API Test Errors
Security Monitoring is now available Security Monitoring is now available

API Test Errors

SSL errors

SSL errors can occur during an API test run. They are different from failing assertions on SSL tests and can occur on all types of API tests.

ErrorDescription
CERT_CHAIN_TOO_LONGThe certificate chain length is greater than the supplied maximum depth.
CERT_HAS_EXPIREDThe certificate is expired.
CERT_NOT_YET_VALIDThe certificate is not valid until a future date.
CERT_REJECTEDThe root CA is marked to reject the purpose specified.
CERT_REVOKEDThe certificate was revoked by the issuer.
CERT_UNTRUSTEDThe root CA is not marked as trusted for its intended purpose.
CERT_SIGNATURE_FAILUREThe signature of the certificate is not valid.
CRL_HAS_EXPIREDThe certificate revocation list (CRL) has expired.
CRL_NOT_YET_VALIDThe certificate revocation list (CRL) is not valid until a future date.
CRL_SIGNATURE_FAILUREThe CRL signature of the certificate is not valid.
DEPTH_ZERO_SELF_SIGNED_CERTThe passed certificate is self-signed and the same certificate cannot be found in the list of trusted certificates.
ERROR_IN_CERT_NOT_AFTER_FIELDThere is a format error in the notAfter field in the certificate.
ERROR_IN_CERT_NOT_BEFORE_FIELDThere is a format error in the notBefore field in the certificate.
ERROR_IN_CRL_LAST_UPDATE_FIELDThe CRL lastUpdate field contains an invalid time.
ERROR_IN_CRL_NEXT_UPDATE_FIELDThe CRL nextUpdate field contains an invalid time.
INVALID_CAA CA certificate is not valid because it is not a CA or its extensions are not consistent with the intended purpose.
INVALID_PURPOSEThe certificate that was provided cannot be used for its intended purpose.
OUT_OF_MEMAn error occurred while allocating memory.
PATH_LENGTH_EXCEEDEDThe basicConstraints pathlength parameter was exceeded.
SELF_SIGNED_CERT_IN_CHAINA self-signed certificate exists in the certificate chain. The certificate chain can be built using the untrusted certificates, but the root CA cannot be found locally.
UNABLE_TO_DECODE_ISSUER_PUBLIC_KEYThe public key in the certificate cannot be read.
UNABLE_TO_DECRYPT_CERT_SIGNATUREUnable to decrypt the signature of the certificate.
UNABLE_TO_DECRYPT_CRL_SIGNATUREThe CRL signature cannot be decrypted. (The actual signature value cannot be determined.)
UNABLE_TO_GET_CRLThe certificate revocation list (CRL) is not found.
UNABLE_TO_GET_ISSUER_CERTUnable to find the certificate for one of the certificate authorities (CAs) in the signing hierarchy, and that CA is not trusted by the local application.
UNABLE_TO_GET_ISSUER_CERT_LOCALLYThe issuer certificate of a locally found certificate is not found. This usually means that the list of trusted certificates is not complete.
UNABLE_TO_VERIFY_LEAF_SIGNATURENo signatures are verified because the certificate chain contains only one certificate, which is not self-signed, and the issuer is not trusted.

On this Page