Reference documentation and code samples for the Certificate Authority v1 API enum RevocationReason.
A [RevocationReason][google.cloud.security.privateca.v1.RevocationReason]
indicates whether a
[Certificate][google.cloud.security.privateca.v1.Certificate] has been
revoked, and the reason for revocation. These correspond to standard
revocation reasons from RFC 5280. Note that the enum labels and values in
this definition are not the same ASN.1 values defined in RFC 5280. These
values will be translated to the correct ASN.1 values when a CRL is created.
The subject or other attributes in this
[Certificate][google.cloud.security.privateca.v1.Certificate] have changed.
AttributeAuthorityCompromise
The authority which determines appropriate attributes for a
[Certificate][google.cloud.security.privateca.v1.Certificate] may have been
compromised.
CertificateAuthorityCompromise
The key material for a certificate authority in the issuing path may have
leaked.
CertificateHold
This [Certificate][google.cloud.security.privateca.v1.Certificate] should
not be considered valid, it is expected that it may become valid in the
future.
CessationOfOperation
This [Certificate][google.cloud.security.privateca.v1.Certificate] or
entities in the issuing path have ceased to operate.
KeyCompromise
Key material for this
[Certificate][google.cloud.security.privateca.v1.Certificate] may have
leaked.
PrivilegeWithdrawn
This [Certificate][google.cloud.security.privateca.v1.Certificate] no
longer has permission to assert the listed attributes.
Superseded
This [Certificate][google.cloud.security.privateca.v1.Certificate] has been
superseded.
Unspecified
Default unspecified value. This value does indicate that a
[Certificate][google.cloud.security.privateca.v1.Certificate] has been
revoked, but that a reason has not been recorded.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThis webpage provides reference documentation for the \u003ccode\u003eRevocationReason\u003c/code\u003e enum within the Google Cloud Security Private CA v1 API, which is used to specify why a certificate has been revoked.\u003c/p\u003e\n"],["\u003cp\u003eThe latest version of this resource is 3.9.0, and older versions are available ranging back to 1.0.0.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eRevocationReason\u003c/code\u003e enum corresponds to standard revocation reasons from RFC 5280, including reasons like \u003ccode\u003eKeyCompromise\u003c/code\u003e, \u003ccode\u003eCertificateAuthorityCompromise\u003c/code\u003e, and \u003ccode\u003eSuperseded\u003c/code\u003e, however they will be translated into the correct ASN.1 values when a CRL is created.\u003c/p\u003e\n"],["\u003cp\u003eThe enum includes a field for \u003ccode\u003eUnspecified\u003c/code\u003e, indicating a certificate is revoked without a recorded reason.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eRevocationReason\u003c/code\u003e is contained within the \u003ccode\u003eGoogle.Cloud.Security.PrivateCA.V1\u003c/code\u003e namespace, found in the \u003ccode\u003eGoogle.Cloud.Security.PrivateCA.V1.dll\u003c/code\u003e assembly.\u003c/p\u003e\n"]]],[],null,[]]
