why does my secure ssl page give Error code: sec_error_revoked_certificate even though certificate is current and all links/stylesheets/etc are secure

Question

I\'ve noticed that this question has been asked several times but none of the results provide a solution to my problem.

I am developing a website for a client. The websi

Answer 1

The error cause is exactly as stated: the security certificate has been revoked.

You can verify it here by entering the checkout page address.

I am afraid you will need to check this with GoDaddy.

0x4F0DB30A63474B: revoked
    This Update: Sep 11 17:52:23 2012 GMT
    Next Update: Sep 11 23:52:23 2012 GMT
    Reason: cessationOfOperation
    Revocation Time: Sep 10 01:39:38 2012 GMT

Answer 2

sec_error_revoked_certificate means that the certificate has been revoked.

Your certificate may be issued by a CA trusted by your browser and valid in time, but the CA may have revoked it, and your client is checking for revocation (which is recommended).

Certificate revocation is a mechanism that makes it possible to invalidate a certificate before its normal expiry time. Checking for revocation can be done via CRL or OCSP by the clients.

Typically, certificates are revoked upon request from the entity corresponding to that cert (i.e. the user or the server admin) if the private key has been compromised, if the CA decides the validating data wasn't sufficient after all, or perhaps automatically if the CA issues another certificate to the same entity.

A possible cause for the problem could be that you might have re-keyed your certificate, thereby making your CA revoke the old one. If you're still using the old one inadvertently (perhaps it's still available to your server in its keystore or equivalent) this error could happen.

Qualys SSL Labs's SSL checker is generally a more complete tool for checking your SSL/TLS configuration. It seems to indicate that your certificate has indeed been revoked.