← China Financial Certification Authority (CFCA) cases
Bugzilla #2033412 Certificate Problem Report

CFCA: CRL signatureAlgorithm Missing NULL Parameter (RFC 4055 Section 5)

ASSIGNED China Financial Certification Authority (CFCA)
AI Summary

The China Financial Certification Authority (CFCA) reported an issue where the CRL signatureAlgorithm field was missing a required NULL parameter for RSA algorithms, as specified in RFC 4055 Section 5. This non-compliance was identified on April 7, 2026, and affected four CRLs. The issue was disclosed by a third party and has been addressed through a series of corrective actions, including software fixes and CRL regeneration, which were completed by June 10, 2026.

Model: gpt-4o-mini Generated: 2026-06-13 21:37 UTC Confidence: 1.00
Chronology
  1. CABatch CRL generation software deployed, introducing ASN.1 encoding deficiency.
  2. Non-compliance identified.
  3. All action items completed, including CRL regeneration.
Participants
Michael
External References
Original Bugzilla Case crl.cfca.com.cn crl.cfca.com.cn crl.cfca.com.cn crl.cfca.com.cn
Similar Local Cases
#1888881 RESOLVED Certificate Problem Report Opened 2024-04-01 · Closed 2025-04-03 · 59% similar
CFCA: Failure to respond to a CPR in a complete and/or timely manner
AI Summary CA Owner
#2010525 RESOLVED Certificate Problem Report Opened 2026-01-15 · Closed 2026-02-18 · 57% similar
CFCA: reporting delayed when handling incident bug #2006333
AI Summary CA Owner
#2031281 ASSIGNED Certificate Problem Report Opened 2026-04-13 Still Open · 53% similar
CFCA: OCSP Responder Certificate Profile Deviations and OCSP Service Issues
AI Summary CA Owner
#1532113 RESOLVED Certificate Problem Report Opened 2019-03-03 · Closed 2023-02-22 · 52% similar
CFCA: O > 64 characters
AI Summary CA Owner
#1793053 RESOLVED Certificate Problem Report Opened 2022-09-30 · Closed 2023-06-30 · 52% similar
CFCA: ICA without EKU
AI Summary CA Owner
#1532429 RESOLVED Certificate Problem Report Opened 2019-03-04 · Closed 2023-02-22 · 51% similar
CFCA: Invalid TLD in SAN
AI Summary CA Owner
#1778035 RESOLVED Certificate Problem Report Opened 2022-07-05 · Closed 2023-04-19 · 51% similar
CFCA: The wrong status of OCSP
AI Summary CA Owner
#1809382 RESOLVED Certificate Problem Report Opened 2023-01-10 · Closed 2023-09-29 · 51% similar
CFCA: Certificate with wrong crlDistributionPoints
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action