On this page, you will learn how to revoke your client certificates via the RA-Portal. This is necessary in the following cases:

• Your personal data, as included in the certificate, is no longer valid/applicable.
• Your private RSA key (i.e. your .p12-file) or your password to the file containing it has been compromised.
• You are no longer authorised to use the certificate (e.g. you are not allowed to use the email address anymore).

Revication period

• In case of client certificates issued by Sectigo, revocation takes place within the following 7 working days due to contract termination.
• In case of client certificates issued by Harica, revocation takes place immediately.

Please note:
Old DFN-PKI certificates are not displayed in the RA-Portal and need to be revoked through a separate request at the DFN-PKI Webpage.

• Revoke client certificates
• Overview of revoked certificates in the RA-Portal

Revoke client certificates

To revoke a client certificate, follow the steps below:

1. Click Widerrufen next to the client certificate you wish to revoke.
   
   
    
2. Confirm the revocation with Ja.
   
   
    
3. You will receive an email confirmation as soon as the certificate has been revoked. 
   
   

The revocation can not be reversed.

Overview of revoked certificates in the RA-Portal

Revoked certificates will still be displayed in the RA-Portal as following:

1. Set the dropdown display filter to Abgelehnte, abgelaufene, widerrufene
2. Click Zertifikate Filtern

You recognise the revoked user certificates by the large red forbidden icon next to it.

It is not possible to continue using a certificate that has been revoked. If you require a new user certificate for your email address, you can apply for a new client certificate via the RA-Portal.