well easiest way to test would be requesting one, but I don't have account key that in whitelist. iirc default is x1-x2-e1-leaf but what about alternative chains?

you can do that by adding the X1 cross signed to the chain. https://crt.sh/?id=3958242236

I kinda expected longer then the long chain x3-x1-x2-e1-leaf

While you can indeed manually craft yourself a long long chain, Let's Encrypt doesn't offer this from their ACME protocol itself. I believe this is mainly because ECDSA is thought of to be the modern choice with bandwidth considered. So E1 chains should be as few bytes as possible. Looking at my o…

What kind of alternative chains LE give for E1 certificates?

Issuance Tech

hebbet October 7, 2021, 9:21am 2

as stated here there is no alternative chains.

Topic		Replies	Views
ECDSA returning X1 rather than X2 chain? Issuance Tech	8	825	August 12, 2022
Join us and learn about certificate chains! Help	36	6268	October 24, 2021
Lets Encrypt ECDSA certificate request for new accounts Issuance Tech	25	1557	January 6, 2024
E1: This January, or no? Issuance Tech	8	2655	December 18, 2020
Use shorter alternative chain better for letsencrypt API itself Feature Requests	4	1523	October 31, 2021

What kind of alternative chains LE give for E1 certificates?

Related topics