Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (70)
EC Keys (867)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (3101)
Revoked Certificates (16)
Root CA (85)
RSA Keys (2498)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
Certificate Revocation Reason Codes
What are the reasons why a X.509 certificate got revoked?
✍: FYIcenter.com
When a certificate CA publishes a CRL (Certificate Revocation List) file
with a list of revoked certificates, a revocation reason code will be provided
for each revocation entry.
There are several reason codes commonly used in CRL files:
As you can see, the most serious reason is the "2 - CA Compromise". In this case, all X.509 certificates issued by this CA must be revoked immediately. Using a certificate whose CA private key was compromized is extremely dangerous.
Â
⇒ Examples of Revoked Certificates
⇠CRL File Format and Fields
2019-07-19, 6118👍, 0💬
Popular Posts:
Why I am getting the "variable lookup failed for ca::serial" error when running OpenSSL "ca" command...
Certificate Summary: Subject: Go Daddy Class 2 Certification Authority Issuer: Go Daddy Class 2 Cert...
How to export all certificates in the server certificate path to a file in Firefox? To export all ce...
How to download OpenSSL for Windows? I heard that OpenSSL is a nice free tool to manage keys and cer...
Certificate Summary: Subject: Symantec Class 3 Secure Server CA - G4 Issuer: VeriSign Class 3 Public...