How can I revoke my certificate?
Revoking an SSL certificate is a permanent security action that tells browsers and operating systems to no longer trust a specific certificate file. Unlike a simple cancellation, which stops a subscription, revocation is used to proactively protect users from security risks.
At Nixzoehost, we provide the tools to revoke certificates directly from your dashboard if you suspect a breach.
When Should You Revoke?
You should only revoke a certificate if one of the following high-risk scenarios occurs:
-
Private Key Compromise: You accidentally shared your Private Key, or your server was hacked and the key was stolen.
-
Cessation of Operations: You are shutting down the website permanently and want to ensure the certificate cannot be used by anyone else.
-
Domain Ownership Change: You have sold your domain name and want to invalidate the security linked to your account.
-
Incorrect Issuance: The certificate was issued with incorrect organizational or domain details.
Warning: Once a certificate is revoked, it becomes permanently unusable. Browsers will display a "Revoked Certificate" error to any visitor attempting to access your site using that file.
How to Revoke via the Nixzoehost Dashboard
-
Log in to your Nixzoehost Client Area.
-
Navigate to SSL Certificates in the main menu.
-
Locate the certificate you wish to invalidate and click the Details button next to it.
-
Scroll to the management section and click Revoke.
-
Choose a Reason: Select a reason (e.g., Key Compromise or Superseded).
-
Confirm: Click Revoke SSL to finalize the request. The status will change to Revoked in your account within a few minutes.
Important: Reissue Before You Revoke
If your site still needs to stay online but you need to revoke the old certificate (for example, due to a lost key), you must follow this specific order:
-
Reissue first: Generate a new CSR and complete the reissue process to get a fresh, working certificate.
-
Install the new SSL: Ensure your site is running on the new certificate.
-
Revoke the old one: Once the new one is live, you can safely revoke the old, compromised file.
Revocation vs. Cancellation
It is easy to confuse these two terms, but they serve different purposes at Nixzoehost:
| Feature | Revocation | Cancellation |
| Primary Goal | Security & Trust (Stop browsers from trusting it) | Billing & Subscription (Stop the service) |
| Result | Triggers browser warnings immediately | Terminates the service/order |
| Refund? | No | Yes (if within the refund window) |
| Best For | Stolen keys or hacked servers | Changing your mind after purchase |
What Happens After Revocation?
In 2026, browsers check revocation status using CRLs (Certificate Revocation Lists) and OCSP (Online Certificate Status Protocol). Once you hit "Revoke," the Certificate Authority adds your certificate's serial number to these global lists. Within a few hours, any browser that checks your site will refuse the connection until you replace the revoked certificate with a valid one.