← Government of Hong Kong (SAR), Hongkong Post, Certizen cases
Bugzilla #1267332 Certificate Problem Report

Hongkong Post e-Cert CA 1 - 10 issuing certificates without subject alternative name extension

RESOLVED Government of Hong Kong (SAR), Hongkong Post, Certizen
AI Summary

The Hongkong Post e-Cert CA 1 - 10 was found to be issuing certificates that lacked the required subject alternative name (SAN) extension, which is a violation of best practices. Although the CA ceased issuing SSL certificates using SHA-1 as of January 1, 2016, issues persisted with the certificates being issued. The case was resolved after the problematic certificates were added to OneCRL, ensuring compliance with the CA/Browser Forum's Baseline Requirements.

Model: gpt-4o-mini Generated: 2026-06-13 14:03 UTC Confidence: 0.95
Chronology
  1. Initial report of missing SAN extension
  2. Discussion on adding certificates to OneCRL
  3. Case closed as resolved/fixed
Participants
Dana Keeler Man Ho Kathleen Wilson
External References
Original Bugzilla Case www.hongkongpost.gov.hk www.hongkongpost.gov.hk www.hongkongpost.gov.hk
Related Bugzilla IDs Mentioned
#1299579
Similar Local Cases
#1262610 RESOLVED Certificate Problem Report Opened 2016-04-06 · Closed 2023-02-22 · 59% similar
DigiCert: ECCE 001 issuing certificates without subject alternative name extension
AI Summary CA Owner
#1301545 RESOLVED Certificate Problem Report Opened 2016-09-08 · Closed 2022-11-14 · 55% similar
GlobalSign CloudSSL CA - SHA256 - G3 issued certificate without required extensions
AI Summary CA Owner
#988633 RESOLVED Certificate Problem Report Opened 2014-03-26 · Closed 2023-02-22 · 55% similar
GoDaddy: improperly encoded certificate issued by Go Daddy Secure Certification Authority
AI Summary CA Owner
#1267049 RESOLVED Certificate Problem Report Opened 2016-04-24 · Closed 2023-02-22 · 50% similar
Izenpe: EV certificate with various issues
AI Summary CA Owner
#1212655 RESOLVED Certificate Problem Report Opened 2015-10-07 · Closed 2022-11-14 · 50% similar
StartCom: public exponent is 1
AI Summary CA Owner
#1195115 RESOLVED Certificate Problem Report Opened 2015-08-16 · Closed 2022-11-14 · 50% similar
Swisscom: certificates without DNS names in subjectAltName
AI Summary CA Owner
#1060863 RESOLVED Certificate Problem Report Opened 2014-08-30 · Closed 2022-11-14 · 50% similar
LuxTrust: issuing 1024 bit certificates
AI Summary CA Owner
#1304895 RESOLVED Certificate Problem Report Opened 2016-09-22 · Closed 2023-02-22 · 50% similar
DigiCert: TI Trust Technologies Global CA issued certificate with no subject alternative name extension
AI Summary CA Owner

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action