Closed Bug 1119950 Opened 11 years ago Closed 10 years ago

Please renew https cert for aus2-community.mozilla.org

Categories

(Infrastructure & Operations :: SSL Certificates, task)

Product:
Infrastructure & Operations
Component:
SSL Certificates
Platform:
x86_64
Windows 8.1
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: Callek, Assigned: Atoll)

References

Details

(Whiteboard: [kanban:https://webops.kanbanize.com/ctrl_board/2/155] [digicert=00631948])

We have ~18 weeks ahead of expiration to do this (since the cert is checked via a hardcoded whitelist in SeaMonkey) It's currently set to expire on September 10, 2015 So we need a renewal ready pretty soon (so we can add to whitelist) Simply knowing the correct issuer name will be enough, even if the cert is not provided until later. But we must have the correct one. We'll want to do the cert cutover ~ a week before the current one expires. === Current list of whitelisted Issuer's for SeaMonkey is (copy/pasted) pref("app.update.certs.1.issuerName", "OU=Equifax Secure Certificate Authority,O=Equifax,C=US"); pref("app.update.certs.2.issuerName", "CN=GeoTrust SSL CA,O=\"GeoTrust, Inc.\",C=US"); pref("app.update.certs.3.issuerName", "CN=Thawte SSL CA,O=\"Thawte, Inc.\",C=US"); === Current list of whitelisted Issuer's for Firefox is (copy/pasted) pref("app.update.certs.1.issuerName", "CN=Thawte SSL CA,O=\"Thawte, Inc.\",C=US"); pref("app.update.certs.2.issuerName", "CN=DigiCert Secure Server CA,O=DigiCert Inc,C=US"); ==== Previous incarnation was in Bug 914455
Assignee: server-ops → server-ops-webops
Component: Server Operations → WebOps: SSL and Domain Names
Product: mozilla.org → Infrastructure & Operations
QA Contact: shyam → nmaul
Whiteboard: [kanban:https://webops.kanbanize.com/ctrl_board/2/155]
Also see bug 1116409.
(In reply to Yuhong Bao from comment #1) > Also see bug 1116409. Yes in SeaMonkey's case we *are* upgrading certs for this existing server, so I'd say we should make sure to not have an SHA1 chained intermediate while we're at it.
Assignee: server-ops-webops → gozer
Here is the new cert along with the intermediate and the root cert. Not deploying in production yet, obviously. Waiting for a heads-up for deployment. Can you please close this bug and open a new one once it's time to change certs ? Certificate: Data: Version: 3 (0x2) Serial Number: 09:2e:b3:59:11:39:13:dc:7e:a8:68:37:db:e4:9a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA Validity Not Before: Feb 16 00:00:00 2015 GMT Not After : Feb 24 12:00:00 2016 GMT Subject: C=US, L=Mountain View, ST=California, O=Mozilla Foundation, OU=Automatic Update System, CN=aus2-community.mozilla.org Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c2:41:cc:5f:c4:e4:99:4b:b4:34:1a:3e:15:7d: 88:76:34:1f:29:3f:09:67:93:b3:13:bb:94:6e:3b: 3d:94:4c:29:e6:30:63:cd:b1:0d:35:f2:97:5c:7d: b1:0c:17:a5:d0:0b:fd:74:25:01:4a:13:b4:37:35: 97:14:38:ee:1c:48:ec:25:6e:ed:ae:cd:8a:6d:c5: 35:aa:13:2e:49:21:f2:8d:24:1a:7d:53:b3:6a:f5: d7:85:df:79:7a:de:d8:e3:0e:e6:f6:69:fe:aa:05: ea:ad:7c:b6:5f:e5:62:e0:b1:01:12:72:c8:b8:65: d8:2c:e3:a5:0e:3c:16:4e:44:60:bf:70:0e:71:2d: 87:77:d5:b3:c5:68:1d:9c:79:c1:54:1f:99:06:d0: e8:b6:95:34:89:06:ac:4f:82:af:bc:fe:96:62:3d: 3c:d7:66:f7:16:0d:96:32:5d:d8:a8:50:25:50:44: f7:1b:70:12:46:f0:51:00:5f:93:45:1d:8c:24:1d: b4:65:c6:ea:fd:6d:e6:64:a1:d6:28:4f:51:29:3a: 13:5f:cd:cb:5d:68:72:da:16:bd:29:64:3c:11:24: 4c:59:fa:9d:c1:42:bd:db:78:60:18:30:1d:eb:f3: 93:14:70:0b:21:6a:3d:08:f4:88:7c:89:d1:b5:cd: 67:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: keyid:0F:80:61:1C:82:31:61:D5:2F:28:E7:8D:46:38:B4:2C:E1:C6:D9:E2 X509v3 Subject Key Identifier: 96:8F:0E:B3:08:E6:49:8D:EB:3D:41:64:66:69:DE:F9:67:99:9A:47 X509v3 Subject Alternative Name: DNS:aus2-community.mozilla.org X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 CRL Distribution Points: Full Name: URI:http://crl3.digicert.com/ssca-sha2-g3.crl Full Name: URI:http://crl4.digicert.com/ssca-sha2-g3.crl X509v3 Certificate Policies: Policy: 2.16.840.1.114412.1.1 CPS: https://www.digicert.com/CPS Authority Information Access: OCSP - URI:http://ocsp.digicert.com CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt X509v3 Basic Constraints: critical CA:FALSE Signature Algorithm: sha256WithRSAEncryption 77:55:cb:30:7a:59:bd:49:b7:6b:89:21:cd:df:9e:3e:4c:75: 1b:60:8a:a5:41:4d:4b:b0:83:cf:6f:f1:61:3c:ae:3b:bc:ef: 31:cf:53:f9:9d:87:36:70:df:a7:6a:54:03:e8:5a:74:98:2a: 39:66:15:1f:99:49:66:d8:a3:b9:c0:ea:ec:d7:2a:58:cd:25: 2c:b6:b2:c3:60:e1:36:c8:eb:aa:5c:ce:30:30:37:25:bb:bf: bd:f5:52:d0:a6:fd:0d:cc:8c:88:bd:91:f6:46:d9:47:f2:f4: bf:0a:f8:23:33:17:a3:b4:8b:ae:b1:51:28:d3:0a:a3:3c:9d: c7:12:71:03:56:4b:85:2e:94:92:2d:f9:23:6e:5d:2c:a7:d3: 90:47:99:76:bf:ee:35:8b:6d:ea:f7:65:54:89:73:4e:bd:e8: a2:34:f1:c2:88:3b:b6:65:d6:65:fb:87:1e:6d:9b:96:39:51: d6:20:64:5a:2b:94:17:14:60:16:af:6c:50:be:ff:09:48:29: 16:8f:e7:85:82:76:4f:b7:73:e0:92:77:58:08:a6:e4:38:da: ea:ad:d8:9c:e4:15:11:51:59:cf:dc:ba:0a:c0:26:0d:e9:35: 52:d1:69:42:22:ba:56:7c:82:9c:70:f3:53:67:a3:42:4f:fb: c0:3c:9f:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIQCS6zWRE5E9x+qGg32+Sa5TANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTUwMjE2MDAwMDAwWhcN MTYwMjI0MTIwMDAwWjCBnjELMAkGA1UEBhMCVVMxFjAUBgNVBAcTDU1vdW50YWlu IFZpZXcxEzARBgNVBAgTCkNhbGlmb3JuaWExGzAZBgNVBAoTEk1vemlsbGEgRm91 bmRhdGlvbjEgMB4GA1UECxMXQXV0b21hdGljIFVwZGF0ZSBTeXN0ZW0xIzAhBgNV BAMTGmF1czItY29tbXVuaXR5Lm1vemlsbGEub3JnMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAwkHMX8TkmUu0NBo+FX2IdjQfKT8JZ5OzE7uUbjs9lEwp 5jBjzbENNfKXXH2xDBel0Av9dCUBShO0NzWXFDjuHEjsJW7trs2KbcU1qhMuSSHy jSQafVOzavXXhd95et7Y4w7m9mn+qgXqrXy2X+Vi4LEBEnLIuGXYLOOlDjwWTkRg v3AOcS2Hd9WzxWgdnHnBVB+ZBtDotpU0iQasT4KvvP6WYj0812b3Fg2WMl3YqFAl UET3G3ASRvBRAF+TRR2MJB20Zcbq/W3mZKHWKE9RKToTX83LXWhy2ha9KWQ8ESRM WfqdwUK923hgGDAd6/OTFHALIWo9CPSIfInRtc1nSQIDAQABo4IB1zCCAdMwHwYD VR0jBBgwFoAUD4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFJaPDrMI5kmN 6z1BZGZp3vlnmZpHMCUGA1UdEQQeMByCGmF1czItY29tbXVuaXR5Lm1vemlsbGEu b3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3Nz Y2Etc2hhMi1nMy5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9z c2NhLXNoYTItZzMuY3JsMEIGA1UdIAQ7MDkwNwYJYIZIAYb9bAEBMCowKAYIKwYB BQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwfAYIKwYBBQUHAQEE cDBuMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYB BQUHMAKGOmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJT ZWN1cmVTZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQsFAAOC AQEAd1XLMHpZvUm3a4khzd+ePkx1G2CKpUFNS7CDz2/xYTyuO7zvMc9T+Z2HNnDf p2pUA+hadJgqOWYVH5lJZtijucDq7NcqWM0lLLayw2DhNsjrqlzOMDA3Jbu/vfVS 0Kb9DcyMiL2R9kbZR/L0vwr4IzMXo7SLrrFRKNMKozydxxJxA1ZLhS6Uki35I25d LKfTkEeZdr/uNYtt6vdlVIlzTr3oojTxwog7tmXWZfuHHm2bljlR1iBkWiuUFxRg Fq9sUL7/CUgpFo/nhYJ2T7dz4JJ3WAim5Dja6q3YnOQVEVFZz9y6CsAmDek1UtFp QiK6VnyCnHDzU2ejQk/7wDyfzw== -----END CERTIFICATE----- Intermediate: Certificate: Data: Version: 3 (0x2) Serial Number: 01:fd:a3:eb:6e:ca:75:c8:88:43:8b:72:4b:cf:bc:91 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA Validity Not Before: Mar 8 12:00:00 2013 GMT Not After : Mar 8 12:00:00 2023 GMT Subject: C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dc:ae:58:90:4d:c1:c4:30:15:90:35:5b:6e:3c: 82:15:f5:2c:5c:bd:e3:db:ff:71:43:fa:64:25:80: d4:ee:18:a2:4d:f0:66:d0:0a:73:6e:11:98:36:17: 64:af:37:9d:fd:fa:41:84:af:c7:af:8c:fe:1a:73: 4d:cf:33:97:90:a2:96:87:53:83:2b:b9:a6:75:48: 2d:1d:56:37:7b:da:31:32:1a:d7:ac:ab:06:f4:aa: 5d:4b:b7:47:46:dd:2a:93:c3:90:2e:79:80:80:ef: 13:04:6a:14:3b:b5:9b:92:be:c2:07:65:4e:fc:da: fc:ff:7a:ae:dc:5c:7e:55:31:0c:e8:39:07:a4:d7: be:2f:d3:0b:6a:d2:b1:df:5f:fe:57:74:53:3b:35: 80:dd:ae:8e:44:98:b3:9f:0e:d3:da:e0:d7:f4:6b: 29:ab:44:a7:4b:58:84:6d:92:4b:81:c3:da:73:8b: 12:97:48:90:04:45:75:1a:dd:37:31:97:92:e8:cd: 54:0d:3b:e4:c1:3f:39:5e:2e:b8:f3:5c:7e:10:8e: 86:41:00:8d:45:66:47:b0:a1:65:ce:a0:aa:29:09: 4e:f3:97:eb:e8:2e:ab:0f:72:a7:30:0e:fa:c7:f4: fd:14:77:c3:a4:5b:28:57:c2:b3:f9:82:fd:b7:45: 58:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE, pathlen:0 X509v3 Key Usage: critical Digital Signature, Certificate Sign, CRL Sign Authority Information Access: OCSP - URI:http://ocsp.digicert.com X509v3 CRL Distribution Points: Full Name: URI:http://crl3.digicert.com/DigiCertGlobalRootCA.crl Full Name: URI:http://crl4.digicert.com/DigiCertGlobalRootCA.crl X509v3 Certificate Policies: Policy: X509v3 Any Policy CPS: https://www.digicert.com/CPS X509v3 Subject Key Identifier: 0F:80:61:1C:82:31:61:D5:2F:28:E7:8D:46:38:B4:2C:E1:C6:D9:E2 X509v3 Authority Key Identifier: keyid:03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55 Signature Algorithm: sha256WithRSAEncryption 23:3e:df:4b:d2:31:42:a5:b6:7e:42:5c:1a:44:cc:69:d1:68: b4:5d:4b:e0:04:21:6c:4b:e2:6d:cc:b1:e0:97:8f:a6:53:09: cd:aa:2a:65:e5:39:4f:1e:83:a5:6e:5c:98:a2:24:26:e6:fb: a1:ed:93:c7:2e:02:c6:4d:4a:bf:b0:42:df:78:da:b3:a8:f9: 6d:ff:21:85:53:36:60:4c:76:ce:ec:38:dc:d6:51:80:f0:c5: d6:e5:d4:4d:27:64:ab:9b:c7:3e:71:fb:48:97:b8:33:6d:c9: 13:07:ee:96:a2:1b:18:15:f6:5c:4c:40:ed:b3:c2:ec:ff:71: c1:e3:47:ff:d4:b9:00:b4:37:42:da:20:c9:ea:6e:8a:ee:14: 06:ae:7d:a2:59:98:88:a8:1b:6f:2d:f4:f2:c9:14:5f:26:cf: 2c:8d:7e:ed:37:c0:a9:d5:39:b9:82:bf:19:0c:ea:34:af:00: 21:68:f8:ad:73:e2:c9:32:da:38:25:0b:55:d3:9a:1d:f0:68: 86:ed:2e:41:34:ef:7c:a5:50:1d:bf:3a:f9:d3:c1:08:0c:e6: ed:1e:8a:58:25:e4:b8:77:ad:2d:6e:f5:52:dd:b4:74:8f:ab: 49:2e:9d:3b:93:34:28:1f:78:ce:94:ea:c7:bd:d3:c9:6d:1c: de:5c:32:f3 -----BEGIN CERTIFICATE----- MIIElDCCA3ygAwIBAgIQAf2j627KdciIQ4tyS8+8kTANBgkqhkiG9w0BAQsFADBh MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBD QTAeFw0xMzAzMDgxMjAwMDBaFw0yMzAzMDgxMjAwMDBaME0xCzAJBgNVBAYTAlVT MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxJzAlBgNVBAMTHkRpZ2lDZXJ0IFNIQTIg U2VjdXJlIFNlcnZlciBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANyuWJBNwcQwFZA1W248ghX1LFy949v/cUP6ZCWA1O4Yok3wZtAKc24RmDYXZK83 nf36QYSvx6+M/hpzTc8zl5CilodTgyu5pnVILR1WN3vaMTIa16yrBvSqXUu3R0bd KpPDkC55gIDvEwRqFDu1m5K+wgdlTvza/P96rtxcflUxDOg5B6TXvi/TC2rSsd9f /ld0Uzs1gN2ujkSYs58O09rg1/RrKatEp0tYhG2SS4HD2nOLEpdIkARFdRrdNzGX kujNVA075ME/OV4uuPNcfhCOhkEAjUVmR7ChZc6gqikJTvOX6+guqw9ypzAO+sf0 /RR3w6RbKFfCs/mC/bdFWJsCAwEAAaOCAVowggFWMBIGA1UdEwEB/wQIMAYBAf8C AQAwDgYDVR0PAQH/BAQDAgGGMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AuZGlnaWNlcnQuY29tMHsGA1UdHwR0MHIwN6A1oDOGMWh0dHA6 Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbFJvb3RDQS5jcmwwN6A1 oDOGMWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbFJvb3RD QS5jcmwwPQYDVR0gBDYwNDAyBgRVHSAAMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8v d3d3LmRpZ2ljZXJ0LmNvbS9DUFMwHQYDVR0OBBYEFA+AYRyCMWHVLyjnjUY4tCzh xtniMB8GA1UdIwQYMBaAFAPeUDVW0Uy7ZvCj4hsbw5eyPdFVMA0GCSqGSIb3DQEB CwUAA4IBAQAjPt9L0jFCpbZ+QlwaRMxp0Wi0XUvgBCFsS+JtzLHgl4+mUwnNqipl 5TlPHoOlblyYoiQm5vuh7ZPHLgLGTUq/sELfeNqzqPlt/yGFUzZgTHbO7Djc1lGA 8MXW5dRNJ2Srm8c+cftIl7gzbckTB+6WohsYFfZcTEDts8Ls/3HB40f/1LkAtDdC 2iDJ6m6K7hQGrn2iWZiIqBtvLfTyyRRfJs8sjX7tN8Cp1Tm5gr8ZDOo0rwAhaPit c+LJMto4JQtV05od8GiG7S5BNO98pVAdvzr508EIDObtHopYJeS4d60tbvVS3bR0 j6tJLp07kzQoH3jOlOrHvdPJbRzeXDLz -----END CERTIFICATE----- Root: Certificate: Data: Version: 3 (0x2) Serial Number: 08:3b:e0:56:90:42:46:b1:a1:75:6a:c9:59:91:c7:4a Signature Algorithm: sha1WithRSAEncryption Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA Validity Not Before: Nov 10 00:00:00 2006 GMT Not After : Nov 10 00:00:00 2031 GMT Subject: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:e2:3b:e1:11:72:de:a8:a4:d3:a3:57:aa:50:a2: 8f:0b:77:90:c9:a2:a5:ee:12:ce:96:5b:01:09:20: cc:01:93:a7:4e:30:b7:53:f7:43:c4:69:00:57:9d: e2:8d:22:dd:87:06:40:00:81:09:ce:ce:1b:83:bf: df:cd:3b:71:46:e2:d6:66:c7:05:b3:76:27:16:8f: 7b:9e:1e:95:7d:ee:b7:48:a3:08:da:d6:af:7a:0c: 39:06:65:7f:4a:5d:1f:bc:17:f8:ab:be:ee:28:d7: 74:7f:7a:78:99:59:85:68:6e:5c:23:32:4b:bf:4e: c0:e8:5a:6d:e3:70:bf:77:10:bf:fc:01:f6:85:d9: a8:44:10:58:32:a9:75:18:d5:d1:a2:be:47:e2:27: 6a:f4:9a:33:f8:49:08:60:8b:d4:5f:b4:3a:84:bf: a1:aa:4a:4c:7d:3e:cf:4f:5f:6c:76:5e:a0:4b:37: 91:9e:dc:22:e6:6d:ce:14:1a:8e:6a:cb:fe:cd:b3: 14:64:17:c7:5b:29:9e:32:bf:f2:ee:fa:d3:0b:42: d4:ab:b7:41:32:da:0c:d4:ef:f8:81:d5:bb:8d:58: 3f:b5:1b:e8:49:28:a2:70:da:31:04:dd:f7:b2:16: f2:4c:0a:4e:07:a8:ed:4a:3d:5e:b5:7f:a3:90:c3: af:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55 X509v3 Authority Key Identifier: keyid:03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55 Signature Algorithm: sha1WithRSAEncryption cb:9c:37:aa:48:13:12:0a:fa:dd:44:9c:4f:52:b0:f4:df:ae: 04:f5:79:79:08:a3:24:18:fc:4b:2b:84:c0:2d:b9:d5:c7:fe: f4:c1:1f:58:cb:b8:6d:9c:7a:74:e7:98:29:ab:11:b5:e3:70: a0:a1:cd:4c:88:99:93:8c:91:70:e2:ab:0f:1c:be:93:a9:ff: 63:d5:e4:07:60:d3:a3:bf:9d:5b:09:f1:d5:8e:e3:53:f4:8e: 63:fa:3f:a7:db:b4:66:df:62:66:d6:d1:6e:41:8d:f2:2d:b5: ea:77:4a:9f:9d:58:e2:2b:59:c0:40:23:ed:2d:28:82:45:3e: 79:54:92:26:98:e0:80:48:a8:37:ef:f0:d6:79:60:16:de:ac: e8:0e:cd:6e:ac:44:17:38:2f:49:da:e1:45:3e:2a:b9:36:53: cf:3a:50:06:f7:2e:e8:c4:57:49:6c:61:21:18:d5:04:ad:78: 3c:2c:3a:80:6b:a7:eb:af:15:14:e9:d8:89:c1:b9:38:6c:e2: 91:6c:8a:ff:64:b9:77:25:57:30:c0:1b:24:a3:e1:dc:e9:df: 47:7c:b5:b4:24:08:05:30:ec:2d:bd:0b:bf:45:bf:50:b9:a9: f3:eb:98:01:12:ad:c8:88:c6:98:34:5f:8d:0a:3c:c6:e9:d5: 95:95:6d:de -----BEGIN CERTIFICATE----- MIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBh MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBD QTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAwMDAwMDBaMGExCzAJBgNVBAYTAlVT MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsB CSDMAZOnTjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97 nh6Vfe63SKMI2tavegw5BmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt 43C/dxC//AH2hdmoRBBYMql1GNXRor5H4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7P T19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y7vrTC0LUq7dBMtoM1O/4 gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQABo2MwYTAO BgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbR TLtm8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUw DQYJKoZIhvcNAQEFBQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/Esr hMAtudXH/vTBH1jLuG2cenTnmCmrEbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg 06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIttep3Sp+dWOIrWcBAI+0tKIJF PnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886UAb3LujEV0ls YSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk CAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4= -----END CERTIFICATE-----
Whiteboard: [kanban:https://webops.kanbanize.com/ctrl_board/2/155] → [kanban:https://webops.kanbanize.com/ctrl_board/2/155] [digicert=00631948]
(In reply to Philippe M. Chiasson (:gozer) from comment #3) > Here is the new cert along with the intermediate and the root cert. Not > deploying in production yet, obviously. Waiting for a heads-up for > deployment. > > Can you please close this bug and open a new one once it's time to change > certs ? Setting needinfo? :Callek per the above, which I interpreted as 'waiting on Callek to indicate when we should proceed'. (If I misunderstand, apologies, corrections welcome.)
Flags: needinfo?(bugspam.Callek)
Blocks: 1140867
See Also: → 1140867
Assignee: gozer → rsoderberg
I'm closing this bug until we're ready to take any action here.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → WONTFIX
Provided cert to Callek for testing and deployment on ausstage1.community.scl3.
Ahh whops, missed this when closing Bug 1199042 The cert was replaced, and all is well.
Flags: needinfo?(bugspam.Callek)
Resolution: WONTFIX → FIXED
You need to log in before you can comment on or make changes to this bug.