All x509 certificates have a “NotBeforeDate” value.
It does help with trust: if you know there was a specific date on which there was a cutoff of a vendor producing a certain type of weak certificate, for example, you can choose only to trust certificates from that provider after a certain NotBeforeDate.
All browsers will fail a certificate as invalid if your date is prior to the NotBeforeDate.
It does help with trust: if you know there was a specific date on which there was a cutoff of a vendor producing a certain type of weak certificate, for example, you can choose only to trust certificates from that provider after a certain NotBeforeDate.
All browsers will fail a certificate as invalid if your date is prior to the NotBeforeDate.