Ask HN: What is your experience with ZeroSSL?

Last month, Let&#x27;s Encrypt made some changes to their certificate chain in order to reduce traffic exchange during a TLS handshake and also their operating costs; the details are explained here [1].<p>As a result, any certificates issued (or renewed) after Feb 8th will not work on older Android devices (&lt; 7.1.1), unless the ACME client has been configure to request an alternate certificate chain. The &quot;alternate chain&quot; workaround will also stop working on June 6th.<p>I need to support these older Android devices so I am looking for alternatives. I have seen ZeroSSL mentioned a few times; it is also the default CA for acme.sh (the ACME client I am using nowadays) [2]. They have a number of paid plans but ACME certificates are free [3].<p>I&#x27;ll be testing this over the next few days, but I would also like to ask if people here have experience with ZeroSSL (good or bad :-). Any feedback would be helpful.<p>[1]: https:&#x2F;&#x2F;letsencrypt.org&#x2F;2023&#x2F;07&#x2F;10&#x2F;cross-sign-expiration.html<p>[2]: https:&#x2F;&#x2F;github.com&#x2F;acmesh-official&#x2F;acme.sh<p>[3]: https:&#x2F;&#x2F;zerossl.com&#x2F;documentation&#x2F;acme&#x2F;