WebPKI Observatory — Geographic Risk
US-incorporated CAs issue 88.62% of certificates despite representing only 15 of 90 trusted CAs, while Europe hosts 45 CAs but produces just 11.31% of issuance. Asia-Pacific's 17 CAs contribute only 0.06% of volume, revealing extreme geographic concentration in both incorporation and market activity. This concentration intersects with jurisdiction risk, as the majority of certificate issuance operates under US legal frameworks including compelled disclosure obligations and extraterritorial surveillance authorities.