← Actalis cases
Bugzilla #1906690 Certificate Problem Report

Actalis: CRL distribution point with ldap scheme

RESOLVED FIXED Actalis
AI Summary

Actalis identified that some TLS server certificates contained an ldap-scheme URL in their CRLDistributionPoints extension, which is prohibited under BRs v2.0 effective September 15, 2023. A total of 28 certificates were affected, all issued by a technically constrained SubCA. Upon discovery, Actalis promptly revoked all impacted certificates and corrected the certificate profile to prevent further misissuance. They have also implemented additional linting mechanisms to enhance compliance checks moving forward.

Model: gpt-4o-mini Generated: 2026-06-13 21:31 UTC Confidence: 1.00
Chronology
  1. Technical checks revealed ldap scheme in CRLDistributionPoints.
  2. All affected certificates were revoked.
  3. Incident report detailing findings and actions was submitted.
  4. Closure summary submitted, all action items completed.
Participants
Marco Menonna Ben Wilson Rob Adriano Santoni
External References
Original Bugzilla Case
Similar Local Cases
#1943379 RESOLVED Certificate Problem Report Opened 2025-01-23 · Closed 2025-05-08 · 66% similar
Actalis: CRL with duplicate serial number in revokedCertificates
AI Summary CA Owner
#1888714 RESOLVED Certificate Problem Report Opened 2024-03-29 · Closed 2024-07-11 · 65% similar
Entrust: EV Certificate missing Issuer’s EV Policy OID
AI Summary CA Owner
#1649961 RESOLVED Certificate Problem Report Opened 2020-07-02 · Closed 2023-02-22 · 65% similar
Actalis: Incorrect OCSP Delegated Responder Certificate
AI Summary CA Owner
#1914419 RESOLVED Certificate Problem Report Opened 2024-08-22 · Closed 2025-02-04 · 63% similar
Actalis: Use of CRLReason Code in Certificate Revocation
AI Summary CA Owner
#1034835 RESOLVED Certificate Problem Report Opened 2014-07-05 · Closed 2022-11-14 · 58% similar
Actalis: Issusing 1024 bit certificates
AI Summary CA Owner
#1648997 RESOLVED Certificate Problem Report Opened 2020-06-28 · Closed 2023-02-22 · 58% similar
Actalis: inaccurate value in stateOrProvinceName
AI Summary CA Owner
#1826713 RESOLVED Certificate Problem Report Opened 2023-04-06 · Closed 2023-07-20 · 58% similar
Actalis: Certificates issued with validity period greater than 398 days
AI Summary CA Owner
#1523680 RESOLVED Certificate Problem Report Opened 2019-01-29 · Closed 2023-02-22 · 57% similar
Actalis: Non BR Compliant OCSP Responder
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action