RFC-2253 defines the following table with string representations of name components:
Label | Component | OID
|
C | countryName | 2.5.4.6
|
CN | commonName | 2.5.4.3
|
DC | domainComponent | 0.9.2342.19200300.100.1.25
|
L | localityName | 2.5.4.7
|
O | organizationName | 2.5.4.10
|
OU | organizationalUnit | 2.5.4.11
|
ST | stateOrProvince | 2.5.4.8
|
STREET | streetAddress | 2.5.4.9
|
UID | userid | 0.9.2342.19200300.100.1.1
|
They are used internally for converting a DN into its string representation; components not listed in this table will be represented by their OID.
For the other direction, i.e. creating a DN from the string representation, KSBA recognizes the following extra labels:
Label | Component | OID
|
ADDR | postalAddress | 2.5.4.16
|
BC | businessCategory | 2.5.4.15
|
D | description | 2.5.4.13
|
emailAddress | 1.2.840.113549.1.9.1
| |
GN | givenName | 2.5.4.42
|
POSTALCODE | postalCode | 2.5.4.17
|
PSEUDO | pseudonym | 2.5.4.65
|
SERIALNUMBER | serialNumber | 2.5.4.5
|
SN | surname | 2.5.4.4
|
T | title | 2.5.4.12
|