← Apple Inc. cases
Bugzilla #1841534 Certificate Problem Report

Apple: TLS certificates issued outside the TTL of the CAA record

RESOLVED FIXED Apple Inc.
AI Summary

Apple Inc. identified an issue where TLS certificates were issued beyond the allowed time frame specified by the CAA record, affecting 1,726 valid certificates. The problem arose when additional issuance approvals delayed the process, resulting in certificate issuance occurring more than 8 hours after the CAA lookup. A fix was deployed on June 30, 2023, and post-issuance monitoring was added to ensure compliance. The issue has been resolved, and no further actions are pending.

Model: gpt-4o-mini Generated: 2026-06-13 15:14 UTC Confidence: 1.00
Chronology
  1. Issue discovered during CCADB Self Assessment
  2. Fix deployed to ensure CAA check is performed before issuance
  3. Initial issue report filed
  4. Post-issuance monitoring added
  5. No outstanding tasks reported
  6. Monitoring for comments and questions continued
Participants
certification_authority@apple.com bwilson@mozilla.com
External References
Original Bugzilla Case www.ccadb.org
Similar Local Cases
#1843676 RESOLVED Certificate Problem Report Opened 2023-07-15 · Closed 2023-09-22 · 72% similar
Apple: Revocation Delay for TLS certificates issued outside the TTL of the CAA record
AI Summary CA Owner
#1659316 RESOLVED Certificate Problem Report Opened 2020-08-16 · Closed 2023-02-22 · 69% similar
Apple: EV Certificate Approver Authorization
AI Summary CA Owner
#1955365 RESOLVED Certificate Problem Report Opened 2025-03-20 · Closed 2025-05-19 · 66% similar
Apple: Public Key Reuse
AI Summary CA Owner
#1730291 RESOLVED Certificate Problem Report Opened 2021-09-11 · Closed 2024-06-30 · 66% similar
Apple: Test website certificates expired
AI Summary CA Owner
#1793210 RESOLVED Certificate Problem Report Opened 2022-09-30 · Closed 2022-11-14 · 64% similar
Apple: CRLs for dormant CAs will not be populated in CCADB
AI Summary CA Owner
#1677234 RESOLVED Certificate Problem Report Opened 2020-11-13 · Closed 2023-02-22 · 64% similar
Apple: OCSP availability 2020-11-12
AI Summary CA Owner
#1771398 RESOLVED Certificate Problem Report Opened 2022-05-26 · Closed 2023-02-22 · 59% similar
Apple: OCSP responders return ‘unknown’ for valid S/MIME and TLS certificates
AI Summary CA Owner
#1588001 RESOLVED Certificate Problem Report Opened 2019-10-11 · Closed 2023-02-22 · 57% similar
Apple: OCSP responders return responses with incorrect issuer
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action