Confirm, administrator
5,526
edits
Changes
m
deleted some extra verbiage
** When the reason codes below do not apply to the revocation request, the subscriber MUST NOT provide a reason code other than "unspecified".
* keyCompromise (RFC 5280 CRLReason #1)
** The certificate subscriber MUST choose the "keyCompromise" revocation reason when they become aware of or have reason to believe that the private key of their certificate has been compromised, e.g. an unauthorized person has had access to the private key of their certificate.
* affiliationChanged (RFC 5280 CRLReason #3)
** The certificate subscriber SHOULD choose the "affiliationChanged" revocation reason when their organization's name or other organizational information in the certificate has changed.
