As of March 2, 2017, the CA/Browser Forum, which sets the general guidelines for issuing SSL Certificates, has decided to limit the maximum lifetime for DV and OV certificates to 825 days (i.e. 27 months) – see CA/Browser Forum – Ballot 193.
This step is intended to improve safety through a more frequent replacement cycle.
From March 1, 2018 the Certificate Authorities will not longer issue certificates with a validity of more than 825 days.
This affects all Certificate Authorities and all SSL certificates.
Symantec (including RapidSSL, GeoTrust and thawte) has announced that it will implement this requirement on February 20, 2018.
GlobalSign will no longer issue certificates with a 3-year validity period starting February 26, 2018.
Comodo will no longer issue certificates with a 3-year validity period from March 1, 2018.
We recommend to choose a 2-yr SSL certificate from March 2018.