Early this morning, I updated (with win-acme) the web server's (IIS 8.5) SSL certificate due to the known problem of Let's Encrypt with the expiration of the its root certificate (DST Root CA X3). So almost everything is fine and dandy with the new one: Firefox in Win XP 3 SP3, every browser in Windows 10 and Firefox on Windows 7.
However Chrome on Windows 7 shows the old one (DST Root CA X3) instead of the new one. I did clear the SSL state but nothing, still the old expired ones. Chrome is fully updated: Version 94.0.4606.61 (Official Build) (64-bit)
Why is this happening? From reading around, this wasn't supposed to happen with Windows 7, and that the problematic OS would be Win XP less than SP3. Plus, why does Firefox on Windows 7 does not have this problem?
Is there a solution to this other than moving away from Let's Encrypt, which is something I would like to avoid?
As you can see in the screenshots, Chrome in Windows 7 still has the old expired root certificate:
Update:
Through certlm.msc I put into the untrusted ones both "R3" (expired yesterday) and "DST Root CA X3" (expiring today), rebooted the server, but the problem in Chrome on Windows 7 still persists
