Certificate revocation

An SSL certificate has a validity of 1 or 2 years. After this periode the certificate will automatically expire, unless you renew it manually. During it's validaty the certificate can be revoked by the CA (the issuer).

When should you revoke a certificate?

If the certificate's private key gets compromised by for instance a hack or a virus, it's advisable to revoke the certificate immediately. Other reasons could be the discontinuance of a a service or when the certificate may not be used anymore. If you lose the certificate's private key you may reissue the certificate with a new private key. After a reissue, the old certificate will not be automatically revoked.

Note: A revocation is not a cancellation. Certificates can be cancelled within 30 days after issuance, by sending a seperate request per email.

How can you revoke a certificate?

Navigate in the Control Panel to the Certificates tab, and click on the certificate concerned. Under 'Actions' you can request a revocation. As soon as the certificate has been revoked, it won't be shown anymore.

As an alternative you can mail your revocation request to validation@xolphin.com. Please mention:

  • the domain
  • the request ID. The request ID can be found on the Certificates tab in the Control Panel, below Certificate Data.
  • the reason for revocation.

SSLCheck

Our SSLCheck will examine your website's root and intermediate certificates for correctness and report any potential issues