Comments (1)
Specifically, how about the following template(s)?
Leaf Certs (CA=false)
"Cert for [CN or 1st SAN, hyperlinked with nofollow], "
then either "2nd SAN, hyperlinked with nofollow" or just "etc., " if 3 or more SANs (as 2 SANs is fairly common)
then
"issued by [Issuer CN], "
then either
"not valid until [notBefore],"
or
"valid now and until [notAfter],"
or
"expired on [notAfter],"
then either
"unrevoked, "
or
"revoked by CA" (do you know this? Does crt.sh check OCSP and CRLs?)
or
"revoked by CA, Google, Microsoft" (or whatever list has revoked it from your OneCRL etc. info)
then either
"SHA-1 sig"
or "SHA-256 sig"
Intermediate Certs (not self-signed, CA=true)
Same as leaf but starts with:
"Intermediate cert "Foo CA Free Certs Intermediate P1" (subject CN)
followed by issuer
Root Certs (self-signed, CA=true)
Same as leaf but starts with:
Root cert "Foo CA Root X1" (subject CN)
followed by validity
We could even extend some of these with mouseovers, e.g. the issuer organizationName of the root cert could be a mouseover on the issuer CN. The text "N days from now" or "N days ago" could be a mouseover on a date.
Information which makes a cert unusable (being revoked or out of date) could be in red.
Dates should be human-readable, international, unambiguous and short, so "30 Sep 2016". No need for times, I don't think.
The SHA-1/SHA-256 sig bit won't be useful for ever, but I think it's important enough at the moment to warrant inclusion at the end.
I've used commas to separate sections but perhaps semicolon would be better.
from certwatch_db.
Related Issues (20)
- Ability to search by tld
- Make the revocation status table aware if the certificate has expired HOT 1
- Gateway Time-out
- Include Root CA which are not part of a root program HOT 4
- SQL error displayed when viewing the list of LINT errors of a CA HOT 1
- prepared statement "S_0" already exists HOT 2
- OCSP response parser displays error, but there is none HOT 3
- Test OCSP responders for https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/cMegyySSqhM/m/G7s5tFR4BAAJ HOT 2
- Split the *_dump columns of table ocsp_responder
- Calling x509_hasClosePrimes without second argument? HOT 2
- Unable to search for wildcards for specific subdomains
- High amount of SQL server timeouts HOT 9
- SQL Error while filtering OCSP responders HOT 1
- Make "OCSP Responder" table headers sticky
- Error: terminating connection due to conflict with recovery
- Incorrect public_key for Yeti/Nessie 2024/2025 HOT 1
- Blocked our RSS reader: feeder.co
- https://crt.sh/gen-add-chain not working HOT 4
- Add list of CA certificates trusted by Gmail for S/MIME to the "Trust overview" page HOT 1
- Some suggestions for improvements for /cert-populations
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from certwatch_db.