← Sectigo cases
Bugzilla #1710243 Certificate Misissuance

Sectigo: Invalid stateOrProvinceName

RESOLVED FIXED Sectigo
AI Summary

This case addresses the misissuance of certificates by Sectigo that included invalid stateOrProvinceName values, specifically 'Moldova' and 'Malta'. The issue was first reported on May 8, 2021, and Sectigo acknowledged the problem, stating that these values were not aligned with their new ISO 3166-2 based lookup table. Following community discussions and a review of their practices, Sectigo decided to revoke the affected certificates. The revocation of six certificates was completed by May 21, 2021, and the CA has since implemented measures to prevent similar misissuances in the future.

Model: gpt-4o-mini Generated: 2026-06-13 20:58 UTC Confidence: 0.90
Chronology
  1. Initial report of certificate with invalid stateOrProvinceName
  2. Additional certificates with invalid stateOrProvinceName reported
  3. Sectigo announces revocation of affected certificates
  4. Revocation of six certificates completed
Participants
Michel Le Bihan Rob Stradling Tim Callan George Fozzie Ryan Sleevi Ben Wilson
External References
Original Bugzilla Case crt.sh crt.sh crt.sh crt.sh crt.sh crt.sh
Similar Local Cases
#1741026 RESOLVED Certificate Misissuance Opened 2021-11-13 · Closed 2023-02-22 · 77% similar
Sectigo: Incorrect JOI for federal credit unions
AI Summary CA Owner
#1665763 RESOLVED Certificate Misissuance Opened 2020-09-17 · Closed 2023-02-22 · 72% similar
Sectigo: Failure to revoke within 5 days
AI Summary CA Owner
#1715929 RESOLVED Certificate Misissuance Opened 2021-06-11 · Closed 2023-02-22 · 69% similar
Sectigo: Incorrect EV businessCategory
AI Summary CA Owner
#1720744 RESOLVED Certificate Misissuance Opened 2021-07-15 · Closed 2023-02-22 · 69% similar
Sectigo: State name in localityName
AI Summary CA Owner
#1714628 RESOLVED Certificate Misissuance Opened 2021-06-04 · Closed 2023-02-22 · 66% similar
Sectigo: Forbidden Domain Validation Method
AI Summary CA Owner
#1712120 RESOLVED Certificate Misissuance Opened 2021-05-20 · Closed 2023-02-22 · 66% similar
Sectigo: Inappropriate subject:serialNumber information in EV certificates obtained through ACME
AI Summary CA Owner
#1782356 RESOLVED Certificate Misissuance Opened 2022-07-30 · Closed 2023-02-22 · 65% similar
Sectigo: Misspelled city name in localityName field
AI Summary CA Owner
#1712188 RESOLVED Certificate Misissuance Opened 2021-05-20 · Closed 2023-02-22 · 65% similar
Sectigo: test certificates issued from trusted CA
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action