-at (2 5 4)
Description = collectivePostOfficeBox (2 5 4 18 1)

OID = 06 03 55 04 13
Comment = X.520 id-at (2 5 4)
Description = physicalDeliveryOfficeName (2 5 4 19)

OID = 06 04 55 04 13 01
Comment = X.520 id-at (2 5 4)
Description = collectivePhysicalDeliveryOfficeName (2 5 4 19 1)

OID = 06 03 55 04 14
Comment = X.520 id-at (2 5 4)
Description = telephoneNumber (2 5 4 20)

OID = 06 04 55 04 14 01
Comment = X.520 id-at (2 5 4)
Description = collectiveTelephoneNumber (2 5 4 20 1)

OID = 06 03 55 04 15
Comment = X.520 id-at (2 5 4)
Description = telexNumber (2 5 4 21)

OID = 06 04 55 04 15 01
Comment = X.520 id-at (2 5 4)
Description = collectiveTelexNumber (2 5 4 21 1)

OID = 06 03 55 04 16
Comment = X.520 id-at (2 5 4)
Description = teletexTerminalIdentifier (2 5 4 22)

OID = 06 04 55 04 16 01
Comment = X.520 id-at (2 5 4)
Description = collectiveTeletexTerminalIdentifier (2 5 4 22 1)

OID = 06 03 55 04 17
Comment = X.520 id-at (2 5 4)
Description = facsimileTelephoneNumber (2 5 4 23)

OID = 06 04 55 04 17 01
Comment = X.520 id-at (2 5 4)
Description = collectiveFacsimileTelephoneNumber (2 5 4 23 1)

OID = 06 03 55 04 18
Comment = X.520 id-at (2 5 4)
Description = x121Address (2 5 4 24)

OID = 06 03 55 04 19
Comment = X.520 id-at (2 5 4)
Description = internationalISDNNumber (2 5 4 25)

OID = 06 04 55 04 19 01
Comment = X.520 id-at (2 5 4)
Description = collectiveInternationalISDNNumber (2 5 4 25 1)

OID = 06 03 55 04 1A
Comment = X.520 id-at (2 5 4)
Description = registeredAddress (2 5 4 26)

OID = 06 03 55 04 1B
Comment = X.520 id-at (2 5 4)
Description = destinationIndicator (2 5 4 27)

OID = 06 03 55 04 1C
Comment = X.520 id-at (2 5 4)
Description = preferredDeliveryMehtod (2 5 4 28)

OID = 06 03 55 04 1D
Comment = X.520 id-at (2 5 4)
Description = presentationAddress (2 5 4 29)

OID = 06 03 55 04 1E
Comment = X.520 id-at (2 5 4)
Description = supportedApplicationContext (2 5 4 30)

OID = 06 03 55 04 1F
Comment = X.520 id-at (2 5 4)
Description = member (2 5 4 31)

OID = 06 03 55 04 20
Comment = X.520 id-at (2 5 4)
Description = owner (2 5 4 32)

OID = 06 03 55 04 21
Comment = X.520 id-at (2 5 4)
Description = roleOccupant (2 5 4 33)

OID = 06 03 55 04 22
Comment = X.520 id-at (2 5 4)
Description = seeAlso (2 5 4 34)

OID = 06 03 55 04 23
Comment = X.520 id-at (2 5 4)
Description = userPassword (2 5 4 35)

OID = 06 03 55 04 24
Comment = X.520 id-at (2 5 4)
Description = userCertificate (2 5 4 36)

OID = 06 03 55 04 25
Comment = X.520 id-at (2 5 4)
Description = caCertificate (2 5 4 37)

OID = 06 03 55 04 26
Comment = X.520 id-at (2 5 4)
Description = authorityRevocationList (2 5 4 38)

OID = 06 03 55 04 27
Comment = X.520 id-at (2 5 4)
Description = certificateRevocationList (2 5 4 39)

OID = 06 03 55 04 28
Comment = X.520 id-at (2 5 4)
Description = crossCertificatePair (2 5 4 40)

OID = 06 03 55 04 29
Comment = X.520 id-at (2 5 4)
Description = name (2 5 4 41)

OID = 06 03 55 04 2A
Comment = X.520 id-at (2 5 4)
Description = givenName (2 5 4 42)

OID = 06 03 55 04 2B
Comment = X.520 id-at (2 5 4)
Description = initials (2 5 4 43)

OID = 06 03 55 04 2C
Comment = X.520 id-at (2 5 4)
Description = generationQualifier (2 5 4 44)

OID = 06 03 55 04 2D
Comment = X.520 id-at (2 5 4)
Description = uniqueIdentifier (2 5 4 45)

OID = 06 03 55 04 2E
Comment = X.520 id-at (2 5 4)
Description = dnQualifier (2 5 4 46)

OID = 06 03 55 04 2F
Comment = X.520 id-at (2 5 4)
Description = enhancedSearchGuide (2 5 4 47)

OID = 06 03 55 04 30
Comment = X.520 id-at (2 5 4)
Description = protocolInformation (2 5 4 48)

OID = 06 03 55 04 31
Comment = X.520 id-at (2 5 4)
Description = distinguishedName (2 5 4 49)

OID = 06 03 55 04 32
Comment = X.520 id-at (2 5 4)
Description = uniqueMember (2 5 4 50)

OID = 06 03 55 04 33
Comment = X.520 id-at (2 5 4)
Description = houseIdentifier (2 5 4 51)

OID = 06 03 55 04 34
Comment = X.520 id-at (2 5 4)
Description = supportedAlgorithms (2 5 4 52)

OID = 06 03 55 04 35
Comment = X.520 id-at (2 5 4)
Description = deltaRevocationList (2 5 4 53)

OID = 06 03 55 04 3A
Comment = X.520 id-at (2 5 4)
Description = crossCertificatePair (2 5 4 58)

# X500 algorithms

OID = 06 02 55 08
Description = X.500-Algorithms (2 5 8)

OID = 06 03 55 08 01
Description = X.500-Alg-Encryption (2 5 8 1)

OID = 06 04 55 08 01 01
Comment = X.500 algorithms.  Ambiguous, since no padding rules specified
Description = rsa (2 5 8 1 1)
Warning

# X.509.  Some of the smaller values are from early X.509 drafts with
# cross-pollination from X9.55 and are now deprecated.  Alternative OIDs are
# marked if these are known.  In some cases there are multiple generations of
# superseded OIDs

OID = 06 03 55 1D 01
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 35) instead
Description = authorityKeyIdentifier (2 5 29 1)
Warning

OID = 06 03 55 1D 02
Comment = X.509 id-ce (2 5 29).  Obsolete, use keyUsage/extKeyUsage instead
Description = keyAttributes (2 5 29 2)
Warning

OID = 06 03 55 1D 03
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 32) instead
Description = certificatePolicies (2 5 29 3)
Warning

OID = 06 03 55 1D 04
Comment = X.509 id-ce (2 5 29).  Obsolete, use keyUsage/extKeyUsage instead
Description = keyUsageRestriction (2 5 29 4)
Warning

OID = 06 03 55 1D 05
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 33) instead
Description = policyMapping (2 5 29 5)
Warning

OID = 06 03 55 1D 06
Comment = X.509 id-ce (2 5 29).  Obsolete, use nameConstraints instead
Description = subtreesConstraint (2 5 29 6)
Warning

OID = 06 03 55 1D 07
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 17) instead
Description = subjectAltName (2 5 29 7)
Warning

OID = 06 03 55 1D 08
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 18) instead
Description = issuerAltName (2 5 29 8)
Warning

OID = 06 03 55 1D 09
Comment = X.509 id-ce (2 5 29)
Description = subjectDirectoryAttributes (2 5 29 9)

OID = 06 03 55 1D 0A
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 19) instead
Description = basicConstraints (2 5 29 10)
Warning

OID = 06 03 55 1D 0B
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 30) instead
Description = nameConstraints (2 5 29 11)
Warning

OID = 06 03 55 1D 0C
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 36) instead
Description = policyConstraints (2 5 29 12)
Warning

OID = 06 03 55 1D 0D
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 19) instead
Description = basicConstraints (2 5 29 13)
Warning

OID = 06 03 55 1D 0E
Comment = X.509 id-ce (2 5 29)
Description = subjectKeyIdentifier (2 5 29 14)

OID = 06 03 55 1D 0F
Comment = X.509 id-ce (2 5 29)
Description = keyUsage (2 5 29 15)

OID = 06 03 55 1D 10
Comment = X.509 id-ce (2 5 29)
Description = privateKeyUsagePeriod (2 5 29 16)

OID = 06 03 55 1D 11
Comment = X.509 id-ce (2 5 29)
Description = subjectAltName (2 5 29 17)

OID = 06 03 55 1D 12
Comment = X.509 id-ce (2 5 29)
Description = issuerAltName (2 5 29 18)

OID = 06 03 55 1D 13
Comment = X.509 id-ce (2 5 29)
Description = basicConstraints (2 5 29 19)

OID = 06 03 55 1D 14
Comment = X.509 id-ce (2 5 29)
Description = cRLNumber (2 5 29 20)

OID = 06 03 55 1D 15
Comment = X.509 id-ce (2 5 29)
Description = cRLReason (2 5 29 21)

OID = 06 03 55 1D 16
Comment = X.509 id-ce (2 5 29).  Deprecated, alternative OID uncertain
Description = expirationDate (2 5 29 22)
Warning

OID = 06 03 55 1D 17
Comment = X.509 id-ce (2 5 29)
Description = instructionCode (2 5 29 23)

OID = 06 03 55 1D 18
Comment = X.509 id-ce (2 5 29)
Description = invalidityDate (2 5 29 24)

OID = 06 03 55 1D 19
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 31) instead
Description = cRLDistributionPoints (2 5 29 25) deprecated
Warning

OID = 06 03 55 1D 1A
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 28) instead
Description = issuingDistributionPoint (2 5 29 26)
Warning

OID = 06 03 55 1D 1B
Comment = X.509 id-ce (2 5 29)
Description = deltaCRLIndicator (2 5 29 27)

OID = 06 03 55 1D 1C
Comment = X.509 id-ce (2 5 29)
Description = issuingDistributionPoint (2 5 29 28)

OID = 06 03 55 1D 1D
Comment = X.509 id-ce (2 5 29)
Description = certificateIssuer (2 5 29 29)

OID = 06 03 55 1D 1E
Comment = X.509 id-ce (2 5 29)
Description = nameConstraints (2 5 29 30)

OID = 06 03 55 1D 1F
Comment = X.509 id-ce (2 5 29)
Description = cRLDistributionPoints (2 5 29 31)

OID = 06 03 55 1D 20
Comment = X.509 id-ce (2 5 29)
Description = certificatePolicies (2 5 29 32)

OID = 06 03 55 1D 21
Comment = X.509 id-ce (2 5 29)
Description = policyMappings (2 5 29 33)

OID = 06 03 55 1D 22
Comment = X.509 id-ce (2 5 29).  Deprecated, use (2 5 29 36) instead
Description = policyConstraints (2 5 29 34)
Warning

OID = 06 03 55 1D 23
Comment = X.509 id-ce (2 5 29)
Description = authorityKeyIdentifier (2 5 29 35)

OID = 06 03 55 1D 24
Comment = X.509 id-ce (2 5 29)
Description = policyConstraints (2 5 29 36)

OID = 06 03 55 1D 25
Comment = X.509 id-ce (2 5 29)
Description = extKeyUsage (2 5 29 37)

OID = 06 04 55 1D 25 00
Comment = X.509 id-ce (2 5 29)
Description = anyExtendedKeyUsage (2 5 29 37 0)


# DMS-SDN-702

OID = 06 09 60 86 48 01 65 02 01 01 01
Comment = DMS-SDN-702
Description = sdnsSignatureAlgorithm (2 16 840 1 101 2 1 1 1)

OID = 06 09 60 86 48 01 65 02 01 01 02
Comment = DMS-SDN-702.  Formerly known as mosaicSignatureAlgorithm, this OID is better known as dsaWithSHA-1.
Description = fortezzaSignatureAlgorithm (2 16 840 1 101 2 1 1 2)

OID = 06 09 60 86 48 01 65 02 01 01 03
Comment = DMS-SDN-702
Description = sdnsConfidentialityAlgorithm (2 16 840 1 101 2 1 1 3)

OID = 06 09 60 86 48 01 65 02 01 01 04
Comment = DMS-SDN-702.  Formerly known as mosaicConfidentialityAlgorithm
Description = fortezzaConfidentialityAlgorithm (2 16 840 1 101 2 1 1 4)

OID = 06 09 60 86 48 01 65 02 01 01 05
Comment = DMS-SDN-702
Description = sdnsIntegrityAlgorithm (2 16 840 1 101 2 1 1 5)

OID = 06 09 60 86 48 01 65 02 01 01 06
Comment = DMS-SDN-702.  Formerly known as mosaicIntegrityAlgorithm
Description = fortezzaIntegrityAlgorithm (2 16 840 1 101 2 1 1 6)

OID = 06 09 60 86 48 01 65 02 01 01 07
Comment = DMS-SDN-702
Description = sdnsTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 7)

OID = 06 09 60 86 48 01 65 02 01 01 08
Comment = DMS-SDN-702.  Formerly know as mosaicTokenProtectionAlgorithm
Description = fortezzaTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 8)

OID = 06 09 60 86 48 01 65 02 01 01 09
Comment = DMS-SDN-702
Description = sdnsKeyManagementAlgorithm (2 16 840 1 101 2 1 1 9)

OID = 06 09 60 86 48 01 65 02 01 01 0A
Comment = DMS-SDN-702.  Formerly known as mosaicKeyManagementAlgorithm
Description = fortezzaKeyManagementAlgorithm (2 16 840 1 101 2 1 1 10)

OID = 06 09 60 86 48 01 65 02 01 01 0B
Comment = DMS-SDN-702
Description = sdnsKMandSigAlgorithm (2 16 840 1 101 2 1 1 11)

OID = 06 09 60 86 48 01 65 02 01 01 0C
Comment = DMS-SDN-702.  Formerly known as mosaicKMandSigAlgorithm
Description = fortezzaKMandSigAlgorithm (2 16 840 1 101 2 1 1 12)

OID = 06 09 60 86 48 01 65 02 01 01 0D
Comment = DMS-SDN-702
Description = SuiteASignatureAlgorithm (2 16 840 1 101 2 1 1 13)

OID = 06 09 60 86 48 01 65 02 01 01 0E
Comment = DMS-SDN-702
Description = SuiteAConfidentialityAlgorithm (2 16 840 1 101 2 1 1 14)

OID = 06 09 60 86 48 01 65 02 01 01 0F
Comment = DMS-SDN-702
Description = SuiteAIntegrityAlgorithm (2 16 840 1 101 2 1 1 15)

OID = 06 09 60 86 48 01 65 02 01 01 10
Comment = DMS-SDN-702
Description = SuiteATokenProtectionAlgorithm (2 16 840 1 101 2 1 1 16)

OID = 06 09 60 86 48 01 65 02 01 01 11
Comment = DMS-SDN-702
Description = SuiteAKeyManagementAlgorithm (2 16 840 1 101 2 1 1 17)

OID = 06 09 60 86 48 01 65 02 01 01 12
Comment = DMS-SDN-702
Description = SuiteAKMandSigAlgorithm (2 16 840 1 101 2 1 1 18)

OID = 06 09 60 86 48 01 65 02 01 01 13
Comment = DMS-SDN-702.  Formerly known as mosaicUpdatedSigAlgorithm
Description = fortezzaUpdatedSigAlgorithm (2 16 840 1 101 2 1 1 19)

OID = 06 09 60 86 48 01 65 02 01 01 14
Comment = DMS-SDN-702.  Formerly known as mosaicKMandUpdSigAlgorithms
Description = fortezzaKMandUpdSigAlgorithms (2 16 840 1 101 2 1 1 20)

OID = 06 09 60 86 48 01 65 02 01 01 15
Comment = DMS-SDN-702.  Formerly known as mosaicUpdatedIntegAlgorithm
Description = fortezzaUpdatedIntegAlgorithm (2 16 840 1 101 2 1 1 21)

OID = 06 09 60 86 48 01 65 02 01 01 16
Comment = DMS-SDN-702.  Formerly known as mosaicKeyEncryptionAlgorithm
Description = keyExchangeAlgorithm (2 16 840 1 101 2 1 1 22)

# CSOR (GAK-FIPS)

OID = 06 07 60 86 48 01 65 03 01
Comment = CSOR GAK
Description = slabel (2 16 840 1 101 3 1)
Warning

OID = 06 07 60 86 48 01 65 03 02
Comment = CSOR GAK
Description = pki (2 16 840 1 101 3 2)
Warning

OID = 06 08 60 86 48 01 65 03 02 01
Comment = CSOR GAK policy
Description = GAK policyIdentifier (2 16 840 1 101 3 2 1)
Warning

OID = 06 08 60 86 48 01 65 03 02 02
Comment = CSOR GAK extended key usage
Description = GAK (2 16 840 1 101 3 2 2)
Warning

OID = 06 09 60 86 48 01 65 03 02 02 01
Comment = CSOR GAK extended key usage
Description = kRAKey (2 16 840 1 101 3 2 2 1)
Warning

OID = 06 08 60 86 48 01 65 03 02 03
Comment = CSOR GAK extensions
Description = extensions (2 16 840 1 101 3 2 3)
Warning

OID = 06 09 60 86 48 01 65 03 02 03 01
Comment = CSOR GAK extensions
Description = kRTechnique (2 16 840 1 101 3 2 3 1)
Warning

OID = 06 09 60 86 48 01 65 03 02 03 02
Comment = CSOR GAK extensions
Description = kRecoveryCapable (2 16 840 1 101 3 2 3 2)
Warning

OID = 06 09 60 86 48 01 65 03 02 03 03
Comment = CSOR GAK extensions
Description = kR (2 16 840 1 101 3 2 3 3)
Warning

OID = 06 08 60 86 48 01 65 03 02 04
Comment = CSOR GAK
Description = keyrecoveryschemes (2 16 840 1 101 3 2 4)
Warning

OID = 06 08 60 86 48 01 65 03 02 05
Comment = CSOR GAK
Description = krapola (2 16 840 1 101 3 2 5)
Warning

OID = 06 07 60 86 48 01 65 03 03
Comment = CSOR GAK
Description = arpa (2 16 840 1 101 3 3)
Warning

# Novell

OID = 06 09 60 86 48 01 86 F8 37 01 09
Comment = Novell
Description = pki (2 16 840 1 113719 1 9)

OID = 06 0A 60 86 48 01 86 F8 37 01 09 04
Comment = Novell PKI
Description = pkiAttributeType (2 16 840 1 113719 1 9 4)

OID = 06 0B 60 86 48 01 86 F8 37 01 09 04 01
Comment = Novell PKI attribute type
Description = registeredAttributes (2 16 840 1 113719 1 9 4 1)

OID = 06 0B 60 86 48 01 86 F8 37 01 09 04 02
Comment = Novell PKI attribute type
Description = relianceLimit (2 16 840 1 113719 1 9 4 2)

# Netscape

OID = 06 08 60 86 48 01 86 F8 42 01
Comment = Netscape
Description = cert-extension (2 16 840 1 113730 1)

OID = 06 09 60 86 48 01 86 F8 42 01 01
Comment = Netscape certificate extension
Description = netscape-cert-type (2 16 840 1 113730 1 1)

OID = 06 09 60 86 48 01 86 F8 42 01 02
Comment = Netscape certificate extension
Description = netscape-base-url (2 16 840 1 113730 1 2)

OID = 06 09 60 86 48 01 86 F8 42 01 03
Comment = Netscape certificate extension
Description = netscape-revocation-url (2 16 840 1 113730 1 3)

OID = 06 09 60 86 48 01 86 F8 42 01 04
Comment = Netscape certificate extension
Description = netscape-ca-revocation-url (2 16 840 1 113730 1 4)

OID = 06 09 60 86 48 01 86 F8 42 02 05
Comment = Netscape certificate extension
Description = netscape-cert-sequence (2 16 840 1 113730 2 5)

OID = 06 09 60 86 48 01 86 F8 42 02 06
Comment = Netscape certificate extension
Description = netscape-cert-url (2 16 840 1 113730 2 6)

OID = 06 09 60 86 48 01 86 F8 42 01 07
Comment = Netscape certificate extension
Description = netscape-cert-renewal-url (2 16 840 1 113730 1 7)

OID = 06 09 60 86 48 01 86 F8 42 01 08
Comment = Netscape certificate extension
Description = netscape-ca-policy-url (2 16 840 1 113730 1 8)

OID = 06 09 60 86 48 01 86 F8 42 01 09
Comment = Netscape certificate extension
Description = HomePage-url (2 16 840 1 113730 1 9)

OID = 06 09 60 86 48 01 86 F8 42 01 0A
Comment = Netscape certificate extension
Description = EntityLogo (2 16 840 1 113730 1 10)

OID = 06 09 60 86 48 01 86 F8 42 01 0B
Comment = Netscape certificate extension
Description = UserPicture (2 16 840 1 113730 1 11)

OID = 06 09 60 86 48 01 86 F8 42 01 0C
Comment = Netscape certificate extension
Description = netscape-ssl-server-name (2 16 840 1 113730 1 12)

OID = 06 09 60 86 48 01 86 F8 42 01 0D
Comment = Netscape certificate extension
Description = netscape-comment (2 16 840 1 113730 1 13)

OID = 06 08 60 86 48 01 86 F8 42 02
Comment = Netscape
Description = data-type (2 16 840 1 113730 2)

OID = 06 09 60 86 48 01 86 F8 42 02 01
Comment = Netscape data type
Description = GIF (2 16 840 1 113730 2 1)

OID = 06 09 60 86 48 01 86 F8 42 02 02
Comment = Netscape data type
Description = JPEG (2 16 840 1 113730 2 2)

OID = 06 09 60 86 48 01 86 F8 42 02 03
Comment = Netscape data type
Description = URL (2 16 840 1 113730 2 3)

OID = 06 09 60 86 48 01 86 F8 42 02 04
Comment = Netscape data type
Description = HTML (2 16 840 1 113730 2 4)

OID = 06 09 60 86 48 01 86 F8 42 02 05
Comment = Netscape data type
Description = CertSeq (2 16 840 1 113730 2 5)

OID = 06 08 60 86 48 01 86 F8 42 03
Comment = Netscape
Description = directory (2 16 840 1 113730 3)

OID = 06 09 60 86 48 01 86 F8 42 03 01
Comment = Netscape directory
Description = ldapDefinitions (2 16 840 1 113730 3 1)

OID = 06 0A 60 86 48 01 86 F8 42 03 01 01
Comment = Netscape LDAP definitions
Description = carLicense (2 16 840 1 113730 3 1 1)

OID = 06 0A 60 86 48 01 86 F8 42 03 01 02
Comment = Netscape LDAP definitions
Description = departmentNumber (2 16 840 1 113730 3 1 2)

OID = 06 0A 60 86 48 01 86 F8 42 03 01 03
Comment = Netscape LDAP definitions
Description = employeeNumber (2 16 840 1 113730 3 1 3)

OID = 06 0A 60 86 48 01 86 F8 42 03 01 04
Comment = Netscape LDAP definitions
Description = employeeType (2 16 840 1 113730 3 1 4)

OID = 06 0A 60 86 48 01 86 F8 42 03 02 02
Comment = Netscape LDAP definitions
Description = inetOrgPerson (2 16 840 1 113730 3 2 2)

OID = 06 09 60 86 48 01 86 F8 42 04 01
Comment = Netscape
Description = serverGatedCrypto (2 16 840 1 113730 4 1)

# Verisign

OID = 06 0A 60 86 48 01 86 F8 45 01 06 03
Comment = Verisign
Description = Unknown Verisign extension (2 16 840 1 113733 1 6 3)

OID = 06 0A 60 86 48 01 86 F8 45 01 06 06
Comment = Verisign
Description = Unknown Verisign extension (2 16 840 1 113733 1 6 6)

OID = 06 0B 60 86 48 01 86 F8 45 01 07 01 01
Comment = Verisign
Description = Verisign certificatePolicy (2 16 840 1 113733 1 7 1 1)

OID = 06 0C 60 86 48 01 86 F8 45 01 07 01 01 01
Comment = Verisign
Description = Unknown Verisign policy qualifier (2 16 840 1 113733 1 7 1 1 1)

OID = 06 0C 60 86 48 01 86 F8 45 01 07 01 01 02
Comment = Verisign
Description = Unknown Verisign policy qualifier (2 16 840 1 113733 1 7 1 1 2)

OID = 06 0A 60 86 48 01 86 F8 45 01 08 01
Comment = Verisign
Description = Verisign SGC CA? (2 16 840 1 113733 1 8 1)

# SET

OID = 06 03 67 2A 00
Comment = SET
Description = contentType (2 23 42 0)

OID = 06 04 67 2A 00 00
Comment = SET contentType
Description = PANData (2 23 42 0 0)

OID = 06 04 67 2A 00 01
Comment = SET contentType
Description = PANToken (2 23 42 0 1)

OID = 06 04 67 2A 00 02
Comment = SET contentType
Description = PANOnly (2 23 42 0 2)

# And on and on and on for another 80-odd OIDs which I'm not going to type in

OID = 06 03 67 2A 01
Comment = SET
Description = msgExt (2 23 42 1)

OID = 06 03 67 2A 02
Comment = SET
Description = field (2 23 42 2)

OID = 06 04 67 2A 02 00
Comment = SET field
Description = fullName (2 23 42 2 0)

OID = 06 04 67 2A 02 01
Comment = SET field
Description = givenName (2 23 42 2 1)

OID = 06 04 67 2A 02 02
Comment = SET field
Description = familyName (2 23 42 2 2)

OID = 06 04 67 2A 02 03
Comment = SET field
Description = birthFamilyName (2 23 42 2 3)

OID = 06 04 67 2A 02 04
Comment = SET field
Description = placeName (2 23 42 2 4)

OID = 06 04 67 2A 02 05
Comment = SET field
Description = identificationNumber (2 23 42 2 5)

OID = 06 04 67 2A 02 06
Comment = SET field
Description = month (2 23 42 2 6)

OID = 06 04 67 2A 02 07
Comment = SET field
Description = date (2 23 42 2 7)

OID = 06 04 67 2A 02 08
Comment = SET field
Description = address (2 23 42 2 8)

OID = 06 04 67 2A 02 09
Comment = SET field
Description = telephone (2 23 42 2 9)

OID = 06 04 67 2A 02 0A
Comment = SET field
Description = amount (2 23 42 2 10)

OID = 06 04 67 2A 02 0B
Comment = SET field
Description = accountNumber (2 23 42 2 7 11)

OID = 06 04 67 2A 02 0C
Comment = SET field
Description = passPhrase (2 23 42 2 7 12)

OID = 06 03 67 2A 03
Comment = SET
Description = attribute (2 23 42 3)

OID = 06 04 67 2A 03 00
Comment = SET attribute
Description = cert (2 23 42 3 0)

OID = 06 05 67 2A 03 00 00
Comment = SET cert attribute
Description = rootKeyThumb (2 23 42 3 0 0)

OID = 06 05 67 2A 03 00 01
Comment = SET cert attribute
Description = additionalPolicy (2 23 42 3 0 1)

OID = 06 03 67 2A 04
Comment = SET
Description = algorithm (2 23 42 4)

OID = 06 03 67 2A 05
Comment = SET
Description = policy (2 23 42 5)

OID = 06 04 67 2A 05 00
Comment = SET policy
Description = root (2 23 42 5 0)

OID = 06 03 67 2A 06
Comment = SET
Description = module (2 23 42 6)

OID = 06 03 67 2A 07
Comment = SET
Description = certExt (2 23 42 7)

OID = 06 04 67 2A 07 00
Comment = SET cert extension
Description = hashedRootKey (2 23 42 7 0)

OID = 06 04 67 2A 07 01
Comment = SET cert extension
Description = certificateType (2 23 42 7 1)

OID = 06 04 67 2A 07 02
Comment = SET cert extension
Description = merchantData (2 23 42 7 2)

OID = 06 04 67 2A 07 03
Comment = SET cert extension
Description = cardCertRequired (2 23 42 7 3)

OID = 06 04 67 2A 07 04
Comment = SET cert extension
Description = tunneling (2 23 42 7 4)

OID = 06 04 67 2A 07 05
Comment = SET cert extension
Description = setExtensions (2 23 42 7 5)

OID = 06 04 67 2A 07 06
Comment = SET cert extension
Description = setQualifier (2 23 42 7 6)

OID = 06 03 67 2A 08
Comment = SET
Description = brand (2 23 42 8)

OID = 06 04 67 2A 08 01
Comment = SET brand
Description = IATA-ATA (2 23 42 8 1)

OID = 06 04 67 2A 08 04
Comment = SET brand
Description = VISA (2 23 42 8 4)

OID = 06 04 67 2A 08 05
Comment = SET brand
Description = MasterCard (2 23 42 8 5)

OID = 06 04 67 2A 08 1E
Comment = SET brand
Description = Diners (2 23 42 8 30)

OID = 06 04 67 2A 08 22
Comment = SET brand
Description = AmericanExpress (2 23 42 8 34)

OID = 06 05 67 2A 08 AE 7B
Comment = SET brand
Description = Novus (2 23 42 8 6011)

OID = 06 03 67 2A 09
Comment = SET
Description = vendor (2 23 42 9)

OID = 06 04 67 2A 09 00
Comment = SET vendor
Description = GlobeSet (2 23 42 9 0)

OID = 06 04 67 2A 09 01
Comment = SET vendor
Description = IBM (2 23 42 9 1)

OID = 06 04 67 2A 09 02
Comment = SET vendor
Description = CyberCash (2 23 42 9 2)

OID = 06 04 67 2A 09 03
Comment = SET vendor
Description = Terisa (2 23 42 9 3)

OID = 06 04 67 2A 09 04
Comment = SET vendor
Description = RSADSI (2 23 42 9 4)

OID = 06 04 67 2A 09 05
Comment = SET vendor
Description = VeriFone (2 23 42 9 5)

OID = 06 04 67 2A 09 06
Comment = SET vendor
Description = TrinTech (2 23 42 9 6)

OID = 06 04 67 2A 09 07
Comment = SET vendor
Description = BankGate (2 23 42 9 7)

OID = 06 04 67 2A 09 08
Comment = SET vendor
Description = GTE (2 23 42 9 8)

OID = 06 04 67 2A 09 09
Comment = SET vendor
Description = CompuSource (2 23 42 9 9)

OID = 06 04 67 2A 09 0A
Comment = SET vendor
Description = Griffin (2 23 42 9 10)

OID = 06 04 67 2A 09 0B
Comment = SET vendor
Description = Certicom (2 23 42 9 11)

OID = 06 04 67 2A 09 0C
Comment = SET vendor
Description = OSS (2 23 42 9 12)

OID = 06 04 67 2A 09 0D
Comment = SET vendor
Description = TenthMountain (2 23 42 9 13)

OID = 06 04 67 2A 09 0E
Comment = SET vendor
Description = Antares (2 23 42 9 14)

OID = 06 04 67 2A 09 0F
Comment = SET vendor
Description = ECC (2 23 42 9 15)

OID = 06 04 67 2A 09 10
Comment = SET vendor
Description = Maithean (2 23 42 9 16)

OID = 06 04 67 2A 09 11
Comment = SET vendor
Description = Netscape (2 23 42 9 17)

OID = 06 04 67 2A 09 12
Comment = SET vendor
Description = Verisign (2 23 42 9 18)

OID = 06 04 67 2A 09 13
Comment = SET vendor
Description = BlueMoney (2 23 42 9 19)

OID = 06 04 67 2A 09 14
Comment = SET vendor
Description = Lacerte (2 23 42 9 20)

OID = 06 04 67 2A 09 15
Comment = SET vendor
Description = Fujitsu (2 23 42 9 21)

OID = 06 04 67 2A 09 16
Comment = SET vendor
Description = eLab (2 23 42 9 22)

OID = 06 04 67 2A 09 17
Comment = SET vendor
Description = Entrust (2 23 42 9 23)

OID = 06 04 67 2A 09 18
Comment = SET vendor
Description = VIAnet (2 23 42 9 24)

OID = 06 04 67 2A 09 19
Comment = SET vendor
Description = III (2 23 42 9 25)

OID = 06 04 67 2A 09 1A
Comment = SET vendor
Description = OpenMarket (2 23 42 9 26)

OID = 06 04 67 2A 09 1B
Comment = SET vendor
Description = Lexem (2 23 42 9 27)

OID = 06 04 67 2A 09 1C
Comment = SET vendor
Description = Intertrader (2 23 42 9 28)

OID = 06 04 67 2A 09 1D
Comment = SET vendor
Description = Persimmon (2 23 42 9 29)

OID = 06 04 67 2A 09 1E
Comment = SET vendor
Description = NABLE (2 23 42 9 30)

OID = 06 04 67 2A 09 1F
Comment = SET vendor
Description = espace-net (2 23 42 9 31)

OID = 06 04 67 2A 09 20
Comment = SET vendor
Description = Hitachi (2 23 42 9 32)

OID = 06 04 67 2A 09 21
Comment = SET vendor
Description = Microsoft (2 23 42 9 33)

OID = 06 04 67 2A 09 22
Comment = SET vendor
Description = NEC (2 23 42 9 34)

OID = 06 04 67 2A 09 23
Comment = SET vendor
Description = Mitsubishi (2 23 42 9 35)

OID = 06 04 67 2A 09 24
Comment = SET vendor
Description = NCR (2 23 42 9 36)

OID = 06 04 67 2A 09 25
Comment = SET vendor
Description = e-COMM (2 23 42 9 37)

OID = 06 04 67 2A 09 26
Comment = SET vendor
Description = Gemplus (2 23 42 9 38)

OID = 06 03 67 2A 0A
Comment = SET
Description = national (2 23 42 10)

OID = 06 05 67 2A 0A 81 40
Comment = SET national
Description = Japan (2 23 42 10 192)

# Draft SET.  These were invented for testing in pre-1.0 drafts, but have
# been used nonetheless by implementors

OID = 06 04 86 8D 6F 02
Comment = SET.  Deprecated, use (2 23 42 7 0) instead
Description = hashedRootKey (2 54 1775 2)
Warning

OID = 06 04 86 8D 6F 03
Comment = SET.  Deprecated, use (2 23 42 7 0) instead
Description = certificateType (2 54 1775 3)
Warning

OID = 06 04 86 8D 6F 04
Comment = SET.  Deprecated, use (2 23 42 7 0) instead
Description = merchantData (2 54 1775 4)
Warning

OID = 06 04 86 8D 6F 05
Comment = SET.  Deprecated, use (2 23 42 7 0) instead
Description = cardCertRequired (2 54 1775 5)
Warning

OID = 06 04 86 8D 6F 06
Comment = SET.  Deprecated, use (2 23 42 7 0) instead
Description = tunneling (2 54 1775 6)
Warning

OID = 06 04 86 8D 6F 07
Comment = SET.  Deprecated, use (2 23 42 7 0) instead
Description = setQualifier (2 54 1775 7)
Warning

OID = 06 04 86 8D 6F 63
Comment = SET.  Deprecated, use (2 23 42 7 0) instead
Description = set-data (2 54 1775 99)
Warning

# Apple

OID = 06 06 2A 86 48 86 F7 63
Comment = Apple Computer, Inc.
Description = apple (1 2 840 113635)

OID = 6 07 2A 86 48 86 F7 63 64
Comment = Apple Data Security
Description = appleDataSecurity (1 2 840 113635 100)

OID = 06 08 2A 86 48 86 F7 63 64 01
Comment = Apple Trust Policy
Description = appleTrustPolicy (1 2 840 113635 100 1)

OID = 06 08 2A 86 48 86 F7 63 64 02
Comment = Apple Security Algorithms
Description = appleSecurityAlgorithm (1 2 840 113635 100 2)

OID = 06 09 2A 86 48 86 F7 63 64 02 01
Comment = Apple FEE
Description = fee (1 2 840 113635 100 2 1)

OID = 06 09 2A 86 48 86 F7 63 64 02 02
Comment = Apple ASC
Description = asc (1 2 840 113635 100 2 2)

OID = 06 09 2A 86 48 86 F7 63 64 02 03
Comment = Apple FEE/MD5 signature
Description = feeMD5 (1 2 840 113635 100 2 3)

OID = 06 09 2A 86 48 86 F7 63 64 02 04
Comment = Apple FEE/SHA1 signature
Description = feeSHA1 (1 2 840 113635 100 2 4)

OID = 06 09 2A 86 48 86 F7 63 64 02 05
Comment = Apple FEED encryption
Description = appleFeed (1 2 840 113635 100 2 5)

OID = 06 09 2A 86 48 86 F7 63 64 02 06
Comment = Apple FEEDExp signature
Description = appleFeedExp (1 2 840 113635 100 2 6)

OID = 06 09 2A 86 48 86 F7 63 64 02 07
Comment = Apple FEE/ECDSA signature
Description = feeECDSA (1 2 840 113635 100 2 7)

OID = 06 08 2A 86 48 86 F7 63 64 03
Comment = Apple .Mac Certificate arc
Description = appleDotMacCertificate (OID 1 2 840 113635 100 3)

OID = 06 09 2A 86 48 86 F7 63 64 03 02
Comment = Apple .Mac Certificate Extension arc
Description = dotMacCertificateExtension (OID 1 2 840 113635 100 3 2)

OID = 06 0A 2A 86 48 86 F7 63 64 03 02 01
Comment = Apple .Mac Certificate Identity Extension
Description = dotMacCertExtensionIdentity (OID 1 2 840 113635 100 3 2 1)

OID = 06 0A 2A 86 48 86 F7 63 64 03 02 02
Comment = Apple .Mac Certificate Email Sign Extension
Description = dotMacCertExtensionEmailSign (OID 1 2 840 113635 100 3 2 2)

OID = 06 0A 2A 86 48 86 F7 63 64 03 02 03
Comment = Apple .Mac Certificate Email Encrypt Extension
Description = dotMacCertExtensionEmailEncrypt (OID 1 2 840 113635 100 3 2 3)

OID = 06 08 2A 86 48 86 F7 63 64 04
Comment = Apple Extended Key Usage arc
Description = appleExtendedKeyUsage (OID 1 2 840 113635 100 4)

OID = 06 09 2A 86 48 86 F7 63 64 04 01
Comment = Apple Code Signing Extended Key Usage
Description = appleCodeSigning  (OID 1 2 840 113635 100 4 1)

OID = 06 0A 2A 86 48 86 F7 63 64 04 01 02
Comment = Apple Software Update Signing Extended Key Usage
Description = appleSoftwareUpdateSigning  (OID 1 2 840 113635 100 4 1 2)

OID = 06 0A 2A 86 48 86 F7 63 64 04 01 03
Comment = Apple Third Party Code Signing Extended Key Usage
Description = appleThirdPartyCodeSigning  (OID 1 2 840 113635 100 4 1 3)

OID = 06 0A 2A 86 48 86 F7 63 64 04 01 04
Comment = Apple Resource Signing Extended Key Usage
Description = appleResourceSigning  (OID 1 2 840 113635 100 4 1 4)

OID = 06 0A 2A 86 48 86 F7 63 64 04 01 01
Comment = Apple Code Signing DEVELOPMENT Extended Key Usage
Description = appleCodeSigningDevelopment  (OID 1 2 840 113635 100 4 1 1)

OID = 06 09 2A 86 48 86 F7 63 64 04 02
Comment = Apple iChat Signing Extended Key Usage
Description = appleiChatSigning  (OID 1 2 840 113635 100 4 2)

OID = 06 09 2A 86 48 86 F7 63 64 04 03
Comment = Apple Code Signing Extended Key Usage
Description = appleiChatEncryption (OID 1 2 840 113635 100 4 3)

OID = 06 09 2A 86 48 86 F7 63 64 04 04
Comment = Apple System Identity Extended Key Usage
Description = appleSystemIdentity (OID 1 2 840 113635 100 4 4)

OID = 06 08 2A 86 48 86 F7 63 64 05
Comment = Apple Certificate Policy arc
Description = Apple Certificate Policy arc (OID 1 2 840 113635 100 5)

OID = 06 09 2A 86 48 86 F7 63 64 05 01
Comment = Apple Certificate Policy 
Description = Apple Certificate Policy (OID 1 2 840 113635 100 5 1)

OID = 06 09 2A 86 48 86 F7 63 64 05 02
Comment = Apple .Mac Certificate Policy 
Description = Apple .Mac Certificate Policy (OID 1 2 840 113635 100 5 2)

# Extended key usage 
OID = 06 04 55 1D 25 03
Comment = Code Signing
Description = id-kp-codeSigning (OID 2 5 29 37 3)

# Intel's CDSA-specific SHA1withECDSA
OID = 06 0B 60 86 48 01 86 F8 4D 02 02 05 51
Comment = CDSA SHA1 with ECDSA
Description = sha1WithECDSA (OID 2 16 840 1 113741 2 2 5 81)

# Microsoft Cert Authority Renewal Version
OID = 06 09 2B 06 01 04 01 82 37 15 01
Comment = Microsoft Cert Authority Renewal Version
Description = certSrv-ca-version (OID 1 3 6 1 4 1 311 21 1)

# Fictitious US DOD CRL entry extension
OID = 06 09 60 86 48 01 65 02 01 0C 02 
Comment = Fictitious US DOD CRL entry extension
Description = id-test-extension (OID 2 16 840 1 101 2 1 12 2)

# Microsoft Kerberos 
OID = 06 09 2A 86 48 82 F7 12 01 02 02
Comment = Microsoft SPNEGO/Kerberos
Description = microsoft-kerberos (OID 1 2 840 48018 1 2 2)

# Kerberos V5
OID = 06 09 2A 86 48 86 F7 12 01 02 02
Comment = Kerberos V5
Description = kerberos-v5 (OID 1 2 840 113554 1 2 2)

# IANA SPNEGO, RFC 2478
OID = 06 06 2B 06 01 05 05 02
Comment = IANA SPNEGO 
Description = spnego (OID 1 3 6 1 5 5 2)

# MIT user-to-user kerberos
OID = 06 0A 2A 86 48 86 F7 12 01 02 02 03
Comment = MIT User-to-user Kerberos
Description = user-to-user-kerberos (OID 1.2.840.113554.1.2.2.3)

OID = 06 0A 2B 06 01 04 01 82 37 02 02 0A
Comment = Microsoft NTLMSSP
Description = ntlmssp (OID 1.3.6.1.4.1.311.2.2.10)

# AES base
OID = 06 08 60 86 48 01 65 03 04 01
Comment = aes
Description = aes (OID 2 16 840 1 101 3 4 1)

# AES, 128 bit key
OID = 06 09 60 86 48 01 65 03 04 01 01
Comment = id-aes128-ECB
Description = id-aes128-ECB (OID 2 16 840 1 101 3 4 1 1)

OID = 06 09 60 86 48 01 65 03 04 01 02
Comment = id-aes128-CBC
Description = id-aes128-CBC (OID 2 16 840 1 101 3 4 1 2)

OID = 06 09 60 86 48 01 65 03 04 01 03
Comment = id-aes128-OFB
Description = id-aes128-OFB (OID 2 16 840 1 101 3 4 1 3)

OID = 06 09 60 86 48 01 65 03 04 01 04
Comment = id-aes128-CFB
Description = id-aes128-CFB (OID 2 16 840 1 101 3 4 1 4)

# AES, 192 bit key
OID = 06 09 60 86 48 01 65 03 04 01 15
Comment =  id-aes192-ECB
Description = id-aes192-ECB (OID 2 16 840 1 101 3 4 1 21)

OID = 06 09 60 86 48 01 65 03 04 01 16
Comment =  id-aes192-CBC
Description = id-aes192-CBC (OID 2 16 840 1 101 3 4 1 22)

OID = 06 09 60 86 48 01 65 03 04 01 17
Comment = id-aes192-OFB
Description = id-aes192-OFB (OID 2 16 840 1 101 3 4 1 23)

OID = 06 09 60 86 48 01 65 03 04 01 18
Comment = id-aes192-CFB
Description = id-aes192-CFB (OID 2 16 840 1 101 3 4 1 24)

# AES, 256 bit key
OID = 06 09 60 86 48 01 65 03 04 01 29
Comment =  id-aes256-ECB
Description = id-aes256-ECB (OID 2 16 840 1 101 3 4 1 41)

OID = 06 09 60 86 48 01 65 03 04 01 2A
Comment =  id-aes256-CBC
Description = id-aes256-CBC (OID 2 16 840 1 101 3 4 1 42)

OID = 06 09 60 86 48 01 65 03 04 01 2B
Comment = id-aes256-OFB
Description = id-aes256-OFB (OID 2 16 840 1 101 3 4 1 43)

OID = 06 09 60 86 48 01 65 03 04 01 2C
Comment = id-aes256-CFB
Description = id-aes256-CFB (OID 2 16 840 1 101 3 4 1 44)

OID = 06 08 2B 06 01 04 01 82 37 14
Comment = Microsoft Enrollment Infrastructure
Description = MicrosoftEnrollmentInfrastructure (OID 1 3 6 1 4 1 311 20)

OID = 06 09 2B 06 01 04 01 82 37 14 01
Comment = Auto-Enroll CTL Usage
Description = msCtlUsage (OID 1 3 6 1 4 1 311 20 1)

OID = 06 09 2B 06 01 04 01 82 37 14 02
Comment = Enrollment Certificate Type
Description = msCertType (OID 1 3 6 1 4 1 311 20 2)

OID = 06 0A 2B 06 01 04 01 82 37 14 02 01
Comment = Enrollment Agent
Description = msEnrollmentAgent (OID 1 3 6 1 4 1 311 20 2 1)

OID = 06 0A 2B 06 01 04 01 82 37 14 02 02
Comment = Smartcard Logon
Description = msSmartCardLogon (OID 1 3 6 1 4 1 311 20 2 2)

OID = 06 0A 2B 06 01 04 01 82 37 14 02 03
Comment = NT Principal Name
Description = NTPrincipalName (OID 1 3 6 1 4 1 311 20 2 3)

OID = 06 08 2B 06 01 05 05 07 01 03
Comment = Qualified Certificate Statements
Description = id-pe-qcStatements (OID 1 3 6 1 5 5 7 1 3)

OID = 06 07 2B 06 01 05 05 07 0B
Comment = Qualified Certificate Statements
Description = id-qcs (OID  1 3 6 1 5 5 7 11)

# addenda for Qualified Cert Statements

OID = 06 07 2B 06 01 05 05 07 01
Comment = Qualified Certificate Statements
Description = id-pe (OID 1 3 6 1 5 5 7 1)

OID = 06 07 2B 06 01 05 05 07 09
Comment = Personal Data Attributes
Description = id-pda (OID 1 3 6 1 5 5 7 9)

OID = 06 08 2B 06 01 05 05 07 09
Comment = Personal Data Attributes
Description = id-pda-dateOfBirth (OID  1 3 6 1 5 5 7 9 1)

OID = 06 08 2B 06 01 05 05 07 09
Comment = Personal Data Attributes
Description = id-pda-placeOfBirth (OID  1 3 6 1 5 5 7 9 2)

OID = 06 08 2B 06 01 05 05 07 09
Comment = Personal Data Attributes
Description = id-pda-gender (OID  1 3 6 1 5 5 7 9 3)

OID = 06 08 2B 06 01 05 05 07 09
Comment = Personal Data Attributes
Description = id-pda-countryOfCitizenship (OID  1 3 6 1 5 5 7 9 4)

OID = 06 08 2B 06 01 05 05 07 09
Comment = Personal Data Attributes
Description = id-pda-countryOfResidence (OID  1 3 6 1 5 5 7 9 5)

OID = 06 08 2B 06 01 05 05 07 0B 01
Comment = Qualified Certificate Statement QCSyntax-v1
Description = id-qcs-pkixQCSyntax-v1 (OID  1 3 6 1 5 5 7 11 1)

OID = 06 08 2B 06 01 05 05 07 0B 02
Comment = Qualified Certificate Statement QCSyntax-v2
Description = id-qcs-pkixQCSyntax-v2 (OID  1 3 6 1 5 5 7 11 2)

# end Qualified Cert Statements addenda

OID = 06 06 04 00 8E 46 01 01
Comment = qcs QcCompliance
Description = id-etsi-qcs-QcCompliance (OID 0 4 0 1862 1 1)

OID = 06 09 60 86 48 01 65 03 04 02 04
Comment = SHA224
Description = id-sha224 (OID 2 16 840 1 101 3 4 2 4

OID = 06 09 60 86 48 01 65 03 04 02 01
Comment = SHA256
Description = id-sha256 (OID 2 16 840 1 101 3 4 2 1

OID = 06 09 60 86 48 01 65 03 04 02 02
Comment = SHA384
Description = id-sha384 (OID 2 16 840 1 101 3 4 2 2

OID = 06 09 60 86 48 01 65 03 04 02 03
Comment = SHA512
Description = id-sha512 (OID 2 16 840 1 101 3 4 2 3

OID = 06 09 2A 86 48 86 F7 0D 01 01 0E
Comment = PKCS #1
Description = sha224WithRSAEncryption (1 2 840 113549 1 1 14)

OID = 06 09 2A 86 48 86 F7 0D 01 01 0B
Comment = PKCS #1
Description = sha256WithRSAEncryption (1 2 840 113549 1 1 11)

OID = 06 09 2A 86 48 86 F7 0D 01 01 0C
Comment = PKCS #1
Description = sha384WithRSAEncryption (1 2 840 113549 1 1 12)

OID = 06 09 2A 86 48 86 F7 0D 01 01 0D
Comment = PKCS #1
Description = sha512WithRSAEncryption (1 2 840 113549 1 1 13)

OID = 06 09 2A 86 48 86 F7 0D 01 01 06
Comment = PKCS #1
Description = rsaEncryptionWithOAEPPaddingSET (1 2 840 113549 1 1 6)

OID = 06 09 2A 86 48 86 F7 0D 01 01 07
Comment = PKCS #1
Description = rsaEncryptionWithOAEPPadding (1 2 840 113549 1 1 7)

OID = 06 09 2A 86 48 86 F7 0D 01 01 09
Comment = PKCS #1
Description = id-pSpecified (1 2 840 113549 1 1 9)

OID = 06 09 2A 86 48 86 F7 0D 01 01 0A
Comment = PKCS #1
Description = id-RSASSA-PSS (1 2 840 113549 1 1 10)

# TP policy OIDS 
OID = 06 09 2A 86 48 86 F7 63 64 01 01
Comment = Apple iSign
Description = iSignTP (1 2 840 113635 100 1 1)

OID = 06 09 2A 86 48 86 F7 63 64 01 02
Comment = Apple Basic X509 TP 
Description = Apple Basic X509 TP (1 2 840 113635 100 1 2)

OID = 06 09 2A 86 48 86 F7 63 64 01 03
Comment = Apple TP 
Description = Apple SSL TP (1 2 840 113635 100 1 3)

OID = 06 09 2A 86 48 86 F7 63 64 01 06
Comment = Apple TP 
Description = Apple CRL TP (1 2 840 113635 100 1 6)

OID = 06 09 2A 86 48 86 F7 63 64 01 07
Comment = Apple TP 
Description = Apple OCSP TP (1 2 840 113635 100 1 7)

OID = 06 09 2A 86 48 86 F7 63 64 01 08
Comment = Apple TP 
Description = Apple SMIME TP (1 2 840 113635 100 1 8)

OID = 06 09 2A 86 48 86 F7 63 64 01 09
Comment = Apple TP 
Description = Apple EAP TP (1 2 840 113635 100 1 9)

OID = 06 09 2A 86 48 86 F7 63 64 01 0A
Comment = Apple TP 
Description = Apple SW Update Signing TP (1 2 840 113635 100 1 10)

OID = 06 09 2A 86 48 86 F7 63 64 01 0B
Comment = Apple TP 
Description = Apple IPSec TP (1 2 840 113635 100 1 11)

OID = 06 09 2A 86 48 86 F7 63 64 01 0C
Comment = Apple TP 
Description = Apple iChat TP (1 2 840 113635 100 1 12)

OID = 06 09 2A 86 48 86 F7 63 64 01 0D
Comment = Apple TP 
Description = Apple Resource Signing TP (1 2 840 113635 100 1 13)

OID = 06 09 2A 86 48 86 F7 63 64 01 0E
Comment = Apple TP 
Description = Apple Kerberos PKINIT Client TP (1 2 840 113635 100 1 14)

OID = 06 09 2A 86 48 86 F7 63 64 01 0F
Comment = Apple TP 
Description = Apple Kerberos PKINIT Server TP (1 2 840 113635 100 1 15)

OID = 06 09 2A 86 48 86 F7 63 64 01 10
Comment = Apple TP 
Description = Apple Code Signing TP (1 2 840 113635 100 1 16)

# Kerberos/PKINIT
OID = 06 07 2B 06 01 05 02 03 01
Comment = Kerberos/PKINIT
Description = id-pkinit-authData (1 3 6 1 5 2 3 1)

OID = 06 07 2B 06 01 05 02 03 02
Comment = Kerberos/PKINIT
Description = id-pkinit-DHKeyData (1 3 6 1 5 2 3 2)

OID = 06 07 2B 06 01 05 02 03 03
Comment = Kerberos/PKINIT
Description = id-pkinit-rkeyData (1 3 6 1 5 2 3 3)

OID = 06 07 2B 06 01 05 02 03 04
Comment = Kerberos/PKINIT
Description = id-pkinit-KPClientAuth (1 3 6 1 5 2 3 4)

OID = 06 07 2B 06 01 05 02 03 05
Comment = Kerberos/PKINIT
Description = id-pkinit-KPKdc (1 3 6 1 5 2 3 5)

# S/MIME signed attributes
OID = 06 0B 2A 86 48 86 F7 0D 01 09 10 02 0B
Comment = EncryptionKeyPreference
Description = Encryption Key Preference (1 2 840 113549 1 9 16 2 11)

OID = 06 09 2B 06 01 04 01 82 37 10 04
Comment = EncryptionKeyPreference, MS 
Description = Encryption Key Preference, MS version (1 3 6 1 4 1 311 16 4)

OID = 06 09 2A 86 48 86 F7 0D 01 09 05
Comment = S/MIME Signing Time 
Description = S/MIME Signing Time (1 2 840 113549 1 9 5)

OID = 06 09 2A 86 48 86 F7 63 64 01 0E
Comment = Apple PKINIT Client Policy
Description = Apple PKINIT Client Policy ( 1.2.840.113635.100.1.14 )

OID = 06 09 2A 86 48 86 F7 63 64 01 0F
Comment = Apple PKINIT Server Policy
Description = Apple PKINIT Server Policy ( 1.2.840.113635.100.1.15 )

# More ANSI X9.62

OID = 06 06 2A 86 48 CE 3D 03
Comment = ANSI X9.62
Description = ellipticCurve (1 2 840 10045 3)

OID = 06 07 2A 86 48 CE 3D 03 00
Comment = ANSI X9.62
Description = c-TwoCurve (1 2 840 10045 3 0)

OID = 06 07 2A 86 48 CE 3D 03 01
Comment = ANSI X9.62
Description = primeCurve (1 2 840 10045 3 1)

OID = 06 08 2A 86 48 CE 3D 03 00 01
Comment = ANSI X9.62
Description = c2pnb163v1 (1 2 840 10045 3 0 1)

OID = 06 08 2A 86 48 CE 3D 03 00 02
Comment = ANSI X9.62
Description = c2pnb163v2 (1 2 840 10045 3 0 2)

OID = 06 08 2A 86 48 CE 3D 03 00 03
Comment = ANSI X9.62
Description = c2pnb163v3 (1 2 840 10045 3 0 3)

OID = 06 08 2A 86 48 CE 3D 03 00 04
Comment = ANSI X9.62
Description = c2pnb176w1 (1 2 840 10045 3 0 4)

OID = 06 08 2A 86 48 CE 3D 03 00 05
Comment = ANSI X9.62
Description = c2tnb191v1 (1 2 840 10045 3 0 5)

OID = 06 08 2A 86 48 CE 3D 03 00 06
Comment = ANSI X9.62
Description = c2tnb191v2 (1 2 840 10045 3 0 6)

OID = 06 08 2A 86 48 CE 3D 03 00 07
Comment = ANSI X9.62
Description = c2tnb191v3 (1 2 840 10045 3 0 7)

OID = 06 08 2A 86 48 CE 3D 03 00 08
Comment = ANSI X9.62
Description = c2onb191v4 (1 2 840 10045 3 0 8)

OID = 06 08 2A 86 48 CE 3D 03 00 09
Comment = ANSI X9.62
Description = c2onb191v5 (1 2 840 10045 3 0 9)

OID = 06 08 2A 86 48 CE 3D 03 00 0A
Comment = ANSI X9.62
Description = c2pnb208w1 (1 2 840 10045 3 0 10)

OID = 06 08 2A 86 48 CE 3D 03 00 0B
Comment = ANSI X9.62
Description = c2tnb239v1 (1 2 840 10045 3 0 11)

OID = 06 08 2A 86 48 CE 3D 03 00 0C
Comment = ANSI X9.62
Description = c2tnb239v2 (1 2 840 10045 3 0 12)

OID = 06 08 2A 86 48 CE 3D 03 00 0D
Comment = ANSI X9.62
Description = c2tnb239v3 (1 2 840 10045 3 0 13)

OID = 06 08 2A 86 48 CE 3D 03 00 0E
Comment = ANSI X9.62
Description = c2onb239v4 (1 2 840 10045 3 0 14)

OID = 06 08 2A 86 48 CE 3D 03 00 0F
Comment = ANSI X9.62
Description = c2onb239v5 (1 2 840 10045 3 0 15)

OID = 06 08 2A 86 48 CE 3D 03 00 10
Comment = ANSI X9.62
Description = c2pnb272w1 (1 2 840 10045 3 0 16)

OID = 06 08 2A 86 48 CE 3D 03 00 11
Comment = ANSI X9.62
Description = c2pnb304w1 (1 2 840 10045 3 0 17)

OID = 06 08 2A 86 48 CE 3D 03 00 12
Comment = ANSI X9.62
Description = c2tnb359v1 (1 2 840 10045 3 0 18)

OID = 06 08 2A 86 48 CE 3D 03 00 13
Comment = ANSI X9.62
Description = c2pnb368w1 (1 2 840 10045 3 0 19)

OID = 06 08 2A 86 48 CE 3D 03 00 14
Comment = ANSI X9.62
Description = c2tnb431r1 (1 2 840 10045 3 0 20)

# this one renamed from prime192v1 (in X9.62) to secp192r1 
# (Certicom SEC 2)
OID = 06 08 2A 86 48 CE 3D 03 01 01
Comment = ANSI X9.62
Description = secp192r1 (1 2 840 10045 3 1 1)

OID = 06 08 2A 86 48 CE 3D 03 01 02
Comment = ANSI X9.62
Description = prime192v2 (1 2 840 10045 3 1 2)

OID = 06 08 2A 86 48 CE 3D 03 01 03
Comment = ANSI X9.62
Description = prime192v3 (1 2 840 10045 3 1 3)

OID = 06 08 2A 86 48 CE 3D 03 01 04
Comment = ANSI X9.62
Description = prime239v1 (1 2 840 10045 3 1 4)

OID = 06 08 2A 86 48 CE 3D 03 01 05
Comment = ANSI X9.62
Description = prime239v2 (1 2 840 10045 3 1 5)

OID = 06 08 2A 86 48 CE 3D 03 01 06
Comment = ANSI X9.62
Description = prime239v3 (1 2 840 10045 3 1 6)

# X9.62: prime256v1 Certicom SEC 2: 
OID = 06 08 2A 86 48 CE 3D 03 01 07
Comment = ANSI X9.62
Description = secp256r1 (1 2 840 10045 3 1 7)

OID = 06 06 2A 86 48 CE 3D 04
Comment = ANSI X9.62
Description = ecSigType (1 2 840 10045 4)

OID = 06 07 2A 86 48 CE 3D 04 01
Comment = ANSI X9.62
Description = ecdsa-with-SHA1 (1 2 840 10045 4 1)

OID = 06 08 2A 86 48 CE 3D 04 03 01
Comment = FPKI
Description = ecdsa-with-SHA224 (1 2 840 10045 4 3 1)

OID = 06 08 2A 86 48 CE 3D 04 03 02
Comment = FPKI
Description = ecdsa-with-SHA256 (1 2 840 10045 4 3 2)

OID = 06 08 2A 86 48 CE 3D 04 03 03
Comment = FPKI
Description = ecdsa-with-SHA384 (1 2 840 10045 4 3 3)

OID = 06 08 2A 86 48 CE 3D 04 03 04
Comment = FPKI
Description = ecdsa-with-SHA512 (1 2 840 10045 4 3 4)

#
# This one is used when the disgest algorithm is explicitly 
# specified in a separate alg parameter
#
OID = 06 07 2A 86 48 CE 3D 04 03
Comment = FPKI
Description = ecdsa-with-specified (1 2 840 10045 4 3)

#
# Certicom Elliptic Curves from SEC 2
#
OID = 06 03 2B 81 04
Comment = Certicom SEC 2
Description = certicom-arc (1 3 132)

OID = 06 04 2B 81 04 00
Comment = Certicom SEC 2
Description = ellipticCurve (1 3 132 0)

OID = 06 05 2B 81 04 00 06
Comment = Certicom SEC 2
Description = secp112r1 (1 3 132 0 6)

OID = 06 05 2B 81 04 00 07
Comment = Certicom SEC 2
Description = secp112r2 (1 3 132 0 7)

OID = 06 05 2B 81 04 00 1C
Comment = Certicom SEC 2
Description = secp128r1 (1 3 132 0 28)

OID = 06 05 2B 81 04 00 1D
Comment = Certicom SEC 2
Description = secp128r2 (1 3 132 0 29)

OID = 06 05 2B 81 04 00 09
Comment = Certicom SEC 2
Description = secp160k1 (1 3 132 0 9)

OID = 06 05 2B 81 04 00 08
Comment = Certicom SEC 2
Description = secp160r1 (1 3 132 0 8)

OID = 06 05 2B 81 04 00 1E
Comment = Certicom SEC 2
Description = secp160r2 (1 3 132 0 30)

OID = 06 05 2B 81 04 00 1F
Comment = Certicom SEC 2
Description = secp192k1 (1 3 132 0 31)

# note secp192r1 defined above in the ANSI X9.62 arc
 
OID = 06 05 2B 81 04 00 20
Comment = Certicom SEC 2
Description = secp224k1 (1 3 132 0 32)

OID = 06 05 2B 81 04 00 21
Comment = Certicom SEC 2
Description = secp224r1 (1 3 132 0 33)

OID = 06 05 2B 81 04 00 0A
Comment = Certicom SEC 2
Description = secp256k1 (1 3 132 0 10)

# note secp256r1 defined above in the ANSI X9.62 arc

OID = 06 05 2B 81 04 00 22
Comment = Certicom SEC 2
Description = secp384r1 (1 3 132 0 34)

OID = 06 05 2B 81 04 00 23
Comment = Certicom SEC 2
Description = secp521r1 (1 3 132 0 35)

# characteristic 2 curves

OID = 06 05 2B 81 04 00 04
Comment = Certicom SEC 2
Description = sect113r1 (1 3 132 0 4)

OID = 06 05 2B 81 04 00 05
Comment = Certicom SEC 2
Description = sect113r2 (1 3 132 0 5)

OID = 06 05 2B 81 04 00 16
Comment = Certicom SEC 2
Description = sect131r1 (1 3 132 0 22)

OID = 06 05 2B 81 04 00 17
Comment = Certicom SEC 2
Description = sect131r2 (1 3 132 0 23)

OID = 06 05 2B 81 04 00 01
Comment = Certicom SEC 2
Description = sect163k1 (1 3 132 0 1)

OID = 06 05 2B 81 04 00 02
Comment = Certicom SEC 2
Description = sect163r1 (1 3 132 0 2)

OID = 06 05 2B 81 04 00 0F
Comment = Certicom SEC 2
Description = sect163r2 (1 3 132 0 15)

OID = 06 05 2B 81 04 00 18
Comment = Certicom SEC 2
Description = sect193r1 (1 3 132 0 24)

OID = 06 05 2B 81 04 00 19
Comment = Certicom SEC 2
Description = sect193r2 (1 3 132 0 25)

OID = 06 05 2B 81 04 00 1A
Comment = Certicom SEC 2
Description = sect233k1 (1 3 132 0 26)

OID = 06 05 2B 81 04 00 1B
Comment = Certicom SEC 2
Description = sect233r1 (1 3 132 0 27)

OID = 06 05 2B 81 04 00 03
Comment = Certicom SEC 2
Description = sect239k1 (1 3 132 0 3)

OID = 06 05 2B 81 04 00 10
Comment = Certicom SEC 2
Description = sect283k1 (1 3 132 0 16)

OID = 06 05 2B 81 04 00 11
Comment = Certicom SEC 2
Description = sect283r1 (1 3 132 0 17)

OID = 06 05 2B 81 04 00 24
Comment = Certicom SEC 2
Description = sect409k1 (1 3 132 0 36)

OID = 06 05 2B 81 04 00 25
Comment = Certicom SEC 2
Description = sect409r1 (1 3 132 0 37)

OID = 06 05 2B 81 04 00 26
Comment = Certicom SEC 2
Description = sect571k1 (1 3 132 0 38)

OID = 06 05 2B 81 04 00 27
Comment = Certicom SEC 2
Description = sect571r1 (1 3 132 0 39)

# X9.63 addendum for ECDH

OID = 06 07 2B 81 05 10 86 48 3F
Comment = X9.63
Description = x9-63 (1 3 133 16 840 63)

OID = 06 08 2B 81 05 10 86 48 3F 00
Comment = X9.63
Description = x9-63-scheme (1 3 133 16 840 63 0)

OID = 06 09 2B 81 05 10 86 48 3F 00 02
Comment = X9.63
Description = dhSinglePass-stdDH-sha1kdf-scheme (1 3 133 16 840 63 0 2)

OID = 06 09 2B 81 05 10 86 48 3F 00 03
Comment = X9.63
Description = dhSinglePass-cofactorDH-sha1kdf-scheme (1 3 133 16 840 63 0 3)

OID = 06 09 2B 81 05 10 86 48 3F 00 10
Comment = X9.63
Description = mqvSinglePass-sha1kdf-scheme (1 3 133 16 840 63 0 16)

# End of Fahnenstange