Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Missing GeoTrust certificate and AuthorityInfoAccess

jan.vavraDec 1 2014

Hello,

through a HttpsUrlConnection instance I am connecting to https://i-portal.cssz.cz/

I've found out that in the $JAVA_HOME/lib/security/cacerts is misssing an intermediate certificate GeoTrust Extended Validation SSL CA - G2. The root cert GeoTrust Primary Certification Authority is present.

So the whole path is

1. i-portal.cssz.cz

2. GeoTrust Extended Validation SSL CA - G2

3. GeoTrust Primary Certification Authorit

I've tried java 7, java 8.

Does anybody know why the GeoTrust Extended Validation SSL CA - G2 is missing in the cacerts keystore?

I have an another question. The end cert i-portal.cssz.cz has extension AuthorityInfoAccess / 1.3.6.1.5.5.7.48.2 with an address http://ga.symcb.com/ga.crt that leads to issuing certificate GeoTrust Extended Validation SSL CA - G2. But java didn't try to dowload it. Is there a way ho to tell java to download certs using AuthorityInfoAccess ?

Jan

Locked Post

New comments cannot be posted to this locked post.

Locked on Dec 29 2014

Added on Dec 1 2014

#java-secure-socket-extension-jsse

0 comments

1,027 views