I love LE, for the automation and security. But I still have some visitors to my sites (and users of my web applications!) which are using older versions of MacOS and iOS. Definitely Android, but I know that issue is "fixed" with a workaround for Android for another few years. I am here to BEG yo…

There are at least 2 other free ACME CAs ( ZeroSSL and BuyPass ) you could use instead of Let's Encrypt and instead of purchasing certs. I have no idea how widely distributed each of their roots are or what devices may or may not be compatible. ZeroSSL uses a Sectigo root that doesn't expire until 203…

PLEASE cross-sign with another older CA before the 9/2021 deadline

Feature Requests

griffin April 23, 2021, 6:30pm 2

Welcome to the Let's Encrypt Community, Richard

Wish granted?

IdenTrust has agreed to issue a 3-year cross-sign for our ISRG Root X1 from their DST Root CA X3. The new cross-sign will be somewhat novel because it extends beyond the expiration of DST Root CA X3.

4 Likes

Topic		Replies	Views
Feedback wanted: DST Root CA X3 expiration all-subscriber email Issuance Tech	14	3057	May 6, 2021
Questions re: OpenSSL Client Compatibility Changes for Let’s Encrypt Certificates Issuance Tech	55	10053	September 7, 2021
Please reconsider defaulting to the ISRG root - it's unsupported by more than 50% of Android phones Issuance Policy	21	4756	June 23, 2019
Older Android devices Issuance Policy	21	7782	June 12, 2021
Help thread for DST Root CA X3 expiration (September 2021) Help	720	164213	November 3, 2022

PLEASE cross-sign with another older CA before the 9/2021 deadline

Related topics