CDRouter Support

Where can I find the most up to date SSL certificates for CDRouter's ACS and download server?

knowledge-base version 12.3

CDRouter TR-069 includes a number of different ACS and ACS download server certificate files which can be used for SSL/TLS testing. All certificates are distributed in .pem format and are located in the /usr/cdrouter/tests directory on the CDRouter host system.

Sectigo/Comodo Signed Server Certificates (CDRouter 11.8 and Later)

The ACS and ACS download server certificates that were initially shipped with with CDRouter 10.6 expired in March of 2020.

The current ACS and ACS download server certificates expire in March of 2022 and were initially shipped with CDRouter 11.8 MR1 Note that these certificates are signed by Sectigo (formerly Comodo) and that the default domain name has been changed from qacafe.com to cdroutertest.com.

Sectigo Root CA

The Sectigo AddTrust External CA Root required to validate CDRouter’s ACS and ACS download server certificates expired in May of 2020. This root CA has been replaced in CDRouter 12.1 with the new Sectigo USERTrust RSA CA that expires in January of 2038.

Note that the old Sectigo root CA used SHA1 with RSA encryption. The new root CA uses SHA384 with RSA encryption.

For more information on Sectigo Chain Hierarchy and Intermediate Roots, please see this page.

Current ACS and Download Server Certificates

The most up to date certificates for CDRouter’s ACS and ACS download server can be found here:

Certificate Type File Expiration Date
ACS certificate acs.cdroutertest.com.pem January 29, 2022
Download server acs-download.cdroutertest.com.pem February 2, 2022
Intermediate CA acs.cdroutertest.com-ca.pem December 31, 2030
Root CA acs.cdroutertest.com-rootca.pem January 18, 2038

Intermediate chain for RSA SHA1 version of Root CA

The certificate chain in the table above ends with a Root CA certificate using a SHA384 With RSA Encryption as its signature algorithm. If your device is unable to handle sha384, you can use the Intermeidate CA certificates and Root CA certificate in the table below which uses SHA1 with RSA Encryption.

Certificate Type File Expiration Date
Intermediate CA acs.cdroutertest.com-ca-sha1.pem December 31, 2028
Root CA acs.cdroutertest.com-rootca-sha1.pem December 31, 2028

Contents

×

About CDRouter

CDRouter is made by QA Cafe, a technology company based in Portsmouth, NH.

Get in touch via our Contact page or by following us on your favorite service: