Hello, SSL Servers with certificates issued by Let's encrypt start to come up more and more, but it looks like the default cacert store of recent java 8 SEs do not trust them. Neighter the ISRG root nor the cross signed certificate.
According to this thread lots of people have a need for it: https://community.letsencrypt.org/t/will-the-cross-root-cover-trust-by-the-default-list-in-the-jdk-jre/134/10 In that thread it is mentioned that there is an application for the Oracle root cert program, so hopefully its just a matter of short time? Does it help to nag? :) Gruss Bernd