Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (73)
EC Keys (2382)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6499)
Revoked Certificates (16)
Root CA (85)
RSA Keys (5251)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
Certificate Revocation Reason Codes
What are the reasons why a X.509 certificate got revoked?
✍: FYIcenter.com
When a certificate CA publishes a CRL (Certificate Revocation List) file with a list of revoked certificates, a revocation reason code will be provided for each revocation entry.
There are several reason codes commonly used in CRL files:
As you can see, the most serious reason is the "2 - CA Compromise". In this case, all X.509 certificates issued by this CA must be revoked immediately. Using a certificate whose CA private key was compromized is extremely dangerous.
Â
⇒ Examples of Revoked Certificates
⇠CRL File Format and Fields
2019-07-19, 9315👍, 0💬
Popular Posts:
Where to find answers to frequently asked questions on CRL (Certificate Revocation List)? Here is a ...
Certificate Summary: Subject: Thawte Premium Server CA Issuer: Thawte Premium Server CA Expiration: ...
How to generate self-signed certificate with getacert.com? Is it free? Generating a self-signed cert...
Certificate Summary: Subject: Camerfirma Corporate Server II - 2015 Issuer: Chambers of Commerce Roo...
How to add a certificate into "cert8.db" file using Mozilla "certutil" tool? I have a certificate fi...