Overview#
Certificate Policies (OID 2.5.29.3) Certificate Extensions contains a sequence of one or more policy information terms, each of which consists of an object identifier (OID) and optional qualifiers.
Optional qualifiers, which MAY be present, are not expected to change the definition of the policy. A Certificate Policies OID MUST NOT appear more than once in a Certificate Policies extension.
In an end entity certificate, these policy information terms indicate the policy under which the certificate has been issued and the purposes for which the certificate MAY be used.
In a Trust Anchor certificate, these policy information terms limit the set of policies for certification paths that include this certificate. When a CA does not wish to limit the set of policies for certification paths that include this certificate, it MAY assert the special policy anyPolicy, with an OID value of 2.5.29.32.0.
Certificate Policies Best Practices are defined in Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework
More Information#
There might be more information for this subject on one of the following:- 2.5.29.3
- Certificate Extensions
- Certification Authority Rating And Trust
- Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework
- Public Key Infrastructure
- [#1] - 4.2.1.4. Certificate PoliciesContent unavailable! (broken link)https://ldapwiki.com/wiki/images/out.png - based on information obtained 2021-12-08