|
|
|
|
|
|
by josephcsible
2215 days ago
|
|
|
They said "certificates should never expire or should expire daily". Roots already can't be revoked, so they should never expire. Intermediates and leaves should expire daily. Since currently, OCSP responses are often valid for that long, there'd be no need for revocation anymore then. |
|
|