SSL.com Root Certificates

The lists below display the path of trust from the root certificate, through the required intermediate certificates (if any) to the server certificate (which is the certificate you purchased from SSL.com) for each SSL.com product we offer.

Validation typeSSL.com Certificate
Domain Validated (DV) Basic, 90-Day Trial
Organization Validated (OV) Premium, High Assurance, Wildcard, UCC/SAN, Code Signing
Enterprise Validated (EV) Enterprise EV, Enterprise EV UCC


This download links below provide .ZIP files containing the required root and (if required) intermediate certificates for all SSL.com products. Note that there are both SHA-2 and SHA-1 versions. You can use these to replace deleted or corrupted certificates on your local server.

All SSL.com certificates issued after September 24, 2014 use the SHA-2 hashing algorithm by default. SHA-2 (also known as SHA-256) replaces the older SHA-1, which is considered insufficiently robust. SHA-1 support is being retired by major browsers (Chrome, Firefox) and online services (Facebook, Amazon), which will cause issues with any sites still using SHA-1 certificates. SSL.com customers who purchased a SHA-1 certificate are urged to have it reissued using SHA-2 to minimize issues going forward. Reprocessing your certificate is freethis article explains how to do this via your SSL.com account.


 

SHA-2 Certificates

Domain Validated (DV)

AddTrustExternalCARoot (Root)

USERTrustRSAAddTrustCA (Intermediate 1)

SSLcom DCVA_2 (Intermediate 2)

[your SSL.com certificate] (Server Certificate)

Download


 

Organization Validated (OV)

AddTrustExternalCARoot (Root)

USERTrustRSAAddTrustCA (Intermediate 1)

SSLcomHighAssuranceCA_2 (Intermediate 2)

[your SSL.com certificate] (Server Certificate)

Download


 

Enterprise Validated (EV)

AddTrustExternalCARoot (Root)

USERTrustRSAAddTrustCA (Intermediate 1)

SSLcomPremiumEVCA_2 (Intermediate 2)

[your SSL.com certificate] (Server Certificate)

Download



 

SHA-1 Certificates

Domain Validated (DV)

AddTrustExternalCARoot (Root)

SSLcomAddTrustSSLCA (Intermediate)

[your SSL.com certificate] (Server Certificate)

Download


 

Organization Validated (OV)

AddTrustExternalCARoot (Root)

SSLcomHighAssuranceCA_1 (Intermediate)

[your SSL.com certificate] (Server Certificate)

Download


 

Enterprise Validated (EV)

AddTrustExternalCARoot (Root)

COMODOAddTrustServerCA (Intermediate 1)

SSLcomPremiumEVCA_1 (Intermediate 2)

[your SSL.com certificate] (Server Certificate)

Download

 



As always, contact us at SSL.com if you have any questions.