← Telia Company cases
Bugzilla #1614311
Certificate Problem Report
Telia: Two Intermediate CA certificates not listed in audit report
RESOLVED
FIXED
Telia Company
AI Summary
Telia Company identified two Intermediate CA certificates that were not included in their audit report. The issue was discovered following a communication from Mozilla in January 2020, prompting an internal review. The missing certificates were determined to be inactive and not capable of issuing new certificates. Telia took corrective actions, including revocation of the certificates, which has since been confirmed by Mozilla. The situation has been resolved with the certificates now listed in the updated CRL.
Chronology
- Received January 2020 CA communication message.
- Analyzed listed CA certificates.
- Detailed analysis revealed missing certificates.
- Confirmed with Mozilla that revocation is required.
- Incident report submitted.
- Certificates revoked in offline Root CA system.
- Confirmation received that certificates are revoked.
Participants
pekka.lahtiharju@teliasonera.com
wthayer@fastly.com
External References
Similar Local Cases
Telia: AIA CA Issuer field pointing to PEM encoded cert
Telia: Invalid email contact address was used for few domains
Telia: Issued three precertificates with non-NIST EC curve
Telia: Certificates with RSA keys where modulus is not divisible by 8
Telia: Delayed revocation of 5 EE certificates in connection to id=1736020
Telia: Disallowed curve (P-521) in leaf certificate
Telia: Findings in 2025 ETSI Audit - Incident Report #1 – Vulnerability management
Telia: Inccorrect CRL URL on a Root CA record in CCADB