The Issuing CAs from ORC SSP, Symantec NFI and Symantec SSP PKIs expired on December 31, 2013 and will not be renewed. These CAs have been removed from the DoD Approved External PKIs master document and certificate trust chains file that are posted on the IASE External and Federal PKI Interoperability page. DoD relying parties should remove these CAs to prevent certificate path processing errors. – January 1, 2014.