KB Article #178440
What is the meaning of the numbers (OIDs) found in the extensions of API Gateway topology certificates?
Question
Looking at the Admin Node Manager Certificate Extensions we find the following:
X509v3 Basic Constraints:
CA:FALSE
X509v3 Key Usage:
Digital Signature, Key Encipherment, Data Encipherment, Key Agreement
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication, 1.3.6.1.4.1.17998.10.1.1.2.1, 1.3.6.1.4.1.17998.10.1.1.2.2
X509v3 Subject Alternative Name:
DNS:myserver.axway.int, IP Address:10.142.59.3
What is the meaning of the strange numbers listed in the X509v3 Extended Key Usage?
Answer
These are called object identifiers (OIDs). They work as a type of hierarchical magic number that tells you things about the certificate. There are three OIDs that you can find in topology certificates:
ADMIN_NODE_MANAGER_OID = "1.3.6.1.4.1.17998.10.1.1.2.2" NODE_MANAGER_OID = "1.3.6.1.4.1.17998.10.1.1.2.1" GATEWAY_OID = "1.3.6.1.4.1.17998.10.1.1.2.3"