Is there any restriction on the CAs signature algorithm with respect to the public algorithm in the actual server/device certificate? For example, can a ECDHE_ECDSA_* certificate be signed by a CA with RSA and still be within spec? Is this mentioned in any of the RFCs?
Also, If the above is true, is there any provision in the CSR format to specify the algorithm to be used by the CA to sign it?
I tried to google this but could not find a cited answer