There's been some confusion around BRs non-compliant X.509 chains that OpenSSL accepts but Go rejects.
We're not going to introduce complexity in crypto/x509 for them, but I realized you could re-encode the issuer as an unsigned root to work around it.
So I made a little web tool to make it easy.
What version of Go are you using (go version)? Sorry, I'm not actually using Go itself, but I'm using etcd (https://github.com/etcd-io/etcd; apparently written in go) and got an error about subject...github.com
