From 72a9173df75b9c349f54d6634a5afe7451e6b242 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?F=E1=B4=80=CA=99=C9=AA=E1=B4=87=C9=B4=20W=E1=B4=87=CA=80?=
 =?UTF-8?q?=C9=B4=CA=9F=C9=AA?= <wernli@in2p3.fr>
Date: Thu, 12 Mar 2020 09:04:58 +0100
Subject: [PATCH] Add support for Object Identifier in Subject Alternative
 Names

See http://openssl.cs.utah.edu/docs/apps/x509v3_config.html:

> The subject alternative name extension allows various literal values
> to be included in the configuration file. These include email (an email
> address) URI a uniform resource indicator, DNS (a DNS domain name), RID
> (a registered ID: OBJECT IDENTIFIER), IP (an IP address), dirName (a
> distinguished name) and otherName.
---
 easyrsa3/easyrsa | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/easyrsa3/easyrsa b/easyrsa3/easyrsa
index b607a8c..4b4ccfd 100755
--- a/easyrsa3/easyrsa
+++ b/easyrsa3/easyrsa
@@ -1447,7 +1447,7 @@ display_san() {
 	else
 		san=$(
 			"$EASYRSA_OPENSSL" "$format" -in "$path" -noout -text |
-			sed -n "/X509v3 Subject Alternative Name:/{n;s/ //g;s/IPAddress:/IP:/g;p;}"
+			sed -n "/X509v3 Subject Alternative Name:/{n;s/ //g;s/IPAddress:/IP:/g;s/RegisteredID/RID/;p;}"
 			)
 
 		[ -n "$san" ] && print "$san"