Does a certificate revocation list (CRL) keep it’s entries at least as long as the certificate would have been valid?

This question is specifically about certificates that should have had a long lifetime, but were revoked quickly.
Is every CRL issued by this CA guaranteed to include its revocation, as long as the original certificate would still be valid?… Continue reading Does a certificate revocation list (CRL) keep it’s entries at least as long as the certificate would have been valid?

Added root authority certificate for firefox, but still not trusting certificate

I don’t know if what I’m asking is even possible, but I’ll ask anyway.
I’m trying to get FireFox or Chrome to trust a self-signed certificate used on a website I’m running locally. I started up an ubuntu server and ran these commands:
# go… Continue reading Added root authority certificate for firefox, but still not trusting certificate

Over what fields is the X509 hash computed over? [duplicate]

Is this how X509 certificates are verified to be valid?

The receiver receives the certificate
Look at the issuer of the cert, and find the public key of that CA (its hardcoded in the application or the OS)
Decrypt the signature using the … Continue reading Over what fields is the X509 hash computed over? [duplicate]