From 5fdf036a4d87a6eff7659c43db18eadf295476c0 Mon Sep 17 00:00:00 2001
From: beltram <beltram.maldant@gmail.com>
Date: Tue, 6 Jun 2023 13:52:20 +0200
Subject: [PATCH] fix: invalid OID for display name in CSR

---
 acme/order.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/acme/order.go b/acme/order.go
index 3864bbcf..fa345095 100644
--- a/acme/order.go
+++ b/acme/order.go
@@ -321,7 +321,7 @@ func (o *Order) subject(csr *x509.CertificateRequest) (subject x509util.Subject,
 
 			// TODO: temporarily using a custom OIDC for carrying the display name without having it listed as a DNS SAN.
 			// reusing LDAP's OID for diplay name see http://oid-info.com/get/2.16.840.1.113730.3.1.241
-			displayNameOid := asn1.ObjectIdentifier{1, 2, 840, 113549, 1, 9, 1}
+			displayNameOid := asn1.ObjectIdentifier{2, 16, 840, 1, 113730, 3, 1, 241}
 			var foundDisplayName = false
 			for _, entry := range csr.Subject.Names {
 				if entry.Type.Equal(displayNameOid) {