Using utl_http & wallets on 12c: certificate validation failure

Question

Hope someone can spot what I\'m doing wrong as I\'m going bald from this.

I have used utl_http & wallets to call https on 11gR1 without much trouble, but our new

Answer 1

Answering my own question for the benefit of others.

According to Oracle Support only the certificate chain should be imported, not the end site certificate. In the example I used above, only import the following certificates into the wallet:

Geotrust SSL CA & Geotrust Global CA

Do not import the *.presstogo.com certificate

To quote Oracle support:

The reason that the select is failing in 12c is that 12c does not want to see the user cert in the wallet as a trusted cert.

This was apparently not an issue in previous versions but removing that cert from the wallet fixed the issue here.

This contradicts all information I have found online regarding the use of utl_http to connect to Https sites, and confused the hell out of me.

Hopefully this will help others in my situation.