403.16 — Client certificate is untrusted of invalid

Two days ago, I configured a web application on IIS 8.5, which requires a client SSL certificate for authentication. Client certificate and server certificate were from the same CA, they trust each other without any problem, and none of them were even near to expiry date. Still, the application was giving this error code 403 — Forbidden.