Last updated:
ACME Renewal Information (ARI)
We are working on a system that will allow us to notify subscribers via API when they need to renew. This system will allow us to signal to subscribers that they need to renew prior to, for example, a revocation event.
ECDSA Root and Intermediates
We are issuing certificates from our production ECDSA intermediate to allow-listed accounts. There is no planned date for removing the allow-list.
Completed Features
Multi-Perspective Validation
- Enabled: February 19, 2020
We now validate domain control from multiple network perspectives.
Certificate Transparency Log
- Enabled: May 15, 2019
We now operate a Certificate Transparency log.
TLS ALPN Challenge Support
- Enabled: July 12, 2018
We’ve specified and implemented a replacement for the TLS-SNI validation method, which was discontinued for security reasons. Introducing a replacement was important for subscribers who only want to use port 443 for validation.
Wildcard Certificates
- Enabled: March 13, 2018
ACME v2 API
- Enabled: March 13, 2018
Full IPv6 Support
- Enabled: July 26, 2016