Java Security

I've been reading RFC 3280 and need some help understanding how User Notices work. In the section that talks about Certificate Policies, the concept of a User Notice is introduced as follows:

"User notice is intended for display to a relying party when a certificate is used."

It sounds to me that this means if my certificate has a User Notice in it, and this certificate is presented to a browser during an SSL handshake, the notice will automatically be displayed to the user. Sounds good so far (just the functionality I want). However, I've never encountered this in the real world. I have seen some certificates with CPS Pointers (the other type of Certificate Policy) but never User Notice.

Furthermore, I can't seem to sucessfully create one. I'm using the Bouncy Castle APIs to create my certificates, but can't seem to figure out what to put in one of the fields. The RFC has this structure:

PolicyInformation ::= SEQUENCE {
policyIdentifier CertPolicyId,
policyQualifiers SEQUENCE SIZE (1..MAX) OF
PolicyQualifierInfo OPTIONAL }

CertPolicyId ::= OBJECT IDENTIFIER


I believe that I'm creating my structures correctly, but I can't seem to understand what value CertPolicyId should have. Is it any old OID that I want to use? If so, how does the browser know that that policy is a User Notice and something needs to be displayed?

Sander Smith