On Fri, 18 Nov 2022 at 16:39, Ben Wilson <[email protected]> wrote: > > Hi Matthias, > Before I answer the questions, I think example dates need to be associated > with the events in the example cited below.
Hi Ben, I've included some example years. Considering that there are no duplicate year numbers, these should be clear enough to talk about. Note that these are hypothetical dates; if there are issues with the (non)existence of certain standards and/or requirements, then these can probably be fixed by shifting and transforming all numbers to something that does work while keeping the ordering intact. Root R1,expired R1 validity period: 1995-2020 . ^- X-signed R2, R2 is in root store R2 is self-signed, validity period 2005-2030. cross-signed cert by R1 has validity period of 2005-2020 . . ^- X-signed R3, trust from R2 R3 root cert validity period: 2015-2040. cross-signed cert by R2 has validity period: 2015-2030 . . . ^- Intermediate ICA1, trusted from R2 through R3 ICA validity period: 2021-2026 . . . . ^- Leaf Certificate validity period: 2022-2023 Thanks, and kind regards, Matthias van de Meent -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CAAT_OQvd3v0N%2BHce0Q8%3DoJaY%2BJviDHd_2qJMu-4Yvv%2BKBYp6%3DA%40mail.gmail.com.
