Hello guys, I would like to know whether my understanding about certificate renewal is correct or not.
To renew the certificate: 1. we need to generate a new CSR from the private key 2. revoke the old certificate 3. get the new CSR signed by the CA with validity extended The fields that are common between old and new renewed certificate will be: 1. SKI 2. AKI 3. Issuer 4. Public Key The fields are not be common are: 1. subject (I see that while generating new CSR we can change the subject) 2. Serial number 3. Other fields Please share your inputs on this. Thanks Kamalraj
