AD SID Extension Encoder

Generate the DER-encoded Microsoft NTDS Object SID certificate extension value from an Active Directory SID. All processing happens locally in your browser.

Active Directory SID

DER hex

ASCII SID length: 0
DER output length: 0
OID: 1.3.6.1.4.1.311.25.2.1

Notes

Output is the raw DER hex for the extension value itself. It does not submit the SID anywhere.

SEQUENCE
  [0]
    OBJECT IDENTIFIER 1.3.6.1.4.1.311.25.2.1
    [0]
      OCTET STRING <ASCII SID string bytes>