I'm attempting to download the CRLs referenced by the "Full CRL Issued By This CA" field in CCADB and have noticed a number of invalid or non-functional URLs. For example:
Un-resolvable hostname: http://Certera.crl.sectigo.com/CerteraDVSSLCA.crl URL missing protocol: lva.at/files/lva_2016.crl Multiple URLs specified instead of a single URL: http://qcrldp1.ica.cz/qcw17_rsa.crl, http://qcrldp2.ica.cz/qcw17_rsa.crl, http://qcrldp3.ica.cz/qcw17_rsa.crl This is just a sample. All CAs should make sure they are specifying a single, working URL in this field. Regards, Andrew -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/20220926201137.2086bb56dfcfc48c91870fcb%40andrewayer.name.
