Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (83)
EC Keys (2458)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6617)
Revoked Certificates (16)
Root CA (85)
RSA Keys (5331)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
Certificate Revocation Reason Codes
What are the reasons why a X.509 certificate got revoked?
✍: FYIcenter.com
When a certificate CA publishes a CRL (Certificate Revocation List) file with a list of revoked certificates, a revocation reason code will be provided for each revocation entry.
There are several reason codes commonly used in CRL files:
As you can see, the most serious reason is the "2 - CA Compromise". In this case, all X.509 certificates issued by this CA must be revoked immediately. Using a certificate whose CA private key was compromized is extremely dangerous.
Â
⇒ Examples of Revoked Certificates
⇠CRL File Format and Fields
2019-07-19, 9412👍, 0💬
Popular Posts:
Certificate Summary: Subject: www.tistory.com Issuer: Symantec Class 3 EV SSL CA - G3 Expiration: 20...
Certificate Summary: Subject: AddTrust External CA Root Issuer: AddTrust External CA Root Expiration...
Certificate summary - Owner: web1.plala.or.jp, Network Engineering Dpt., NTT Plala Inc., L=Toshima-k...
Certificate summary - Owner: *.newsvine.com, Newsvine, msnbc.com, L=Redmond, ST=Washington, US Issue...
How to get certificate detailed properties in Windows PowerShell? You can get detailed properties of...