To manage the public key infrastructure

To act as a trusted anchor for the entire chain

To issue certificates directly to end-users

To encrypt data for secure communication

It is signed by an intermediate CA

It contains a unique serial number

It is used only for VPNs

The owner and issuer information are the same

By issuing a public key to the intermediate CA

By encrypting data for the intermediate CA

By signing the intermediate CA's certificate with its private key

By sharing its private key

They are always identical

They are encrypted for security

They are only relevant for end-user certificates

They are different, indicating a non-self-signed certificate

The root CA

The intermediate CA

The end-user themselves

A third-party authority

A request to revoke a certificate

A request to verify a certificate

A request to encrypt data

A request to sign a certificate, sent to a CA

To prevent unauthorized certificate signing

To allow public access to the certificate

To enable data encryption

To ensure the certificate is self-signed