Have you ever heard of a CA revoking a certificate?

Question

According to Telegram, the SSL certificate for Kiwifarm's onion site has been revoked by their CA. Has this ever happened before?

PaulHoule · Accepted Answer

See https://blog.apnic.net/2022/03/22/whats-going-on-with-certif...

mtmail · Answer

Even CA's certicates (which they use to sign customer's certificates) can be revoked. I had that happen to one of mine making it unusable in browsers.

LinuxBender · Answer

Has this ever happened before?Yes. I have had CA's revoke a few certs because the private keys were not handled correctly. It was actually company policy to do so.If you mean a CA revoking a cert because of a site's behavior, yes and certs also get issued to federal agencies for domains they seize. Most of the instances I recall were related to software and music pirate sites.

obpe · Answer

Of course CAs revoke certs all the time. Are you implying the CA was politically motivated because of the site?

0proboy0 · Answer

Yes, it has happened before. In 2019, the SSL certificate for the Tor hidden service of the website The Pirate Bay was revoked by its CA. This was done after the website was found to be hosting illegal content.