The Root Certificate have as chain: EquifaxSecureCA: C = US, O = Equifax, OU = Equifax Secure Certificate Authority That signed the Google CA: GoogleInternetAuthority: C = US, O = Google Inc, CN = Google Internet Authority What do you see with your browser related to the digital certificate parameters? Maybe we can find which are the rough CA with which they can do Deep Packet Inspection?