← Certigna cases
Bugzilla #1963663 Certificate Problem Report

Certigna: Multiple Reserved Certificate Policy Identifiers in CA certificates

RESOLVED FIXED Certigna
AI Summary

Certigna faced an incident involving the issuance of CA certificates that included multiple reserved certificate policy identifiers, violating the TLS Baseline Requirements. The issue was identified by the Chrome Root Program, leading to the revocation of seven CA certificates and 286 impacted server certificates. The root cause was a misinterpretation of the requirements, which have since been clarified. Certigna has since implemented corrective measures, including the use of PKILint for future certificate validations.

Model: gpt-4o-mini Generated: 2026-06-13 21:29 UTC Confidence: 0.90
Chronology
  1. Non-compliance start date
  2. Non-compliance identified
  3. Non-compliance ended with revocation
Participants
Josselin Allemandou r.delval@certigna.com rowleylaw@gmail.com bwilson@mozilla.com incident-reporting@ccadb.org
External References
Original Bugzilla Case
Similar Local Cases
#1983955 RESOLVED Certificate Problem Report Opened 2025-08-19 · Closed 2025-09-15 · 69% similar
Certigna: Subscriber certificate with EKU clientAuth only
AI Summary CA Owner
#1955365 RESOLVED Certificate Problem Report Opened 2025-03-20 · Closed 2025-05-19 · 66% similar
Apple: Public Key Reuse
AI Summary CA Owner
#1886442 RESOLVED Certificate Problem Report Opened 2024-03-20 · Closed 2024-06-01 · 61% similar
Certigna: Revocation delay for TLS certificates with basic constraint not marked as critical
AI Summary CA Owner
#1900654 RESOLVED Certificate Problem Report Opened 2024-06-04 · Closed 2024-08-28 · 61% similar
Certigna: ARL without reasoncode for recent revoked CA certificates
AI Summary CA Owner
#1774418 RESOLVED Certificate Problem Report Opened 2022-06-15 · Closed 2023-04-19 · 60% similar
Certigna: Certificate issued with validity period greater than 398-days
AI Summary CA Owner
#2007238 RESOLVED Certificate Problem Report Opened 2025-12-20 · Closed 2026-01-12 · 59% similar
Certigna: CRL URL Disclosure
AI Summary CA Owner
#1685142 RESOLVED Certificate Problem Report Opened 2021-01-05 · Closed 2023-02-22 · 58% similar
Dhimyotis / Certigna: Failure to revoke in the timeline specified by the BRs
AI Summary CA Owner
#2004732 RESOLVED Certificate Problem Report Opened 2025-12-08 · Closed 2026-01-05 · 57% similar
Certigna: AIA CA issuer field pointing to PEM encoded cert
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action