Couple of doubts:
- Do you backdate LE certificates? If so, for how much earlier than the actual issued date?
- Do you issue all your certs with proper UTC time for the issued-on and expiry dates?
- If we had a certificate issued by you in one country, would we face any problems or any client and browser errors when deploying it immediately in another country across the globe? i.e. time zone considerations.
In general, please share any best practices / guidelines about SSL certificates with respect to time and time zone. We’re asking in the context of the 3 parties involved – CAs, servers, and user agents – each party could be having correct / incorrect time or could be in different time zones.