In the Certificate Management Service console, you can delete expired and revoked SSL certificates from the certificate list. This topic describes how to delete an SSL certificate.

Prerequisites

  • The certificate that you want to delete expires or is revoked.

    If the certificate expires, you can delete the certificate in the Certificate Management Service console at any time.

    If you want to delete a certificate before it expires, you must revoke it first. Then, you can delete the certificate in the Certificate Management Service console. If you revoke an issued certificate, the certificate is deregistered from the certificate authority (CA) that issues it. After the certificate is revoked, the certificate cannot be used for encryption and is no longer trusted by your browser. For more information, see Revoke an SSL certificate.

    Note If a third-party certificate is manually uploaded to the Certificate Management Service console for management, you can delete the certificate in the console at any time. After a third-party certificate is deleted, the data of the certificate cannot be restored. Proceed with caution.
  • The certificate that you want to delete is not deployed to an Alibaba Cloud service.
    Warning If you delete an certificate but you are not sure whether it is deployed to an Alibaba Cloud service, the deletion may cause service interruptions.

Procedure

  1. Log on to the SSL Certificates Service console.
  2. On the Manage Certificates tab of the SSL Certificates page, click the certificate status drop-down list above the certificate list and select Expired or Revoked.
  3. Find the certificate that you want to delete and click Delete in the Actions column.
  4. In the Confirmation message, click Delete. Confirm deletion
    After the certificate is deleted, it is permanently removed from the certificate list.