The cross-sign of ISRG Root X1 by DST Root CA X3 has now expired.

It's been 10 years in the making, but Let's Encrypt is now a fully standalone certificate authority, trusted by the vast majority of browsers and other devices