IntranetSSL Root & Intermediate Certificates

Feb 21, 2025

IntranetSSL Root & Intermediate Certificates

Introduction

IntranetSSL certificates are issued under GlobalSign Roots, which are not publicly trusted. This allows IntranetSSL to support features that are normally prohibited under the industry and CA/Browser Forum guidelines. Specifically, IntranetSSL supports the issuance of certificates:

With Internal Server Names and reserved IP addresses
Using the SHA-1 signing algorithm for legacy application support
With up to 5 years of validity vs. the current 13-month maximum

IntranetSSL comprises 3 distinct hierarchies:

SHA-1: For legacy applications that need SHA-1 SSL certificates and SHA-1-signed OCSP responses.
SHA-256: For typical certificate use.
ECC P-256: For those that need shorter keys with stronger security, the root, intermediate, CRL, and OCSP responses are all signed with ECC.

The certificates below are grouped by hierarchy starting with the intermediate followed by the corresponding root certificate.

GlobalSign Non-Public SHA1 Chain

GlobalSign Non-Public SHA1 CA - G3
SHA1 • RSA • 2048

Valid until: 31 December 2029
Serial #: ‎46:74:37:7a:94:89:55:dc:52:50:2b:14:54:c2
Thumbprint: e9:ed:c5:c6:a6:2b:d1:f1:cb:48:12:8a:2f:dc:68:f3:e1:46:f0:ae

Download Certificate (Binary/DER Encoded) View in Base64

-----BEGIN CERTIFICATE-----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

-----END CERTIFICATE-----

GlobalSign Non-Public SHA1 Chain

GlobalSign Non-Public Root CA - R1
SHA1 • RSA • 2048

Valid until: 31 December 2029
Serial #: ‎46:74:37:78:93:76:ad:23:01:cd:f9:ba:9e:1d
Thumbprint: ‎16:d3:f4:45:5a:4c:82:ce:c4:f4:57:d0:3e:0f:2d:d5:f5:41:7a:99

Download Certificate (Binary/DER Encoded) View in Base64

-----BEGIN CERTIFICATE-----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

-----END CERTIFICATE-----

GlobalSign Non-Public SHA256 Chain

GlobalSign Non-Public SHA256 CA - G3
SHA256 • RSA • 2048

Valid until: 31 December 2029
Serial #: ‎46:74:37:7b:90:a8:a5:de:a3:c9:04:aa:8c:d7
Thumbprint: ‎4e:4a:f1:b9:94:91:3e:18:c4:a8:ac:de:65:73:35:b5:d1:37:9d:30

Download Certificate (Binary/DER Encoded) View in Base64

-----BEGIN CERTIFICATE-----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

-----END CERTIFICATE-----

GlobalSign Non-Public SHA256 Chain

GlobalSign Non-Public Root CA - R2
SHA256 • RSA • 2048

Valid until: 31 December 2029
Serial #: ‎46:74:37:7b:15:26:d9:15:1c:7f:42:fe:9f:18
Thumbprint: ‎00:76:b1:12:0a:eb:73:99:39:84:34:e4:ff:18:07:07:f6:b1:ef:33

Download Certificate (Binary/DER Encoded) View in Base64

-----BEGIN CERTIFICATE-----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

-----END CERTIFICATE-----

GlobalSign Non-Public ECC-256 Chain

GlobalSign Non-Public ECC256 CA - G3
SHA256 • ECC • 256

Valid until: 29 April 2030
Serial #: ‎46:74:37:7d:82:81:ef:51:f2:2e:81:28:15:b0
Thumbprint: ‎06:48:b7:dc:f3:98:de:99:a4:57:8e:ba:42:0d:4f:70:7a:4b:b7:00

Download Certificate (Binary/DER Encoded) View in Base64

-----BEGIN CERTIFICATE-----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

-----END CERTIFICATE-----

GlobalSign Non-Public ECC-256 Chain

GlobalSign Non-Public Root CA - R3
SHA256 • ECC • 256

Valid until: 18 January 2038
Serial #: ‎46:74:37:7c:0f:ba:34:f6:f1:c3:dc:b7:5d:3f
Thumbprint: ‎7f:77:ad:e4:17:9a:58:78:22:bb:08:57:2e:7e:96:0f:9f:bd:28:1b

Download Certificate (Binary/DER Encoded) View in Base64

-----BEGIN CERTIFICATE-----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

-----END CERTIFICATE-----

Related Articles

PersonalSign Intermediate Certificates

Dec 16, 2019, 3:25 PM

Intermediate Certificates help complete a "Chain of Trust" from your SSL or client certificate to GlobalSign's root certificate. As a PersonalSign customer, intermediate certificates are already bundled in the .pfx (PKCS#12) you downloaded after completing your purchase. No action should be required. If you did a custom order where you provided a CSR, you may need to download a PersonalSign intermediate certificate listed below.

Read More

Code Signing (Standard & EV) Intermediate Certificates

Mar 9, 2020, 2:04 PM

Intermediate Certificates help complete a "Chain of Trust" from your SSL or client certificate to GlobalSign's root certificate. The Standard Code Signing Certificates and EV Code Signing Certificates should automatically install the intermediate certificate on the USB token. If this does not happen you can use the links below to download the Standard Code Signing Intermediate or the EV Code Signing Intermediate.

Read More

Administration Intermediate Certificate

Mar 9, 2020, 2:32 PM

This support article contains the details of the Administration Intermediate Certificate. Intermediate Certificates help complete a "Chain of Trust" from your SSL or client certificate to GlobalSign's root certificate.

Read More

GlobalSign System Alerts

View recent system alerts.

Atlas Discovery

Scan your endpoints to locate all of your Certificates.

SSL Configuration Test

Check your certificate installation for SSL issues and vulnerabilities.

Contact Support

If you are an Atlas portal user, please submit request to support-atlas@globalsign.com.