Entrust L1K has two intermediate-certs

On the  Entrust L1K most Security engineers do not know  two L1K  exists and both are  validate subCA. Take this  FireFox   cert-store and the output of these two  intermediates  name L1K

NOTE:  I highlighted some key Identifiers  using  the colored arrows ;

These two  certificates  authorities are signed by Entrust Root CA G2 and the expiration  would always be less than the rootCA which expires  DEC-7-2030


So  keep this in mind when review entrust intermediate  CAs.

NSE ( network security expert) and Route/Switching Engineer

kfelix  -----a----t---- socpuppets ---dot---com

     ^      ^

=(  @  @ )=

         o

        /  \