ISRG Root X1

E556220

X.509 certificate root certificate

ISRG Root X1 is the primary root certificate operated by the Internet Security Research Group that underpins the trust for most Let’s Encrypt-issued TLS/SSL certificates used across the web.

Jump to: Statements Referenced by

Statements (50)

Predicate	Object
instanceOf	X.509 certificate ⓘ root certificate ⓘ
authorityKeyIdentifier	C4A7B1A47B2C71F0A3E1D9D6D1E5B1B8 ⓘ
basicConstraints	CA:TRUE ⓘ
certificatePolicies	CA/Browser Forum Baseline Requirements NERFINISHED ⓘ
country	United States of America ⓘ surface form: United States
crlDistributionPoint	http://x1.i.lencr.org/ ⓘ
ecosystemImpact	enables free HTTPS for a large portion of the web ⓘ
extendedKeyUsage	client authentication (via issued intermediates) ⓘ server authentication (via issued intermediates) ⓘ
governingCP	ISRG Certificate Policy ⓘ
governingCPS	Let’s Encrypt Certification Practice Statement NERFINISHED ⓘ
issuerCommonName	ISRG Root X1 NERFINISHED ⓘ
keySize	4096-bit ⓘ
keyType	RSA ⓘ
keyUsage	CRL Sign ⓘ Certificate Sign ⓘ
notAfter	2035-06-04T11:04:38Z ⓘ
notBefore	2015-06-04T11:04:38Z ⓘ
ocspResponder	http://x1.i.lencr.org/ ⓘ
operator	Internet Security Research Group NERFINISHED ⓘ
organization	Internet Security Research Group NERFINISHED ⓘ
ownedBy	Internet Security Research Group NERFINISHED ⓘ
policyOID	2.23.140.1.2.1 ⓘ
publicKeyAlgorithm	rsaEncryption ⓘ
purpose	TLS/SSL certificate trust anchor ⓘ web PKI trust ⓘ
relatedIntermediate	Let’s Encrypt E1 NERFINISHED ⓘ Let’s Encrypt R3 NERFINISHED ⓘ
relatedRoot	ISRG Root X2 NERFINISHED ⓘ
roleInEcosystem	primary trust anchor for most Let’s Encrypt certificates ⓘ
selfSigned	true ⓘ
serialNumber	0x4001772137D4E942B8EE76AA3C640AB7 ⓘ
signatureAlgorithm	sha256WithRSAEncryption ⓘ
subjectCommonName	ISRG Root X1 NERFINISHED ⓘ
subjectCountry	US NERFINISHED ⓘ
subjectKeyIdentifier	C4A7B1A47B2C71F0A3E1D9D6D1E5B1B8 ⓘ
subjectLocality	Los Angeles NERFINISHED ⓘ
subjectOrganization	Internet Security Research Group NERFINISHED ⓘ
subjectOrganizationalUnit	ISRG Root X1 NERFINISHED ⓘ
subjectState	California NERFINISHED ⓘ
supportsPathBuildingFor	Let’s Encrypt E1 intermediate NERFINISHED ⓘ Let’s Encrypt R3 intermediate NERFINISHED ⓘ
trustStoreInclusion	Android Root Store NERFINISHED ⓘ Apple Root Certificate Program NERFINISHED ⓘ Microsoft Trusted Root Program NERFINISHED ⓘ Mozilla Root Store NERFINISHED ⓘ Oracle Java Root Store NERFINISHED ⓘ
usedBy	Let’s Encrypt NERFINISHED ⓘ
validityPeriodYears	20 ⓘ

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

Let’s Encrypt → hasRootCertificate → ISRG Root X1 ⓘ