Tweak assignments table and add Google TrustAnchorIDs (#95)

Author: devonobrien

assignments.md

@@ -4,18 +4,30 @@ To facilitate early experiments with Trust Anchor Identifiers, the following tab
 
 ## Steps to assign new IDs:
 1. If needed, obtain a Private Enterprise Number OID from IANA ([Request Form](https://www.iana.org/assignments/enterprise-numbers/assignment/apply/))
-2. For each participating trust anchor, identified by their (subjectName, public key) tuple, assign a unique OID under the PEN.
+2. For each participating trust anchor, identified by their {Subject, Public Key} tuple, assign a unique OID under the PEN. Assignments can be spot checked against crt.sh, which assigns unique CA IDs using the same fields.
 3. Submit a pull request that adds a new row to the below table for each trust anchor ID assignment.
 
 ### Notes:
 * Trust Anchor IDs should use the ASCII (dotted decimal) notation, e.g. `32473.1`.
-* Public Keys should be PEM-encoded and include the `-----BEGIN PUBLIC KEY-----` and `-----END PUBLIC KEY-----` blocks. 
-* The following command can be used to easily extract public keys in the correct format:
-    * `$ openssl x509 -in certificate.pem -noout -pubkey`
-* The following command can be used to easily extract subjectNames in the correct format:
-    * `$ openssl x509 -in certificate.pem -noout -subject | sed -e "s/^subject= //"`
+* Subject and Public Key information for each CA can be obtained from the crt.sh CA ID links
+* The Subject column in this table is intended for human readability only.
+
 
 ## List of assigned IDs
-|Trust Anchor ID|Subject Name|Public Key|
-|---------------|------------|----------|
-||||
+| Trust Anchor ID | Subject                                         | Trust Anchor by crt.sh CA ID link |
+|-----------------|-------------------------------------------------|------------------------------|
+| 11129.9.1       | CN=GTS Root R1,O=Google Trust Services LLC,C=US | https://crt.sh/?caid=48269   |
+| 11129.9.2       | CN=GTS Root R2,O=Google Trust Services LLC,C=US | https://crt.sh/?caid=48271   |
+| 11129.9.3       | CN=GTS Root R3,O=Google Trust Services LLC,C=US | https://crt.sh/?caid=48268   |
+| 11129.9.4       | CN=GTS Root R4,O=Google Trust Services LLC,C=US | https://crt.sh/?caid=48274   |
+| 11129.9.5       | C=US, O=Google Trust Services, CN=WR1           | https://crt.sh/?caid=286242  |
+| 11129.9.6       | C=US, O=Google Trust Services, CN=WR2           | https://crt.sh/?caid=286243  |
+| 11129.9.7       | C=US, O=Google Trust Services, CN=WR3           | https://crt.sh/?caid=286244  |
+| 11129.9.8       | C=US, O=Google Trust Services, CN=WR4           | https://crt.sh/?caid=286245  |
+| 11129.9.9       | C=US, O=Google Trust Services, CN=WR5           | https://crt.sh/?caid=286246  |
+| 11129.9.10      | C=US, O=Google Trust Services, CN=WE1           | https://crt.sh/?caid=286236  |
+| 11129.9.11      | C=US, O=Google Trust Services, CN=WE2           | https://crt.sh/?caid=286237  |
+| 11129.9.12      | C=US, O=Google Trust Services, CN=WE3           | https://crt.sh/?caid=286239  |
+| 11129.9.13      | C=US, O=Google Trust Services, CN=WE4           | https://crt.sh/?caid=286240  |
+| 11129.9.14      | C=US, O=Google Trust Services, CN=WE5           | https://crt.sh/?caid=286241  |
+| 11129.9.15      | C=US, O=Google Trust Services, CN=AE1           | https://crt.sh/?caid=286234  |