← All Sectigo certificates
Root Certificate

Entrust Root Certification Authority - G2

Sectigo
Browser Trust
Apple
Apple
Included
CCADB status only
Chrome
Chrome
Removed
No direct match
Microsoft
Microsoft
Included
Directly listed
Mozilla
Mozilla
Included
Directly listed
Trust Bits (root)
Server AuthenticationClient AuthenticationCode SigningSecure EmailTime Stamping
Certificate Details
Record Type
Root Certificate
SHA-256
43DF5774B03E7FEF5FE40D931A7BEDF1BB2E6B42738C4E6D3841103D3AA7F339
Parent SHA-256
Valid From (GMT)
2009.07.07
Valid To (GMT)
2030.12.07
AKI
SKI
anImetAe733nO2lR1GyNn5ASZqs=
Operated By
Constrained
False
Revocation
Salesforce ID
001o000000TNaDUAA1
Capabilities
EV OIDs
2.23.140.1.1; 2.16.840.1.114028.10.1.2
Status of Root
Apple
Included
Google Chrome
Removed
Microsoft
Included
Mozilla
Included
TLSTLS EVCode SigningS/MIME
CAA Identifiers
Recognized CAA issuer identifiers published by CCADB for this CA certificate.
Entrust Root Certification Authority - G2
SKI 6A72267AD01EEF7DE73B6951D46C8D9F901266AB
sectigo.com comodo.com comodoca.com usertrust.com trust-provider.com entrust.net affirmtrust.com
Audit
Audit Firm
Deloitte
Firm Location
Canada
Same as Parent
false
Standard
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
NetSec
Audit URL
Type
WebTrust
Statement
2025.11.21
Period
2025.03.01 – 2025.09.17
TLS BR
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
TLS EVG
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
Code Signing
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
S/MIME BR
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
Policy & Documentation
CP URL
CP Effective
CPS URL
CPS Effective
CP/CPS Statement
MD/AsciiDoc URL
Policy OIDs
Certificate X.509 certificatePolicies · cryptographic fact
No certificatePolicies extension in certificate
CCADB EV OIDs for Root Cert · administrative declaration
CA/B EV TLS2.23.140.1.12.16.840.1.114028.10.1.2
Comparison
CCADB declares policy OIDs but certificate has none
Marked TLS EV Capable in CCADB but certificate has no policy OIDs
Chain Validation
No parent certificate in CCADB — chain lint requires issuer
Infrastructure
CRL (Full)
CRL (Parts)
ACME DV
ACME OV
ACME EV
Test (Valid)
Test (Expired)
Test (Revoked)
Certificate (PEM)
External References
crt.sh → Sectigo →

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action