Embedded timestamp could not be verified for certain TSA
I am getting embedded timestamp could not be verified for TSA : http://timestamp.digicert.com
but with same sample code and TSA : http://ts.quovadisglobal.com/eu . It works fine
I am using PDFBox example for singing a document https://github.com/apache/pdfbox/blob/trunk/examples/src/main/java/org/apache/pdfbox/examples/signature/CreateSignatureBase.java
If you compare the trust tabs of the Acrobat time stamp certificate viewer ("Show Signature Properties..." -> "Advanced Properties..." -> "Show Certificate..."), the problem becomes clear:
| not working | working |
|---|---|
 |
 |
As you can read at the top of that tab in case of the working time stamp,
This certificate is directly trusted in your trusted certificates list. Source of Trust obtained from European Union Trusted Lists (EUTL).
and in case of the not working time stamp,
This certificate is not trusted.
(If you click through the certificate chain, you'll see the same again and again, not trusted.)
Looking into the Adobe Acrobat Trusted Certificates, one currently sees
So indeed, the G4 DigiCert certificates used to sign your problem time stamp are not trusted by Adobe Acrobat. Thus, Acrobat cannot verify the time stamp.
But have a look at the validity dates of the intermediary certificate and the TSA certificate,
- DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA is valid from 2022/03/23 02:00:00 +02'00' and
- DigiCert Timestamp 2022 - 2 is valid from 2022/03/29 02:00:00 +02'00'.
They have been issued less then 2 weeks ago! Maybe they simply are not yet on the Adobe trust lists (AATL / EUTL). I've seen relevant trust anchors taking months to be included in those lists. Thus, it's not unlikely that Adobe Acrobat will become able to validate those time stamps over time.
- What is the maven-shade-plugin used for, and why would you want to relocate Java packages?
- Spring Security issue with JWT: Cannot subclass final class JwtAuthenticationProvider
- Stream Audio from Client to Server to Multiple Clients Java
- Find minimum sum from given array
- Get src value of <img> tags with inconsistent quoting
- Unable to find valid certification path to requested target - error even after cert imported
- Java | Binary string to byte
- Unexpected OutOfMemoryError when allocating an array larger than the heap
- Leetcode 643. Maximum Average Subarray I
- How to extract ALT-Texts and Images from a PDF
- Spring @Sql Annotations, possible to run once before all tests?
- Java Wildcard-types vs Kotlin Star-projection
- Can't get attributes of AWS SQS queue using Java & TestContainers
- Java/VSCode "file.java is not on the classpath of project, only syntax errors are reported"
- Using Enums while parsing JSON with GSON
- key-value store suggestion
- Springboot mySQL Failed to determine a suitable driver class
- Ant command 'war' fails with error 'jvxml.xml.lib doesn't denote a zipfileset or a fileset'
- Reading Multi-Level XML files in Java
- Intellij highlight file in Project Explorer
- Java springboot Validation is not working for me
- How to start multiple instances of the same Java project in Eclipse?
- Unable to resolve name [org.hibernate.dialect.MYSQL5Dialect] as strategy [org.hibernate.dialect.Dialect]
- Java JSCrollPane won't resize below minimum size of JButton with text
- How to generate classes using maven jaxb implements serializable
- String matches method - forward slash not working
- How to remove large if-else-if chain with the condition as String::startswith
- Save state of object in IntelliJ debug?
- When should I use the dollar symbol ($) in a variable name?
- Spring-Data-Jpa Repository - Underscore on Entity Column Name