哪个 X509 StoreName 指的是 Windows10 中受信任的根证书颁发机构下存储的证书

Question

在枚举 AuthRoot 和 CertificateAuthorities X509 商店时，我无法在本地计算机上找到导入到 Trusted Root Certification Authorities 的自签名 SSL 证书：

        X509Store store = new X509Store(StoreName.AuthRoot);  // also tried StoreName.CertificateAuthorities
        store.Open(OpenFlags.ReadOnly);
        var storecollection = (X509Certificate2Collection) store.Certificates;
        foreach (X509Certificate2 x509 in storecollection)
        {
            Console.WriteLine("certificate name: {0}", x509.Subject);
        }

自签名 SSL 证书是否被枚举器视为无效而跳过？我是不是找错地方了？

这是我在 MMC 的证书管理单元中看到的内容：

Answer 1

StoreName.Root 是您想要的“受信任的根证书颁发机构”。

AuthRoot 是“Third-Party 根证书颁发机构”，CertificateAuthority 是“中间证书颁发机构”。

哪个 X509 StoreName 指的是 Windows10 中受信任的根证书颁发机构下存储的证书

Which X509 StoreName refers to the certificates stored beneath Trusted Root Certification Authorities in Windows10

ssl

client-certificates

x509certificate2