NET_ERR_CERT_REVOKED — What It Means & How to Fix It

What Does This Error Mean?

NET_ERR_CERT_REVOKED means the SSL certificate for this website has been deliberately cancelled — or 'revoked' — before its expiry date. Certificates are revoked when a website's private key is compromised, the certificate was issued by mistake, or the domain ownership changed. This is a serious security warning. Unlike an expired certificate, a revoked one signals a security incident. You should not visit the site until the issue is resolved.

Affected Models

Google Chrome
Microsoft Edge
Firefox
Safari
All modern browsers
Windows
macOS
Android
iOS

Common Causes

The website's private encryption key was stolen or leaked, forcing the certificate to be cancelled
The certificate was issued incorrectly by the certificate authority and had to be recalled
The website was involved in fraudulent activity and the certificate was revoked by the issuing authority
The domain was transferred to a new owner who revoked the previous certificate
Your antivirus HTTPS scanning uses an outdated or improperly revoked intermediate certificate

How to Fix It

Do not proceed to the website. This is not a warning to dismiss lightly. A revoked certificate is a serious security signal that the site's encryption may be compromised.

Unlike an expired certificate, a revoked certificate means something went wrong beyond just forgetting to renew.
Check if the error is actually caused by your antivirus HTTPS scanning. Temporarily disable HTTPS scanning in your antivirus settings and reload the page. If the error disappears, your antivirus has a certificate issue.

Some antivirus tools use their own certificates for HTTPS scanning. If those certificates get revoked or misconfigured, you see this error.
Check the date and time on your computer. An incorrect system clock can cause false certificate revocation checks. Right-click the clock in the taskbar and choose 'Adjust date/time'.

Revocation checks are time-sensitive. A wrong clock can interfere with the check.
Try accessing the website using a different network (your phone's mobile data). If it works there, a network-level proxy may be using a revoked certificate to intercept traffic.

Corporate and public Wi-Fi networks sometimes use HTTPS inspection tools that have certificate problems.
If you own the affected website, immediately get a new SSL certificate from your certificate authority. Generate a fresh private key — never reuse the old one. Install and verify the new certificate.

Most web hosts can issue a new certificate within minutes using Let's Encrypt.

When to Call a Professional

If this is your own website, contact your SSL certificate provider (DigiCert, Let's Encrypt, Comodo, etc.) immediately. You will need to generate a new certificate with a new private key. Do not reuse the old private key. If you believe your key was compromised, also review your server for unauthorized access.

Frequently Asked Questions

Is a revoked certificate worse than an expired one?

Yes. An expired certificate means the site owner forgot to renew — annoying, but usually not a security incident. A revoked certificate means the certificate was deliberately cancelled before expiry, typically because the private key was compromised or misused. That is a stronger warning to stay away until the site owner fixes the issue.

Can I still visit the site if I trust it?

You should wait until the certificate issue is resolved. Even if you trust the website's owners, a revoked certificate may mean someone else has the ability to decrypt your connection. Contact the website's support team to let them know. A reputable site will fix this quickly.

What does 'private key compromised' mean?

Every SSL certificate has a private key — a secret code used to encrypt and decrypt data. If that key is stolen (for example, through a server breach), an attacker could use it to impersonate the website or decrypt intercepted traffic. When a key compromise is detected, the certificate authority revokes the certificate to render the stolen key useless.