PL: Wrong Extended key Usage Identifiers
See original GitHub issuePL
Issue Description
According to https://ec.europa.eu/health/sites/default/files/ehealth/docs/digital-green-certificates_v1_en.pdf section A.4 when issuer decides to include key usage identifiers there should be 3 expected formats.
Currently PL certificates (for example 2.json
) has them in wrong format (1.3.6.1.4.1.1847.2021.1.2
)
Proposed Solution
Use correct OIDs, please provide reference that proves that used OIDs are indeed valid or update EXPECTEDRESULTS
(for example, as in IS 3.json
test case
Issue Analytics
- State:
- Created 2 years ago
- Comments:5
Top Results From Across the Web
Constraining Extended Key Usages in Microsoft Windows
Hello, S-1-1-0! Today I'm going to talk about interesting subject about Enhanced Key Usage constraints in CA certificates.
Read more >X.509 certificate extended key usage (EKU) is checked very ...
The id-kp-serverAuth extended key usage, which corresponds to our X509_PURPOSE_SSL_SERVER , is for Web TLS server authentication.
Read more >General Purpose Extended Key Usage (EKU) for Document ...
RFC 5280 specifies several extended key purpose identifiers (KeyPurposeIds) for X.509 certificates. This document defines a general purpose ...
Read more >KB5014754—Certificate-based authentication changes on ...
Example. You run the following certutil command to exclude certificates of the user template from getting the new extension. Sign in to a...
Read more >ssl - Key Usage and Extended Key Usage certificate extension ...
Anyone knows in client authentication, what are the Key Usage and Extended Key Usage purposes we should validate?
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
6.json
contains vaccination certificate, but OID specified is meant for recovery certificates;EXPECTEDKEYUSAGE
is marked wrongly astrue
Thank you very much for the details @SchulzeStTSI and @gregsons