[Owasp-leaders] Strange OIDs in TLS certificates

Enrico Branca enrico.branca at owasp.org
Wed May 27 21:01:22 UTC 2015


Hi all,

I have been working on a research on SSL/TLS certificates and found lots
of certificates with several OIDs pointing to "Signature Algorithms" of
which I am not able to find any reference or document anywhere.

Here the list of mysterious OID with how many time I have seen them.

2.16.56.2.1.4.1.1.38806.1 --> 1 cert
1.2.840.10040.0.67 --> 1 cert
1.2.156.10197.1.501 --> 1 cert
1.2.840.113037.1.1.5 --> 1 cert
1.2.840.113548.1.1.5 --> 1 cert
1.2.840.113549.1.1.99 --> 1 cert
1.2.840.113549.1.60.20 --> 1 cert
1.2.840.114573.1.1.5 --> 1 cert
1.3.36.3.3.1.4 --> 1 cert
2.1.67.51.46.111.102.102.105.99 --> 1 cert
2.1516.1228544.0.0.1.0 --> 1 cert
1.2.840.113549.1.60.18 --> 3 certs
1.3.6.1.4.1.37210.1.1 --> 4 certs
1.2.840.10040.14403 --> 5 certs
1.2.840.113549.1.60.28 --> 8 certs
1.2.840.113549.1.60.29 --> 231 certs
1.2.840.113549.1.60.26 --> 2,122 certs
1.2.840.113549.1.60.27 --> 99,652 certs
1.2.840.113549.1.60.20 --> 112,634 certs
1.2.840.113549.1.60.21 --> 313,680 certs

Does anyone has any idea on what these OIDs should stand for?

Any suggestion on where to look for these information would be greatly
appreciated.

Kind regards,
Enrico Branca


More information about the OWASP-Leaders mailing list