CDRouter TR-069 includes a number of different ACS and ACS download server
certificate files which can be used for SSL/TLS testing. All certificates are
distributed in .pem format and are located in the /usr/cdrouter/tests
directory on the CDRouter host system.
Sectigo/Comodo Signed Server Certificates
The ACS and ACS download server certificates expire in early Februrary of 2022. These certificates were shipped with every version of CDRouter from 11.8 through 12.22.
Updated (unexpired) server certificates are included in CDRouter 12.23
Current ACS and download server certificates
The most up to date certificates for CDRouter’s ACS and ACS download server can be found in the following table. This certificate chain uses SHA384 with RSA encryption.
| Certificate Type | File | Expiration Date |
|---|---|---|
| ACS certificate | acs.cdroutertest.com.pem | February 5, 2023 |
| Download server | acs-download.cdroutertest.com.pem | February 7, 2023 |
| Intermediate CA (SHA384) | acs.cdroutertest.com-ca.pem | December 31, 2030 |
| Root CA (SHA384) | acs.cdroutertest.com-rootca.pem | January 18, 2038 |
Intermediate chain for legacy devices
Some legacy devices may not support installing a Root CA with SHA384 with RSA encryption. For these devices an alternate chain using a SHA384 intermediate and SHA1 root CA with RSA encryption is available in the following table:
| Certificate Type | File | Expiration Date |
|---|---|---|
| Intermediate CA | acs.cdroutertest.com-ca-sha1.pem | December 31, 2028 |
| Root CA (SHA1) | acs.cdroutertest.com-rootca-sha1.pem | December 31, 2028 |
Note: In the above table, the Intermediate CA file contains two (2) Intermeidate certs concatenated together.
