Apple to distrust Symantec certificate authorities

This summer, Apple will gradually begin to no longer trust the Symantec CA, and will initially cease trusting the Symantec CA in the fall of 2018. Sites that deploy Symantec SSL/TLS certificates (dates prior to June 1, 2016, or December 1, 2017) need to migrate certificates to Apple-trusted root certificates. 

Apple has given the following SSL/TLS certificate issued by the root certificate and will no longer be trusted by Apple at some point in the future.

1、GeoTrust Global CA

2、GeoTrust Primary Certification Authority

3、GeoTrust Primary Certification Authority – G2

4、GeoTrust Primary Certification Authority – G3

5、Symantec Class 1 Public Primary Certification Authority – G4

6、Symantec Class 1 Public Primary Certification Authority – G6

7、Symantec Class 2 Public Primary Certification Authority – G4

8、Symantec Class 2 Public Primary Certification Authority – G6

9、Symantec Class 3 Public Primary Certification Authority – G4

10、Symantec Class 3 Public Primary Certification Authority – G6

11、thawte Primary Root CA

12、thawte Primary Root CA – G2

13、thawte Primary Root CA – G3

14、VeriSign Class 1 Public Primary Certification Authority – G3

15、VeriSign Class 2 Public Primary Certification Authority – G3

16、VeriSign Class 3 Public Primary Certification Authority – G3

17、VeriSign Class 3 Public Primary Certification Authority – G4

18、VeriSign Class 3 Public Primary Certification Authority – G5

19、VeriSign Universal Root Certification Authority