What Are Distinguished Names

Q

What are distinguished names on certificates? I see "CN=..." on in many certificates.

✍: FYIcenter.com

A

Distinguished Names are used in X.509 certificates to identify entities, such as those used in the subject and issuer (signer) fields.

The X.509 standard defines the following fields for Distinguished Names:

CN - Common Name of a person, e.g., "Susan Jones"
OU - Organization Unit (e.g., department or division) name, e.g., "Purchasing"
O - Organization name, e.g., "ABCSystems, Inc."
L - Locality (e.g., city) name, e.g., "Palo Alto"
ST - State or province name, e.g., "California"
C - Country ISO2 code, e.g., "US"

For example, below are Distinguished Names of a certificate:

 Issuer: C=ZA, ST=Western Cape, L=Cape Town, O=Thawte Consulting cc,
               OU=Certification Services Division,
               CN=Thawte Server CA/emailAddress=server-certs@thawte.com

⇒ What Are Certificate File Name Extensions

⇐ Example of X.509 Certificate Data Structure

⇑ Terminologies on Basic Concepts

⇑⇑ "What Is" - Certificate Related Terminologies

2012-07-25, ∼5722🔥, 0💬

Download Root CA Certificate
How to download the certificate from a root CA? I need to the root CA certificate to close the certification validation chain. If you know the CN (Common Name) of the root CA, for example "DigiCert High Assurance EV Root CA", you can search and download it our certificate database at certificate.fyi... 2012-07-24, ≈12🔥, 0💬

What Is JKS (Java KeyStore) File
What is a JKS (Java KeyStore) file? I heard that it used to provide CA certificates to Java applications. A Java Keystore file is a specially formatted file used to store cryptographic keys and certificates. A Java KeyStore file can be used to store 3 types of entries: 1. PrivateKeyEntry - This type... 2012-07-24, ∼7994🔥, 0💬

What Are Certificate File Name Extensions
What are file name extensions used for certificates? I see .cer files on my Windows computer. Most commonly used file name extensions for X.509 certificates are: .cer - Used for certificate files in binary DER format. Could also be used for certificate files in text PEM format. .crt - Used for certi... 2012-07-25, ∼6744🔥, 0💬

Thawte SGC CA - G2, Thawte, Inc., US
Certificate summary - Owner: Thawte SGC CA - G2, "Thawte, Inc.", US Issuer: VeriSign Class 3 Public Primary Certification Authority - G5, "(c) 2006 VeriSign, Inc. - For authorized use only", VeriSign Trust Network, "VeriSign, Inc.", US Expiration: Tue Jul 28 19:59:59 EDT 2020 MD5: E0:08:48:A4:3C:BA:... 2012-07-20, ∼6552🔥, 0💬

Example of X.509 Certificate Data Structure
Can you show me an example of X.509 certificate data structure? Here is an example of X.509 Version 3 certificate data structure: Certificate: Data: Version: 3 (0x2) Serial Number: 1 (0x1) Signature Algorithm: md5WithRSAEncryption Issuer: C=ZA, ST=Western Cape, L=Cape Town, O=Thawte Consulting cc, O... 2012-07-24, ∼6167🔥, 0💬

What Is the Structure of Certificates
What is the structure of certificates? What types of values are recorded in a certificate? The structure of an X.509 Version 3 certificate is defined in RFC 5280 - "Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile". It contains the following values: ... 2012-07-24, ∼5898🔥, 0💬

twitter.com, Twitter Security, Twitter, Inc., STREET=795 Fols...
Certificate summary - Owner: twitter.com, Twitter Security, "Twitter, Inc.", STREET="795 Folsom St, Suite 600", L=San Francisco, ST=California, OID.2.5.4.17=94107, US, SERIALNUMBER=4337446, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=D elaware,OID.1.3.6.1.4.1.311.60.2.1.3=U SIssu... 2012-07-21, ∼5785🔥, 0💬

What Are Distinguished Names
What are distinguished names on certificates? I see "CN=..." on in many certificates. Distinguished Names are used in X.509 certificates to identify entities, such as those used in the subject and issuer (signer) fields. The X.509 standard defines the following fields for Distinguished Names: CN - C... 2012-07-25, ∼5723🔥, 0💬

What Is PKI (Public-Key Infrastructure)
What is PKI (Public-Key Infrastructure)? Public-Key Infrastructure (PKI) is a public-key cryptography system that enables users to securely communicate on an insecure public network, and reliably verify the identity of a user via digital signatures. The main function of the a PKI system is for the c... 2012-07-25, ∼5161🔥, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.