Does Certificate Services support PKCS 9.14 OID extension?
The specific value of the PKCS#9 in question is 9.14 We do accept other values such as 9.1, 9.7, 9.15 However, the 9.14 value is not supported by our CA. This OID is represented by an ASN code of the following which represented by TIPEM (tentative PEM encoding) }, [0] { SEQUENCE { id-RSADSI-PKCS-9.14 (1.2.840.113549.1.9.14), SET { SEQUENCE { }, SEQUENCE { id-ce-subjectKeyIdentifier (2.5.29.14), ‘04140083f8ac4a8af1a4663374bf4d944ad678388247’H — “… …J…f3t.M.J.x8.G” — ** ASN.1 data detected in previous buffer – decoding f ollows ** ‘0083f8ac4a8af1a4663374bf4d944ad678388247’H — “….J …f3t.M.J.x8.G” — ** End of ASN.1 data ** } TIPEM (PKCS-9.14) is an OID that is not supported by our Entrust.net Secure Server CA at the moment. To resolve the issue, you may need to work with your vendor support since the application script generating the CSR (PKSC10) is causing the OID to be present in the CSR.
