validation of cert chain missing
I have created one root ca certficate with different intermediate ca certificates to sign host and client certificates. The signed certificates from one intermediate certificate can be used by a host and certificate chain of another intermediate ca. This seems to be a security issue for me.