← China Financial Certification Authority (CFCA) cases
Bugzilla #1793053 Certificate Problem Report

CFCA: ICA without EKU

RESOLVED FIXED China Financial Certification Authority (CFCA)
AI Summary

The China Financial Certification Authority (CFCA) addressed a certificate issue where an Intermediate Certificate Authority (ICA) lacked the Extended Key Usage (EKU) extension. This problem was identified on August 15, 2022, following a report from Ryan Dickson. CFCA took immediate action by revoking the affected ICA and implementing a series of improvements, including the introduction of automated detection tools to prevent future occurrences. The case has been resolved, and CFCA has committed to ongoing enhancements in their certificate issuance processes.

Model: gpt-4o-mini Generated: 2026-06-13 21:26 UTC Confidence: 1.00
Chronology
  1. Received report about ICA lacking EKU extension.
  2. Revoked the ICA (CFCA DV OCA).
  3. Case resolved and closed.
Participants
Gao Fei Ryan Dickson CCADB team
External References
Original Bugzilla Case
Similar Local Cases
#1886135 RESOLVED Certificate Problem Report Opened 2024-03-19 · Closed 2024-09-26 · 74% similar
CFCA: certificate basicConstraints extension not marked as critical
AI Summary CA Owner
#1798812 RESOLVED Certificate Problem Report Opened 2022-11-02 · Closed 2023-05-04 · 70% similar
CFCA: Delayed reporting of revocation of an intermediate CA certificate
AI Summary CA Owner
#1809382 RESOLVED Certificate Problem Report Opened 2023-01-10 · Closed 2023-09-29 · 66% similar
CFCA: Certificate with wrong crlDistributionPoints
AI Summary CA Owner
#1802845 RESOLVED Certificate Problem Report Opened 2022-11-28 · Closed 2023-09-29 · 62% similar
CFCA: EV certificate with wrong PostalCode&Street
AI Summary CA Owner
#1888881 RESOLVED Certificate Problem Report Opened 2024-04-01 · Closed 2025-04-03 · 59% similar
CFCA: Failure to respond to a CPR in a complete and/or timely manner
AI Summary CA Owner
#1863122 RESOLVED Certificate Problem Report Opened 2023-11-04 · Closed 2024-01-10 · 59% similar
CFCA: CRL Error
AI Summary CA Owner
#1532113 RESOLVED Certificate Problem Report Opened 2019-03-03 · Closed 2023-02-22 · 55% similar
CFCA: O > 64 characters
AI Summary CA Owner
#1532429 RESOLVED Certificate Problem Report Opened 2019-03-04 · Closed 2023-02-22 · 54% similar
CFCA: Invalid TLD in SAN
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action