diff --git a/javascript/src/iframe/viamapi-iframe.js b/javascript/src/iframe/viamapi-iframe.js
index 0bb7f7b785cc65655c94ea3eea2e00e5449c8b17..428d5ea7b0312c7ef7c918c3e3908e6cfebf01d3 100644
--- a/javascript/src/iframe/viamapi-iframe.js
+++ b/javascript/src/iframe/viamapi-iframe.js
@@ -1065,6 +1065,8 @@ const connection = Penpal.connectToParent({
         return encodeResponse("400", "", "Identity not authenticated");
       }
 
+      //TODO cache (for some time) the root certificate
+      // either as PEM or as certificate object (preferred)
       const rootCaResponse = await executeRestfulFunction(
         "private",
         window.viamApi,
@@ -1077,9 +1079,9 @@ const connection = Penpal.connectToParent({
       }
 
       const rootCaPem = rootCaResponse.data;
-      const success = await verifySMIME(smimeString, rootCaPem);
+      const verificationResult = await verifySMIME(smimeString, rootCaPem);
 
-      return encodeResponse("200", success, "Verified succesfully");
+      return encodeResponse("200", verificationResult.verified, verificationResult.message);
     },
     signEmail: async (passportUUID, emailArg, emailMessage) => {
       const authenticationPublicKey = localStorage.getItem(