After you have created your key ring, you need to connect any relevant CA certificates to it. For example, to connect a CA certificate for My CA to your key ring, use the following command:
RACDCERT ID(userid1) CONNECT(CERTAUTH LABEL('My CA') RING(ring-name) USAGE(CERTAUTH))
where userid1 is either the channel initiator user ID or the owner of a shared key ring.
For more information about CA certificates, refer to Digital certificates.