rootCAs

RootCAs, or root certificate authorities, are the foundational authorities in public key infrastructure (PKI). A root CA issues a self-signed certificate that acts as the trust anchor for a certificate hierarchy used to authenticate entities and establish encrypted communications.

In TLS and other PKI applications, clients maintain a trust store containing trusted root certificates. When

Root certificates are highly protected because their compromise would affect many entities. Private keys are often

Trust stores are maintained by operating system distributors and major browsers, and differ across platforms. When

Examples and scope of root CAs include roots from major providers such as DigiCert, GlobalSign, Entrust, Sectigo,