Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (83)
EC Keys (2483)
Firefox (30)
General (10)
Google Chrome (41)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6650)
Revoked Certificates (16)
Root CA (85)
RSA Keys (5354)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
Certificate Revocation Reason Codes
What are the reasons why a X.509 certificate got revoked?
✍: FYIcenter.com
When a certificate CA publishes a CRL (Certificate Revocation List) file with a list of revoked certificates, a revocation reason code will be provided for each revocation entry.
There are several reason codes commonly used in CRL files:
As you can see, the most serious reason is the "2 - CA Compromise". In this case, all X.509 certificates issued by this CA must be revoked immediately. Using a certificate whose CA private key was compromized is extremely dangerous.
Â
⇒ Examples of Revoked Certificates
⇠CRL File Format and Fields
2019-07-19, 9452🔥, 0💬
Popular Posts:
Detailed information of 'keyfree': RSA 2048-Bit Private Key - ea83cc61246f544743c36302 6b5731cf.
How can I use Mozilla "certutil -L" command? What are command options supported by "certutil -L"? Th...
How to use a CA certs keystore with Portecle? Extra certificates from a CA certs keystore can be con...
Can I repeat a DN field multiple times in the configuration file for the OpenSSL "req -new" command?...
Certificate Summary: Subject: www.amazon.de Issuer: VeriSign Class 3 Secure Server CA - G3 Expiratio...