This article provides details about the properties and Certificate Authority (CA) information for Auth0-managed certificates used with Custom Domains.

• Auth0 Managed Certificates
• Custom Domains

1. Auth0-managed certificates for Custom Domains have the following characteristics:

   • Validity Period: Certificates are valid for a period of three months. For more information, refer to Auth0-Managed Certificates.

   • Validation Type: Certificates are standard Domain-Validated (DV). Auth0 does not issue Extended Validation (EV) certificates.

   • Domain Coverage: Certificates are issued for the specific custom domain and are not wildcard certificates.

   • Certificate Authority: The Root CA is ISRG Root X1, and the Issuing CA is Let's Encrypt. NOTE: As of September 30, 2024, all new and renewed Auth0 managed certificates are signed with the ISRG X1 root. Certificates issued prior to this date may have used a different certificate chain.

   To manually verify the Certificate Authority for a specific domain, follow these steps:

   1. Navigate to the website in a web browser.

   2. Select the padlock icon in the address bar to view security information.

   3. Select Certificate or Certificate Information.

   4. In the certificate details, locate the Issuer or Issued By field to identify the Issuing CA.

   5. Locate the Root or Root CA field to identify the Root CA.

   Alternatively, an online tool such as an SSL Checker can be used to view a domain's certificate details.