← All Sectigo certificates
Root Certificate

Entrust Root Certification Authority

Sectigo
Browser Trust
Apple
Apple
Included
CCADB status only
Chrome
Chrome
Removed
No direct match
Microsoft
Microsoft
Included
Directly listed
Mozilla
Mozilla
Included
Directly listed
Trust Bits (root)
Server AuthenticationClient AuthenticationSecure EmailTime StampingIP Security IKE Intermediate
Certificate Details
Record Type
Root Certificate
SHA-256
73C176434F1BC6D5ADF45B0E76E727287C8DE57616C1E6E6141A2B2CBC7D8E4C
Parent SHA-256
Valid From (GMT)
2006.11.27
Valid To (GMT)
2026.11.27
AKI
aJDkZ6SmU4DHhmak8fdLQ/uEvW0=
SKI
aJDkZ6SmU4DHhmak8fdLQ/uEvW0=
Operated By
Constrained
False
Revocation
Salesforce ID
001o000000HshElAAJ
Capabilities
EV OIDs
2.23.140.1.1; 2.16.840.1.114028.10.1.2
Status of Root
Apple
Included
Google Chrome
Removed
Microsoft
Included
Mozilla
Included
TLSTLS EVCode SigningS/MIME
CAA Identifiers
Recognized CAA issuer identifiers published by CCADB for this CA certificate.
Not disclosed in CCADB
No recognized CAA issuer identifier was found for this CA certificate. CAs are expected to disclose CAA identifiers to CCADB when applicable.
Audit
Audit Firm
Deloitte
Firm Location
Canada
Same as Parent
false
Standard
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
NetSec
Audit URL
Type
WebTrust
Statement
2025.11.21
Period
2025.03.01 – 2025.09.17
TLS BR
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
TLS EVG
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
S/MIME BR
Audit URL
Type
WebTrust
Statement
2025.11.19
Period
2025.03.01 – 2025.09.17
Policy & Documentation
CP URL
CP Effective
CPS URL
CPS Effective
CP/CPS Statement
MD/AsciiDoc URL
Policy OIDs
Certificate X.509 certificatePolicies · cryptographic fact
No certificatePolicies extension in certificate
CCADB EV OIDs for Root Cert · administrative declaration
CA/B EV TLS2.23.140.1.12.16.840.1.114028.10.1.2
Comparison
CCADB declares policy OIDs but certificate has none
Marked TLS EV Capable in CCADB but certificate has no policy OIDs
Chain Validation
No parent certificate in CCADB — chain lint requires issuer
Infrastructure
CRL (Full)
CRL (Parts)
ACME DV
ACME OV
ACME EV
Test (Valid)
Test (Expired)
Test (Revoked)
Certificate (PEM)
External References
crt.sh → Sectigo →

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action