ACME certificates and revocation event

⚠️ Updates to all ACME users ⚠️

If you are currently using our ACME service, please read the below message carefully and reach out to our Support team for any further questions. 

What happened? 

Due to a recent change in the Certification Practice Statement of our partner Sectigo in regards to how ACME orders are processed we believe that due to the rules of the CA/Browser forum, Sectigo might be forced to revoke certain certificates that were issued via our ACME service prior to May 22nd 2021.

As we do not control the timing of Sectigo's CPS or certificate lifecycle management we can't give an exact date when Sectigo might revoke certificates, which is why we have to urge our customers that have currently valid certificates that meet the following criteria to immediately replace those certificates:

This currently affects the following certificates that were issued via ACME:

  • Active Certificates that were issued with the ACME-http-01 DCV methods  before 22nd of May 2021.

Please note that certificates that were issued using the ZeroSSL API or using the standard ZeroSSL Dashboard are not affected.

In case your ACME certificates were issued on the 22nd of May 2021 or later no action needs to be taken. This includes replacements/renewals for certificates issued prior to that date.

What do I need to do? 

If any of your certificates meet the above criteria or if you aren't sure about the DCV method used and have active certificates that were issued before May 22nd 2021, please re-issue these certificates again as they might be automatically revoked. 

Am I affected? 

We are proactively contacting all potentially affected customers via email. If you have received an email from us and still have questions, please feel free to contact our Support team via the contact button below.


Updated: 2021-06-04 16:20:00PM UTC

Was this article helpful?
0 out of 0 found this helpful