Hi,
As per the App Note , only 3 CA vendors ( Entrust,Verisign and Microsoft) are supported by SRX . However others are also supported as long as they conform to X509 standard.
"No public key found" suggests some problem with CA Certificate . After pulling the IKE identity offered in IKE phase-1 from the peer and searching through the config to find a mathcing IKE gateway,SRX makes sure that it has not been tampered with by validating the digital signature on the remote's cert using the public key in the CA's cert.
Have you loaded and verified this CA certificate properly ?
Show security pki ca-certificate ca-profile <ca-profile name> detail
request security pki ca-certificate verify ca-profile <ca-profilename>