{ "$schema": "https://json-structure.org/meta/core/v0/#", "$id": "https://raw.githubusercontent.com/api-evangelist/censys/refs/heads/main/json-structure/platform-rootstore-structure.json", "name": "RootStore", "description": "RootStore schema from Censys Platform API", "type": "object", "additionalProperties": false, "properties": { "chains": { "type": [ "array", "null" ], "description": "A path of trusted signing certificates up to a root certificate present in a root store, represented as an ordered list of SHA-256 fingerprints.", "items": { "$ref": "#/components/schemas/RootStore_Chain" } }, "ever_valid": { "type": "boolean", "description": "Whether the certificate has ever been considered valid by the root store." }, "had_trusted_path": { "type": "boolean", "description": "Whether there ever existed a trusted path of signing certificates from a certificate present in the root certificate store." }, "has_trusted_path": { "type": "boolean", "description": "Whether there currently exists a trusted path of signing certificates from a certificate present in the root certificate store." }, "in_revocation_set": { "type": "boolean", "description": "Whether the certificate is in the revocation set (e.g. OneCRL) associated with the root store." }, "is_valid": { "type": "boolean", "description": "Whether the certificate is currently considered valid by the root store: a summary of the trust path, revoked, blocklisted/allowlisted, and expired fields." }, "parents": { "type": [ "array", "null" ], "description": "The SHA-256 fingerprints of the certificate's immediate parents in its trust path(s).", "items": { "type": "string" } }, "type": { "type": "string", "description": "The certificate's type. Options include root, intermediate, or leaf.", "enum": [ "", "root", "intermediate", "leaf" ] } } }