On Thu, Mar 10, 2016 at 4:22 PM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Tad, ...
> > And what tool is telling you that the root cert is being served along > with the server and intermediate certs? > > So the cert chain goes like this? > > server <- intermediate <- cross < CA (not present in keystore) > > ? > Exactly. The tool is openssl s_client -showcerts -connect pointed towards my server.
