The Certificate Revocation List (CRL) is a list of certificates that have been suspended or revoked prior to their expiration dates. It is digitally signed by an IA and issued periodically or as needed. We have upgraded our SSL Certificate Revocation List (CRL) infrastructure on May 6, 2013 to provide faster responses and a better experience for our customers.
It is strongly recommended that any firewall policies and/or access control devices use URLs and not IP addresses. Thawte can change these IP addresses at any time without notification. If possible, white-list the below entry on your firewall policies and/or access control devices to ensure seamless access to our CRL services:
Below is the full list of our CRL FQDN (Fully Qualified Domain Name):
Note: If white-listing wildcard entries is not permitted, you can white-list the below entries:
ta1.symcb.com tb1.symcb.com tc1.symcb.com td1.symcb.com te1.symcb.com tf1.symcb.com tg1.symcb.com th1.symcb.com ti1.symcb.com tj1.symcb.com tk1.symcb.com tl1.symcb.com ta.symcb.com tb.symcb.com tc.symcb.com td.symcb.com te.symcb.com tf.symcb.com tg.symcb.com th.symcb.com ti.symcb.com tj.symcb.com tk.symcb.com tl.symcb.com tm.symcb.com tn.symcb.com to.symcb.com
Below is the full list of our CRL IP Addresses:
Note: If your corporate firewall is configured to allow only a certain set of IP addresses to be accessed from your network, you'll need to take the following actions: