Thank you. I have created a bug and requested a response from T-Systems: https://bugzilla.mozilla.org/show_bug.cgi?id=1530718
- Wayne On Tue, Feb 26, 2019 at 8:07 AM michel.lebihan2000--- via dev-security-policy <[email protected]> wrote: > Hello, > > While looking at CT logs, I noticed multiple certificates issued by > T-Systems that have SANs that seem invalid. The first certificate I noticed > is https://crt.sh/?id=1044575692&opt=ocsp,cablint,zlint The DNS name has > a leading /. That certificate was revoked, but I didn't see any report > about this on this list. Other certificates I noticed are > https://crt.sh/?id=1003197184&opt=cablint,zlint where the CN has a > leading whitespace and the SAN is double. This one has also been revoked. > > Other certificates that seem mississued are: > https://crt.sh/?id=1044697381&opt=cablint,zlint > https://crt.sh/?id=282646160&opt=cablint,zlint > > They are all revoked. > _______________________________________________ > dev-security-policy mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security-policy > _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
