Camerfirma: Invalid authorityKeyIdentifier - recurrent incident

Camerfirma faced a recurrent issue with invalid authorityKeyIdentifiers in their certificates. The problem was first identified in March 2020, leading to the revocation of 37 affected certificates. The CA implemented a series of corrective actions, including updating their profile management procedures and introducing new controls to prevent future occurrences. Despite initial challenges in detecting the issue, Camerfirma has since taken steps to improve their compliance and operational processes.

1. 2020-03-10 Last certificate with the problem issued.
2. 2020-03-11 Two problematic pre-certificates revoked.
3. 2020-03-20 All affected certificates revoked.
4. 2020-04-01 New control for authorityKeyIdentifier verification implemented.