As this list is related to observing global CAs, is it an apprporiate place to discuss the behaviour of OCSP responders of global CAs, too?
I'm getting an OCSP response "unauthorized" for a certificate that is still within the validity period. Is discussing such events of interest for public discussion, or should it rather be reported to the CA in private? Thanks, Kai
