← Certainly LLC cases
Bugzilla #1732745 Technical Compliance

Certainly: Root CRL validity period exceeds maximum by one second

RESOLVED FIXED Certainly LLC
AI Summary

Certainly LLC identified a compliance issue with their root Certificate Revocation Lists (CRLs) during a routine review. The CRLs were found to have a validity period that exceeded the maximum allowed by the Baseline Requirements, specifically by one second. Although no certificates were misissued, the company initiated an incident management process and has since published updated CRLs that comply with the requirements. All remediation steps have been completed, and the issue has been resolved.

Model: gpt-4o-mini Generated: 2026-06-13 21:23 UTC Confidence: 1.00
Chronology
  1. Compliance issue identified during routine review
  2. Full incident report posted
  3. Updated CRLs published with corrected validity period
Participants
Wayne Thayer bwilson@mozilla.com
External References
Original Bugzilla Case lists.cabforum.org lists.cabforum.org
Similar Local Cases
#1819422 RESOLVED Technical Compliance Opened 2023-02-28 · Closed 2023-03-24 · 58% similar
Certainly: CRL Issuing Distribution Point Mismatch in CCADB
AI Summary CA Owner
#1738191 RESOLVED Technical Compliance Opened 2021-10-28 · Closed 2023-02-22 · 53% similar
GDCA: CRL validity period exceeds allowed value by one second
AI Summary CA Owner
#1428891 RESOLVED Technical Compliance Opened 2018-01-08 · Closed 2023-02-22 · 50% similar
Entrust: Non-BR-Compliant OCSP Responder
AI Summary CA Owner
#1914893 RESOLVED Technical Compliance Opened 2024-08-26 · Closed 2024-09-18 · 50% similar
Amazon Trust Services: CRL not DER-encoded
AI Summary CA Owner
#1848280 RESOLVED Technical Compliance Opened 2023-08-11 · Closed 2023-10-12 · 49% similar
Microsoft PKI Services: 3-Month Access Review Process Failure
AI Summary CA Owner
#1398246 RESOLVED Technical Compliance Opened 2017-09-08 · Closed 2023-02-22 · 49% similar
Consorci AOC: Non-BR-Compliant OCSP Responders
AI Summary CA Owner
#1793441 RESOLVED Technical Compliance Opened 2022-10-03 · Closed 2023-02-22 · 48% similar
GlobalSign: CRL contains invalid signature algorithm
AI Summary CA Owner
#1848279 RESOLVED Technical Compliance Opened 2023-08-11 · Closed 2023-10-12 · 48% similar
Microsoft PKI Services: Trusted Role Control Failure
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action