<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
Hi Aki and all,<br>
<br>
Thanks for the feedback.<br>
<br>
I have removed the home-made root CA and the home-made server cert
signed by the root CA, replaced it with valid Let's Encrypt cert and
all works well.<br>
<br>
Whilst the home-made certs have always worked well (years) with
Thunderbird clients and iOS 12.x, the new iOS 13.0 is now very picky
about the cert parameters. The Let's Encrypt cert is a good
solution, although I may eventually explore learning how to properly
use OpenSSL to generate home-made root CA and server certificates.
Can anyone point me to a good resource that has all the information
for generating these certs?<br>
<br>
<div class="moz-signature">
<div style="font-family:'Apple SD Gothic
Neo',Arial,Helvetica,sans-serif;font-size:16px;color:#222;background-color:#fff;padding-bottom:30px">
<div>Kind regards,</div>
<div>Peter<br>
</div>
</div>
</div>
</body>
</html>