[spencerhakim]

Not entirely related, but I'm getting an ERR_CERT_AUTHORITY_INVALID on Chrome for Android but not Chrome or Firefox on Windows. Same SHA256 reported in all three browsers. The certificate was issued on May 4th, did Microsoft recently change their SSL certificate chain?

[satbyy]

Certificate issuer "Microsoft IT SSL SHA2" is via Baltimore CyberTrust Root [1], which exists in Firefox's CA store, as well as /etc/ssl/certs. It also exists in Android (Settings -> Security -> Trusted Credentials). So, I'm not sure where Chrome-on-Android looks for certs.

[1] https://ssl-tools.net/subjects/26102266b387fb8b911bc6d37b35b...

Indeed SSL checker[2] says that "this certificate is not trusted by all browsers". Intermediate cert probably missing.

[2] https://www.sslshopper.com/ssl-checker.html#hostname=blogs.o...

[iso-8859-1]

Intermediate cert definitely missing: https://www.ssllabs.com/ssltest/analyze.html?d=blogs.office....

[mimsee]

Here getting that same issue on Android as well.

[Happpy]

+1

[hackuser]

I saw the problem on Firefox on Windows.

[noir_lord]

Firefox on Linux as well (Xubuntu).