hi nelson,
mozilla requires that an email cert contain your email address.you lost in the Siemens PKI space :) the OID that your are mention (i guess 1.3.6.1.4.1.1201.1.1.2.2.75) is the so called TCGID. this the unique identifier that the PKI generates for every user (identity) that gets a certificate from it.
It also likes to see a "Common Name" in the subject name, for display purposes. Your cert's subject contains only 4 attributes, Organization Name (which mozilla recognizes), surname and given name (which mozilla
does NOT yet recognize :-(, and some OID that I haven't found anywhere,
but is the string "Z0001F0B". Is that a postal code?
the form of the SubjectDN will change when Siemens will roll-out the new PKI2 infrastructure in 2003. due to the fact that the SubjectDN is so insane and do not obey to any industry standard it's a waste of time to get Mozilla running with such certificates.
that's the reason why Siemens forces the user to use Outlook with CryptoEx (Glueck und Kanja, www.cryptoex.com) which was patched to accept these crasy certificates :)
cheers
