[arihant]

For people having issues with CA - It is not the CA that is the problem (it is not a famous CA, but is known, at least by Chrome), the problem is that they probably shortened the domain too late and are still using the old configuration. Use the URL below, the certificate works fine. It's just for the wrong domain:

https://digitallocker.gov.in/

Edit: I'm unable to login though. I get the OTP from Aadhaar just fine, but the website doesn't seem to be able to verify it.

Edit 2: It worked after a couple of tries. Looking at the trail, it is probably some issue with Aadhaar and not this website. It does look really neat. You basically upload copies of your IDs and then agencies can request it. You get to approve. They are pulling UID data so it's quick to set up. I think the point of this is that you can link all other IDs with UID so people just have to ask for you Aadhaar number, no paper ID copies or forms. I wish they just integrated this into UID system like they link bank accounts, that way developers would have a single UIDAI API for identity, bank accounts and other IDs.

[krisgenre]

I am getting the certificate error even at the link you provided ( using Google Chrome on Ubunut 14.04 ).

[arihant]

I investigated further. It works fine on Mac and Windows 8.1. Apparently your operating system doesn't support the CA yet. I don't have Ubuntu, but I do have a linux based system, and it fails there too.

They are using a relatively new sub-CA of e-Mudhra, so it will appear everywhere soon, I believe.

If you're really willing to use it now, SHA1 of verified certificate is 56 7F 2D B5 7E 31 BC E5 6C 5C 8C 3B 80 44 AA 2F 7C 13 D3 6D. Not ideal way at all, but might help paranoia. You shouldn't trust me though.

[_nedR]

The Certificate seems to be verified by a "Gujarat Narmada Valley Fertilizers Company Ltd."

Speaking as an Indian, I am not sure i would trust a CA run by a company that is close to the Indian govt. (whose record on corruption and civil liberties isn't exactly stellar).

[arihant]

The whole point of the CA system is that there is no place for personal opinion on which CA to trust, as long as they make it to your operating system. The audits they go through far trumps the hand waiving you just did.

[zodvik]

Using OSX 10.10 & Chrome 41.0. Doesn't work.

[chrischen]

I'm on Mac and Chrome. It's not working.

[yuhong]

I think that uses Mozilla's root store that don't have the root. Microsoft's root store that is used on Windows has it.