Hi, Currently, only the intermediary chain can be retrieved from ACME protocol (via /acme/issuer-cert), without the root LE cert. On production, you can hardcode the root cert (via https://letsencrypt.org/certs/isrgrootx1.pem ) on your automation tool, but on pre-prod (staging LE) or internal dev (…

Fetch root cert from ACME

kelunik April 23, 2016, 1:44pm 4

LE root isn't used currently anyway. We don't even have X3 and X4 signed by the ISRG root yet.

Then that's a bug which should be reported.

Same here. Shouldn't point to IdenTrust.