Certificate from one Let's Encrypt account can be revoked by another account?

If we have generated certificate from one Let's Encrypt account. And if we try to revoke the certificate using the revoke API from another Let's encrypt account.

Should we expect any error or revocation will be performed without any issue?

Only if that second account has demonstrated ownership of all the FQDNs in the certificate when using the account key or the private key of the cert is used for revocation. In the latter situation nothing else matters, as posession of the private key could also mean this private key has been leaked which is grounds for revocation on its own.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.