Update:
/usr/lib/jvm/java-7-openjdk-amd64/jre/lib/security/cacerts is linked to
/etc/ssl/certs/java/cacerts
Running
$keytool -list -v -keystore /usr/lib/jvm/java-7-openjdk-amd64/jre/lib/security/cacerts
> openjdkcacerts.txt
gives the linked...
http://pastebin.com/tc794cvP
So it seems java has access to all the necessary root CAs...
Posted by forums
Original post:
https://community.jboss.org/message/866870#866870