These are the Certification Authorities for this PKI (Public Key Infrastructure) instance:
| CA Type | Distinguished Name | Certificate File | Validity Period | CRL | CRL Validity |
|---|---|---|---|---|---|
| Root CA | PKI_ROOT_DN | root-01-cert.pem | PKI_ROOT_VALIDITY | ||
| Issuing CA | PKI_INT_DN | issuer-01-cert.pem | PKI_INT_VALIDITY |
To trust the certificates provided by LabCA, all your client devices should install the root certificate in their Trusted Root Certification Authorities store.
The CRL (Certificate Revocation List) is a type of blocklist that includes certificates that should no longer be trusted (have been revoked before their expiration date) and is used by various endpoints, including web browsers. The issuer CRL is refreshed on a regular basis.