|isrg root ca||1.75||0.8||3794||15|
It is represented by two certificates: one that is self-signed and one that is signed by ISRG Root X1. All certificates signed by the ECDSA intermediate “E1” will come with a chain including an intermediate certificate whose Subject is “ISRG Root X2” and whose Issuer is “ISRG Root X1”.What are the new ISRG root intermediates?
First up, we have the new ISRG Root X2, which has an ECDSA P-384 key instead of RSA, and is valid until 2040. Issued from that, we have two new intermediates, E1 and E2, which are both also ECDSA and are valid for 5 years. Notably, these ECDSA intermediates are not cross-signed by IdenTrust’s DST Root CA X3.What is the difference between DST root X3 and ISRG Root X1?
That means there are two certificates available that both represent our intermediate. One is signed by DST Root CA X3, and the other is signed by ISRG Root X1. The easiest way to distinguish the two is by looking at their Issuer field.What does ISRG stand for?
Let’s Encrypt is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG). 1 Letterman Drive, Suite D4700, San Francisco, CA 94129. Linux Foundation is a registered trademark of The Linux Foundation. Linux is a registered trademark of Linus Torvalds.