🔐

ca.tjo.cloud

Hi! You can get information about tjo.cloud Certificate Authority (CA) here.

What domains are covered by the CA?

This CA for now only covers the internal. TLD. In the future, we might cover more.

How to get ACME certificates?

Example with Caddy

{
  # Either Public DNS (servied via LetsEncrypt Cert)
  # acme_ca https://ca.tjo.cloud/acme/v1/directory
  # Or Internal DNS (served via ca.tjo.cloud Cert)
  # acme_ca https://ca.cloud.internal/acme/v1/directory

  # Download from https://ca.tjo.cloud/roots.pem
  acme_ca_root /path/to/ca-tjo-cloud/roots.pem
}

example.internal {
  respond "Hello, world!"
}

Configuring Linux to accept CA

sudo mkdir -p /usr/local/share/ca-certificates/ca-tjo-cloud
sudo curl -sLo /usr/local/share/ca-certificates/ca-tjo-cloud/roots.pem https://ca.tjo.cloud/roots.pem
sudo update-ca-certificates

Root Fingerprint:

b7fd933541ee1001e1b480353a03690881fd0c50518c8aa67608944675cac875

Root Certificate:

Also accessible at /roots.pem

-----BEGIN CERTIFICATE-----
MIIBfzCCASSgAwIBAgIQTwBj3msM0GPYkUSHuEsKEjAKBggqhkjOPQQDAjAeMRww
GgYDVQQDExNjYS50am8uY2xvdWQgLSBSb290MCAXDTI2MDIwNjIwNTc0MFoYDzIw
NTEwMzE0MTI1NzQwWjAeMRwwGgYDVQQDExNjYS50am8uY2xvdWQgLSBSb290MFkw
EwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAENghQfaCunCDzn0BmU8vI5X79OAqZ7Uob
8tM38BJmvUmafJMyxpvlIKNgotXJfnTw1GN5mR6u4eqvSRclhUcRtKNCMEAwDgYD
VR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFD0gfxAPGvuX
jmqfZ1CreFQT+WuQMAoGCCqGSM49BAMCA0kAMEYCIQCY0suGAsNGx7n2+F+Z786Q
dubTJY1VA3fqwc0ZpO+AtQIhAOmeM2O7iFarM2KILzS5189DsdNIn5pp9v5uLOSX
T8+p
-----END CERTIFICATE-----