← IdenTrust Services, LLC cases
Bugzilla #1663080 Certificate Misissuance

IdenTrust: Issuance of certificates greater than 398 days

RESOLVED FIXED IdenTrust Services, LLC
AI Summary

IdenTrust identified and resolved an issue where two certificates were mis-issued with a validity period exceeding 398 days. This was discovered during an internal investigation prompted by discussions on ZLint GitHub regarding RFC 5280. The CA took immediate action, revoking one certificate and updating their configurations to limit future certificates to a maximum of 397 days. The incident highlighted a misunderstanding of the validity period definition in RFC 5280, which led to the mis-issuance.

Model: gpt-4o-mini Generated: 2026-06-13 21:12 UTC Confidence: 0.90
Chronology
  1. Initiated internal investigation and revoked one mis-issued certificate.
  2. Completed investigation and began working on revocation/replacement of the second certificate.
  3. Updated configurations to set max validity period to 397 days.
Participants
IdenTrust Ryan Sleevi B Wilson
External References
Original Bugzilla Case github.com crt.sh support.apple.com
Similar Local Cases
#1753287 RESOLVED Certificate Misissuance Opened 2022-02-02 · Closed 2024-07-08 · 69% similar
IdenTrust: Validation Source for EV Certificates not Publicly Disclosed
AI Summary CA Owner
#1744627 RESOLVED Certificate Misissuance Opened 2021-12-06 · Closed 2023-02-22 · 66% similar
IdenTrust: Issuance of OV SSL Certificate with doc vetting older than 398 days
AI Summary CA Owner
#1671410 RESOLVED Certificate Misissuance Opened 2020-10-15 · Closed 2024-06-30 · 64% similar
IdenTrust: Inconsistent Disclosure of Externally-Operated Intermediate
AI Summary CA Owner
#1669594 RESOLVED Certificate Misissuance Opened 2020-10-06 · Closed 2023-02-22 · 61% similar
IdenTrust: Issuance of Subordinate CA’s Without EKU
AI Summary CA Owner
#1734917 RESOLVED Certificate Misissuance Opened 2021-10-08 · Closed 2023-02-22 · 60% similar
IdenTrust: Mis-Issued EV Certificates
AI Summary CA Owner
#1910195 RESOLVED Certificate Misissuance Opened 2024-07-26 · Closed 2024-09-06 · 59% similar
IdenTrust: Invalid special characters in S/MIME Certificates
AI Summary CA Owner
#1446121 RESOLVED Certificate Misissuance Opened 2018-03-15 · Closed 2023-02-22 · 59% similar
IdenTrust: Improper encoding of wildcard certificate
AI Summary CA Owner
#1876871 RESOLVED Certificate Misissuance Opened 2024-01-26 · Closed 2024-06-30 · 58% similar
IdenTrust: test certificates inadvertently published in production environment
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action