← China Financial Certification Authority (CFCA) cases
Bugzilla #1863122 Certificate Problem Report

CFCA: CRL Error

RESOLVED FIXED China Financial Certification Authority (CFCA)
AI Summary

The China Financial Certification Authority (CFCA) faced an issue with its certificate revocation list (CRL) due to the use of fragmented addresses instead of a Full CRL. This problem was identified by Rob Stradling, leading to a preliminary investigation that revealed a network security policy issue. CFCA has since upgraded its system and adjusted its CRL policy, ensuring that newly issued certificates now contain the correct Full CRL addresses. The issue affected a total of 2,761 certificates, but the CRL function remained operational and did not impact verification processes.

Model: gpt-4o-mini Generated: 2026-06-13 21:31 UTC Confidence: 0.95
Chronology
  1. Ben Wilson inquires about CRL detection errors.
  2. CFCA confirms the issue with fragmented addresses.
  3. CFCA completes system upgrade, issuing certificates with Full CRL.
Participants
Gao Fei Rob Stradling Ben Wilson
External References
Original Bugzilla Case crt.sh crt.sh
Similar Local Cases
#1809382 RESOLVED Certificate Problem Report Opened 2023-01-10 · Closed 2023-09-29 · 71% similar
CFCA: Certificate with wrong crlDistributionPoints
AI Summary CA Owner
#1798812 RESOLVED Certificate Problem Report Opened 2022-11-02 · Closed 2023-05-04 · 66% similar
CFCA: Delayed reporting of revocation of an intermediate CA certificate
AI Summary CA Owner
#1802845 RESOLVED Certificate Problem Report Opened 2022-11-28 · Closed 2023-09-29 · 61% similar
CFCA: EV certificate with wrong PostalCode&Street
AI Summary CA Owner
#1886135 RESOLVED Certificate Problem Report Opened 2024-03-19 · Closed 2024-09-26 · 59% similar
CFCA: certificate basicConstraints extension not marked as critical
AI Summary CA Owner
#1793053 RESOLVED Certificate Problem Report Opened 2022-09-30 · Closed 2023-06-30 · 59% similar
CFCA: ICA without EKU
AI Summary CA Owner
#1771482 RESOLVED Certificate Problem Report Opened 2022-05-27 · Closed 2023-02-22 · 58% similar
CFCA: Precertificate with postalCode and streetAddress swapped
AI Summary CA Owner
#1888881 RESOLVED Certificate Problem Report Opened 2024-04-01 · Closed 2025-04-03 · 57% similar
CFCA: Failure to respond to a CPR in a complete and/or timely manner
AI Summary CA Owner
#1896462 RESOLVED Certificate Problem Report Opened 2024-05-13 · Closed 2024-06-01 · 56% similar
Digicert: Preview certificate uploaded to CCADB instead of the actual certificate
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action