openssl ssl-certificate certificate x509certificate bouncycastle

X509 certificates - Subject identifiers of arbitrary types like UUID

What are other ways to add subject identifiers of arbitrary types in X509 certificates? Consider the following subject and its properties:

Person
- id: UUID
- username: String
- domain: String
- organizationName: String

I'm considering having the username, domain, and organizationName to form the subject DN. But what would be the ideal way to include the id, which is a UUID? Can we have it included on the Subject Alternative Name extension? If yes, what would be the GeneralName tag? If we can have it on the subject DN, what would be the appropriate RDN to use?

Solution

We can convert the UUID as an OID and include it on the Subject Alternative Name extension as GeneralName.RegisteredId

D Programming: openssl rsa forward reference compiler error
Comparing if *.csr and *.pem files match
SSL: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
Any openssl command line to verify ECDSA prime256v1 certificate and private key match?
Cargo lambda build does not find OpenSSL development headers
How do I access OpenSSL using Node.js?
Why ParseExact is not converting my variable to DateTime
How do I fix HTTPS requests not working with 'android_openssl'?
Openssl is not recognized as an internal or external command
Unable to establish SSL connection, how do I fix my SSL cert?
How to identify elliptic curve name from an Openssl certificate?
TLS 1.2 set cipher list
How to install OpenSSL from source on Windows 10/11?
How do I fix "Certificate verify failed self signed certificate" when trying to connect to an API?
Generate DER format public key from PEM format certificate and PEM format public key
OpenSSL certificate incompatibility between versions 1.0.2 and 3.2.1
How to get subject hash of a PEM certificate
Converting pfx to pem using openssl
The CA certificate does not have the basicConstraints extension as true
openssl command hangs
Converting DER public key to PEM and back
Cannot link libcrypto statically w/ cmake
GitLab LDAP Authentication Issues (SSL_connect, user auth)
CMAC with Swift OpenSSL 3 fails at init
How can I support SSL and non-SSL traffic on the same port using TIdHTTPServer and OpenSSL?
Problem loading a serveer certificate in .p12 format with a AES-256-CBC
How to list certificates, trusted by OpenSSL?
Cannot install anything with brew, Error: Failed to download resource "git--html"
TLS/SSL session resume on FTP transfer connection with OpenSSL
Converting a private key to PKCS#8