SSL Certificate of polyfill.io is not trusted

Question

SSL Certificate of polyfill.io is not trusted

victorr99 opened this issue a year ago · 4 comments

The SSL certificate of polyfill.io is not valid anymore, this results in users (including me) not being able to access the polyfill website or the polyfill scripts.

I guess this is not the place to report SSL certificate issues, but i couldn't find any contact information on polyfill.io

Answer 1 · 2023-11-11T23:05:29.000Z

Could you please post the fingerprint for the certificate you were seeing issues with?
Was it this one? https://crt.sh/?q=+e4d5ca402b2900956ea4e2d1023ce26e2af97f244f6e605fbbac791ca3761259

Answer 2 · 2023-11-17T08:46:31.000Z

Sorry for my late reaction, but i think the fingerprint is 8A:10:5D:BE:8B:11:14:4C:29:BF:1A:D4:71:4F:76:F5:28:A2:B8:EB:2B:33:AE:7E:1E:6B:E6:DC:2B:02:59:77

A quick stackoverflow search told me to use this command:
openssl s_client -connect polyfill.io:443 < /dev/null 2> /dev/null | openssl x509 -fingerprint -sha256 -noout -in /dev/stdin so i assume this is what you were asking?

Answer 3 · 2023-11-17T21:45:24.000Z

Sorry for my late reaction, but i think the fingerprint is 8A:10:5D:BE:8B:11:14:4C:29:BF:1A:D4:71:4F:76:F5:28:A2:B8:EB:2B:33:AE:7E:1E:6B:E6:DC:2B:02:59:77

A quick stackoverflow search told me to use this command:
openssl s_client -connect polyfill.io:443 < /dev/null 2> /dev/null | openssl x509 -fingerprint -sha256 -noout -in /dev/stdin so i assume this is what you were asking?

I don't see that certificate as ever having existed
https://crt.sh/?q=8A105DBE8B11144C29BF1AD4714F76F528A2B8EB2B33AE7E1E6BE6DC2B025977

Answer 4 · 2023-12-13T00:07:22.000Z

I'll be closing this as I can't replicate this and no one else is reporting issues, we get 3billion+ requests a day, if there was a cert issue we would be made aware of it by many people