Thank you for the report Alex. The following compliance bugs have been created:
Sectigo: https://bugzilla.mozilla.org/show_bug.cgi?id=1548713 SECOM: https://bugzilla.mozilla.org/show_bug.cgi?id=1548714 DigiCert: https://bugzilla.mozilla.org/show_bug.cgi?id=1548716 - Wayne On Thu, May 2, 2019 at 10:16 AM Alex Cohn via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > Hi all, > > I came across a number of certificates issued by Sectigo, SECOM, and > DigiCert that list "Default City" as the subject's locality. Unless there > are actually localities named "Default City" that I'm unaware of, it seems > to me this is a violation of the BRs, sections 3.2.2.1 and 7.1.4.2.2.e. > > I created a batch on misissued.com for these: > https://misissued.com/batch/51/ > > Alex > _______________________________________________ > dev-security-policy mailing list > dev-security-policy@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-security-policy > _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy