AWS Certificate Manager re-issuing certificate

0

We have many customer certificates issued by Certificate Manager. One of these certificates appears to have been re-issued. The certificate in question was valid from 8/26/2022-9/24/2023. Now it is valid from 2/24/2023-9/24/2023. This caused some issues with our customer. I checked CloudTrail and no one from our organization made any changes. I haven't seen any notification from AWS about this. The certificate transparency logs still shows the original certificate and hasn't been revoked. I'm just curious how and why this happened.

  • Similar issue. Client does some form of cert-pinning, their process that connects to our Elastic Beanstalk application is now broken until we walk them through getting new cert downloaded and installed. Old cert valid 2022-06-03 to 2023-07-30 New cert valid 2023-02-27 to 2023-07-30 Not seeing any bulletin about this happening. Looks like the intermediate CA changed? Old one says "Amazon", new one says "Amazon RSA 2048 M01"

    EDIT: Whoops, found an email and article about it, clear as day: https://aws.amazon.com/blogs/security/amazon-introduces-dynamic-intermediate-certificate-authorities/

1 Answer
2
Accepted Answer

Found an email dated Jan 14th of this year that notified us about the cert migration. More info found here:

https://aws.amazon.com/blogs/security/amazon-introduces-dynamic-intermediate-certificate-authorities/

answered a year ago
profile pictureAWS
EXPERT
reviewed a year ago
  • Yes, that must be why. Thanks!

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions