Peeringhub.io Stir Shaken CA Service
  • Peeringhub STI-ACME Server
  • Guides
    • Stir/Shaken Compliance Guide
    • Q and A on STI Test Plan
      • STI-PA-TC-026
      • STI-PA-TC-021
      • STI-PA-TC-019
      • STI-PA-TC-024
      • STI-PA-TC-022
      • STI-PA-TC-025
    • Purchase Subscription
    • Generating Certificate
      • Web UI
        • Renew Stir/Shaken Certificate
      • ACME protocol reference
        • Protocol Overview
        • List server directory
        • Get nonce
        • Account creation & Authorization
        • Get ACME account status
        • Order a new certificate
        • List active orders
        • Key change
        • Account deactivation
      • Desktop Client
      • Windows Command Line Client
      • Linux Command Line Client
    • Staging Environment Support
      • Configuring ACME Client
    • Getting Support
    • Troubleshoot
    • Verify a Stir/Shaken Certificate
    • Peeringhub STI-API
      • Generate Auth Token
      • Generate Private Key
      • Extract Your Private Key
      • Generate Stir/Shaken Certifiate
    • FAQ
Powered by GitBook
On this page
  1. Guides
  2. Generating Certificate
  3. ACME protocol reference

Account deactivation

User may deactivate their account if the associated key was compromised, or must be forgotten. To do this, ACME client must send a POST request to the ACME Account URL:

POST https://stica.peeringhub.io/acme/acct/6A1AD155B73D45448E7B832888C3EF54
Content-Type: application/jose+json
Content-Length: 461
{
  "protected" : BASE64URL(
    {
      "alg": "ES256",
      "nonce": "7699E1AAD33D492ABB7D5A5326DC7D41",
      "url": "https://stica.peeringhub.io/acme/acct/6A1AD155B73D45448E7B832888C3EF54",
      "kid": "https://stica.peeringhub.io/acme/acct/6A1AD155B73D45448E7B832888C3EF54"
    }
  ),
  "payload" : BASE64URL(
    {
      "status" : "deactivated"
    }
  ),
  "signature" : "<base64url-encoded signature>"
}

ACME server shall return 200 OK with the ACME Account object. Account status must be changed to "deactivated".

HTTP/1.1 200 OK
Replay-Nonce: 6ECE0681255347D0BB29FCE79E895FF1
Content-Type: application/json; charset=utf-8
Content-Length: 112
{
  "status" : "deactivated",
  "orders" : "https://stica.peeringhub.io/acme/orders/6A1AD155B73D45448E7B832888C3EF54"
}

ACME server doesn't provide interface for re-enabling account after deactivation.

PreviousKey changeNextDesktop Client

Last updated 2 years ago