← Krajowa Izba Rozliczeniowa S.A. (KIR) cases
Bugzilla #1921597 Certificate Problem Report

KIR: Intermediate CA - SZAFIR Trusted CA4 - Certificate Policies extension - non-compliance

RESOLVED FIXED Krajowa Izba Rozliczeniowa S.A. (KIR)
AI Summary

An incident was reported involving the incorrect issuance of two intermediate CA certificates by Krajowa Izba Rozliczeniowa S.A. (KIR). The Certificate Policies extensions in the SZAFIR Trusted CA4 Intermediate CA certificate were missing Reserved Certificate Policy Identifiers, which are necessary for compliance with TLS BR. The issue was identified on September 25, 2024, following an email from Rob Stradling. Remediation steps included updating procedures, implementing additional checks, and revoking the affected certificates.

Model: gpt-4o-mini Generated: 2026-06-13 21:15 UTC Confidence: 0.95
Chronology
  1. Incident reported by Rob Stradling.
  2. Affected certificate revoked.
  3. Incident report closure summary submitted.
Participants
Piotr Grabowski Rob Stradling B. Wilson
External References
Original Bugzilla Case crt.sh
Similar Local Cases
#1921598 RESOLVED Certificate Problem Report Opened 2024-09-28 · Closed 2025-02-19 · 88% similar
KIR: Intermediate CA - SZAFIR Trusted CA3 - Certificate Policies extension - non-compliance
AI Summary CA Owner
#1921596 RESOLVED Certificate Problem Report Opened 2024-09-28 · Closed 2025-02-19 · 76% similar
KIR: Failure to disclose intermediate certificate within 7 days in ccadb
AI Summary CA Owner
#1921591 RESOLVED Certificate Problem Report Opened 2024-09-28 · 67% similar
KIR: Failure to disclose intermediate certificate within 7 days in ccadb
AI Summary CA Owner
#1922572 RESOLVED Certificate Problem Report Opened 2024-10-03 · Closed 2025-05-08 · 62% similar
KIR: Delayed revocation within seven (7) days for bug 1921598
AI Summary CA Owner
#1705832 RESOLVED Certificate Problem Report Opened 2021-04-16 · Closed 2023-02-22 · 59% similar
KIR S.A.: DV certificates with locality name, organization name and stateOrProvinceName
AI Summary CA Owner
#1705187 RESOLVED Certificate Problem Report Opened 2021-04-14 · Closed 2023-02-22 · 58% similar
KIR S.A.: CN domain not in SAN
AI Summary CA Owner
#1705337 RESOLVED Certificate Problem Report Opened 2021-04-15 · Closed 2023-02-22 · 57% similar
KIR S.A.: Invalid localityName + CRL Revoked but OCSP Unknown
AI Summary CA Owner
#1705647 RESOLVED Certificate Problem Report Opened 2021-04-16 · Closed 2023-02-22 · 57% similar
KIR S.A.: Invalid organizationName
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action