Confirmed users, Administrators
5,526
edits
CA/CertificatePolicyV2.1: Difference between revisions
Jump to navigation
Jump to search
m
→Technical Constraints or Auditing/Disclosure of Intermediate Certificates
| Line 44: | Line 44: | ||
* All subordinate CA certificates that are issued after May 15, 2013 must comply with version 2.1 of the [[CA:CertInclusionPolicyV2.1 | Inclusion Policy]] | * All subordinate CA certificates that are issued after May 15, 2013 must comply with version 2.1 of the [[CA:CertInclusionPolicyV2.1 | Inclusion Policy]] | ||
* All pre-existing subordinate CA certificates must be updated to comply with version 2.1 of the [[CA:CertInclusionPolicyV2.1 | Inclusion Policy]] for new certificate issuance by May 15, 2014. | * All pre-existing subordinate CA certificates must be updated to comply with version 2.1 of the [[CA:CertInclusionPolicyV2.1 | Inclusion Policy]] for new certificate issuance by May 15, 2014. | ||
** A pre-existing subordinate CA certificate that expires before May 15, 2014 may be re-issued in order to extend the validity period of the currently-valid intermediate CA certificate until May 15, 2014. That is, the replacement certificate's notAfter date would be May 15, 2014 or earlier. | ** A pre-existing externally-operated subordinate CA certificate that expires before May 15, 2014 may be re-issued in order to extend the validity period of the currently-valid intermediate CA certificate until May 15, 2014. That is, the replacement certificate's notAfter date would be May 15, 2014 or earlier. | ||
* All certificates that are capable of being used to issue new certificates must comply with version 2.1 of the [[CA:CertInclusionPolicyV2.1 | Inclusion Policy]] for new certificate issuance by May 15, 2014. | * All certificates that are capable of being used to issue new certificates must comply with version 2.1 of the [[CA:CertInclusionPolicyV2.1 | Inclusion Policy]] for new certificate issuance by May 15, 2014. | ||