An entity, usually a certificate authority (CA), that a particular service knows and trusts. The service trusts the validity of the public key of the trusted root. The public key, even though it is trusted, is still in public key certificate form and is called a trusted root certificate. Any public key certificate signed by a trusted root is believed to be valid.
VeriSign* Class 3 is an example of a trusted root.