Objective

How do I check my local environment trusts the new Vonage Root CA for *.nexmo.com?

Context

Our endpoints use TLS certificates, signed by public certificate authorities, to ensure the security of our communications with our customers and partners.

Applies To

• SMS
• SIP
• SMPP
• WebSockets

Procedure

Run the following command from a console terminal to see if the Root CA that signed our new Vonage domain certificate is already installed in your environment.

$ openssl s_client -connect api.nexmocn.com:443 || curl -v https://api.nexmocn.com/health

Additional Information

This is not computing infrastructure specific and applies to the physical machine, VM, container image, or Kubernetes cluster like AWS EKS where your service is running. If your environment is not installed with the root CA, use standard best practices and trust the Certificate Authority (Digicert), which signed our certificate. Digicert’s root certificates can be found here. We recommend against storing local copies of these certificates in your platform or application, but they can be found in Certificate for *.nexmo.com.