Regarding this sentence:
The main limit is Certificates per Registered Domain , (50 per week).
How is that rate limit duration calculated? Is it 1 week’s worth of milliseconds, starting at the moment the limit is hit? Or does it last until the end of the day 7 days from now? Or, less likely but still possible, do we get a weekly quota that resets at the same instant in time each week?
EG. If I hit a rate limit at 1:00pm on Monday Dec 3rd, which of the following describes the exact moment in time that I will be safe to try again?:
- 1:00pm Monday Dec 10th
- 12:00am Tuesday Dec 11th
- Some other fixed time, prior to 1:00pm Monday Dec 10th, when all weekly limits reset
- Some other time I haven’t considered
I need to know because we hit these rate limits often and I’ve built intelligence into our system to track when a Registered Domain is rate limited and stop attempting SAN certs that contain the limited domain. I need to know when my system is safe to begin attempting them again.