Hi Julius, > You're right about international domain names using a special > "punycode" (e.g. "花子.co.jp" actually becomes "xn--i8s592g.co.jp"). > But I can't find any reference to what then goes inside SSL certificate! > Should it be "花子.co.jp" or "xn--i8s592g.co.jp"?
The latter. You can't expect all certificate validation software to be punycode-aware. The idea of internationalized domain names is that the "enabled" software presents an internationalized user interface, but then converts to punycode so that all the backends can be used unmodified. Or at least that's my interpretation. The certificate has to work if somebody uses the punycode directly. cheers, Roland --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
