AnsweredAssumed Answered

For Qualys staff : consider removing expired DigiCert High Assurance EV Root CA from your cert store

Question asked by Joël Dinel on Aug 20, 2014
Latest reply on Sep 1, 2014 by Ivan Ristić

Recently, one of DigiCert's cross-signed intermediate certificates expired. The cert in question is :

 

DigiCert High Assurance EV Root CA

Issuer: Entrust.net Secure Server Certification Authority

Valid until: 26/Jul/2014

Serial #: 42:87:40:A5

Thumbprint: 918DA5E499C15F7C6275B124FEDE53357C34BD36

 

DigiCert themselves are stating that this cert is obsolete and should be removed from cert stores everywhere :

 

How to Fix an Expired Intermediate SSL Certificate Chain

 

Could Qualys consider removing this cert from their store? It's certainly causing some false positives when checking certain digicerts certificates.

 

Thanks!

Outcomes