Hello, While looking at CT logs, I noticed multiple certificates issued by T-Systems that have SANs that seem invalid. The first certificate I noticed is https://crt.sh/?id=1044575692&opt=ocsp,cablint,zlint The DNS name has a leading /. That certificate was revoked, but I didn't see any report about this on this list. Other certificates I noticed are https://crt.sh/?id=1003197184&opt=cablint,zlint where the CN has a leading whitespace and the SAN is double. This one has also been revoked.
Other certificates that seem mississued are: https://crt.sh/?id=1044697381&opt=cablint,zlint https://crt.sh/?id=282646160&opt=cablint,zlint They are all revoked. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy