PKIoverheid registered OIDs v3.3.1
Table of Contents
- 1 Introduction
- 2 PKIoverheid Top-Level identifiers arc
- 3 PKIoverheid Definition identifiers arc
- 4 PKIoverheid Certificate Policy identifiers arc
- 4.1 PA sub-domain CP identifiers arc (DEPRECATED)
- 4.2 Government (Public G1) sub-domain PKIoverheid CP identifiers arc (DEPRECATED)
- 4.3 Citizen (Public G1+G2+G3) sub-domain CP identifiers arc
- 4.4 Companies (Public G1) sub-domain CP identifiers arc (DEPRECATED)
- 4.5 Organization (Public G2), Organization Person/Services (Public G3), and Server 2020 (EV G1) sub-domain CP identifiers arc
- 4.6 Autonomous Devices (Public G2+G3) sub-domain CP identifiers arc
- 4.7 Extended Validation (EV G1) domain CP identifiers arc
- 4.8 Private Root (Private G1) domain CP identifiers arc
- 4.9 Test (Trial G2+G3) domain CP identifiers arc
- 4.10 S/MIME (G3) Organization Validated domain CP identifiers arc
- 4.11 S/MIME (G3) Sponsor Validated domain CP identifiers arc
- 4.12 S/MIME (G3) Individual Validated domain CP identifiers arc
- 4.13 G4 Architecture CP identifiers arc
- 4.13.1 G4 Generic CA using cipher 10 - Publicly-trusted S/MIME root CP identifiers arc
- 4.13.2 G4 Generic CA using cipher 10 - EUTL Document Signing root CP identifiers arc
- 4.13.3 G4 Generic CA using cipher 10 - Private TLS root CP identifiers arc
- 4.13.4 G4 Generic CA using cipher 10 - Private Other root CP identifiers arc
- 4.13.5 G4 Defensie CA using cipher 10 - Private Other root CP identifiers arc
- 4.13.6 G4 CIBG CA using cipher 10 - Private Other root CP identifiers arc
- 5. PKIoverheid Organization identifiers arc
- 5.1 PA sub-domain Organization identifiers arc
- 5.2 Government (Public G1) sub-domain PKIoverheid Organization identifiers arc (DEPRECATED)
- 5.3 Citizen (Public G1+G2+G3) sub-domain PKIoverheid Organization identifiers arc
- 5.4 Companies (Public G1) sub-domain PKIoverheid Organization identifiers arc (DEPRECATED)
- 5.5 Organization (Public G2), Organization Person/Services (Public G3), and Server 2020 (EV G1) sub-domain Organization identifiers arc
- 5.6 Autonomous Devices (Public G2+G3) sub-domain PKIoverheid Organization identifiers arc
- 5.7 S/MIME Organization Validated (Public G3) sub-domain PKIoverheid Organization identifiers arc
- 5.8 S/MIME Sponsor Validated (Public G3) sub-domain PKIoverheid Organization identifiers arc
- 5.9 S/MIME Individual Validated (Public G3) sub-domain PKIoverheid Organization identifiers arc
- 5.10 Extended Validation (EV) domain PKIoverheid Organization identifiers arc
- 5.11 Private root (Private G1) domain PKIoverheid Organization identifiers arc
- 5.12 Test (Trial G2+G3) domain PKIoverheid Organization identifiers arc
- 6 PKIoverheid Pilots identifiers arc (DEPRECATED)
1 Introduction
This document contains a registration of all PKIoverheid (PKIo) specific Object Identifiers (OIDs), both active and deprecated.
OIDs enable the unique identification of “objects” is the broadest sense of the word. This can be a country, a laptop, person, title, requirement, or in case of PKIoverheid a certificate policy. OIDs are strings of numbers. They are allocated in a hierarchical manner, so that, for instance, the authority for “1.2.3” is the only one that can say what “1.2.3.4” means. They are used in a variety of protocols, of which PKIX is one.
This document contains OID descriptions using “ASN.1-like” syntax. This syntax is a hybrid of the 1988 and 1993 ASN.1 syntaxes. More information on this syntax can be found in RFC 5280.
2 PKIoverheid Top-Level identifiers arc
The code snippet below shows the PKIoverheid top-level identifiers arc in ASN.1 syntax.
-- PKIoverheid-specific top-level OID
id-pkio OBJECT IDENTIFIER ::= { joint-iso-itu-t(2) country(16) nl(528) nederlandse-organisatie(1) nederlandse-overheid(1003) pki-voor-de-overheid(1) }
-- PKIoverheid identifier arc
id-pkio-defs OBJECT IDENTIFIER ::= { id-pkio defs(1) } -- Definitions
id-pkio-cp OBJECT IDENTIFIER ::= { id-pkio cp(2) } -- Certificate Policies
id-pkio-org OBJECT IDENTIFIER ::= { id-pkio org(3) } -- Organizations
id-pkio-pilots OBJECT IDENTIFIER ::= { id-pkio pilots(4) } -- DEPRECATED (Pilots)The table below gives a more reader-friendly overview of the PKIoverheid top-level identifiers arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio |
{ joint-iso-itu-t(2) country(16) nl(528) nederlandse-organisatie(1) nederlandse-overheid(1003) pki-for-the-government(1) } |
2.16.528.1.1003.1 |
ACTIVE | PKI for the government |
id-pkio-defs |
{ id-pkio defs(1) } |
2.16.528.1.1003.1.1 |
ACTIVE | PKIoverheid Definitions |
id-pkio-cp |
{ id-pkio cp(2) } |
2.16.528.1.1003.1.2 |
ACTIVE | PKIoverheid Certificate Policies |
id-pkio-org |
{ id-pkio org(3) } |
2.16.528.1.1003.1.3 |
ACTIVE | PKIoverheid Organisations |
id-pkio-pilots |
{ id-pkio pilots(4) } |
2.16.528.1.1003.1.4 |
DEPRECATED | PKIoverheid Pilots |
Subsequent chapters will describe these top-level identifiers in-depth.
3 PKIoverheid Definition identifiers arc
The code snippet below shows the PKIoverheid Definition identifiers arc in ASN.1 syntax.
-- PKIoverheid Definition identifiers arc
id-pkio-defs-pkigov OBJECT IDENTIFIER ::= { id-pkio-defs pkigov(1) } -- PKI for the GovernmentThe table below gives a more reader-friendly overview of the PKIoverheid Definition identifiers arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-defs-pkinlgov |
{ id-pkio-defs pkinlgov(1) } |
2.16.528.1.1003.1.1.1 |
ACTIVE (since 2002-08-23) | PKI for the Dutch government Definition |
4 PKIoverheid Certificate Policy identifiers arc
The code snippet below shows the domain-level PKIoverheid Certificate Policy identifiers arc in ASN.1 syntax.
-- PKIoverheid Certificate Policy domain-level identifiers arc
id-pkio-cp-pa OBJECT IDENTIFIER ::= { id-pkio-cp pa(1) } -- DEPRECATED (PA)
id-pkio-cp-g1gov OBJECT IDENTIFIER ::= { id-pkio-cp g1gov(2) } -- DEPRECATED (G1 Government)
id-pkio-cp-g1g2g3cit OBJECT IDENTIFIER ::= { id-pkio-cp g1g2g3cit(3) } -- G1+G2+G3 Citizen
id-pkio-cp-g1com OBJECT IDENTIFIER ::= { id-pkio-cp g1com(4) } -- DEPRECATED (G1 Companies)
id-pkio-cp-g2g3org OBJECT IDENTIFIER ::= { id-pkio-cp g2g3org(5) } -- G2+G3 Organizations
id-pkio-cp-g2g3ad OBJECT IDENTIFIER ::= { id-pkio-cp g2g3ad(6) } -- G2+G3 Autonomous Devices
id-pkio-cp-g1ev OBJECT IDENTIFIER ::= { id-pkio-cp g1ev(7) } -- Extended Validation
id-pkio-cp-g1priv OBJECT IDENTIFIER ::= { id-pkio-cp g1priv(8) } -- Private
id-pkio-cp-g2g3test OBJECT IDENTIFIER ::= { id-pkio-cp g2g3test(9) } -- G2+G3 Test
id-pkio-cp-g3smimeorgv OBJECT IDENTIFIER ::= { id-pkio-cp g3smimeorgv(10) } -- G3 S/MIME Organization Validated
id-pkio-cp-g3smimespov OBJECT IDENTIFIER ::= { id-pkio-cp g3smimespov(11) } -- G3 S/MIME Sponsor Validated
id-pkio-cp-g3smimeindv OBJECT IDENTIFIER ::= { id-pkio-cp g3smimeindv(12) } -- G3 S/MIME Individual Validated
id-pkio-cp-g4p OBJECT IDENTIFIER ::= { id-pkio-cp g4p(44) } -- G4 Production HierarchiesThese domain-level identifiers will be referenced in the Certificate Policies in each of the following domains or sub-domains.
4.1 PA sub-domain CP identifiers arc (DEPRECATED)
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Policy Authority (PA) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy PA sub-domain identifiers arc
id-pkio-cp-pa-root OBJECT IDENTIFIER ::= { id-pkio-cp-pa root(1) } -- DEPRECATED
id-pkio-cp-pa-dom OBJECT IDENTIFIER ::= { id-pkio-cp-pa dom(2) } -- DEPRECATED
id-pkio-cp-pa-gov OBJECT IDENTIFIER ::= { id-pkio-cp-pa gov(3) } -- DEPRECATED
id-pkio-cp-pa-cit OBJECT IDENTIFIER ::= { id-pkio-cp-pa cit(4) } -- DEPRECATED
id-pkio-cp-pa-com OBJECT IDENTIFIER ::= { id-pkio-cp-pa com(5) } -- DEPRECATED
id-pkio-cp-pa-tsp OBJECT IDENTIFIER ::= { id-pkio-cp-pa tsp(6) } -- DEPRECATED
id-pkio-cp-pa-org OBJECT IDENTIFIER ::= { id-pkio-cp-pa org(7) } -- DEPRECATED
id-pkio-cp-pa-ad OBJECT IDENTIFIER ::= { id-pkio-cp-pa ad(8) } -- DEPRECATED
id-pkio-cp-pa-test OBJECT IDENTIFIER ::= { id-pkio-cp-pa test(9) } -- DEPRECATED
-- All PA sub-domains used any_policy (2.5.29.32.0) as certificate policyThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the PA sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
any_policy |
{ joint-iso-itu-t(2) ds(5) certificateExtension(29) certificatePolicies(32) any(0) } |
2.5.29.32.0 |
N/A | ISO/ITU-T PKI object identifier for any policy |
4.2 Government (Public G1) sub-domain PKIoverheid CP identifiers arc (DEPRECATED)
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Government (Public G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy Government (G1) sub-domain identifiers arc
id-pkio-cp-g1gov-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov auth(1) } -- DEPRECATED
id-pkio-cp-g1gov-auth-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov-auth std(1) } -- DEPRECATED
id-pkio-cp-g1gov-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov nonrep(2) } -- DEPRECATED
id-pkio-cp-g1gov-nonrep-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov-nonrep std(1) } -- DEPRECATED
id-pkio-cp-g1gov-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov conf(3) } -- DEPRECATED
id-pkio-cp-g1gov-conf-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov-conf std(1) } -- DEPRECATED
id-pkio-cp-g1gov-svc-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov svc-auth(4) } -- DEPRECATED
id-pkio-cp-g1gov-svc-auth-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov-svc-auth std(1) } -- DEPRECATED
id-pkio-cp-g1gov-svc-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov svc-conf(5) } -- DEPRECATED
id-pkio-cp-g1gov-svc-conf-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov-svc-conf std(1) } -- DEPRECATED
id-pkio-cp-g1gov-server OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov server(6) } -- DEPRECATED
id-pkio-cp-g1gov-server-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1gov-server std(1) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the Government (Public G1) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g1gov-auth-std |
{ id-pkio-cp-g1gov-auth std(1) } |
2.16.528.1.1003.1.2.2.1.1 |
DEPRECATED | Authenticity Certificate Policy |
id-pkio-cp-g1gov-nonrep-std |
{ id-pkio-cp-g1gov-nonrep std(1) } |
2.16.528.1.1003.1.2.2.2.1 |
DEPRECATED | Non-repudiation Certificate Policy |
id-pkio-cp-g1gov-conf-std |
{ id-pkio-cp-g1gov-conf std(1) } |
2.16.528.1.1003.1.2.2.3.1 |
DEPRECATED | Confidentiality Certificate Policy |
id-pkio-cp-g1gov-svc-auth-std |
{ id-pkio-cp-g1gov-svc-auth std(1) } |
2.16.528.1.1003.1.2.2.4.1 |
DEPRECATED | Services Authenticity Certificate Policy |
id-pkio-cp-g1gov-svc-conf-std |
{ id-pkio-cp-g1gov-svc-conf std(1) } |
2.16.528.1.1003.1.2.2.5.1 |
DEPRECATED | Services Confidentiality Certificate Policy |
id-pkio-cp-g1gov-server-std |
{ id-pkio-cp-g1gov-server std(1) } |
2.16.528.1.1003.1.2.2.6.1 |
DEPRECATED | Server Authentication Certificate Policy |
4.3 Citizen (Public G1+G2+G3) sub-domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Citizen (Public G1+G2+G3) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy Citizen (Public G1+G2+G3) sub-domain identifiers arc
id-pkio-cp-g1g2g3cit-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g1g2g3cit auth(1) } -- Authenticity Certificate Policy
id-pkio-cp-g1g2g3cit-auth-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1g2g3cit-auth std(1) } -- DEPRECATED
id-pkio-cp-g1g2g3cit-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g1g2g3cit nonrep(2) } -- Non-repudiation Certificate Policy
id-pkio-cp-g1g2g3cit-nonrep-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1g2g3cit-nonrep std(1) } -- DEPRECATED
id-pkio-cp-g1g2g3cit-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g1g2g3cit conf(3) } -- Confidentiality Certificate Policy
id-pkio-cp-g1g2g3cit-conf-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1g2g3cit-conf std(1) } -- DEPRECATED
id-pkio-cp-g1g2g3cit-auth23 OBJECT IDENTIFIER ::= { id-pkio-cp-g3cit auth23(4) } -- Authenticity Certificate Policy (2023)
id-pkio-cp-g1g2g3cit-nonrep23 OBJECT IDENTIFIER ::= { id-pkio-cp-g3cit nonrep23(5) } -- Non-repudiation Certificate Policy (2023)
id-pkio-cp-g1g2g3cit-conf23 OBJECT IDENTIFIER ::= { id-pkio-cp-g3cit conf23(6) } -- Confidentiality Certificate Policy (2023)The table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the Citizen (Public G1+G2+G3) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g1g2g3cit-auth |
{ id-pkio-cp-g1g2g3cit auth(1) } |
2.16.528.1.1003.1.2.3.1. |
ACTIVE | Authenticity Certificate Policy |
id-pkio-cp-g1g2g3cit-auth-std |
{ id-pkio-cp-g1g2g3cit-auth std(1) } |
2.16.528.1.1003.1.2.3.1.1 |
DEPRECATED | Authenticity Certificate Standard Policy |
id-pkio-cp-g1g2g3cit-nonrep |
{ id-pkio-cp-g1g2g3cit nonrep(2) } |
2.16.528.1.1003.1.2.3.2. |
ACTIVE | Non-repudiation Certificate Policy |
id-pkio-cp-g1g2g3cit-nonrep-std |
{ id-pkio-cp-g1g2g3cit-nonrep std(1) } |
2.16.528.1.1003.1.2.3.2.1 |
DEPRECATED | Non-repudiation Certificate Standard Policy |
id-pkio-cp-g1g2g3cit-conf |
{ id-pkio-cp-g1g2g3cit conf(3) } |
2.16.528.1.1003.1.2.3.3. |
ACTIVE | Confidentiality Certificate Policy |
id-pkio-cp-g1g2g3cit-conf-std |
{ id-pkio-cp-g1g2g3cit-conf std(1) } |
2.16.528.1.1003.1.2.3.3.1 |
DEPRECATED | Confidentiality Certificate Standard Policy |
id-pkio-cp-g1g2g3cit-auth23 |
{ id-pkio-cp-g1g2g3cit auth23(4) } |
2.16.528.1.1003.1.2.3.4 |
ACTIVE | Authenticity Certificate Policy (2023) |
id-pkio-cp-g1g2g3cit-nonrep23 |
{ id-pkio-cp-g1g2g3cit nonrep23(5) } |
2.16.528.1.1003.1.2.3.5 |
ACTIVE | Non-repudiation Certificate Policy (2023) |
id-pkio-cp-g1g2g3cit-conf23 |
{ id-pkio-cp-g1g2g3cit conf23(6) } |
2.16.528.1.1003.1.2.3.6 |
ACTIVE | Confidentiality Certificate Policy (2023) |
4.4 Companies (Public G1) sub-domain CP identifiers arc (DEPRECATED)
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Companies (Public G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy Organizations (Public G1) sub-domain identifiers arc
id-pkio-cp-g1com-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g1com auth(1) } -- DEPRECATED
id-pkio-cp-g1com-auth-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1com-auth std(1) } -- DEPRECATED
id-pkio-cp-g1com-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g1com nonrep(2) } -- DEPRECATED
id-pkio-cp-g1com-nonrep-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1com-nonrep std(1) } -- DEPRECATED
id-pkio-cp-g1com-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g1com conf(3) } -- DEPRECATED
id-pkio-cp-g1com-conf-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1com-conf std(1) } -- DEPRECATED
id-pkio-cp-g1com-svc-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g1com svc-auth(4) } -- DEPRECATED
id-pkio-cp-g1com-svc-auth-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1com-svc-auth std(1) } -- DEPRECATED
id-pkio-cp-g1com-svc-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g1com svc-conf(5) } -- DEPRECATED
id-pkio-cp-g1com-svc-conf-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1com-svc-conf std(1) } -- DEPRECATED
id-pkio-cp-g1com-server OBJECT IDENTIFIER ::= { id-pkio-cp-g1com server(6) } -- DEPRECATED
id-pkio-cp-g1com-server-std OBJECT IDENTIFIER ::= { id-pkio-cp-g1com-server std(1) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the PKIoverheid Certificate Policy identifiers arc in the Companies (Public G1) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g1com-auth-std |
{ id-pkio-cp-g1com-auth std(1) } |
2.16.528.1.1003.1.2.4.1.1 |
DEPRECATED | Authenticity Certificate Policy |
id-pkio-cp-g1com-nonrep-std |
{ id-pkio-cp-g1com-nonrep std(1) } |
2.16.528.1.1003.1.2.4.2.1 |
DEPRECATED | Non-repudiation Certificate Policy |
id-pkio-cp-g1com-conf-std |
{ id-pkio-cp-g1com-conf std(1) } |
2.16.528.1.1003.1.2.4.3.1 |
DEPRECATED | Confidentiality Certificate Policy |
id-pkio-cp-g1org-svc-auth-std |
{ id-pkio-cp-g1com-svc-auth std(1) } |
2.16.528.1.1003.1.2.4.4.1 |
DEPRECATED | Services Authenticity Certificate Policy |
id-pkio-cp-g1org-svc-conf-std |
{ id-pkio-cp-g1com-svc-conf std(1) } |
2.16.528.1.1003.1.2.4.5.1 |
DEPRECATED | Services Confidentiality Certificate Policy |
id-pkio-cp-g1org-server-std |
{ id-pkio-cp-g1com-server std(1) } |
2.16.528.1.1003.1.2.4.6.1 |
DEPRECATED | Server Authentication Certificate Policy |
4.5 Organization (Public G2), Organization Person/Services (Public G3), and Server 2020 (EV G1) sub-domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Organization (Public G2), Organization Person/services (Public G3), and Server 2020 (EV G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy Organization (Public G2), Organization Person/Services (Public G3), and Server 2020 (EV G1) sub-domain identifiers arc
id-pkio-cp-g2g3org-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org auth(1) } -- Authenticity Certificate Policy (legacy)
id-pkio-cp-g2g3org-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org nonrep(2) } -- Non-repudiation Certificate Policy (legacy)
id-pkio-cp-g2g3org-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org conf(3) } -- Confidentiality Certificate Policy (legacy)
id-pkio-cp-g2g3org-svc-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org svc-auth(4) } -- Services Authenticity Certificate Policy (legacy)
id-pkio-cp-g2g3org-svc-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org svc-conf(5) } -- Services Confidentiality Certificate Policy (legacy)
id-pkio-cp-g2g3org-server OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org server(6) } -- DEPRECATED
id-pkio-cp-g2g3org-svc-seal OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org svc-seal(7) } -- Services Seal Certificate Policy (legacy)
id-pkio-cp-g2g3org-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org ocsp(8) } -- DEPRECATED
id-pkio-cp-g2g3org-server2020 OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org server2020(9) } -- DEPRECATED
id-pkio-cp-g2g3org-auth23 OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org auth23(10) } -- Authenticity Certificate Policy (2023)
id-pkio-cp-g2g3org-nonrep23 OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org nonrep23(11) } -- Non-repudiation Certificate Policy (2023)
id-pkio-cp-g2g3org-conf23 OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org conf23(12) } -- Confidentiality Certificate Policy (2023)
id-pkio-cp-g2g3org-svc-auth23 OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org svc-auth23(13) } -- Services Authenticity Certificate Policy (2023)
id-pkio-cp-g2g3org-svc-conf23 OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org svc-conf23(14) } -- Services Confidentiality Certificate Policy (2023)
id-pkio-cp-g2g3org-svc-seal23 OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3org svc-seal23(15) } -- Services Seal Certificate Policy (2023)The table below gives a more reader-friendly overview of the PKIoverheid Certificate Policy identifiers arc in the Organization (Public G2), Organization Person/services (Public G3), and Server 2020 (EV G1) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g2g3org-auth |
{ id-pkio-cp-g2g3org auth(1) } |
2.16.528.1.1003.1.2.5.1 |
ACTIVE | Authenticity Certificate Policy (legacy) |
id-pkio-cp-g2g3org-nonrep |
{ id-pkio-cp-g2g3org nonrep(2) } |
2.16.528.1.1003.1.2.5.2 |
ACTIVE | Non-repudiation Certificate Policy (legacy) |
id-pkio-cp-g2g3org-conf |
{ id-pkio-cp-g2g3org conf(3) } |
2.16.528.1.1003.1.2.5.3 |
ACTIVE | Confidentiality Certificate Policy (legacy) |
id-pkio-cp-g2g3org-svc-auth |
{ id-pkio-cp-g2g3org svc-auth(4) } |
2.16.528.1.1003.1.2.5.4 |
ACTIVE | Services Authenticity Certificate Policy (legacy) |
id-pkio-cp-g2g3org-svc-conf |
{ id-pkio-cp-g2g3org svc-conf(5) } |
2.16.528.1.1003.1.2.5.5 |
ACTIVE | Services Confidentiality Certificate Policy (legacy) |
id-pkio-cp-g2g3org-server |
{ id-pkio-cp-g2g3org server(6) } |
2.16.528.1.1003.1.2.5.6 |
DEPRECATED | Server Authentication Certificate Policy |
id-pkio-cp-g2g3org-svc-seal |
{ id-pkio-cp-g2g3org svc-seal(7) } |
2.16.528.1.1003.1.2.5.7 |
ACTIVE | Services Seal Certificate Policy (legacy) |
id-pkio-cp-g2g3org-ocsp |
{ id-pkio-cp-g2g3org ocsp(8) } |
2.16.528.1.1003.1.2.5.8 |
DEPRECATED | OCSP Certificate Policy (only to be used in Server2020 domain) |
id-pkio-cp-g2g3org-server2020 |
{ id-pkio-cp-g2g3org server2020(9) } |
2.16.528.1.1003.1.2.5.9 |
DEPRECATED | Server Authentication (2020) Certificate Policy |
id-pkio-cp-g3org-auth23 |
{ id-pkio-cp-g3org auth23(10) } |
2.16.528.1.1003.1.2.5.10 |
ACTIVE | Authenticity Certificate Policy (2023) |
id-pkio-cp-g3org-nonrep23 |
{ id-pkio-cp-g3org nonrep23(11) } |
2.16.528.1.1003.1.2.5.11 |
ACTIVE | Non-repudiation Certificate Policy (2023) |
id-pkio-cp-g3org-conf23 |
{ id-pkio-cp-g3org conf23(12) } |
2.16.528.1.1003.1.2.5.12 |
ACTIVE | Confidentiality Certificate Policy (2023) |
id-pkio-cp-g3org-svc-auth23 |
{ id-pkio-cp-g3org svc-auth23(13) } |
2.16.528.1.1003.1.2.5.13 |
ACTIVE | Services Authenticity Certificate Policy (2023) |
id-pkio-cp-g3org-svc-conf23 |
{ id-pkio-cp-g3org svc-conf23(14) } |
2.16.528.1.1003.1.2.5.14 |
ACTIVE | Services Confidentiality Certificate Policy (2023) |
id-pkio-cp-g3org-svc-seal23 |
{ id-pkio-cp-g3org svc-seal23(15) } |
2.16.528.1.1003.1.2.5.15 |
ACTIVE | Services Seal Certificate Policy (2023) |
4.6 Autonomous Devices (Public G2+G3) sub-domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Autonomous Devices (Public G2+G3) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy Autonomous Devices (Public G2+G3) sub-domain identifiers arc
id-pkio-cp-g2g3ad-sysauth OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3ad sysauth(1) } -- Systems Authenticity Certificate Policy
id-pkio-cp-g2g3ad-sysconf OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3ad sysconf(2) } -- Systems Confidentiality Certificate Policy
id-pkio-cp-g2g3ad-syscombi OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3ad syscombi(3) } -- Systems Combination Certificate PolicyThe table below gives a more reader-friendly overview of the PKIoverheid Certificate Policy identifiers arc in the Autonomous Devices (Public G2+G3) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g2g3ad-sysauth |
{ id-pkio-cp-g2g3ad sysauth(1) } |
2.16.528.1.1003.1.2.6.1 |
ACTIVE | Systems Authenticity Certificate Policy |
id-pkio-cp-g2g3ad-sysconf |
{ id-pkio-cp-g2g3ad sysconf(2) } |
2.16.528.1.1003.1.2.6.2 |
ACTIVE | Systems Confidentiality Certificate Policy |
id-pkio-cp-g2g3ad-syscombi |
{ id-pkio-cp-g2g3ad syscombi(3) } |
2.16.528.1.1003.1.2.6.3 |
ACTIVE | Systems Combination Certificate Policy |
4.7 Extended Validation (EV G1) domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Extended Validation (EV G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy Extended Validation (EV G1) domain identifiers arc
-- The Extended Validation (EV) domain has no subdomain identifiers;
-- the certificate policy identifier is the same as the domain identifier:
id-pkio-cp-g1ev OBJECT IDENTIFIER ::= { id-pkio-cp g1ev(7) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the PKIoverheid Certificate Policy identifiers arc in the Extended Validation (EV G1) domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g1ev |
{ id-pkio-cp g1ev(7) } |
2.16.528.1.1003.1.2.7 |
DEPRECATED | Extended Validation (EV G1) Certificate Policy |
4.8 Private Root (Private G1) domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Private Root (Private G1) domain in ASN.1 syntax.
-- PKIoverheid Certificate Private Root (Private G1) sub-domain identifiers arc
id-pkio-cp-g1priv-pers-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g1priv pers-auth(1) } -- Person Authenticity Certificate Policy
id-pkio-cp-g1priv-pers-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g1priv pers-nonrep(2) } -- Person Non-repudiation Certificate Policy
id-pkio-cp-g1priv-pers-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g1priv pers-conf(3) } -- Person Confidentiality Certificate Policy
id-pkio-cp-g1priv-svc-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g1priv svc-auth(4) } -- Services Authenticity Certificate Policy
id-pkio-cp-g1priv-svc-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g1priv svc-conf(5) } -- Services Confidentiality Certificate Policy
id-pkio-cp-g1priv-server OBJECT IDENTIFIER ::= { id-pkio-cp-g1priv server(6) } -- Server Authentication Certificate PolicyThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the Private Root (Private G1) domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-priv-pers-auth |
{ id-pkio-cp-priv pers-auth(1) } |
2.16.528.1.1003.1.2.8.1 |
ACTIVE | Person Authenticity Certificate Policy |
id-pkio-cp-priv-pers-nonrep |
{ id-pkio-cp-priv pers-nonrep(2) } |
2.16.528.1.1003.1.2.8.2 |
ACTIVE | Person Non-repudiation Certificate Policy |
id-pkio-cp-priv-pers-conf |
{ id-pkio-cp-priv pers-conf(3) } |
2.16.528.1.1003.1.2.8.3 |
ACTIVE | Person Confidentiality Certificate Policy |
id-pkio-cp-priv-svc-auth |
{ id-pkio-cp-priv svc-auth(4) } |
2.16.528.1.1003.1.2.8.4 |
ACTIVE | Services Authenticity Certificate Policy |
id-pkio-cp-priv-svc-conf |
{ id-pkio-cp-priv svc-conf(5) } |
2.16.528.1.1003.1.2.8.5 |
ACTIVE | Services Confidentiality Certificate Policy |
id-pkio-cp-priv-server |
{ id-pkio-cp-priv server(6) } |
2.16.528.1.1003.1.2.8.6 |
ACTIVE | Server Authentication Certificate Policy |
4.9 Test (Trial G2+G3) domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Test (Trial G2+G3) domain in ASN.1 syntax.
NOTE: The Test sub-domain is sometimes referred to as Trial domain.
-- PKIoverheid Certificate Test (Trial G2+G3) domain identifiers arc
id-pkio-cp-g2g3test-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test auth(1) } -- Person Authenticity Certificate Policy
id-pkio-cp-g2g3test-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test nonrep(2) } -- Person Non-repudiation Certificate Policy
id-pkio-cp-g2g3test-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test conf(3) } -- Person Confidentiality Certificate Policy
id-pkio-cp-g2g3test-svc-auth OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test svc-auth(4) } -- Services Authenticity Certificate Policy
id-pkio-cp-g2g3test-svc-conf OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test svc-conf(5) } -- Services Confidentiality Certificate Policy
id-pkio-cp-g2g3test-server OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test server(6) } -- Server Authentication Certificate Policy
id-pkio-cp-g2g3test-sysauth OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test sysauth(7) } -- Systems Authenticity Certificate Policy
id-pkio-cp-g2g3test-sysconf OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test sysconf(8) } -- Systems Confidentiality Certificate Policy
id-pkio-cp-g2g3test-syscombi OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test syscombi(9) } -- Systems Combination Certificate Policy
id-pkio-cp-g2g3test-svc-seal OBJECT IDENTIFIER ::= { id-pkio-cp-g2g3test svc-seal(10) } -- Services Seal Certificate PolicyThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the Test (Trial G2+G3) domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g2g3test-auth |
{ id-pkio-cp-g2g3test auth(1) } |
2.16.528.1.1003.1.2.9.1 |
ACTIVE | Person Authenticity Certificate Policy |
id-pkio-cp-g2g3test-nonrep |
{ id-pkio-cp-g2g3test nonrep(2) } |
2.16.528.1.1003.1.2.9.2 |
ACTIVE | Person Non-repudiation Certificate Policy |
id-pkio-cp-g2g3test-conf |
{ id-pkio-cp-g2g3test conf(3) } |
2.16.528.1.1003.1.2.9.3 |
ACTIVE | Person Confidentiality Certificate Policy |
id-pkio-cp-g2g3test-svc-auth |
{ id-pkio-cp-g2g3test svc-auth(4) } |
2.16.528.1.1003.1.2.9.4 |
ACTIVE | Services Authenticity Certificate Policy |
id-pkio-cp-g2g3test-svc-conf |
{ id-pkio-cp-g2g3test svc-conf(5) } |
2.16.528.1.1003.1.2.9.5 |
ACTIVE | Services Confidentiality Certificate Policy |
id-pkio-cp-g2g3test-server |
{ id-pkio-cp-g2g3test server(6) } |
2.16.528.1.1003.1.2.9.6 |
ACTIVE | Server Authentication Certificate Policy |
id-pkio-cp-g2g3test-sysauth |
{ id-pkio-cp-g2g3test sysauth(7) } |
2.16.528.1.1003.1.2.9.7 |
ACTIVE | Systems Authenticity Certificate Policy |
id-pkio-cp-g2g3test-sysconf |
{ id-pkio-cp-g2g3test sysconf(8) } |
2.16.528.1.1003.1.2.9.8 |
ACTIVE | Systems Confidentiality Certificate Policy |
id-pkio-cp-g2g3test-syscombi |
{ id-pkio-cp-g2g3test syscombi(9) } |
2.16.528.1.1003.1.2.9.9 |
ACTIVE | Systems Combination Certificate Policy |
id-pkio-cp-g2g3test-svc-seal |
{ id-pkio-cp-g2g3test svc-seal(10) } |
2.16.528.1.1003.1.2.9.10 |
ACTIVE | Services Seal Certificate Policy |
4.10 S/MIME (G3) Organization Validated domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the S/MIME (G3) Organization Validated domain in ASN.1 syntax.
-- PKIoverheid Certificate S/MIME (G3) Organization Validated domain identifiers arc
id-pkio-cp-g3smimeorgv-strictSO OBJECT IDENTIFIER ::= { id-pkio-cp-g3smimeorgv strictSO(7) } -- Signing Only certificates in the S/MIME BR Strict profile.
id-pkio-cp-g3smimeorgv-strictKM OBJECT IDENTIFIER ::= { id-pkio-cp-g3smimeorgv strictKM(8) } -- Key Management certificates in the S/MIME BR Strict profile.
id-pkio-cp-g3smimeorgv-strictDU OBJECT IDENTIFIER ::= { id-pkio-cp-g3smimeorgv strictDU(9) } -- Dual Use certificates in the S/MIME BR Strict profile and OCSP Signing.The table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the S/MIME (G3) Organization Validated domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g3smimeorgv-strictDU |
{ id-pkio-cp-g3smimeorgv strictDU(9) } |
2.16.528.1.1003.1.2.10.9 |
ACTIVE | Dual Use certificates in the S/MIME BR Strict profile and OCSP Signing |
4.11 S/MIME (G3) Sponsor Validated domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the S/MIME (G3) Sponsor Validated domain in ASN.1 syntax.
-- PKIoverheid Certificate S/MIME (G3) Sponsor Validated domain identifiers arc
id-pkio-cp-g3smimespov-strictDU OBJECT IDENTIFIER ::= { id-pkio-cp-g3smimespov strictDU(9) } -- Dual Use certificates in the S/MIME BR Strict profile.The table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the S/MIME (G3) Sponsor Validated domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g3smimespov-strictDU |
{ id-pkio-cp-g3smimespov strictDU(9) } |
2.16.528.1.1003.1.2.11.9 |
ACTIVE | Dual Use certificates in the S/MIME BR Strict profile |
4.12 S/MIME (G3) Individual Validated domain CP identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the S/MIME (G3) Individual Validated domain in ASN.1 syntax.
-- PKIoverheid Certificate S/MIME (G3) Individual Validated domain identifiers arc
id-pkio-cp-g3smimeindv-strictDU OBJECT IDENTIFIER ::= { id-pkio-cp-g3smimeindv strictDU(9) } -- Dual Use certificates in the S/MIME BR Strict profile.The table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers arc in the S/MIME (G3) Individual Validated domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g3smimeindv-strictDU |
{ id-pkio-cp-g3smimeindv strictDU(9) } |
2.16.528.1.1003.1.2.12.9 |
ACTIVE | Dual Use certificates in the S/MIME BR Strict profile |
4.13 G4 Architecture CP identifiers arc
The code snippet below shows the G4 root-level PKIoverheid Certificate Policy identifiers arc in ASN.1 syntax.
-- PKIoverheid Certificate Policy G4 root-level identifiers arc
id-pkio-cp-g4p-gen10PubSM OBJECT IDENTIFIER ::= { id-pkio-cp-g4p gen10PubSM(12) } -- Generic CA using cipher 10 - Publicly-trusted S/MIME root
id-pkio-cp-g4p-gen10EUTLSig OBJECT IDENTIFIER ::= { id-pkio-cp-g4p gen10EUTLSig(14) } -- Generic CA using cipher 10 - EUTL Document Signing root
id-pkio-cp-g4p-gen10PrvTLS OBJECT IDENTIFIER ::= { id-pkio-cp-g4p gen10PrvTLS(15) } -- Generic CA using cipher 10 - Private TLS root
id-pkio-cp-g4p-gen10PrvOth OBJECT IDENTIFIER ::= { id-pkio-cp-g4p gen10PrvOth(16) } -- Generic CA using cipher 10 - Private Other root
id-pkio-cp-g4p-def10PrvOth OBJECT IDENTIFIER ::= { id-pkio-cp-g4p def10PrvOth(36) } -- Defensie CA using cipher 10 - Private Other root
id-pkio-cp-g4p-cibg10PrvOth OBJECT IDENTIFIER ::= { id-pkio-cp-g4p cibg10PrvOth(46) } -- CIBG CA using cipher 10 - Private Other rootThese G4 root-level identifiers will be referenced in the Certificate Policies in each of the following domains or sub-domains.
4.13.1 G4 Generic CA using cipher 10 - Publicly-trusted S/MIME root CP identifiers arc
The code snippet below shows the PKIoverheid G4 Certificate Policy identifiers in the “Generic CA using cipher 10 - Publicly-trusted S/MIME root” arc in ASN.1 syntax.
-- PKIoverheid Certificate "Generic CA using cipher 10 - Publicly-trusted S/MIME root" arc
id-pkio-cp-g4p-gen10PubSM-npInd OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM npInd(11) } -- Natural Person Individual Validation
id-pkio-cp-g4p-gen10PubSM-npInd-sso OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npInd sso(37) } -- Natural Person Individual Validation Strict Signing-only
id-pkio-cp-g4p-gen10PubSM-npInd-skm OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npInd skm(38) } -- Natural Person Individual Validation Strict Key Management
id-pkio-cp-g4p-gen10PubSM-npInd-sdu OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npInd sdu(39) } -- Natural Person Individual Validation Strict Dual Use
id-pkio-cp-g4p-gen10PubSM-npSpon OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM npSpon(13) } -- Natural Person Sponsor Validation
id-pkio-cp-g4p-gen10PubSM-npSpon-sso OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npSpon sso(37) } -- Natural Person Sponsor Validation Strict Signing-only
id-pkio-cp-g4p-gen10PubSM-npSpon-skm OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npSpon skm(38) } -- Natural Person Sponsor Validation Strict Key Management
id-pkio-cp-g4p-gen10PubSM-npSpon-sdu OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npSpon sdu(39) } -- Natural Person Sponsor Validation Strict Dual Use
id-pkio-cp-g4p-gen10PubSM-npInt OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM npInt(18) } -- Natural Person ICA-only
id-pkio-cp-g4p-gen10PubSM-npInt-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npInt ocsp(19) } -- Natural Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10PubSM-npTSP OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM npTSP(19) } -- Natural Person TSP-only
id-pkio-cp-g4p-gen10PubSM-npTSP-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-npTSP ocsp(10) } -- Natural Person TSP-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10PubSM-lpOrg OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM lpOrg(25) } -- Legal Person Organization Validation
id-pkio-cp-g4p-gen10PubSM-lpOrg-sso OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-lpOrg sso(37) } -- Legal Person Organization Validation Strict Signing-only
id-pkio-cp-g4p-gen10PubSM-lpOrg-skm OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-lpOrg skm(38) } -- Legal Person Organization Validation Strict Key Management
id-pkio-cp-g4p-gen10PubSM-lpOrg-sdu OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-lpOrg sdu(39) } -- Legal Person Organization Validation Strict Dual Use
id-pkio-cp-g4p-gen10PubSM-lpInt OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM lpInt(28) } -- Legal Person ICA-only
id-pkio-cp-g4p-gen10PubSM-lpInt-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-lpInt ocsp(10) } -- Legal Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10PubSM-lpTSP OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM lpTSP(29) } -- Legal Person TSP-only
id-pkio-cp-g4p-gen10PubSM-lpTSP-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PubSM-lpTSP ocsp(10) } -- Legal Person TSP-only Delegated OCSP ResponderThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers in the “Generic CA using cipher 10 - Publicly-trusted S/MIME root” arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g4p-gen10PubSM-npInd-sso |
{ id-pkio-cp-g4p-gen10PubSM-npInd sso(37) } |
2.16.528.1.1003.1.2.44.12.11.37 |
ACTIVE | Natural Person Individual Validation Strict Signing-only |
id-pkio-cp-g4p-gen10PubSM-npInd-skm |
{ id-pkio-cp-g4p-gen10PubSM-npInd skm(38) } |
2.16.528.1.1003.1.2.44.12.11.38 |
ACTIVE | Natural Person Individual Validation Strict Key Management |
id-pkio-cp-g4p-gen10PubSM-npInd-sdu |
{ id-pkio-cp-g4p-gen10PubSM-npInd sdu(39) } |
2.16.528.1.1003.1.2.44.12.11.39 |
ACTIVE | Natural Person Individual Validation Strict Dual Use |
id-pkio-cp-g4p-gen10PubSM-npSpon-sso |
{ id-pkio-cp-g4p-gen10PubSM-npSpon sso(37) } |
2.16.528.1.1003.1.2.44.12.13.37 |
ACTIVE | Natural Person Sponsor Validation Strict Signing-only |
id-pkio-cp-g4p-gen10PubSM-npSpon-skm |
{ id-pkio-cp-g4p-gen10PubSM-npSpon skm(38) } |
2.16.528.1.1003.1.2.44.12.13.38 |
ACTIVE | Natural Person Sponsor Validation Strict Key Management |
id-pkio-cp-g4p-gen10PubSM-npSpon-sdu |
{ id-pkio-cp-g4p-gen10PubSM-npSpon sdu(39) } |
2.16.528.1.1003.1.2.44.12.13.39 |
ACTIVE | Natural Person Sponsor Validation Strict Dual Use |
id-pkio-cp-g4p-gen10PubSM-npInt-ocsp |
{ id-pkio-cp-g4p-gen10PubSM-npInt ocsp(10) } |
2.16.528.1.1003.1.2.44.12.18.10 |
ACTIVE | Natural Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10PubSM-npTSP-ocsp |
{ id-pkio-cp-g4p-gen10PubSM-npTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.12.19.10 |
ACTIVE | Natural Person TSP-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10PubSM-lpOrg-sso |
{ id-pkio-cp-g4p-gen10PubSM-lpOrg sso(37) } |
2.16.528.1.1003.1.2.44.12.25.37 |
ACTIVE | Legal Person Organization Validation Strict Signing-only |
id-pkio-cp-g4p-gen10PubSM-lpOrg-skm |
{ id-pkio-cp-g4p-gen10PubSM-lpOrg skm(38) } |
2.16.528.1.1003.1.2.44.12.25.38 |
ACTIVE | Legal Person Organization Validation Strict Key Management |
id-pkio-cp-g4p-gen10PubSM-lpOrg-sdu |
{ id-pkio-cp-g4p-gen10PubSM-lpOrg sdu(39) } |
2.16.528.1.1003.1.2.44.12.25.39 |
ACTIVE | Legal Person Organization Validation Strict Dual Use |
id-pkio-cp-g4p-gen10PubSM-lpInt-ocsp |
{ id-pkio-cp-g4p-gen10PubSM-lpInt ocsp(10) } |
2.16.528.1.1003.1.2.44.12.28.10 |
ACTIVE | Legal Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10PubSM-lpTSP-ocsp |
{ id-pkio-cp-g4p-gen10PubSM-lpTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.12.29.10 |
ACTIVE | Legal Person TSP-only Delegated OCSP Responder |
4.13.2 G4 Generic CA using cipher 10 - EUTL Document Signing root CP identifiers arc
The code snippet below shows the PKIoverheid G4 Certificate Policy identifiers in the “Generic CA using cipher 10 - EUTL Document Signing root” arc in ASN.1 syntax.
-- PKIoverheid Certificate "Generic CA using cipher 10 - EUTL Document Signing root" arc
id-pkio-cp-g4p-gen10EUTLSig-npInd OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig npInd(11) } -- Natural Person Individual Validation
id-pkio-cp-g4p-gen10EUTLSig-npInd-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-npInd nonrep(5) } -- Natural Person Individual Validation Non-repudiation (eSignature)
id-pkio-cp-g4p-gen10EUTLSig-npRegP OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig npRegP(12) } -- Natural Person Regulated Profession Validation
id-pkio-cp-g4p-gen10EUTLSig-npRegP-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-npRegP nonrep(5) } -- Natural Person Regulated Profession Validation Non-repudiation (eSignature)
id-pkio-cp-g4p-gen10EUTLSig-npSpon OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig npSpon(13) } -- Natural Person Sponsor Validation
id-pkio-cp-g4p-gen10EUTLSig-npSpon-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-npSpon nonrep(5) } -- Natural Person Sponsor Validation Non-repudiation (eSignature)
id-pkio-cp-g4p-gen10EUTLSig-npRPSp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig npRPSp(14) } -- Natural Person Regulated Profession with Sponsor Validation
id-pkio-cp-g4p-gen10EUTLSig-npRPSp-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-npRPSp nonrep(5) } -- Natural Person Regulated Profession with Sponsor Validation Non-repudiation (eSignature)
id-pkio-cp-g4p-gen10EUTLSig-npInt OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig npInt(18) } -- Natural Person ICA-only
id-pkio-cp-g4p-gen10EUTLSig-npInt-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-npInt ocsp(10) } -- Natural Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10EUTLSig-npTSP OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig npTSP(19) } -- Natural Person TSP-only
id-pkio-cp-g4p-gen10EUTLSig-npTSP-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-npTSP ocsp(10) } -- Natural Person TSP-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10EUTLSig-lpOrg OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig lpOrg(25) } -- Legal Person Organization Validation
id-pkio-cp-g4p-gen10EUTLSig-lpOrg-nonrep OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-lpOrg nonrep(5) } -- Legal Person Organization Validation Non-repudiation (eSeal)
id-pkio-cp-g4p-gen10EUTLSig-lpInt OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig lpInt(28) } -- Legal Person ICA-only
id-pkio-cp-g4p-gen10EUTLSig-lpInt-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-lpInt ocsp(10) } -- Legal Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10EUTLSig-lpTSP OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig lpTSP(29) } -- Legal Person TSP-only
id-pkio-cp-g4p-gen10EUTLSig-lpTSP-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10EUTLSig-lpTSP ocsp(10) } -- Legal Person TSP-only Delegated OCSP ResponderThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers in the “Generic CA using cipher 10 - EUTL Document Signing root” arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g4p-gen10EUTLSig-npInd-nonrep |
{ id-pkio-cp-g4p-gen10EUTLSig-npInd nonrep(5) } |
2.16.528.1.1003.1.2.44.14.11.5 |
ACTIVE | Natural Person Individual Validation Non-repudiation (eSignature) |
id-pkio-cp-g4p-gen10EUTLSig-npRegP-nonrep |
{ id-pkio-cp-g4p-gen10EUTLSig-npRegP nonrep(5) } |
2.16.528.1.1003.1.2.44.14.12.5 |
ACTIVE | Natural Person Regulated Profession Validation Non-repudiation (eSignature) |
id-pkio-cp-g4p-gen10EUTLSig-npSpon-nonrep |
{ id-pkio-cp-g4p-gen10EUTLSig-npSpon nonrep(5) } |
2.16.528.1.1003.1.2.44.14.13.5 |
ACTIVE | Natural Person Sponsor Validation Non-repudiation (eSignature) |
id-pkio-cp-g4p-gen10EUTLSig-npRPSp-nonrep |
{ id-pkio-cp-g4p-gen10EUTLSig-npRPSp nonrep(5) } |
2.16.528.1.1003.1.2.44.14.14.5 |
ACTIVE | Natural Person Regulated Profession with Sponsor Validation Non-repudiation (eSignature) |
id-pkio-cp-g4p-gen10EUTLSig-npInd-ocsp |
{ id-pkio-cp-g4p-gen10EUTLSig-npInt ocsp(10) } |
2.16.528.1.1003.1.2.44.14.18.10 |
ACTIVE | Natural Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10EUTLSig-npTSP-ocsp |
{ id-pkio-cp-g4p-gen10EUTLSig-npTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.14.19.10 |
ACTIVE | Natural Person TSP-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10EUTLSig-lpOrg-nonrep |
{ id-pkio-cp-g4p-gen10EUTLSig-lpOrg nonrep(5) } |
2.16.528.1.1003.1.2.44.14.25.5 |
ACTIVE | Legal Person Organization Validation Non-repudiation (eSeal) |
id-pkio-cp-g4p-gen10EUTLSig-lpInd-ocsp |
{ id-pkio-cp-g4p-gen10EUTLSig-lpInt ocsp(10) } |
2.16.528.1.1003.1.2.44.14.28.10 |
ACTIVE | Legal Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10EUTLSig-lpTSP-ocsp |
{ id-pkio-cp-g4p-gen10EUTLSig-lpTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.14.29.10 |
ACTIVE | Legal Person TSP-only Delegated OCSP Responder |
4.13.3 G4 Generic CA using cipher 10 - Private TLS root CP identifiers arc
The code snippet below shows the PKIoverheid G4 Certificate Policy identifiers in the “Generic CA using cipher 10 - Private TLS root” arc in ASN.1 syntax.
-- PKIoverheid Certificate "Generic CA using cipher 10 - Private TLS root" arc
id-pkio-cp-g4p-gen10PrvTLS-sysOrg OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvTLS sysOrg(35) } -- System Organization Validation
id-pkio-cp-g4p-gen10PrvTLS-sysOrg-tls OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvTLS-sysOrg tls(11) } -- System Organization Validation Server
id-pkio-cp-g4p-gen10PrvTLS-sysInt OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvTLS sysInt(38) } -- System ICA-only
id-pkio-cp-g4p-gen10PrvTLS-sysInt-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvTLS-sysInt ocsp(10) } -- System ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10PrvTLS-sysTSP OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvTLS sysTSP(39) } -- System TSP-only
id-pkio-cp-g4p-gen10PrvTLS-sysTSP-ocsp OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvTLS-sysTSP ocsp(10) } -- System TSP-only Delegated OCSP ResponderThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers in the “Generic CA using cipher 10 - Private TLS root” arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g4p-gen10PrvTLS-sysOrg-tls |
{ id-pkio-cp-g4p-gen10PrvTLS-sysOrg tls(11) } |
2.16.528.1.1003.1.2.44.15.35.11 |
ACTIVE | System Organization Validation Server |
id-pkio-cp-g4p-gen10PrvTLS-sysInt-ocsp |
{ id-pkio-cp-g4p-gen10PrvTLS-sysInt ocsp(10) } |
2.16.528.1.1003.1.2.44.15.38.10 |
ACTIVE | System ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10PrvTLS-sysTSP-ocsp |
{ id-pkio-cp-g4p-gen10PrvTLS-sysTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.15.39.10 |
ACTIVE | System TSP-only Delegated OCSP Responder |
4.13.4 G4 Generic CA using cipher 10 - Private Other root CP identifiers arc
The code snippet below shows the PKIoverheid G4 Certificate Policy identifiers in the “Generic CA using cipher 10 - Private Other root” arc in ASN.1 syntax.
-- PKIoverheid Certificate "Generic CA using cipher 10 - Private Other root" arc
id-pkio-cp-g4p-gen10PrvOth-npInd` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth npInd(11) } -- Natural Person Individual Validation
id-pkio-cp-g4p-gen10PrvOth-npInd-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npInd authy(4) } -- Natural Person Individual Validation Authenticity
id-pkio-cp-g4p-gen10PrvOth-npInd-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npInd conf(7) } -- Natural Person Individual Validation Confidentiality
id-pkio-cp-g4p-gen10PrvOth-npInd-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npInd authon(8) } -- Natural Person Individual Validation Authentication
id-pkio-cp-g4p-gen10PrvOth-npRegP` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth npRegP(12) } -- Natural Person Regulated Profession Validation
id-pkio-cp-g4p-gen10PrvOth-npRegP-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npRegP authy(4) } -- Natural Person Regulated Profession Validation Authenticity
id-pkio-cp-g4p-gen10PrvOth-npRegP-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npRegP conf(7) } -- Natural Person Regulated Profession Validation Confidentiality
id-pkio-cp-g4p-gen10PrvOth-npRegP-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npRegP authon(8) } -- Natural Person Regulated Profession Validation Authentication
id-pkio-cp-g4p-gen10PrvOth-npSpon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth npSpon(13) } -- Natural Person Sponsor Validation
id-pkio-cp-g4p-gen10PrvOth-npSpon-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npSpon authy(4) } -- Natural Person Sponsor Validation Authenticity
id-pkio-cp-g4p-gen10PrvOth-npSpon-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npSpon conf(7) } -- Natural Person Sponsor Validation Confidentiality
id-pkio-cp-g4p-gen10PrvOth-npSpon-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npSpon authon(8) } -- Natural Person Sponsor Validation Authentication
id-pkio-cp-g4p-gen10PrvOth-npRPSp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth npRPSp(14) } -- Natural Person Regulated Profession with Sponsor Validation
id-pkio-cp-g4p-gen10PrvOth-npRPSp-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npRPSp authy(4) } -- Natural Person Regulated Profession with Sponsor Validation Authenticity
id-pkio-cp-g4p-gen10PrvOth-npRPSp-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npRPSp conf(7) } -- Natural Person Regulated Profession with Sponsor Validation Confidentiality
id-pkio-cp-g4p-gen10PrvOth-npRPSp-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npRPSp authon(8) } -- Natural Person Regulated Profession with Sponsor Validation Authentication
id-pkio-cp-g4p-gen10PrvOth-npInt` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth npInt(18) } -- Natural Person ICA-only
id-pkio-cp-g4p-gen10PrvOth-npInt-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npInt ocsp(10) } -- Natural Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10PrvOth-npTSP` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth npTSP(19) } -- Natural Person TSP-only
id-pkio-cp-g4p-gen10PrvOth-npTSP-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-npTSP ocsp(10) } -- Natural Person TSP-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10PrvOth-lpOrg` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth lpOrg(25) } -- Legal Person Organization Validation
id-pkio-cp-g4p-gen10PrvOth-lpOrg-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-lpOrg authy(4) } -- Legal Person Organization Validation Authenticity
id-pkio-cp-g4p-gen10PrvOth-lpOrg-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-lpOrg conf(7) } -- Legal Person Organization Validation Confidentiality
id-pkio-cp-g4p-gen10PrvOth-lpOrg-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-lpOrg authon(8) } -- Legal Person Organization Validation Authentication
id-pkio-cp-g4p-gen10PrvOth-lpInt` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth lpInt(28) } -- Legal Person ICA-only
id-pkio-cp-g4p-gen10PrvOth-lpInt-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-lpInt ocsp(10) } -- Legal Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-gen10PrvOth-lpTSP` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth lpTSP(29) } -- Legal Person TSP-only
id-pkio-cp-g4p-gen10PrvOth-lpTSP-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-gen10PrvOth-lpTSP ocsp(10) } -- Legal Person TSP-only Delegated OCSP ResponderThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers “Generic CA using cipher 10 - Private Other root”.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g4p-gen10PrvOth-npInd-authy |
{ id-pkio-cp-g4p-gen10PrvOth-npInd authy(4) } |
2.16.528.1.1003.1.2.44.16.11.4 |
ACTIVE | Natural Person Individual Validation Authenticity |
id-pkio-cp-g4p-gen10PrvOth-npInd-conf |
{ id-pkio-cp-g4p-gen10PrvOth-npInd conf(7) } |
2.16.528.1.1003.1.2.44.16.11.7 |
ACTIVE | Natural Person Individual Validation Confidentiality |
id-pkio-cp-g4p-gen10PrvOth-npInd-authon |
{ id-pkio-cp-g4p-gen10PrvOth-npInd authon(8) } |
2.16.528.1.1003.1.2.44.16.11.8 |
ACTIVE | Natural Person Individual Validation Authentication |
id-pkio-cp-g4p-gen10PrvOth-npRegP-authy |
{ id-pkio-cp-g4p-gen10PrvOth-npRegP authy(4) } |
2.16.528.1.1003.1.2.44.16.12.4 |
ACTIVE | Natural Person Regulated Profession Validation Authenticity |
id-pkio-cp-g4p-gen10PrvOth-npRegP-conf |
{ id-pkio-cp-g4p-gen10PrvOth-npRegP conf(7) } |
2.16.528.1.1003.1.2.44.16.12.7 |
ACTIVE | Natural Person Regulated Profession Validation Confidentiality |
id-pkio-cp-g4p-gen10PrvOth-npRegP-authon |
{ id-pkio-cp-g4p-gen10PrvOth-npRegP authon(8) } |
2.16.528.1.1003.1.2.44.16.12.8 |
ACTIVE | Natural Person Regulated Profession Validation Authentication |
id-pkio-cp-g4p-gen10PrvOth-npSpon-authy |
{ id-pkio-cp-g4p-gen10PrvOth-npSpon authy(4) } |
2.16.528.1.1003.1.2.44.16.13.4 |
ACTIVE | Natural Person Sponsor Validation Authenticity |
id-pkio-cp-g4p-gen10PrvOth-npSpon-conf |
{ id-pkio-cp-g4p-gen10PrvOth-npSpon conf(7) } |
2.16.528.1.1003.1.2.44.16.13.7 |
ACTIVE | Natural Person Sponsor Validation Confidentiality |
id-pkio-cp-g4p-gen10PrvOth-npSpon-authon |
{ id-pkio-cp-g4p-gen10PrvOth-npSpon authon(8) } |
2.16.528.1.1003.1.2.44.16.13.8 |
ACTIVE | Natural Person Sponsor Validation Authentication |
id-pkio-cp-g4p-gen10PrvOth-npRPSp-authy |
{ id-pkio-cp-g4p-gen10PrvOth-npRPSp authy(4) } |
2.16.528.1.1003.1.2.44.16.14.4 |
ACTIVE | Natural Person Regulated Profession with Sponsor Validation Authenticity |
id-pkio-cp-g4p-gen10PrvOth-npRPSp-conf |
{ id-pkio-cp-g4p-gen10PrvOth-npRPSp conf(7) } |
2.16.528.1.1003.1.2.44.16.14.7 |
ACTIVE | Natural Person Regulated Profession with Sponsor Validation Confidentiality |
id-pkio-cp-g4p-gen10PrvOth-npRPSp-authon |
{ id-pkio-cp-g4p-gen10PrvOth-npRPSp authon(8) } |
2.16.528.1.1003.1.2.44.16.14.8 |
ACTIVE | Natural Person Regulated Profession with Sponsor Validation Authentication |
id-pkio-cp-g4p-gen10PrvOth-npInt-ocsp |
{ id-pkio-cp-g4p-gen10PrvOth-npInt ocsp(10) } |
2.16.528.1.1003.1.2.44.16.18.10 |
ACTIVE | Natural Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10PrvOth-npTSP-ocsp |
{ id-pkio-cp-g4p-gen10PrvOth-npTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.16.19.10 |
ACTIVE | Natural Person TSP-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10PrvOth-lpOrg-authy |
{ id-pkio-cp-g4p-gen10PrvOth-lpOrg authy(4) } |
2.16.528.1.1003.1.2.44.16.25.4 |
ACTIVE | Legal Person Organization Validation Authenticity |
id-pkio-cp-g4p-gen10PrvOth-lpOrg-conf |
{ id-pkio-cp-g4p-gen10PrvOth-lpOrg conf(7) } |
2.16.528.1.1003.1.2.44.16.25.7 |
ACTIVE | Legal Person Organization Validation Confidentiality |
id-pkio-cp-g4p-gen10PrvOth-lpOrg-authon |
{ id-pkio-cp-g4p-gen10PrvOth-lpOrg(25) } |
2.16.528.1.1003.1.2.44.16.25.8 |
ACTIVE | Legal Person Organization Validation Authentication |
id-pkio-cp-g4p-gen10PrvOth-lpInt-ocsp |
{ id-pkio-cp-g4p-gen10PrvOth-lpInt ocsp(10) } |
2.16.528.1.1003.1.2.44.16.28.10 |
ACTIVE | Legal Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-gen10PrvOth-lpTSP-ocsp |
{ id-pkio-cp-g4p-gen10PrvOth-lpTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.16.29.10 |
ACTIVE | Legal Person TSP-only Delegated OCSP Responder |
4.13.5 G4 Defensie CA using cipher 10 - Private Other root CP identifiers arc
The code snippet below shows the PKIoverheid G4 Certificate Policy identifiers in the “Defensie CA using cipher 10 - Private Other root” arc in ASN.1 syntax.
-- PKIoverheid Certificate "Defensie CA using cipher 10 - Private Other root" arc
id-pkio-cp-g4p-def10PrvOth-npSpon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth npSpon(13) } -- Natural Person Sponsor Validation
id-pkio-cp-g4p-def10PrvOth-npSpon-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth-npSpon authy(4) } -- Natural Person Sponsor Validation Authenticity
id-pkio-cp-g4p-def10PrvOth-npSpon-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth-npSpon conf(7) } -- Natural Person Sponsor Validation Confidentiality
id-pkio-cp-g4p-def10PrvOth-npSpon-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth-npSpon authon(8) } -- Natural Person Sponsor Validation Authentication
id-pkio-cp-g4p-def10PrvOth-npInt` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth npInt(18) } -- Natural Person ICA-only
id-pkio-cp-g4p-def10PrvOth-npInt-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth-npInt ocsp(10) } -- Natural Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-def10PrvOth-npTSP` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth npTSP(19) } -- Natural Person TSP-only
id-pkio-cp-g4p-def10PrvOth-npTSP-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-def10PrvOth-npTSP ocsp(10) } -- Natural Person TSP-only Delegated OCSP ResponderThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers in the “Defensie CA using cipher 10 - Private Other root” arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g4p-def10PrvOth-npSpon-authy |
{ id-pkio-cp-g4p-def10PrvOth-npSpon authy(4) } |
2.16.528.1.1003.1.2.44.36.13.4 |
ACTIVE | Natural Person Sponsor Validation Authenticity |
id-pkio-cp-g4p-def10PrvOth-npSpon-conf |
{ id-pkio-cp-g4p-def10PrvOth-npSpon conf(7) } |
2.16.528.1.1003.1.2.44.36.13.7 |
ACTIVE | Natural Person Sponsor Validation Confidentiality |
id-pkio-cp-g4p-def10PrvOth-npSpon-authon |
{ id-pkio-cp-g4p-def10PrvOth-npSpon authon(8) } |
2.16.528.1.1003.1.2.44.36.13.8 |
ACTIVE | Natural Person Sponsor Validation Authentication |
id-pkio-cp-g4p-def10PrvOth-npInt-ocsp |
{ id-pkio-cp-g4p-def10PrvOth-npInt ocsp(10) } |
2.16.528.1.1003.1.2.44.36.18.10 |
ACTIVE | Natural Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-def10PrvOth-npTSP-ocsp |
{ id-pkio-cp-g4p-def10PrvOth-npTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.36.19.10 |
ACTIVE | Natural Person TSP-only Delegated OCSP Responder |
4.13.6 G4 CIBG CA using cipher 10 - Private Other root CP identifiers arc
The code snippet below shows the PKIoverheid G4 Certificate Policy identifiers in the “CIBG CA using cipher 10 - Private Other root” arc in ASN.1 syntax.
-- PKIoverheid Certificate "CIBG CA using cipher 10 - Private Other root" arc
id-pkio-cp-g4p-cibg10PrvOth-npInd` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth npInd(11) } -- Natural Person Individual Validation
id-pkio-cp-g4p-cibg10PrvOth-npInd-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npInd authy(4) } -- Natural Person Individual Validation Authenticity
id-pkio-cp-g4p-cibg10PrvOth-npInd-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npInd conf(7) } -- Natural Person Individual Validation Confidentiality
id-pkio-cp-g4p-cibg10PrvOth-npInd-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npInd authon(8) } -- Natural Person Individual Validation Authentication
id-pkio-cp-g4p-cibg10PrvOth-npRegP` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth npRegP(12) } -- Natural Person Regulated Profession Validation
id-pkio-cp-g4p-cibg10PrvOth-npRegP-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npRegP authy(4) } -- Natural Person Regulated Profession Validation Authenticity
id-pkio-cp-g4p-cibg10PrvOth-npRegP-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npRegP conf(7) } -- Natural Person Regulated Profession Validation Confidentiality
id-pkio-cp-g4p-cibg10PrvOth-npRegP-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npRegP authon(8) } -- Natural Person Regulated Profession Validation Authentication
id-pkio-cp-g4p-cibg10PrvOth-npSpon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth npSpon(13) } -- Natural Person Sponsor Validation
id-pkio-cp-g4p-cibg10PrvOth-npSpon-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npSpon authy(4) } -- Natural Person Sponsor Validation Authenticity
id-pkio-cp-g4p-cibg10PrvOth-npSpon-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npSpon conf(7) } -- Natural Person Sponsor Validation Confidentiality
id-pkio-cp-g4p-cibg10PrvOth-npSpon-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npSpon authon(8) } -- Natural Person Sponsor Validation Authentication
id-pkio-cp-g4p-cibg10PrvOth-npRPSp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth npRPSp(14) } -- Natural Person Regulated Profession with Sponsor Validation
id-pkio-cp-g4p-cibg10PrvOth-npRPSp-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npRPSp authy(4) } -- Natural Person Regulated Profession with Sponsor Validation Authenticity
id-pkio-cp-g4p-cibg10PrvOth-npRPSp-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npRPSp conf(7) } -- Natural Person Regulated Profession with Sponsor Validation Confidentiality
id-pkio-cp-g4p-cibg10PrvOth-npRPSp-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npRPSp authon(8) } -- Natural Person Regulated Profession with Sponsor Validation Authentication
id-pkio-cp-g4p-cibg10PrvOth-npInt` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth npInt(18) } -- Natural Person ICA-only
id-pkio-cp-g4p-cibg10PrvOth-npInt-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npInt ocsp(10) } -- Natural Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-cibg10PrvOth-npTSP` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth npTSP(19) } -- Natural Person TSP-only
id-pkio-cp-g4p-cibg10PrvOth-npTSP-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-npTSP ocsp(10) } -- Natural Person TSP-only Delegated OCSP Responder
id-pkio-cp-g4p-cibg10PrvOth-lpOrg` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth lpOrg(25) } -- Legal Person Organization Validation
id-pkio-cp-g4p-cibg10PrvOth-lpOrg-authy` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-lpOrg authy(4) } -- Legal Person Organization Validation Authenticity
id-pkio-cp-g4p-cibg10PrvOth-lpOrg-conf` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-lpOrg conf(7) } -- Legal Person Organization Validation Confidentiality
id-pkio-cp-g4p-cibg10PrvOth-lpOrg-authon` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-lpOrg authon(8) } -- Legal Person Organization Validation Authentication
id-pkio-cp-g4p-cibg10PrvOth-lpInt` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth lpInt(28) } -- Legal Person ICA-only
id-pkio-cp-g4p-cibg10PrvOth-lpInt-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-lpInt ocsp(10) } -- Legal Person ICA-only Delegated OCSP Responder
id-pkio-cp-g4p-cibg10PrvOth-lpTSP` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth lpTSP(29) } -- Legal Person TSP-only
id-pkio-cp-g4p-cibg10PrvOth-lpTSP-ocsp` OBJECT IDENTIFIER ::= { id-pkio-cp-g4p-cibg10PrvOth-lpTSP ocsp(10) } -- Legal Person TSP-only Delegated OCSP ResponderThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Certificate Policy identifiers in the “CIBG CA using cipher 10 - Private Other root” arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-cp-g4p-cibg10PrvOth-npInd-authy |
{ id-pkio-cp-g4p-cibg10PrvOth-npInd authy(4) } |
2.16.528.1.1003.1.2.44.46.11.4 |
ACTIVE | Natural Person Individual Validation Authenticity |
id-pkio-cp-g4p-cibg10PrvOth-npInd-conf |
{ id-pkio-cp-g4p-cibg10PrvOth-npInd conf(7) } |
2.16.528.1.1003.1.2.44.46.11.7 |
ACTIVE | Natural Person Individual Validation Confidentiality |
id-pkio-cp-g4p-cibg10PrvOth-npInd-authon |
{ id-pkio-cp-g4p-cibg10PrvOth-npInd authon(8) } |
2.16.528.1.1003.1.2.44.46.11.8 |
ACTIVE | Natural Person Individual Validation Authentication |
id-pkio-cp-g4p-cibg10PrvOth-npRegP-authy |
{ id-pkio-cp-g4p-cibg10PrvOth-npRegP authy(4) } |
2.16.528.1.1003.1.2.44.46.12.4 |
ACTIVE | Natural Person Regulated Profession Validation Authenticity |
id-pkio-cp-g4p-cibg10PrvOth-npRegP-conf |
{ id-pkio-cp-g4p-cibg10PrvOth-npRegP conf(7) } |
2.16.528.1.1003.1.2.44.46.12.7 |
ACTIVE | Natural Person Regulated Profession Validation Confidentiality |
id-pkio-cp-g4p-cibg10PrvOth-npRegP-authon |
{ id-pkio-cp-g4p-cibg10PrvOth-npRegP authon(8) } |
2.16.528.1.1003.1.2.44.46.12.8 |
ACTIVE | Natural Person Regulated Profession Validation Authentication |
id-pkio-cp-g4p-cibg10PrvOth-npSpon-authy |
{ id-pkio-cp-g4p-cibg10PrvOth-npSpon authy(4) } |
2.16.528.1.1003.1.2.44.46.13.4 |
ACTIVE | Natural Person Sponsor Validation Authenticity |
id-pkio-cp-g4p-cibg10PrvOth-npSpon-conf |
{ id-pkio-cp-g4p-cibg10PrvOth-npSpon conf(7) } |
2.16.528.1.1003.1.2.44.46.13.7 |
ACTIVE | Natural Person Sponsor Validation Confidentiality |
id-pkio-cp-g4p-cibg10PrvOth-npSpon-authon |
{ id-pkio-cp-g4p-cibg10PrvOth-npSpon authon(8) } |
2.16.528.1.1003.1.2.44.46.13.8 |
ACTIVE | Natural Person Sponsor Validation Authentication |
id-pkio-cp-g4p-cibg10PrvOth-npRPSp-authy |
{ id-pkio-cp-g4p-cibg10PrvOth-npRPSp authy(4) } |
2.16.528.1.1003.1.2.44.46.14.4 |
ACTIVE | Natural Person Regulated Profession with Sponsor Validation Authenticity |
id-pkio-cp-g4p-cibg10PrvOth-npRPSp-conf |
{ id-pkio-cp-g4p-cibg10PrvOth-npRPSp conf(7) } |
2.16.528.1.1003.1.2.44.46.14.7 |
ACTIVE | Natural Person Regulated Profession with Sponsor Validation Confidentiality |
id-pkio-cp-g4p-cibg10PrvOth-npRPSp-authon |
{ id-pkio-cp-g4p-cibg10PrvOth-npRPSp authon(8) } |
2.16.528.1.1003.1.2.44.46.14.8 |
ACTIVE | Natural Person Regulated Profession with Sponsor Validation Authentication |
id-pkio-cp-g4p-cibg10PrvOth-npInt-ocsp |
{ id-pkio-cp-g4p-cibg10PrvOth-npInt ocsp(10) } |
2.16.528.1.1003.1.2.44.46.18.10 |
ACTIVE | Natural Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-cibg10PrvOth-npTSP-ocsp |
{ id-pkio-cp-g4p-cibg10PrvOth-npTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.46.19.10 |
ACTIVE | Natural Person TSP-only Delegated OCSP Responder |
id-pkio-cp-g4p-cibg10PrvOth-lpOrg-authy |
{ id-pkio-cp-g4p-cibg10PrvOth-lpOrg authy(4) } |
2.16.528.1.1003.1.2.44.46.25.4 |
ACTIVE | Legal Person Organization Validation Authenticity |
id-pkio-cp-g4p-cibg10PrvOth-lpOrg-conf |
{ id-pkio-cp-g4p-cibg10PrvOth-lpOrg conf(7) } |
2.16.528.1.1003.1.2.44.46.25.7 |
ACTIVE | Legal Person Organization Validation Confidentiality |
id-pkio-cp-g4p-cibg10PrvOth-lpOrg-authon |
{ id-pkio-cp-g4p-cibg10PrvOth-lpOrg(25) } |
2.16.528.1.1003.1.2.44.46.25.8 |
ACTIVE | Legal Person Organization Validation Authentication |
id-pkio-cp-g4p-cibg10PrvOth-lpInt-ocsp |
{ id-pkio-cp-g4p-cibg10PrvOth-lpInt ocsp(10) } |
2.16.528.1.1003.1.2.44.46.28.10 |
ACTIVE | Legal Person ICA-only Delegated OCSP Responder |
id-pkio-cp-g4p-cibg10PrvOth-lpTSP-ocsp |
{ id-pkio-cp-g4p-cibg10PrvOth-lpTSP ocsp(10) } |
2.16.528.1.1003.1.2.44.46.29.10 |
ACTIVE | Legal Person TSP-only Delegated OCSP Responder |
5. PKIoverheid Organization identifiers arc
The code snippet below shows the domain-level PKIoverheid Organization identifiers arc in ASN.1 syntax.
-- PKIoverheid Certificate Policy domain-level identifiers arc
id-pkio-org-pa OBJECT IDENTIFIER ::= { id-pkio-org pa(1) } -- PA
id-pkio-org-g1gov OBJECT IDENTIFIER ::= { id-pkio-org g1gov(2) } -- DEPRECATED (G1 Government)
id-pkio-org-g1g2g3cit OBJECT IDENTIFIER ::= { id-pkio-org g1g2g3cit(3) } -- G1+G2+G3 Citizen
id-pkio-org-g1com OBJECT IDENTIFIER ::= { id-pkio-org g1com(4) } -- DEPRECATED (G1 Companies)
id-pkio-org-g2g3org OBJECT IDENTIFIER ::= { id-pkio-org g2g3org(5) } -- G2+G3 Organizations
id-pkio-org-g2g3ad OBJECT IDENTIFIER ::= { id-pkio-org g2g3ad(6) } -- G2+G3 Autonomous Devices
id-pkio-org-g2g3ev OBJECT IDENTIFIER ::= { id-pkio-org g2g3ev(7) } -- G2+G3 Extended Validation
id-pkio-org-g1priv OBJECT IDENTIFIER ::= { id-pkio-org g1priv(8) } -- G1 Private
id-pkio-org-g2g3test OBJECT IDENTIFIER ::= { id-pkio-org g2g3test(9) } -- G2+G3 Test
id-pkio-org-g3smimeorgv OBJECT IDENTIFIER ::= { id-pkio-org g3smimeorgv(10) } -- G3 S/MIME Organization Validated
id-pkio-org-g3smimespov OBJECT IDENTIFIER ::= { id-pkio-org g3smimespov(11) } -- G3 S/MIME Sponsor Validated
id-pkio-org-g3smimeindv OBJECT IDENTIFIER ::= { id-pkio-org g3smimeindv(12) } -- G3 S/MIME Individual ValidatedThese domain-level identifiers will be referenced in the Certificate Policies in each of the following sub-domains.
5.1 PA sub-domain Organization identifiers arc
The code snippet below shows the PKIoverheid Certificate Policy identifiers arc in the Policy Authority (PA) sub-domain in ASN.1 syntax.
-- PKIoverheid Certificate Policy PA sub-domain identifiers arc
id-pkio-org-pa-tsp OBJECT IDENTIFIER ::= { id-pkio-org-pa tsp(1) } -- Trust Service ProviderThe table below gives a more reader-friendly overview of the PKIoverheid Organization identifiers arc in the PA sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-pa-tsp |
{ id-pkio-org-pa tsp(1) } |
2.16.528.1.1003.1.3.1.1 |
ACTIVE | Trust Service Provider |
5.2 Government (Public G1) sub-domain PKIoverheid Organization identifiers arc (DEPRECATED)
The code snippet below shows the PKIoverheid Organization identifiers arc in the Government (Public G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization Government (Public G1) sub-domain identifiers arc
id-pkio-org-g1gov-nova OBJECT IDENTIFIER ::= { id-pkio-org-g1gov nova(1) } -- DEPRECATED
id-pkio-org-g1gov-nova-auth OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-nova auth(1) } -- DEPRECATED
id-pkio-org-g1gov-nova-nonrep OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-nova nonrep(2) } -- DEPRECATED
id-pkio-org-g1gov-nova-conf OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-nova conf(3) } -- DEPRECATED
id-pkio-org-g1gov-pink OBJECT IDENTIFIER ::= { id-pkio-org-g1gov pink(2) } -- DEPRECATED
id-pkio-org-g1gov-pink-auth OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-pink auth(1) } -- DEPRECATED
id-pkio-org-g1gov-pink-nonrep OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-pink nonrep(2) } -- DEPRECATED
id-pkio-org-g1gov-pink-conf OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-pink conf(3) } -- DEPRECATED
id-pkio-org-g1gov-pink-svc OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-pink svc(4) } -- DEPRECATED
id-pkio-org-g1gov-pink-getronics OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-pink getronics(5) } -- DEPRECATED
id-pkio-org-g1gov-diginotar OBJECT IDENTIFIER ::= { id-pkio-org-g1gov diginotar(3) } -- DEPRECATED
id-pkio-org-g1gov-diginotar-ca-pkio OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-diginotar pkio-ca(1) } -- DEPRECATED
id-pkio-org-g1gov-uzireg OBJECT IDENTIFIER ::= { id-pkio-org-g1gov uzireg(4) } -- DEPRECATED
id-pkio-org-g1gov-uzireg-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-uzireg tsp(1) } -- DEPRECATED
id-pkio-org-g1gov-uzireg-tsp-zorgverlener OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-uzireg-tsp zorgverlener(1) } -- DEPRECATED
id-pkio-org-g1gov-uzireg-tsp-mdwnaam OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-uzireg-tsp medewerker-op-naam(2) } -- DEPRECATED
id-pkio-org-g1gov-uzireg-tsp-mdwnietnaam OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-uzireg-tsp medewerker-niet-op-naam(3) } -- DEPRECATED
id-pkio-org-g1gov-uzireg-tsp-svc OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-uzireg-tsp services(4) } -- DEPRECATED
id-pkio-org-g1gov-uzireg-tsp-zovarserver OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-uzireg-tsp zovarserver(5) } - DEPRECATED
id-pkio-org-g1gov-defence OBJECT IDENTIFIER ::= { id-pkio-org-g1gov defence(6) } -- DEPRECATED
id-pkio-org-g1gov-defence-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-defence tsp(1) } -- DEPRECATED
id-pkio-org-g1gov-defence-defensiepas OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-defence defensiepas(2) } -- DEPRECATED
id-pkio-org-g1gov-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g1gov kpn(7) } -- DEPRECATED
id-pkio-org-g1gov-kpn-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g1gov-kpn tsp(1) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the end-nodes in the PKIoverheid Organizations identifiers arc in the Government (Public G1) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g1gov-nova-auth |
{ id-pkio-org-g1gov-nova auth(1) } |
2.16.528.1.1003.1.3.2.1.1 |
DEPRECATED | Nova CA for Authenticity certificates |
id-pkio-org-g1gov-nova-nonrep |
{ id-pkio-org-g1gov-nova nonrep(2) } |
2.16.528.1.1003.1.3.2.1.2 |
DEPRECATED | Nova CA for Non-Repudiation certificates |
id-pkio-org-g1gov-nova-conf |
{ id-pkio-org-g1gov-nova conf(3) } |
2.16.528.1.1003.1.3.2.1.3 |
DEPRECATED | Nova CA for Confidentiality certificates |
id-pkio-org-g1gov-pink-auth |
{ id-pkio-org-g1gov-pink auth(1) } |
2.16.528.1.1003.1.3.2.2.1 |
DEPRECATED | Pink Roccade CA for Authenticity certificates |
id-pkio-org-g1gov-pink-nonrep |
{ id-pkio-org-g1gov-pink nonrep(2) } |
2.16.528.1.1003.1.3.2.2.2 |
DEPRECATED | Pink Roccade CA for Non-Repudiation certificates |
id-pkio-org-g1gov-pink-conf |
{ id-pkio-org-g1gov-pink conf(3) } |
2.16.528.1.1003.1.3.2.2.3 |
DEPRECATED | Pink Roccade CA for Confidentiality certificates |
id-pkio-org-g1gov-pink-svc |
{ id-pkio-org-g1gov-pink svc(4) } |
2.16.528.1.1003.1.3.2.2.4 |
DEPRECATED | Pink Roccade CA for Services certificates |
id-pkio-org-g1gov-pink-getronics |
{ id-pkio-org-g1gov-pink getronics(5) } |
2.16.528.1.1003.1.3.2.2.5 |
DEPRECATED | Pink Roccade Getronics CA |
id-pkio-org-g1gov-diginotar-ca-pkio |
{ id-pkio-org-g1gov-diginotar pkio-ca(1) } |
2.16.528.1.1003.1.3.2.3.1 |
DEPRECATED | Diginotar CA for PKIoverheid certificates |
id-pkio-org-g1gov-uzireg-tsp-zorgverlener |
{ id-pkio-org-g1gov-uzireg-tsp zorgverlener(1) } |
2.16.528.1.1003.1.3.2.4.1.1 |
DEPRECATED | UZI Register CA for Zorgverlender certificates |
id-pkio-org-g1gov-uzireg-tsp-mdwnaam |
{ id-pkio-org-g1gov-uzireg-tsp medewerker-op-naam(2) } |
2.16.528.1.1003.1.3.2.4.1.2 |
DEPRECATED | UZI Register CA for “Medewerker op naam” certificates |
id-pkio-org-g1gov-uzireg-tsp-mdwnietnaam |
{ id-pkio-org-g1gov-uzireg-tsp medewerker-niet-op-naam(3) } |
2.16.528.1.1003.1.3.2.4.1.3 |
DEPRECATED | UZI Register CA for “Medewerker niet op naam” certificates |
id-pkio-org-g1gov-uzireg-tsp-svc |
{ id-pkio-org-g1gov-uzireg-tsp services(4) } |
2.16.528.1.1003.1.3.2.4.1.4 |
DEPRECATED | UZI Register CA for Services certificates |
id-pkio-org-g1gov-uzireg-tsp-zovarserver |
{ id-pkio-org-g1gov-uzireg-tsp zovarserver(5) } |
2.16.528.1.1003.1.3.2.4.1.5 |
DEPRECATED | UZI Register CA for ZOVAR Server certificates |
id-pkio-org-g1gov-defence-tsp |
{ id-pkio-org-g1gov-defence tsp(1) } |
2.16.528.1.1003.1.3.2.6.1 |
DEPRECATED | Department of Defence TSP CA |
id-pkio-org-g1gov-defence-defensiepas |
{ id-pkio-org-g1gov-defence defensiepas(2) } |
2.16.528.1.1003.1.3.2.6.2 |
DEPRECATED | Department of Defence Defensiepas CA |
id-pkio-org-g1gov-kpn-tsp |
{ id-pkio-org-g1gov-kpn tsp(1) } |
2.16.528.1.1003.1.3.2.7.1 |
DEPRECATED | KPN TSP CA |
5.3 Citizen (Public G1+G2+G3) sub-domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the Citizen (Public G1+G2+G3) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization Citizen (Public G1+G2+G3) sub-domain identifiers arc
id-pkio-org-g1g2g3cit-esg OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit esg(1) } -- DEPRECATED
id-pkio-org-g1g2g3cit-esg-pers OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit-esg pers(1) } -- DEPRECATED
id-pkio-org-g1g2g3cit-ddy OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit ddy(1) } -- Digidentity Citizen Hierarchy CA
id-pkio-org-g1g2g3cit-ddy-cit OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit-ddy cit(1) } -- Digidentity Citizen Hierarchy CA for Citizen certificates
id-pkio-org-g1g2g3cit-ddy-sscd OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit-ddy sscd(2) } -- Digidentity Citizen Hierarchy CA for SSCD certificates
id-pkio-org-g1g2g3cit-qv OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit qv(3) } -- QuoVadis Citizen Hierarchy CA
id-pkio-org-g1g2g3cit-qv-cit OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit-qv cit(1) } -- QuoVadis Citizen Hierarchy CA for Citizen certificates
id-pkio-org-g1g2g3cit-cb OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit cb(4) } -- Cleverbase Citizen Hierarchy CA
id-pkio-org-g1g2g3cit-cb-cit OBJECT IDENTIFIER ::= { id-pkio-org-g1g2g3cit-cb cit(1) } -- Cleverbase Citizen Hierarchy CA for Citizen certificatesThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the Citizen (Public G1+G2+G3) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g1g2g3cit-esg-pers |
{ id-pkio-org-g1g2g3cit-esg pers(1) } |
2.16.528.1.1003.1.3.3.1.1 |
DEPRECATED | Digidentity Citizen Hierarchy CA for Personal certificates |
id-pkio-org-g1g2g3cit-ddy-cit |
{ id-pkio-org-g1g2g3cit-ddy cit(1) } |
2.16.528.1.1003.1.3.3.2.1 |
ACTIVE since 20101117 | Digidentity Citizen Hierarchy CA for Citizen certificates |
id-pkio-org-g1g2g3cit-ddy-sscd |
{ id-pkio-org-g1g2g3cit-ddy sscd(2) } |
2.16.528.1.1003.1.3.3.2.2 |
ACTIVE since 20101117 | Digidentity Citizen Hierarchy CA for SSCD certificates |
id-pkio-org-g1g2g3cit-qv-cit |
{ id-pkio-org-g1g2g3cit-qv cit(1) } |
2.16.528.1.1003.1.3.3.3.1 |
ACTIVE since 20140102 | QuoVadis Citizen Hierarchy CA for Citizen certificates |
id-pkio-org-g1g2g3cit-cb-cit |
{ id-pkio-org-g1g2g3cit-cb cit(1) } |
2.16.528.1.1003.1.3.3.4.1 |
ACTIVE since 20180125 | Cleverbase Citizen Hierarchy CA for Citizen certificates |
5.4 Companies (Public G1) sub-domain PKIoverheid Organization identifiers arc (DEPRECATED)
The code snippet below shows the PKIoverheid Organization identifiers arc in the Companies (Public G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization Companies (Public G1) sub-domain identifiers arc
id-pkio-org-g1com-kvk OBJECT IDENTIFIER ::= { id-pkio-org-g1com kvk(1) } -- DEPRECATED
id-pkio-org-g1com-kvk-auth OBJECT IDENTIFIER ::= { id-pkio-org-g1com-kvk auth(1) } -- DEPRECATED
id-pkio-org-g1com-kvk-nonrep OBJECT IDENTIFIER ::= { id-pkio-org-g1com-kvk nonrep(2) } -- DEPRECATED
id-pkio-org-g1com-kvk-conf OBJECT IDENTIFIER ::= { id-pkio-org-g1com-kvk conf(3) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the Companies (Public G1) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g1com-kvk-auth |
{ id-pkio-org-g1com-kvk auth(1) } |
2.16.528.1.1003.1.3.4.1.1 |
DEPRECATED | Kamer van Koophandel CA for Authenticity certificates |
id-pkio-org-g1com-kvk-nonrep |
{ id-pkio-org-g1com-kvk nonrep(2) } |
2.16.528.1.1003.1.3.4.1.2 |
DEPRECATED | Kamer van Koophandel CA for Non-Repudiation certificates |
id-pkio-org-g1com-kvk-conf |
{ id-pkio-org-g1com-kvk conf(3) } |
2.16.528.1.1003.1.3.4.1.3 |
DEPRECATED | Kamer van Koophandel CA for Confidentiality certificates |
5.5 Organization (Public G2), Organization Person/Services (Public G3), and Server 2020 (EV G1) sub-domain Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the Organization (Public G2), Organization Person/services (Public G3), and Server 2020 (EV G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization (Public G2), Organization Person/Services (Public G3), and Server 2020 (EV G1)
-- sub-domain Organization identifiers arc
id-pkio-org-g2g3org-venw OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org minvenw(1) } -- "Ministerie van Verkeer en Waterstaat" CA
id-pkio-org-g2g3org-venw-org OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-venw org(1) } -- "Ministerie van Verkeer en Waterstaat" CA for Organization certificates
id-pkio-org-g2g3org-venw-bct OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-venw bctcard(2) } -- "Ministerie van Verkeer en Waterstaat" CA for "Boordcomputer Taxi" card certificates
id-pkio-org-g2g3org-qv OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org qv(2) } -- QuoVadis CA
id-pkio-org-g2g3org-qv-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-qv tsp(1) } -- QuoVadis CA TSP
id-pkio-org-g2g3org-esg OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org esg(3) } -- DEPRECATED
id-pkio-org-g2g3org-esg-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-esg tsp(1) } -- DEPRECATED
id-pkio-org-g2g3org-getronics OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org getronics(4) } -- DEPRECATED
id-pkio-org-g2g3org-getronics-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-getronics tsp(1) } -- DEPRECATED
id-pkio-org-g2g3org-getronics-justice OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-getronics justice(2) } -- DEPRECATED
id-pkio-org-g2g3org-cibg OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org cibg(5) } -- CIBG CA
id-pkio-org-g2g3org-cibg-zorgtsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-cibg zorgtsp(1) } -- CIBG CA Healthcare TSP
id-pkio-org-g2g3org-cibg-uzizorgverlener OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-cibg uzizorgverlener(2) } -- CIBG CA for UZI Register "Zorgverlener" certificates
id-pkio-org-g2g3org-cibg-uzimdwopnaam OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-cibg uzimdwopnaam(3) } -- CIBG CA for UZI Register "Medewerker op naam" certificates
id-pkio-org-g2g3org-cibg-uzimdwnietopnaam OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-cibg uzimdwnietopnaam(4) } -- CIBG CA for UZI Register "Medewerker niet op naam" certificates
id-pkio-org-g2g3org-cibg-uziserver OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-cibg uziserver(5) } -- CIBG CA for UZI Register Server certificates
id-pkio-org-g2g3org-cibg-zovarserver OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-cibg zovarserver(6) } -- CIBG CA for ZOVAR Server certificates
id-pkio-org-g2g3org-cibg-zorgbeheerder OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-cibg zorgbeheerder(7) } -- CIBG CA for "Zorgbeheerder" certificates
id-pkio-org-g2g3org-diginotar OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org diginotar(6) } -- DEPRECATED
id-pkio-org-g2g3org-diginotar-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-diginotar tsp(1) } -- DEPRECATED
id-pkio-org-g2g3org-defensie OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org defence(7) } -- Department of Defence CA
id-pkio-org-g2g3org-defensie-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-defence tsp(1) } -- Department of Defence CA TSP
id-pkio-org-g2g3org-defensie-defensiepas OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-defence defensiepas(2) } -- Department of Defence CA Defensiepas
id-pkio-org-g2g3org-ddy OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org ddy(8) } -- Digidentity CA
id-pkio-org-g2g3org-ddy-org OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-ddy org(1) } -- Digidentity CA for Organizational certificates
id-pkio-org-g2g3org-ddy-sscd OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-ddy sscd(2) } -- Digidentity CA for SSCD certificates
id-pkio-org-g2g3org-ddy-svc OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-ddy svc(3) } -- Digidentity CA for Services certificates
id-pkio-org-g2g3org-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org kpn(9) } -- KPN CA
id-pkio-org-g2g3org-kpn-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-kpn tsp(1) } -- KPN CA TSP
id-pkio-org-g2g3org-kpn-justice OBJECT IDENTIFIER ::= { id-pkio-org-g2g3org-kpn justice(2) } -- KPN CA for the Justice DepartmentThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the 5.5 Organization (Public G2), Organization Person/Services (Public G3), and Server 2020 (EV G1) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g2g3org-venw-org |
{ id-pkio-org-g2g3org-venw org(1) } |
2.16.528.1.1003.1.3.5.1.1 |
ACTIVE since 20090728 | “Ministerie van Verkeer en Waterstaat” CA for Organization certificates |
id-pkio-org-g2g3org-venw-bct |
{ id-pkio-org-g2g3org-venw bctcard(2) } |
2.16.528.1.1003.1.3.5.1.2 |
ACTIVE since 20090728 | “Ministerie van Verkeer en Waterstaat” CA for “Boordcomputer Taxi” card certificates |
id-pkio-org-g2g3org-qv-tsp |
{ id-pkio-org-g2g3org-qv tsp(1) } |
2.16.528.1.1003.1.3.5.2.1 |
ACTIVE since 20090421 | QuoVadis CA TSP |
id-pkio-org-g2g3org-esg-tsp |
{ id-pkio-org-g2g3org-esg tsp(1) } |
2.16.528.1.1003.1.3.5.3.1 |
DEPRECATED | ESG CA TSP |
id-pkio-org-g2g3org-getronics-tsp |
{ id-pkio-org-g2g3org-getronics tsp(1) } |
2.16.528.1.1003.1.3.5.4.1 |
DEPRECATED | Getronics CA TSP |
id-pkio-org-g2g3org-getronics-justice |
{ id-pkio-org-g2g3org-getronics justice(2) } |
2.16.528.1.1003.1.3.5.4.2 |
DEPRECATED | Getronics CA for the Justice Department |
id-pkio-org-g2g3org-cibg-zorgtsp |
{ id-pkio-org-g2g3org-cibg zorgtsp(1) } |
2.16.528.1.1003.1.3.5.5.1 |
ACTIVE since 20100309 | CIBG CA Healthcare TSP |
id-pkio-org-g2g3org-cibg-uzizorgverlener |
{ id-pkio-org-g2g3org-cibg uzizorgverlener(2) } |
2.16.528.1.1003.1.3.5.5.2 |
ACTIVE since 20100309 | CIBG CA for UZI Register “Zorgverlener” certificates |
id-pkio-org-g2g3org-cibg-uzimdwopnaam |
{ id-pkio-org-g2g3org-cibg uzimdwopnaam(3) } |
2.16.528.1.1003.1.3.5.5.3 |
ACTIVE since 20100309 | CIBG CA for UZI Register “Medewerker op naam” certificates |
id-pkio-org-g2g3org-cibg-uzimdwnietopnaam |
{ id-pkio-org-g2g3org-cibg uzimdwnietopnaam(4) } |
2.16.528.1.1003.1.3.5.5.4 |
ACTIVE since 20100309 | CIBG CA for UZI Register “Medewerker niet op naam” certificates |
id-pkio-org-g2g3org-cibg-uziserver |
{ id-pkio-org-g2g3org-cibg uziserver(5) } |
2.16.528.1.1003.1.3.5.5.5 |
ACTIVE since 20100309 | CIBG CA for UZI Register Server certificates |
id-pkio-org-g2g3org-cibg-zovarserver |
{ id-pkio-org-g2g3org-cibg zovarserver(6) } |
2.16.528.1.1003.1.3.5.5.6 |
ACTIVE since 20100309 | CIBG CA for ZOVAR Server certificates |
id-pkio-org-g2g3org-cibg-zorgbeheerder |
{ id-pkio-org-g2g3org-cibg zorgbeheerder(7) } |
2.16.528.1.1003.1.3.5.5.7 |
ACTIVE since 20100309 | CIBG CA for “Zorgbeheerder” certificates |
id-pkio-org-g2g3org-diginotar-tsp |
{ id-pkio-org-g2g3org-diginotar tsp(1) } |
2.16.528.1.1003.1.3.5.6.1 |
DEPRECATED | Diginotar CA TSP |
id-pkio-org-g2g3org-defensie-tsp |
{ id-pkio-org-g2g3org-defence tsp(1) } |
2.16.528.1.1003.1.3.5.7.1 |
ACTIVE since 20100916 | Department of Defence CA TSP |
id-pkio-org-g2g3org-defensie-defensiepas |
{ id-pkio-org-g2g3org-defence defensiepas(2) } |
2.16.528.1.1003.1.3.5.7.2 |
ACTIVE since 20100916 | Department of Defence CA Defensiepas |
id-pkio-org-g2g3org-ddy-org |
{ id-pkio-org-g2g3org-ddy org(1) } |
2.16.528.1.1003.1.3.5.8.1 |
ACTIVE since 20101117 | Digidentity CA for Organizational certificates |
id-pkio-org-g2g3org-ddy-sscd |
{ id-pkio-org-g2g3org-ddy sscd(2) } |
2.16.528.1.1003.1.3.5.8.2 |
ACTIVE since 20101117 | Digidentity CA for SSCD certificates |
id-pkio-org-g2g3org-ddy-svc |
{ id-pkio-org-g2g3org-ddy svc(3) } |
2.16.528.1.1003.1.3.5.8.3 |
ACTIVE since 20120214 | Digidentity CA for Services certificates |
id-pkio-org-g2g3org-kpn-tsp |
{ id-pkio-org-g2g3org-kpn tsp(1) } |
2.16.528.1.1003.1.3.5.9.1 |
ACTIVE since 20120214 | KPN CA TSP |
id-pkio-org-g2g3org-kpn-justice |
{ id-pkio-org-g2g3org-kpn justice(2) } |
2.16.528.1.1003.1.3.5.9.2 |
ACTIVE since 20120214 | KPN CA for the Justice Department |
5.6 Autonomous Devices (Public G2+G3) sub-domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the Autonomous Devices (Public G2+G3) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization Autonomous Devices (Public G2+G3) sub-domain identifiers arc
id-pkio-org-g2g3ad-venw OBJECT IDENTIFIER ::= { id-pkio-org-g2g3ad minvenw(1) } -- "Ministerie van Verkeer en Waterstaat" CA
id-pkio-org-g2g3ad-venw-adtsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3ad-venw adtsp(1) } -- DEPRECATED
id-pkio-org-g2g3ad-venw-bctcard OBJECT IDENTIFIER ::= { id-pkio-org-g2g3ad-venw bctcard(2) } -- "Ministerie van Verkeer en Waterstaat" CA for "Boordcomputer Taxi" card certificates
id-pkio-org-g2g3ad-ienm OBJECT IDENTIFIER ::= { id-pkio-org-g2g3ad minienm(2) } -- "Ministerie van Verkeer en Waterstaat" CA
id-pkio-org-g2g3ad-ienm-adtsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3ad-ienm adtsp(1) } -- "Ministerie van Verkeer en Waterstaat" CA for "Boordcomputer Taxi" card certificates
id-pkio-org-g2g3ad-ienw OBJECT IDENTIFIER ::= { id-pkio-org-g2g3ad minienw(3) } -- "Ministerie van Infrastructuur en Waterstaat" CA
id-pkio-org-g2g3ad-ienw-adtsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3ad-ienw adtsp(1) } -- "Ministerie van Infrastructuur en Waterstaat" CA for Autonomous Devices certificatesThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the Autonomous Devices (Public G2+G3) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g2g3ad-venw-adtsp |
{ id-pkio-org-g2g3ad-venw adtsp(1) } |
2.16.528.1.1003.1.3.6.1.1 |
DEPRECATED | “Ministerie van Verkeer en Waterstaat” CA for Autonomous Devices certificates |
id-pkio-org-g2g3ad-venw-bctcard |
{ id-pkio-org-g2g3ad-venw bctcard(2) } |
2.16.528.1.1003.1.3.6.1.2 |
ACTIVE since 20090728 | “Ministerie van Verkeer en Waterstaat” CA for “Boordcomputer Taxi” card certificates |
id-pkio-org-g2g3ad-ienm-adtsp |
{ id-pkio-org-g2g3ad-ienm adtsp(1) } |
2.16.528.1.1003.1.3.6.2.1 |
ACTIVE since 20150220 | “Ministerie van Infrastructuur en Milieu” CA for Autonomous Devices certificates |
id-pkio-org-g2g3ad-ienw-adtsp |
{ id-pkio-org-g2g3ad-ienw adtsp(1) } |
2.16.528.1.1003.1.3.6.3.1 |
ACTIVE since 20201208 | “Ministerie van Infrastructuur en Waterstaat” CA for Autonomous Devices certificates |
5.7 S/MIME Organization Validated (Public G3) sub-domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the S/MIME Organization Validated (Public G3) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization S/MIME Organization Validated (Public G3) sub-domain identifiers arc
id-pkio-org-g3smimeorgv-def OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeorgv def(1) } -- Dutch Ministry of Defence CA for Public S/MIME Organization Validated
id-pkio-org-g3smimeorgv-cibg OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeorgv cibg(2) } -- CIBG CA for Public S/MIME Organization Validated
id-pkio-org-g3smimeorgv-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeorgv kpn(3) } -- KPN CA for Public S/MIME Organization Validated
id-pkio-org-g3smimeorgv-qv OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeorgv qv(4) } -- QuoVadis CA for Public S/MIME Organization Validated
id-pkio-org-g3smimeorgv-cb OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeorgv cb(5) } -- Cleverbase CA for Public S/MIME Organization ValidatedThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the S/MIME Organization Validated (Public G3) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g3smimeorgv-def |
{ id-pkio-org-g3smimeorgv def(1) } |
2.16.528.1.1003.1.3.10.1 |
ACTIVE | Dutch Ministry of Defence CA for Public S/MIME Organization Validated |
id-pkio-org-g3smimeorgv-cibg |
{ id-pkio-org-g3smimeorgv cibg(2) } |
2.16.528.1.1003.1.3.6.10.2 |
ACTIVE | CIBG CA for Public S/MIME Organization Validated |
id-pkio-org-g3smimeorgv-kpn |
{ id-pkio-org-g3smimeorgv kpn(3) } |
2.16.528.1.1003.1.3.6.10.3 |
ACTIVE | KPN CA for Public S/MIME Organization Validated |
id-pkio-org-g3smimeorgv-qv |
{ id-pkio-org-g3smimeorgv qv(4) } |
2.16.528.1.1003.1.3.6.10.4 |
ACTIVE | QuoVadis CA for Public S/MIME Organization Validated |
id-pkio-org-g3smimeorgv-cb |
{ id-pkio-org-g3smimeorgv cb(5) } |
2.16.528.1.1003.1.3.6.10.5 |
ACTIVE | Cleverbase CA for Public S/MIME Organization Validated |
5.8 S/MIME Sponsor Validated (Public G3) sub-domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the S/MIME Sponsor Validated (Public G3) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization S/MIME Sponsor Validated (Public G3) sub-domain identifiers arc
id-pkio-org-g3smimespov-def OBJECT IDENTIFIER ::= { id-pkio-org-g3smimespov def(1) } -- Dutch Ministry of Defence CA for Public S/MIME Sponsor Validated
id-pkio-org-g3smimespov-cibg OBJECT IDENTIFIER ::= { id-pkio-org-g3smimespov cibg(2) } -- CIBG CA for Public S/MIME Sponsor Validated
id-pkio-org-g3smimespov-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g3smimespov kpn(3) } -- KPN CA for Public S/MIME Sponsor Validated
id-pkio-org-g3smimespov-qv OBJECT IDENTIFIER ::= { id-pkio-org-g3smimespov qv(4) } -- QuoVadis CA for Public S/MIME Sponsor Validated
id-pkio-org-g3smimespov-cb OBJECT IDENTIFIER ::= { id-pkio-org-g3smimespov cb(5) } -- Cleverbase CA for Public S/MIME Sponsor ValidatedThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the S/MIME Sponsor Validated (Public G3) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g3smimespov-def |
{ id-pkio-org-g3smimespov def(1) } |
2.16.528.1.1003.1.3.11.1 |
ACTIVE | Dutch Ministry of Defence CA for Public S/MIME Sponsor Validated |
id-pkio-org-g3smimespov-cibg |
{ id-pkio-org-g3smimespov cibg(2) } |
2.16.528.1.1003.1.3.6.11.2 |
ACTIVE | CIBG CA for Public S/MIME Sponsor Validated |
id-pkio-org-g3smimespov-kpn |
{ id-pkio-org-g3smimespov kpn(3) } |
2.16.528.1.1003.1.3.6.11.3 |
ACTIVE | KPN CA for Public S/MIME Sponsor Validated |
id-pkio-org-g3smimespov-qv |
{ id-pkio-org-g3smimespov qv(4) } |
2.16.528.1.1003.1.3.6.11.4 |
ACTIVE | QuoVadis CA for Public S/MIME Sponsor Validated |
id-pkio-org-g3smimespov-cb |
{ id-pkio-org-g3smimespov cb(5) } |
2.16.528.1.1003.1.3.6.11.5 |
ACTIVE | Cleverbase CA for Public S/MIME Sponsor Validated |
5.9 S/MIME Individual Validated (Public G3) sub-domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Individual identifiers arc in the S/MIME Sponsor Validated (Public G3) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization S/MIME Individual Validated (Public G3) sub-domain identifiers arc
id-pkio-org-g3smimeindv-def OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeindv def(1) } -- Dutch Ministry of Defence CA for Public S/MIME Individual Validated
id-pkio-org-g3smimeindv-cibg OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeindv cibg(2) } -- CIBG CA for Public S/MIME Individual Validated
id-pkio-org-g3smimeindv-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeindv kpn(3) } -- KPN CA for Public S/MIME Individual Validated
id-pkio-org-g3smimeindv-qv OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeindv qv(4) } -- QuoVadis CA for Public S/MIME Individual Validated
id-pkio-org-g3smimeindv-cb OBJECT IDENTIFIER ::= { id-pkio-org-g3smimeindv cb(5) } -- Cleverbase CA for Public S/MIME Individual ValidatedThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the S/MIME Individual Validated (Public G3) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g3smimeindv-def |
{ id-pkio-org-g3smimeindv def(1) } |
2.16.528.1.1003.1.3.12.1 |
ACTIVE | Dutch Ministry of Defence CA for Public S/MIME Individual Validated |
id-pkio-org-g3smimeindv-cibg |
{ id-pkio-org-g3smimeindv cibg(2) } |
2.16.528.1.1003.1.3.6.12.2 |
ACTIVE | CIBG CA for Public S/MIME Individual Validated |
id-pkio-org-g3smimeindv-kpn |
{ id-pkio-org-g3smimeindv kpn(3) } |
2.16.528.1.1003.1.3.6.12.3 |
ACTIVE | KPN CA for Public S/MIME Individual Validated |
id-pkio-org-g3smimeindv-qv |
{ id-pkio-org-g3smimeindv qv(4) } |
2.16.528.1.1003.1.3.6.12.4 |
ACTIVE | QuoVadis CA for Public S/MIME Individual Validated |
id-pkio-org-g3smimeindv-cb |
{ id-pkio-org-g3smimeindv cb(5) } |
2.16.528.1.1003.1.3.6.12.5 |
ACTIVE | Cleverbase CA for Public S/MIME Individual Validated |
5.10 Extended Validation (EV) domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the Extended Validation (EV G1) sub-domain in ASN.1 syntax.
-- PKIoverheid Organization Extended Validation (EV G1) sub-domain identifiers arc
id-pkio-org-g1ev-qv OBJECT IDENTIFIER ::= { id-pkio-org-g1ev qv(1) } -- QuoVadis Extended Validation Hierarchy CA
id-pkio-org-g1ev-qv-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g1ev-qv tsp(1) } -- QuoVadis Extended Validation Hierarchy CA TSP
id-pkio-org-g1ev-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g1ev kpn(2) } -- KPN Extended Validation Hierarchy CA
id-pkio-org-g1ev-kpn-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g1ev-kpn tsp(1) } -- KPN Extended Validation Hierarchy CA TSPThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the Extended Validation (EV G1) domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g1ev-qv-tsp |
{ id-pkio-org-g1ev-qv tsp(1) } |
2.16.528.1.1003.1.3.7.1.1 |
ACTIVE since 20130513 | QuoVadis Extended Validation Hierarchy CA TSP |
id-pkio-org-g1ev-kpn-tsp |
{ id-pkio-org-g1ev-kpn tsp(1) } |
2.16.528.1.1003.1.3.7.2.1 |
ACTIVE since 20150220 | KPN Extended Validation Hierarchy CA TSP |
5.11 Private root (Private G1) domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the Private Root (Private G1) domain in ASN.1 syntax.
-- PKIoverheid Organization Private Root (Private G1) domain identifiers arc
id-pkio-org-g1priv-qv OBJECT IDENTIFIER ::= { id-pkio-org-g1priv qv(1) } -- QuoVadis Private Hierarchy CA
id-pkio-org-g1priv-qv-pers OBJECT IDENTIFIER ::= { id-pkio-org-g1priv-qv pers(1) } -- QuoVadis Private Hierarchy CA for Personal certificates
id-pkio-org-g1priv-qv-svc OBJECT IDENTIFIER ::= { id-pkio-org-g1priv-qv svc(2) } -- QuoVadis Private Hierarchy CA for Services certificates
id-pkio-org-g1priv-cibg OBJECT IDENTIFIER ::= { id-pkio-org-g1priv cibg(3) } -- CIBG Private Hierarchy CA
id-pkio-org-g1priv-cibg-uziserver OBJECT IDENTIFIER ::= { id-pkio-org-g1priv-cibg uziserver(5) } -- CIBG Private Hierarchy CA for UZI Register Server certificates
id-pkio-org-g1priv-cibg-zovarserver OBJECT IDENTIFIER ::= { id-pkio-org-g1priv-cibg zovarserver(6) } -- CIBG Private Hierarchy CA for ZOVAR Server certificates
id-pkio-org-g1priv-ddy OBJECT IDENTIFIER ::= { id-pkio-org-g1priv ddy(4) } -- Digidentity Private Hierarchy CA
id-pkio-org-g1priv-ddy-svc OBJECT IDENTIFIER ::= { id-pkio-org-g1priv-ddy svc(3) } -- Digidentity Private Hierarchy CA for Services certificates
id-pkio-org-g1priv-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g1priv kpn(5) } -- KPN Private Hierarchy CA
id-pkio-org-g1priv-kpn-svc OBJECT IDENTIFIER ::= { id-pkio-org-g1priv-kpn svc(1) } -- KPN Private Hierarchy CA for Services certificates
id-pkio-org-g1priv-kpn-server OBJECT IDENTIFIER ::= { id-pkio-org-g1priv-kpn server(2) } -- KPN Private Hierarchy CA for Server certificatesThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the Private Root (Private G1) sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g1priv-qv-pers |
{ id-pkio-org-g1priv-qv pers(1) } |
2.16.528.1.1003.1.3.8.1.1 |
ACTIVE | QuoVadis Private Hierarchy CA for Personal certificates |
id-pkio-org-g1priv-qv-svc |
{ id-pkio-org-g1priv-qv svc(2) } |
2.16.528.1.1003.1.3.8.1.2 |
ACTIVE | QuoVadis Private Hierarchy CA for Services certificates |
id-pkio-org-g1priv-cibg-uziserver |
{ id-pkio-org-g1priv-cibg uziserver(5) } |
2.16.528.1.1003.1.3.8.3.5 |
ACTIVE | CIBG Private Hierarchy CA for UZI Register Server certificates |
id-pkio-org-g1priv-cibg-zovarserver |
{ id-pkio-org-g1priv-cibg zovarserver(6) } |
2.16.528.1.1003.1.3.8.3.6 |
ACTIVE | CIBG Private Hierarchy CA for ZOVAR Server certificates |
id-pkio-org-g1priv-ddy-svc |
{ id-pkio-org-g1priv-ddy svc(3) } |
2.16.528.1.1003.1.3.8.4.3 |
ACTIVE | Digidentity Private Hierarchy CA for Services certificates |
id-pkio-org-g1priv-kpn-svc |
{ id-pkio-org-g1priv-kpn svc(1) } |
2.16.528.1.1003.1.3.8.5.1 |
ACTIVE | KPN Private Hierarchy CA for Services certificates |
id-pkio-org-g1priv-kpn-server |
{ id-pkio-org-g1priv-kpn server(2) } |
2.16.528.1.1003.1.3.8.5.2 |
ACTIVE | KPN Private Hierarchy CA for Server certificates vv |
5.12 Test (Trial G2+G3) domain PKIoverheid Organization identifiers arc
The code snippet below shows the PKIoverheid Organization identifiers arc in the Test (Trial G2+G3) domain in ASN.1 syntax.
NOTE: The Test sub-domain is sometimes referred to as Trial domain.
-- PKIoverheid Organization Test (Trial G2+G3) domain identifiers arc
id-pkio-org-g2g3test-diginotar OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test diginotar(1) } -- DEPRECATED
id-pkio-org-g2g3test-diginotar-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test-diginotar tsp(1) } -- DEPRECATED
id-pkio-org-g2g3test-qv OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test qv(2) } -- QuoVadis Test Hierarchy CA
id-pkio-org-g2g3test-qv-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test-qv tsp(1) } -- QuoVadis Test Hierarchy CA TSP
id-pkio-org-g2g3test-esg OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test esg(3) } -- DEPRECATED
id-pkio-org-g2g3test-esg-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test-esg tsp(1) } -- DEPRECATED
id-pkio-org-g2g3test-kpn OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test kpn(4) } -- KPN Test Hierarchy CA
id-pkio-org-g2g3test-kpn-tsp OBJECT IDENTIFIER ::= { id-pkio-org-g2g3test-kpn tsp(1) } -- KPN Test Hierarchy CA TSPThe table below gives a more reader-friendly overview of the end nodes in the PKIoverheid Organizations identifiers arc in the Test (Trial G2+G3) domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-g2g3test-diginotar-tsp |
{ id-pkio-org-g2g3test-diginotar tsp(1) } |
2.16.528.1.1003.1.3.9.1.1 |
DEPRECATED | Diginotar Test Hierarchy CA TSP |
id-pkio-org-g2g3test-qv-tsp |
{ id-pkio-org-g2g3test-qv tsp(1) } |
2.16.528.1.1003.1.3.9.2.1 |
ACTIVE since 20111207 | QuoVadis Test Hierarchy CA TSP |
id-pkio-org-g2g3test-esg-tsp |
{ id-pkio-org-g2g3test-esg tsp(1) } |
2.16.528.1.1003.1.3.9.3.1 |
DEPRECATED | ESG Test Hierarchy CA TSP |
id-pkio-org-g2g3test-kpn-tsp |
{ id-pkio-org-g2g3test-kpn tsp(1) } |
2.16.528.1.1003.1.3.9.4.1 |
ACTIVE since 20130822 | KPN Test Hierarchy CA TSP |
6 PKIoverheid Pilots identifiers arc (DEPRECATED)
The code snippet below shows the top-level PKIoverheid Pilots identifiers arc in ASN.1 syntax.
Note: At this point (2020) it is not known anymore what the exact purpose was of the Pilots identifiers arc. Most probably it was meant for an initial PKIoverheid pilot before it was taken into production, possibly later reused as an earlier implementation of a test domain. The arc was primarily used in 2002 and 2003, it seems.
-- PKIoverheid top-level Pilots identifiers arc
id-pkio-pilots-defs OBJECT IDENTIFIER ::= id-pkio-pilots defs(1) } -- DEPRECATED
id-pkio-pilots-cp OBJECT IDENTIFIER ::= { id-pkio-pilots cp(2) } -- DEPRECATED
id-pkio-pilots-org OBJECT IDENTIFIER ::= id-pkio-pilots org(3) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the PKIoverheid top-level Pilots identifiers arc.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-pilots-defs |
{ id-pkio-pilots defs(1) } |
2.16.528.1.1003.1.4.1 |
DEPRECATED | Pilots Definitions |
id-pkio-pilots-cp |
{ id-pkio-pilots cp(2) } |
2.16.528.1.1003.1.4.2 |
DEPRECATED | Pilots Certificate Policies |
id-pkio-pilots-org |
{ id-pkio-pilots org(3) } |
2.16.528.1.1003.1.4.3 |
DEPRECATED | Pilots Organizations |
Subsequent paragraphs will describe these top-level Pilots identifiers in-depth.
6.1 Pilots Definition identifiers arc (DEPRECATED)
No definitions were defined in this top-level Pilots identifier.
6.2 Pilots Certificate Profile identifiers arc (DEPRECATED)
The code snippet below shows the domain-level Pilots Certificate Policy identifiers arc in ASN.1 syntax.
-- Pilots Certificate Policy domain-level identifiers arc
id-pkio-pilots-cp-pa OBJECT IDENTIFIER ::= { id-pkio-pilots-cp pa(1) } -- DEPRECATED
id-pkio-pilots-cp-gov OBJECT IDENTIFIER ::= { id-pkio-pilots-cp gov(2) } -- DEPRECATED
id-pkio-pilots-cp-cit OBJECT IDENTIFIER ::= { id-pkio-pilots-cp cit(3) } -- DEPRECATED
id-pkio-pilots-cp-com OBJECT IDENTIFIER ::= { id-pkio-pilots-cp com(4) } -- DEPRECATEDThese domain-level identifiers will be referenced in the Certificate Policies in each of the following sub-paragraphs.
6.2.1 Pilots PA sub-domain CP identifiers arc (DEPRECATED)
The code snippet below shows the Pilots Certificate Policy identifiers arc in the Policy Authority (PA) sub-domain in ASN.1 syntax.
-- Pilots Certificate Policy PA sub-domain identifiers arc
id-pkio-pilots-cp-pa-root OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-pa root(1) } -- DEPRECATED
id-pkio-pilots-cp-pa-dom OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-pa dom(2) } -- DEPRECATED
id-pkio-pilots-cp-pa-gov OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-pa gov(3) } -- DEPRECATED
id-pkio-pilots-cp-pa-cit OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-pa cit(4) } -- DEPRECATED
id-pkio-pilots-cp-pa-com OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-pa com(5) } -- DEPRECATED
id-pkio-pilots-cp-pa-tsp OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-pa tsp(6) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the end nodes in the Pilots Certificate Policy identifiers arc in the PA sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-pilots-cp-pa-root |
{ id-pkio-pilots-cp-pa root(1) } |
2.16.528.1.1003.1.4.2.1 |
DEPRECATED | Pilots Root CA Certificate Policy |
id-pkio-pilots-cp-pa-dom |
{ id-pkio-pilots-cp-pa dom(2) } |
2.16.528.1.1003.1.4.2.2 |
DEPRECATED | Pilots Domain CA Certificate Policy |
id-pkio-pilots-cp-pa-gov |
{ id-pkio-pilots-cp-pa gov(3) } |
2.16.528.1.1003.1.4.2.3 |
DEPRECATED | Pilots Government CA Certificate Policy |
id-pkio-pilots-cp-pa-cit |
{ id-pkio-pilots-cp-pa cit(4) } |
2.16.528.1.1003.1.4.2.4 |
DEPRECATED | Pilots Citizen CA Certificate Policy |
id-pkio-pilots-cp-pa-com |
{ id-pkio-pilots-cp-pa com(5) } |
2.16.528.1.1003.1.4.2.5 |
DEPRECATED | Pilots Companies CA Certificate Policy |
id-pkio-pilots-cp-pa-tsp |
{ id-pkio-pilots-cp-pa tsp(6) } |
2.16.528.1.1003.1.4.2.6 |
DEPRECATED | Pilots TSP CA Certificate Policy |
6.2.2 Pilots Government sub-domain CP identifiers arc (DEPRECATED)
The code snippet below shows the Pilots Certificate Policy identifiers arc in the Government sub-domain in ASN.1 syntax.
-- Pilots Certificate Policy Government sub-domain identifiers arc
id-pkio-pilots-cp-gov-auth OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov auth(1) } -- DEPRECATED
id-pkio-pilots-cp-gov-auth-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-auth std(1) } -- DEPRECATED
id-pkio-pilots-cp-gov-auth-robin OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-auth robin(2) } -- DEPRECATED
id-pkio-pilots-cp-gov-nonrep OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov nonrep(2) } -- DEPRECATED
id-pkio-pilots-cp-gov-nonrep-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-nonrep std(1) } -- DEPRECATED
id-pkio-pilots-cp-gov-nonrep-robin OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-nonrep robin(2) } -- DEPRECATED
id-pkio-pilots-cp-gov-conf OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov conf(3) } -- DEPRECATED
id-pkio-pilots-cp-gov-conf-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-conf std(1) } -- DEPRECATED
id-pkio-pilots-cp-gov-conf-robin OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-conf robin(2) } -- DEPRECATED
id-pkio-pilots-cp-gov-svc-auth OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov svc-auth(4) } -- DEPRECATED
id-pkio-pilots-cp-gov-svc-auth-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-svc-auth std(1) } -- DEPRECATED
id-pkio-pilots-cp-gov-svc-auth-robin OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-svc-auth robin(2) } -- DEPRECATED
id-pkio-pilots-cp-gov-svc-conf OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov svc-conf(5) } -- DEPRECATED
id-pkio-pilots-cp-gov-svc-conf-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-svc-conf std(1) } -- DEPRECATED
id-pkio-pilots-cp-gov-svc-conf-robin OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-gov-svc-conf robin(2) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the end nodes in the Pilots Certificate Policy identifiers arc in the Government sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-pilots-cp-gov-auth-std |
{ id-pkio-pilots-cp-gov-auth std(1) } |
2.16.528.1.1003.1.4.2.2.1.1 |
DEPRECATED | Standard Authenticity Certificate Policy |
id-pkio-pilots-cp-gov-auth-robin |
{ id-pkio-pilots-cp-gov-auth robin(2) } |
2.16.528.1.1003.1.4.2.2.1.2 |
DEPRECATED | Robin Authenticity Certificate Policy |
id-pkio-pilots-cp-gov-nonrep-std |
{ id-pkio-pilots-cp-gov-nonrep std(1) } |
2.16.528.1.1003.1.4.2.2.2.1 |
DEPRECATED | Standard Non-repudiation Certificate Policy |
id-pkio-pilots-cp-gov-nonrep-robin |
{ id-pkio-pilots-cp-gov-nonrep robin(2) } |
2.16.528.1.1003.1.4.2.2.2.2 |
DEPRECATED | Robin Non-repudiation Certificate Policy |
id-pkio-pilots-cp-gov-conf-std |
{ id-pkio-pilots-cp-gov-conf std(1) } |
2.16.528.1.1003.1.4.2.2.3.1 |
DEPRECATED | Standard Confidentiality Certificate Policy |
id-pkio-pilots-cp-gov-conf-robin |
{ id-pkio-pilots-cp-gov-conf robin(2) } |
2.16.528.1.1003.1.4.2.2.3.2 |
DEPRECATED | Robin Confidentiality Certificate Policy |
id-pkio-pilots-cp-gov-svc-auth-std |
{ id-pkio-pilots-cp-gov-svc-auth std(1) } |
2.16.528.1.1003.1.4.2.2.4.1 |
DEPRECATED | Standard Services Authenticity Certificate Policy |
id-pkio-pilots-cp-gov-svc-auth-robin |
{ id-pkio-pilots-cp-gov-svc-auth robin(2) } |
2.16.528.1.1003.1.4.2.2.4.2 |
DEPRECATED | Robin Services Authenticity Certificate Policy |
id-pkio-pilots-cp-gov-svc-conf-std |
{ id-pkio-pilots-cp-gov-svc-conf std(1) } |
2.16.528.1.1003.1.4.2.2.5.1 |
DEPRECATED | Standard Services Confidentiality Certificate Policy |
id-pkio-pilots-cp-gov-svc-conf-robin |
{ id-pkio-pilots-cp-gov-svc-conf robin(2) } |
2.16.528.1.1003.1.4.2.2.5.2 |
DEPRECATED | Robin Services Confidentiality Certificate Policy |
6.2.3 Pilots Citizen sub-domain CP identifiers arc (DEPRECATED)
The code snippet below shows the Pilots Certificate Policy identifiers arc in the Citizen sub-domain in ASN.1 syntax.
-- Pilots Certificate Policy Citizen sub-domain identifiers arc
id-pkio-pilots-cp-cit-auth OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-cit auth(1) } -- DEPRECATED
id-pkio-pilots-cp-cit-nonrep OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-cit nonrep(2) } -- DEPRECATED
id-pkio-pilots-cp-cit-conf OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-cit conf(3) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the end nodes in the Pilots Certificate Policy identifiers arc in the Citizen sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-pilots-cp-cit-auth |
{ id-pkio-pilots-cp-cit auth(1) } |
2.16.528.1.1003.1.4.2.3.1 |
DEPRECATED | Authenticity Certificate Policy |
id-pkio-pilots-cp-cit-nonrep |
{ id-pkio-pilots-cp-cit nonrep(2) } |
2.16.528.1.1003.1.4.2.3.2 |
DEPRECATED | Non-repudiation Certificate Policy |
id-pkio-pilots-cp-cit-conf |
{ id-pkio-pilots-cp-cit conf(3) } |
2.16.528.1.1003.1.4.2.3.3 |
DEPRECATED | Confidentiality Certificate Policy |
6.2.4 Pilots Companies sub-domain CP identifiers arc (DEPRECATED)
The code snippet below shows the Pilots Certificate Policy identifiers arc in the Companies sub-domain in ASN.1 syntax.
-- Pilots Certificate Policy Companies sub-domain identifiers arc
id-pkio-pilots-cp-com-auth OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com auth(1) } -- DEPRECATED
id-pkio-pilots-cp-com-auth-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com-auth std(1) } -- DEPRECATED
id-pkio-pilots-cp-com-auth-cibg OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com-auth cibg(2) } -- DEPRECATED
id-pkio-pilots-cp-com-nonrep OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com nonrep(2) } -- DEPRECATED
id-pkio-pilots-cp-com-nonrep-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com-nonrep std(1) } -- DEPRECATED
id-pkio-pilots-cp-com-nonrep-cibg OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com-nonrep cibg(2) } -- DEPRECATED
id-pkio-pilots-cp-com-conf OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com conf(3) } -- DEPRECATED
id-pkio-pilots-cp-com-conf-std OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com-conf std(1) } -- DEPRECATED
id-pkio-pilots-cp-com-conf-cibg OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com-conf cibg(2) } -- DEPRECATED
id-pkio-pilots-cp-com-svc-auth OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com svc-auth(4) } -- DEPRECATED
id-pkio-pilots-cp-com-svc-conf OBJECT IDENTIFIER ::= { id-pkio-pilots-cp-com svc-conf(5) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the end nodes in the Pilots Certificate Policy identifiers arc in the Companies sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-pilots-cp-com-auth-std |
{ id-pkio-pilots-cp-com-auth std(1) } |
2.16.528.1.1003.1.4.2.4.1.1 |
DEPRECATED | Standard Authenticity Certificate Policy |
id-pkio-pilots-cp-com-auth-cibg |
{ id-pkio-pilots-cp-com-auth cibg(2) } |
2.16.528.1.1003.1.4.2.4.1.2 |
DEPRECATED | CIBG Authenticity Certificate Policy |
id-pkio-pilots-cp-com-nonrep-std |
{ id-pkio-pilots-cp-com-nonrep std(1) } |
2.16.528.1.1003.1.4.2.4.2.1 |
DEPRECATED | Standard Non-repudiation Certificate Policy |
id-pkio-pilots-cp-com-nonrep- |
{ id-pkio-pilots-cp-com-nonrep cibg(2) } |
2.16.528.1.1003.1.4.2.4.2.2 |
DEPRECATED | CIBG Non-repudiation Certificate Policy |
id-pkio-pilots-cp-com-conf-std |
{ id-pkio-pilots-cp-com-conf std(1) } |
2.16.528.1.1003.1.4.2.4.3.1 |
DEPRECATED | Standard Confidentiality Certificate Policy |
id-pkio-pilots-cp-com-conf-cibg |
{ id-pkio-pilots-cp-com-conf cibg(2) } |
2.16.528.1.1003.1.4.2.4.3.2 |
DEPRECATED | CIBG Confidentiality Certificate Policy |
id-pkio-pilots-cp-com-svc-auth |
{ id-pkio-pilots-cp-com svc-auth(4) } |
2.16.528.1.1003.1.4.2.4.4 |
DEPRECATED | Authenticity Certificate Policy |
id-pkio-pilots-cp-com-svc-conf |
{ id-pkio-pilots-cp-com svc-conf(5) } |
2.16.528.1.1003.1.4.2.4.5 |
DEPRECATED | Confidentiality Certificate Policy |
6.3 Pilots Organization identifiers arc (DEPRECATED)
The code snippet below shows the domain-level Pilots Organization identifiers arc in ASN.1 syntax.
-- Pilots Organization domain-level identifiers arc
id-pkio-pilots-org-pa OBJECT IDENTIFIER ::= { id-pkio-pilots-org pa(1) } -- DEPRECATED
id-pkio-pilots-org-gov OBJECT IDENTIFIER ::= { id-pkio-pilots-org gov(2) } -- DEPRECATED
id-pkio-pilots-org-cit OBJECT IDENTIFIER ::= { id-pkio-pilots-org cit(3) } -- DEPRECATED
id-pkio-pilots-org-com OBJECT IDENTIFIER ::= { id-pkio-pilots-org com(4) } -- DEPRECATEDThese domain-level identifiers will be expanded upon in the Organization identifiers in each of the following sub-paragraphs.
6.3.1 Pilots PA sub-domain Organization identifiers arc (DEPRECATED)
The code snippet below shows the Pilots Organization identifiers arc in the Policy Authority (PA) sub-domain in ASN.1 syntax.
-- Pilots Organization PA sub-domain identifiers arc
id-pkio-org-pilots-pa-ictu OBJECT IDENTIFIER ::= { id-pkio-org-pilots-pa ictu(1) } -- DEPRECATED
id-pkio-org-pilots-pa-ictu-auth OBJECT IDENTIFIER ::= { id-pkio-org-pilots-pa-ictu auth(1) } -- DEPRECATED
id-pkio-org-pilots-pa-ictu-nonrep OBJECT IDENTIFIER ::= { id-pkio-org-pilots-pa-ictu nonrep(2) } -- DEPRECATED
id-pkio-org-pilots-pa-ictu-conf OBJECT IDENTIFIER ::= { id-pkio-org-pilots-pa-ictu conf(3) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the Pilots Organization identifiers arc in the PA sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-pilots-pa-ictu-auth |
{ id-pkio-org-pilots-pa-ictu auth(1) } |
2.16.528.1.1003.1.4.3.1.1.1 |
DEPRECATED | ICTU CA for Authenticity certificates |
id-pkio-org-pilots-pa-ictu-nonrep |
{ id-pkio-org-pilots-pa-ictu nonrep(2) } |
2.16.528.1.1003.1.4.3.1.1.2 |
DEPRECATED | ICTU CA for Non-Repudiation certificates |
id-pkio-org-pilots-pa-ictu-conf |
{ id-pkio-org-pilots-pa-ictu conf(3) } |
2.16.528.1.1003.1.4.3.1.1.3 |
DEPRECATED | ICTU CA for Confidentiality certificates |
6.3.2 Pilots Government sub-domain Organization identifiers arc (DEPRECATED)
The code snippet below shows the Pilots Organization identifiers arc in the Government sub-domain in ASN.1 syntax.
-- Pilots Organization Government sub-domain identifiers arc
id-pkio-org-pilots-gov-sc OBJECT IDENTIFIER ::= { id-pkio-org-pilots-gov sc(1) } -- DEPRECATED
id-pkio-org-pilots-gov-sc-auth OBJECT IDENTIFIER ::= { id-pkio-org-pilots-gov-sc auth(1) } -- DEPRECATED
id-pkio-org-pilots-gov-sc-nonrep OBJECT IDENTIFIER ::= { id-pkio-org-pilots-gov-sc nonrep(2) } -- DEPRECATED
id-pkio-org-pilots-gov-sc-conf OBJECT IDENTIFIER ::= { id-pkio-org-pilots-gov-sc conf(3) } -- DEPRECATED
id-pkio-org-pilots-gov-robin OBJECT IDENTIFIER ::= { id-pkio-org-pilots-gov robin(1) } -- DEPRECATED
id-pkio-org-pilots-gov-robin-libroca OBJECT IDENTIFIER ::= { id-pkio-org-pilots-gov-robin libroca(1) } -- DEPRECATED
id-pkio-org-pilots-gov-robin-libroca-ca OBJECT IDENTIFIER ::= { id-pkio-org-pilots-gov-robin-libroca ca(1) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the Pilots Organization identifiers arc in the Government sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-pilots-gov-sc-auth |
{ id-pkio-org-pilots-gov-sc auth(1) } |
2.16.528.1.1003.1.4.3.2.1.1 |
DEPRECATED | Service Centrum CA for Authenticity certificates |
id-pkio-org-pilots-gov-sc-nonrep |
{ id-pkio-org-pilots-gov-sc nonrep(2) } |
2.16.528.1.1003.1.4.3.2.1.2 |
DEPRECATED | Service Centrum CA for Non-Repudiation certificates |
id-pkio-org-pilots-gov-sc-conf |
{ id-pkio-org-pilots-gov-sc conf(3) } |
2.16.528.1.1003.1.4.3.2.1.3 |
DEPRECATED | Service Centrum CA for Confidentiality certificates |
id-pkio-org-pilots-gov-robin-libroca-ca |
{ id-pkio-org-pilots-gov-robin-libroca ca(1) } |
2.16.528.1.1003.1.4.3.2.2.1.1 |
DEPRECATED | Robin CA using Pink Roccade Libraries |
6.3.3 Pilots Citizen sub-domain Organization identifiers arc (DEPRECATED)
No identifiers were defined in the Pilots Citizen sub-domain identifier arc.
6.3.4 Pilots Companies sub-domain Organization identifiers arc (DEPRECATED)
The code snippet below shows the Pilots Organization identifiers arc in the Companies sub-domain in ASN.1 syntax.
-- Pilots Organization Companies sub-domain identifiers arc
id-pkio-org-pilots-com-sc OBJECT IDENTIFIER ::= { id-pkio-org-pilots-com sc(1) } -- DEPRECATED
id-pkio-org-pilots-cim-sc-auth OBJECT IDENTIFIER ::= { id-pkio-org-pilots-com-sc auth(1) } -- DEPRECATED
id-pkio-org-pilots-com-sc-nonrep OBJECT IDENTIFIER ::= { id-pkio-org-pilots-com-sc nonrep(2) } -- DEPRECATED
id-pkio-org-pilots-com-sc-conf OBJECT IDENTIFIER ::= { id-pkio-org-pilots-com-sc conf(3) } -- DEPRECATED
id-pkio-org-pilots-com-cibg OBJECT IDENTIFIER ::= { id-pkio-org-pilots-com cibg(1) } -- DEPRECATED
id-pkio-org-pilots-com-cibg-tsp OBJECT IDENTIFIER ::= { id-pkio-org-pilots-com-cibg tsp(1) } -- DEPRECATEDThe table below gives a more reader-friendly overview of the Pilots Organization identifiers arc in the Companies sub-domain.
| Object | OID ASN.1 | OID Numerical | Status | Description |
|---|---|---|---|---|
id-pkio-org-pilots-cim-sc-auth |
{ id-pkio-org-pilots-com-sc auth(1) } |
2.16.528.1.1003.1.4.3.4.1.1 |
DEPRECATED | Service Centrum CA for Authenticity certificates |
id-pkio-org-pilots-com-sc-nonrep |
{ id-pkio-org-pilots-com-sc nonrep(2) } |
2.16.528.1.1003.1.4.3.4.1.2 |
DEPRECATED | Service Centrum CA for Non-Repudiation certificates |
id-pkio-org-pilots-com-sc-conf |
{ id-pkio-org-pilots-com-sc conf(3) } |
2.16.528.1.1003.1.4.3.4.1.3 |
DEPRECATED | Service Centrum CA for Confidentiality certificates |
id-pkio-org-pilots-com-cibg-tsp |
{ id-pkio-org-pilots-com-cibg tsp(1) } |
2.16.528.1.1003.1.4.3.4.2.1 |
DEPRECATED | CIBG TSP |
