News

Root CA BuyPass Ends TLS/SSL Certificate Issuance, Including Free GoSSL via ACME

Manish

18 Aug 2025 — 2 min read

Today, on August 18, BuyPass (a Root CA based in Norway) has sadly announced the termination of the service for issuing TLS/SSL certificates, including Go SSL (ACME).

The Discontinuation Timeline has been shared by BuyPass, which has also provided the specifics and details.

October 15, 2025, is the final day to order, renew, or replace BuyPass TLS/SSL certificates. However, other ACME services, such as revocation, will remain operational. The ARI endpoint will be terminated.

Starting September 15, it will no longer be possible to register new ACME accounts with BuyPass.

April 15, 2026, is the last expiration date for Buypass TLS/SSL certificates, including free GoSSL certificates.

Revocation and certificate status services will be discontinued, as will the ACME service.

I will miss the free six-month GoSSL certificates

Here at Nixsanctuary, we have been using BuyPass's GoSSL certificates for multiple servers. It's been one of my favorite free root CA to use via ACME. In fact, I believe it is the only free European root CA.

One reason is the support.

BuyPass's customer support team was active on the official community page and offered real support.

They offered human support even for the free GoSSL certificates. I received prompt responses from their customer support regarding these certificates.

Thank you again, BuyPass, for the kind service! I will miss it forever.

Is this a small win for Let's Encrypt?

It is a sad day in terms of the closure of a Norway-based root CA service, BuyPass, due to lack of profitability. It is a small win for the community-focused Let's Encrypt project.

One reason cited for the closure is the strong shift from commercial TLS/SSL certificates to free certificates for most volumes.

This essentially means that the nonprofit's dream of offering free, automated, secure, signed TLS certificates to everyone is progressing well.

Today, Let's Encrypt is a well-respected root CA across platforms, both ethically and technically.

Debian 13 'Trixie' released: Get ready for latest and greatest packages in the current Debian Stable

Audio Version0:00/388.05651× Today, August 9, 2025, the Debian Project released Debian 13, also known as "trixie". At first glance, it is clear that it will be one of the greatest distribution releases of 2025. I can't speak for you, my dear readers, but

Ghost CMS 6.0 released: Exciting New Features – But Self-Hosting Users Miss Out

Audio Version0:00/346.5841× Today, August 4, 2025, Ghost CMS released its latest version, Ghost 6.0. Only a couple of hours have passed, and we are already live with Ghost 6.0. There is a lengthy change log post dedicated to Ghost 6.0 on Ghost.org. The

WordPress Plugin Vulnerability Leaks Donor Data: Secure Your Site with a WAF

Audio Version0:00/278.58151× Last week, you may have read about the donor data breach that Pi-hole experienced with the GiveWP plugin they use for their donation page form. The breach caused panic among Pi-hole's donors, who were suddenly inundated with spam to email addresses they had

NixSanctuary Bulletin: Issue 1

Audio Version of NixSanctuary Bulletin, Issue 10:00/862.3551× Debian finally fixed a 22-year-old bug related to Debian Pure Blend, released as Debian Med This interesting news comes straight from Debian Micronews. On July 29, 2025, Carlos Henrique Lima Melara posted about a Debian bug that was opened in