rootcerts bug contains an expired I use a third party Closed source VPN. It seems to throw a broken certificate chain error from a CA that expired in May of 2020. The Root Certs need to be updated to remove these Certs. Key ID AD:BD:98:7A:34:B4:26:F7:FA:C4:26:54:EF:03:BD:E0:24:CB:54:1A
Thank you for this report, which we take as "rootcerts [] contains an expired [certificate]. I use ..." Rootcerts has no dedicated maintainer, so assigning this bug globally; CC'ing DavidW who has most to do with it.
CC: (none) => luigiwalserSummary: rootcerts bug contains an expired CA that stops IPSec VPN from working. => rootcerts contains an expired CA that stops IPSec VPN from working.Assignee: bugsquad => pkg-bugsSource RPM: rootcerts => rootcerts-20210223.00-1.mga8.src.rpm
If your VPN's TLS certificate is signed by an expired CA cert, then you need to report it to the administrators of your VPN to fix their cert. Our rootcerts are current. Note that removing the CA cert won't fix anything for you, it would just change the problem from expired to unrecognized.
Status: NEW => RESOLVEDResolution: (none) => INVALID
It's not that simple. See the url above which links to the fix at https://access.redhat.com/articles/5117881
CC: (none) => davidwhodgins
Meant to reopen too.
Resolution: INVALID => (none)Status: RESOLVED => REOPENED
Those are not actions to be taken by the packagers.
Resolution: (none) => INVALIDStatus: REOPENED => RESOLVED
I've tried to fix it the way described by RedHat, even using Root Access the faulty Cert breaking the chain of trust persists.
Because your VPN provider needs to fix it.
Status: REOPENED => RESOLVEDResolution: (none) => INVALID