A certificate request Property Name can either be the "friendly" name of one of the common properties that the Certificate Server understands (see table following this paragraph) or an Object ID. If a Property Name refers to a "friendly" name not recognized by the Certificate Server, and it is prefixed with "RequestAttributes." or "Extension.", then the Request Attributes table or Certificate Extensions table will be used to lookup or set a site-specific property.
| Valid Prefixes | Valid Suffixes | Equivalent Object ID Suffixes |
|---|---|---|
| Subject Issuer |
Country Locality State StreetAddress Organization OrgUnit CommonName |
2.5.4.6 2.5.4.7 2.5.4.8 2.5.4.9 2.5.4.10 2.5.4.11 2.5.4.3 |
| RawSubject | ||
| RawIssuer | ||
| Type | ||
| Version | ||
| RequestAttributes | <site-specific> | |
| Extension | IntendedUse | |
| PublicKey | Algorithm Modulus Exponent |
|
| RawPublicKey | ||
| NotBefore | ||
| NotAfter |
Friendly Property Names can be specified by combining prefixes and suffixes from the preceding table. Suffixes can only be attached to prefixes in the same row. The following are some examples:
Prop1 = "Subject.CommonName"
Prop2 = "Issuer.CommonName"
Prop3 = "Issuer.2.5.4.3" (2.5.4.3 is the Object ID for CommonName)
Prop4 = "Extension.1.3.4.2" (1.3.4.2 is the Object ID of some unknown custom extension)