← Certigna cases
Bugzilla #2004732
Certificate Problem Report
Certigna: AIA CA issuer field pointing to PEM encoded cert
RESOLVED
FIXED
Certigna
AI Summary
Certigna reported an incident involving an intermediate CA certificate 'FR03' that had an Authority Information Access (AIA) field pointing to a certificate in PEM format instead of the required DER format. This issue was identified through a third-party report and was not associated with any SSL/TLS or S/MIME certificates. The non-compliance was first noted on December 6, 2025, and a fix was deployed by December 9, 2025, to ensure the AIA field correctly points to the DER format certificate. The incident has been resolved with no reported impact on customers.
Chronology
- Non-compliance identified through third-party report.
- Fix deployed to correct AIA field.
- Incident report finalized and closure requested.
Participants
Josselin Allemandou
Chrome Root Program Team
Malcolm Doody
External References
Similar Local Cases
Certigna: ARL without reasoncode for recent revoked CA certificates
Certigna: Failure to respond to CPR within 24 hours
Certigna: CRL URL Disclosure
Dhimyotis / Certigna: Intermediate CAs missing audits
Certigna: Certificate issued with validity period greater than 398-days
Certigna: Revocation delay for TLS certificates with basic constraint not marked as critical
Certigna: Multiple Reserved Certificate Policy Identifiers in CA certificates
Certigna: Precertificate with a validity period greater than 398-days