Specifies a list of keystore objects that contain the trusted root
certificates that are self-signed or issued by a certificate authority.
The certificate authority authenticates a user and issues a certificate.
After the certificate is issued, the keystore objects, which contain these
certificates, use the certificate for certificate path or certificate chain
validation of incoming X.509-formatted security tokens.