OID Lookup

Search Object Identifiers by OID number or name. Covers certificates, algorithms, extensions, and PQC standards.

Search by OID or name

65 OIDs found

OID	Name	Category	Usage
2.5.4.3	Common Name (CN)	X.500 DN	Subject/Issuer field in certificates
2.5.4.6	Country (C)	X.500 DN	Two-letter country code
2.5.4.7	Locality (L)	X.500 DN	City or locality name
2.5.4.8	State/Province (ST)	X.500 DN	State or province name
2.5.4.10	Organization (O)	X.500 DN	Organization name
2.5.4.11	Organizational Unit (OU)	X.500 DN	Department or division
2.5.4.5	Serial Number	X.500 DN	Device or entity serial number
2.5.4.12	Title	X.500 DN	Job title
1.2.840.113549.1.9.1	Email Address	PKCS#9	Email in certificate subject
1.2.840.113549.1.1.1	RSA Encryption	Signature	RSA public key algorithm
1.2.840.113549.1.1.5	SHA-1 with RSA	Signature	Deprecated signature algorithm
1.2.840.113549.1.1.11	SHA-256 with RSA	Signature	Standard RSA signature algorithm
1.2.840.113549.1.1.12	SHA-384 with RSA	Signature	RSA signature with SHA-384
1.2.840.113549.1.1.13	SHA-512 with RSA	Signature	RSA signature with SHA-512
1.2.840.113549.1.1.10	RSA-PSS	Signature	Probabilistic RSA signature scheme
1.2.840.10045.2.1	EC Public Key	Signature	Elliptic Curve public key
1.2.840.10045.4.3.2	ECDSA with SHA-256	Signature	EC signature with SHA-256
1.2.840.10045.4.3.3	ECDSA with SHA-384	Signature	EC signature with SHA-384
1.2.840.10045.4.3.4	ECDSA with SHA-512	Signature	EC signature with SHA-512
1.3.101.112	Ed25519	Signature	EdDSA signature on Curve25519
1.3.101.113	Ed448	Signature	EdDSA signature on Curve448
1.2.840.10045.3.1.7	P-256 (prime256v1)	EC Curve	NIST P-256 elliptic curve
1.3.132.0.34	P-384 (secp384r1)	EC Curve	NIST P-384 elliptic curve
1.3.132.0.35	P-521 (secp521r1)	EC Curve	NIST P-521 elliptic curve
2.5.29.17	Subject Alternative Name	Extension	Additional identities (DNS names, IPs, emails)
2.5.29.15	Key Usage	Extension	Permitted key operations (sign, encrypt, etc.)
2.5.29.37	Extended Key Usage	Extension	Specific purposes (TLS server, code signing, etc.)
2.5.29.19	Basic Constraints	Extension	CA flag and path length constraint
2.5.29.14	Subject Key Identifier	Extension	Hash of the subject's public key
2.5.29.35	Authority Key Identifier	Extension	Identifies the issuer's public key
2.5.29.31	CRL Distribution Points	Extension	URLs to download the CRL
1.3.6.1.5.5.7.1.1	Authority Information Access	Extension	OCSP responder and CA issuer URLs
2.5.29.32	Certificate Policies	Extension	Policy OIDs and qualifiers
2.5.29.30	Name Constraints	Extension	Permitted/excluded name subtrees for CA certs
2.5.29.36	Policy Constraints	Extension	Constraints on policy mapping
2.5.29.33	Policy Mappings	Extension	Maps policies between CA domains
2.5.29.46	Freshest CRL	Extension	Delta CRL distribution point
1.3.6.1.4.1.11129.2.4.2	CT Precertificate SCTs	Extension	Signed Certificate Timestamps for CT
1.3.6.1.5.5.7.3.1	TLS Web Server Authentication	EKU	Server TLS/SSL certificate
1.3.6.1.5.5.7.3.2	TLS Web Client Authentication	EKU	Client TLS/SSL certificate
1.3.6.1.5.5.7.3.3	Code Signing	EKU	Sign executable code
1.3.6.1.5.5.7.3.4	Email Protection (S/MIME)	EKU	Sign and encrypt email
1.3.6.1.5.5.7.3.8	Time Stamping	EKU	Trusted timestamp authority
1.3.6.1.5.5.7.3.9	OCSP Signing	EKU	Sign OCSP responses
1.3.6.1.4.1.311.10.3.3	Microsoft SGC	EKU	Microsoft Server Gated Crypto (legacy)
2.16.840.1.113730.4.1	Netscape SGC	EKU	Netscape Server Gated Crypto (legacy)
1.3.6.1.5.5.7.3.17	CMC Registration Authority	EKU	CMC RA signing
1.2.840.113549.1.7.1	PKCS#7 Data	PKCS	Basic data content type
1.2.840.113549.1.7.2	PKCS#7 Signed Data	PKCS	Signed data content type
1.2.840.113549.1.7.6	PKCS#7 Encrypted Data	PKCS	Encrypted data content type
1.2.840.113549.1.9.14	Extension Request	PKCS#9	CSR extension request attribute
2.16.840.1.101.3.4.2.1	SHA-256	Hash	256-bit hash function
2.16.840.1.101.3.4.2.2	SHA-384	Hash	384-bit hash function
2.16.840.1.101.3.4.2.3	SHA-512	Hash	512-bit hash function
1.3.14.3.2.26	SHA-1	Hash	160-bit hash (deprecated)
2.16.840.1.101.3.4.2.8	SHA3-256	Hash	SHA-3 256-bit hash
2.16.840.1.101.3.4.2.9	SHA3-384	Hash	SHA-3 384-bit hash
2.16.840.1.101.3.4.2.10	SHA3-512	Hash	SHA-3 512-bit hash
2.16.840.1.101.3.4.4.1	ML-DSA-44 (Dilithium2)	PQC	NIST PQC digital signature (security level 2)
2.16.840.1.101.3.4.4.2	ML-DSA-65 (Dilithium3)	PQC	NIST PQC digital signature (security level 3)
2.16.840.1.101.3.4.4.3	ML-DSA-87 (Dilithium5)	PQC	NIST PQC digital signature (security level 5)
2.16.840.1.101.3.4.4.4	ML-KEM-512 (Kyber512)	PQC	NIST PQC key encapsulation (security level 1)
2.16.840.1.101.3.4.4.5	ML-KEM-768 (Kyber768)	PQC	NIST PQC key encapsulation (security level 3)
2.16.840.1.101.3.4.4.6	ML-KEM-1024 (Kyber1024)	PQC	NIST PQC key encapsulation (security level 5)
2.16.840.1.101.3.4.3.17	SLH-DSA-SHA2-128s	PQC	NIST PQC stateless hash-based signature

OID Lookup — Object Identifier Reference

Object Identifiers (OIDs) are used throughout X.509 certificates, PKCS standards, and ASN.1 structures to identify algorithms, extensions, attributes, and policies. This tool lets you search by OID number or name to find what each identifier means.

Includes OIDs for signature algorithms, hash functions, elliptic curves, certificate extensions, Extended Key Usage values, PKCS standards, and NIST post-quantum cryptography algorithms.

Runs entirely in your browser.

Ready to Secure Your Enterprise?

Experience how our cryptographic solutions simplify, centralize, and automate identity management for your entire organization.

Request a Demo Talk to Sales