← Izenpe S.A. cases
Bugzilla #1876565
Certificate Problem Report
Izenpe: Not allowed Qualifier ID OID on Certificate Policies extension
RESOLVED
FIXED
Izenpe S.A.
AI Summary
Izenpe S.A. identified a compliance issue with their DV and OV certificates, which included an unapproved OID in the Certificate Policies extension. This violation of the Baseline Requirements (BR) was discovered during a review of their certificates, leading to the suspension of issuing affected certificates. The company has since updated their certificate profiles, revoked the non-compliant certificates, and resumed issuance after ensuring compliance with the BRs.
Chronology
- BR's SC62 comes into force.
- Izenpe discovers the OID issue and stops issuing affected certificates.
- Izenpe resumes issuing certificates after updating profiles.
- Izenpe completes revocation of affected certificates.
- Zlint is installed and configured for production.
- Incident closure planned unless further questions arise.
Participants
David Fernandez
External References
Similar Local Cases
IZENPE: not allowed Key Usage in ocsp responder certificate
Izenpe: Duplicate attribute in Subject
Izenpe: Not allowed Qualifier ID OID on Certificate Policies extension of Precertificates
Izenpe: CRL and ARL exceed validity period value by one second
IZENPE: Failed to respond a Certificate Problem Report within 24 hours and create a preliminary report in 72 hours
IZENPE: IssuingDistributionPoint extension in CRLs not marked as Critical
Izenpe: Intermediate CA certificates not listed in audit report
Izenpe: EV certificate with various issues