InCommon SSL Chain
Comodo AddTrust External CA → InCommon Intermediate Server CA → Subscriber SSL Certificates
Root Certificate
The SHA-2 Root: USERTrust RSA Certification Authority" (Expires Jan 2038) from Sectigo(link is external).
Intermediate Certificate
The "InCommon RSA Server CA [PEM]" (Expires October 5, 2024) from Internet2.
Subscriber SSL Certificates
These certificates are issued and recorded using the InCommon Certificate Service.
Special Purpose Certificate
For unusual cases, Sectigo has offered a cross signing option with its AAA root(link is external), which does not expire until 2028.