← GoDaddy cases
Bugzilla #2004845
Certificate Problem Report
GoDaddy: CA Certificates Published in PEM format
RESOLVED
FIXED
GoDaddy
AI Summary
GoDaddy identified that two CA certificate files were incorrectly served in PEM format instead of the required DER format on the CA Issuers URI of issued certificates. The non-compliance was detected between September 24 and December 8, 2025, and was promptly addressed by updating the hosted files to the correct format. The incident was attributed to missing validation steps in the CA certificate generation process and insufficient monitoring. GoDaddy has since enhanced its monitoring and operational processes to ensure compliance with disclosure requirements.
Chronology
- Non-compliance start
- Non-compliance identified
- Non-compliance resolved
- Incident report closure summary provided
Participants
Steven Deitte
External References
Similar Local Cases
GoDaddy: CRL Disclosure in CCADB Mismatch with Issued Certificates
GoDaddy: Partitioned CRL files missing Issuing Distribution Point
GoDaddy: CA Certificates with HTTPS URL in AIA Field
GoDaddy: Certificates with invalid embedded SCT signatures
GoDaddy: Delayed CRL File Updates
GoDaddy: Missing R1 Intermediate Full CRL URLs in CCADB
GoDaddy: Precertificates incorrectly logged to DigiCert SCT Logs
GoDaddy: Revocation process is unusable due to contact address not accepting attachments