← Government of Spain, Autoritat de Certificació de la Comunitat Valenciana (ACCV) cases
Bugzilla #1889567
Certificate Problem Report
ACCV: Certificates issued with Policy qualifiers other than id-qt-cps
RESOLVED
FIXED
Government of Spain, Autoritat de Certificació de la Comunitat Valenciana (ACCV)
AI Summary
The Government of Spain's ACCV was notified by Sectigo about a revoked certificate that incorrectly included a Policy Qualifier '1.3.6.1.5.5.7.2.2'. This qualifier should not have been part of the certificate profile according to the Baseline Requirements. Following an investigation, ACCV confirmed that no active certificates were affected, as all 379 previously issued certificates with this qualifier had been revoked. The issue stemmed from a deployment error that was subsequently corrected, and measures have been implemented to prevent future occurrences.
Chronology
- ACCV notified by Sectigo about a revoked certificate.
- Initial Bugzilla report created.
- ACCV confirms no active certificates affected.
- Detailed incident report submitted.
- No outstanding issues; case can be closed.
Participants
Jose Amador
Rob Sectigo
Tim Callan
Amir Aamidi
Ben Wilson
External References
Similar Local Cases
ACCV: Delayed revocation of TLS certificates affected by bug #1884532
ACCV: Delayed response to CPR
Sectigo: QWAC certificates issued with incorrect subject:organizationIdentifier attribute value
Sectigo: Misspellings in stateOrProvince or localityName fields
Sectigo: "Manual DCV" method used
Sectigo: Mojibake in certificate Subject fields
Sectigo: OCSP responses directly signed using root certificates without KU=digitalSignature
Telia: Delayed revocation of seven (7) certificates related to incident 1896108