On Wed, 22 Mar 2023 12:46:46 -0400 Amir Omidi <[email protected]> wrote:
> My concern with this is that it creates a bit of a requirement to > revoke by/on that time, which doesn't seem to be the intent of ARI I > think? > > Also what should the precision of this time field be? day/hour/etc? The same as the suggestedWindow's end time - i.e. seconds. This is not intended to introduce new requirements on either ACME clients or CAs; just to convey whether revocation is imminent after the suggestedWindow has passed, or whether the certificate will still be usable until its expiration. A simple boolean would also suffice. This information will probably exist in human-readable form at the explanationURL, and I'm just proposing to make it available in machine-readable form too so monitors can access it. Regards, Andrew _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
