• Home
• knowledge-base
• Where can I find the most up to date SSL certificates for CDRouter's ACS and download server?

CDRouter TR-069 includes a number of different certificate files for SSL testing. All certificates are distributed in .pem format and located in the /usr/share/doc/cdrouter/ directory on the CDRouter host system.

Comodo Certificates (CDRouter 10.6 and Later)

Starting with CDRouter 10.6, new ACS and ACS download server certificates, signed by Comodo, are shipped with CDRouter. These certificates are valid until March of 2020, and may require the installation of a new root CA certificate on devices that had been configured to use CDRouter’s previous Verisign certificates.

Verisign Certificates (CDRouter 10.5 and Earlier)

CDRouter 10.5 and earlier releases shipped with ACS and ACS download server certificates signed by Verisign. These certificates expire in June and August of 2018 and have been replaced with the new Comodo signed certificates available above.

To validate the Verisign ACS and download server certificate an intermediate certificate is required. Using the intermediate and root CA provided here the server certificate can be validated entirely in 2048 bits.

Self-signed Certificates

The self-signed ACS and download server certificates can be validated entirely in 2048 bits using the intermediate and root CA provided here.

Older CPE Devices

CDRouter’s Verisign ACS and download certificates can also be validated using a 1024 bit root CA. This chain requires two intermediate certificates which are available in the file provided here.