A bit more detail here: https://www.scribd.com/document/325417135/Wo-Sign-and-Start-Com Might be wise to manually untrust the root CA's yourself.
Another good read on Wo-Sign certficates is here: https://www.schrauger.com/the-story-of-how-wosign-gave-me-an-ssl-certificate-for-github-com