I wish all clients did the Path Building vs Path Verifying the way indicated here Verifying a certificate - #5 by jsha
To me it seems clients (web browsers, openssl, etc.) are to some extent broken. 
1 Like