Error Messages

Error code: ssl_error_rx_record_too_long

This usually means the implementation of SSL on your server is not correct. The error is usually caused by a server side problem which the server administrator will need to investigate.

NET::ERR_CERT_VALIDITY_TOO_LONG - The server certificate has a validity period that is too long

The Logjam Attack – Weak Diffie-Hellman key exchange

103 (net::ERR_CONNECTION_ABORTED): Unknown Error

Exchange Server: The certificate status could not be determined because the revocation check failed

You have ordered a wildcard certificate but it looks like you haven’t specified a wildcard domain.

Error 107 (net::ERR_SSL_PROTOCOL_ERROR): SSL protocol error

This error occurs when the website has not enabled SSL connections or has blocked port 443

Error code: ssl_error_weak_server_ephemeral_dh_key

The certificate is not trusted because no issuer chain was provided. (Error code: sec_error_unknown_issuer)

wget: unable to get local issuer certificate

The certificate is not trusted because the issuer certificate is unknown

Error code: sec_error_unknown_issuer

There was a problem talking to the Certificate Issuer: Missing or Invalid Field: CSRDomain

The site is using outdated security settings that may prevent future versions of Chrome from being able to safely access it.

SSL Certificate does not work on Parallels Panel (Plesk)

Once you have installed the certificate in Parallels Panel you need to then assign it to a web site.

You are unable to use this order for Japanese products, Please contact your provider for assistance

CSR country code invalid

This means when you generated your CSR request you did not specify the correct 2 digit country code.

This website does not supply identity information. Your connection to this website is not encrypted.

This error usually occurs because the website content contains both secure and insecure content.

The pending certificate request for this response file was not found.

SSL certificate does not have public audit records

Unable to decode CSR data. key size may be too large.

This error occurs when the CSR request has been generated using IIS7

CSR does not contain a wildcard domain as expected

This means you have purchased a wildcard SSL certificate but your CSR does not contain a wildcard domain.

Your connection to [domain] is encrypted with obsolete cryptography

Your connection to [domain] is encrypted with obsolete cryptography

Common Name does not contain fully qualified domain name

This error occurs when you try to paste your CSR request into the enrolment form.

There was an error while performing this operation Details: CertEnroll::CX509Enrollment::p_InstallResponse: ASN1 bad tag value met. 0x8009310b (ASN:276)

This issue occurs because IIS Manager performs a lookup operation to look for a friendly name of the certificate during the installation

This page contains both secure and nonsecure items

This error does not indicate a problem with the SSL certificate.

We are sorry, but the pin you supplied has already been cancelled.

Site host name, does not match your SSL certificate Subject Name

keytool error: java.security.cert.CertificateParsingException: invalid DER-encoded certificate data

This can occur if the certificate format you are importing is incorrect. The certificate supplied by the Certificate Authorities is normally in a PEM format. Glassfish requires DER format to import.

However, this page includes other resources which are not secure

Error 111 (net::ERR_TUNNEL_CONNECTION_FAILED): Unknown error

Mis-match Error During Certificate Installation

During the installation process if you receive a “mis-match” error this can mean that the private key does not match the public key.

My SSL certificate has been rejected

Sometimes the Certificate Authority will refuse to issue a certificate. This can happen after the certificate has already been issued in which case the Certificate Authority will revoke the certificate.

The security certificate presented by this website was not issued by a trusted certificate authority

However, this page includes other resources which are not secure

This error usually occurs because the website content contains both secure and insecure content.

Unable to set the certificate: Invalid certificate format

It may be that your certificate is packed in an unrecognised format

Your CSR contains a key size that is no longer considered secure. Security best practices require a minimum key size of 2048 bits.

From 2012 all SSL certificates must be issued with a minimum key size of 2048bit. These are the guidelines specified by the SSL industry via the CAB Forum.

Warning: the CA certificate does not sign the certificate.

There was a problem talking to the Certificate Issuer

Expired Orders

To help protect your security, Internet Explorer has blocked this website from displaying content with security certificate errors.

This error usually occurs because the website content contains both secure and insecure content.

Cannot find the certificate request associated with this certificate file. A certificate request must be completed on the computer where it was created.