← DocuSign (OpenTrust/Keynectis) cases
Bugzilla #1321354
Certificate Problem Report
DocuSign France - Internal names certificates under a technically-constrained subordinate CA
RESOLVED
DocuSign (OpenTrust/Keynectis)
AI Summary
This case involved a subordinate CA under DocuSign that failed to revoke non-compliant internal name certificates as required by CABF BR. After an audit, it was found that several certificates remained valid despite a prior agreement to revoke them. The CA subsequently revoked the offending certificates and made necessary technical changes to comply with the policy.
Chronology
- Initial report of non-compliance and request for revocation.
- Two of the three problematic certificates were revoked.
- Technical changes made and new certificates generated.
- Case confirmed as resolved.
Participants
Erwann Abalea
Kathleen Wilson
Related Bugzilla IDs Mentioned
Similar Local Cases
Bug in GlobalSign Certificate Centre not populating EKUs in 68 SSL certificates
entrust: Invalid Teletext strings
Hongkong Post e-Cert CA 1 - 10 issuing certificates without subject alternative name extension
Izenpe: EV certificate with various issues
StartCom: IV without localityName or stateOrProvinceName
D-Trust: issuing 1024 bit certificates
EV SSL certificate (and OCSP response) for www.camerfirma.com fails to meet EV Guidelines
DigiCert: Revoked intermediate certificates not in CRL