This report summarizes the results of running ZLint, which checks for conformance with RFC 5280 and CA/Browser Forum Baseline Requirements, on this certificate.
||ca digital signature not set
||Root and Subordinate CA Certificates that wish to use their private key for signing OCSP responses will not be able to without their digital signature set
||sub ca certificate policies missing
||Subordinate CA certificates must have a certificatePolicies extension