Client certificate verification issue at Server side, reported by mbedtls for certificate chain. Chain contain 3 certificates L3, L2 and L1. Root certificate is applied by the server into the mbedtls. Error code flag comes from x509_crt_find_parent and points to MBEDTLS_X509_BADCERT_NOT_TRUSTED (“The certificate is not correctly signed by the trusted CA”).
However…It seems, that certificates are verified in right order from L3 to L0 (root). Can anyone help post the possible reasons for MBEDTLS_X509_BADCERT_NOT_TRUSTED (“The certificate is not correctly signed by the trusted CA”) ??