AUTHORISATIONThe RA provides the customer with an authorisation model whereby the Company/Entity to which the certificate is issued designates the person authorised to apply for the certificate. The document must be current (with an issue date not exceeding three months) and signed by a person empowered to represent the entity.The representative’s signature is verified by checking against the identity document.

The power of representation is verified by requesting a copy of the representative’s powers (public deed, commercial registry certificate, etc.), or by consulting the official registrar where the power is registered.


The copy of the Identity Document (ID) of the authorising entity (legal representative or agent) must be provided to prove the validity of the authorisation.


The copy of the Applicant’s ID must be provided to validate the Authorisation and the Application.

In the case of EV certificates, the Applicant must be validated in person either by an RA Registry Operator or by any procedure admitted in the Guidelines For The Issuance And Management Of Extended Validation Certificates.


AC Camerfirma offers different options for the Applicant to validate control of the domain:

1. There is the option of confirming the validation by any of these addresses proposed by the regulation admin, administrator, webmaster, hostmaster, postmaster (@dominioasecurizar). If one or two associated addresses are provided, Camerfirma can send the confirmation code to them and the validation can proceed once confirmed.

2. DNS entry. In order for Camerfirma (or the RA) to have evidence of domain control, a code could be sent and the Applicant as public domain manager in their area to confirm that they are the owners of the domain.

To make this validation, the Applicant must indicate to the RA Operator the option to be carried out in order to carry out the validation.

– In the case of Option 1, a message is sent to the email address provided by the Applicant (admin, administrator, webmaster, hostmaster, postmaster) to accept domain control.

– In the case of Option 2, a code is sent to the email address of the Applicant to enter it in their DNS to verify its control.

The certificate cannot be issued until these checks are made.