Hello,
I've been making certificates using win-acme. The web server is 4D. Validation is DNS with DreamHost.
Some SSL checkers say the certificate chain is fine and others report that a valid Root CA could not be located. Why? Geocerts is one of them.
Domain is simon4d.bel.com. Note that this is a different server entirely than bel.com, but that hasn't mattered before.
Is it that some validation tools don't trust ISRG Root X1? Can I create certificates which use ISRG Root X2 instead?
I'm creating PEM files with the win-acme tool, and 4D uses the full chain and key files. I am not modifying them.