← GoDaddy cases
Bugzilla #2002402
Certificate Problem Report
GoDaddy: Missing R1 Intermediate Full CRL URLs in CCADB
RESOLVED
FIXED
GoDaddy
AI Summary
GoDaddy identified and resolved an issue regarding missing Certificate Revocation List (CRL) distribution points for R1 intermediate certificates in the CCADB. The non-compliance was detected on November 25, 2025, and was due to a gap in internal documentation regarding the timely update of CRL URLs after the issuance of leaf certificates. All impacted entries were updated the same day, and GoDaddy has since revised its internal procedures to prevent future occurrences.
Chronology
- Non-compliance start date identified.
- Non-compliance identified and resolved.
- Updated internal playbook to include CRL URL disclosures.
Participants
Steven Deitte
External References
Similar Local Cases
GoDaddy: CRL Disclosure in CCADB Mismatch with Issued Certificates
GoDaddy: Delayed CRL File Updates
GoDaddy: CA Certificates with HTTPS URL in AIA Field
GoDaddy: Partitioned CRL files missing Issuing Distribution Point
GoDaddy: CA Certificates Published in PEM format
GoDaddy: Delayed revocation
GoDaddy: Certificates with invalid embedded SCT signatures
GoDaddy: Precertificates incorrectly logged to DigiCert SCT Logs