Thank you for the swift and thorough reply. It is appreciated.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ca-certificates in Ubuntu.
https://bugs.launchpad.net/bugs/1656054
Title:
Unable to validate GoDaddy signed
https://casecurity.ssllabs.com/analyze.html?d=api-v1.weather.gov
That's a good link to send them to show the "Chain issues - Incomplete"
and "Extra download" on the intermediate. Also
https://www.godaddy.com/help/install-ssl-certificates-16623
--
You received this bug notification because you
s: = subject
i: = issuer
The server certificate "CN=nws.noaa.gov" was issued by (signed by)
"CN=Go Daddy Secure Certificate Authority - G2"
This issuer is an intermediate. There is nothing provided by the server
to chain this intermediate to a root certificate. I'm pretty sure the
root that
kjotte@daedalus:~$ openssl s_client -CApath /etc/ssl/certs -connect
api-v1.weather.gov:443
CONNECTED(0003)
depth=0 OU = Domain Control Validated, CN = nws.noaa.gov
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 OU = Domain Control Validated, CN =
The site is probably not configured correctly. See a similar example:
https://bugzilla.mozilla.org/show_bug.cgi?id=926163
FYI, a better test than curl is:
echo "HEAD /" | openssl s_client -CApath /etc/ssl/certs -connect
api-v1.weather.gov:443
** Bug watch added: Mozilla Bugzilla #926163
5 matches
Mail list logo