Can not renew the certificate

Server: Ubuntu 16.04 x84-64, nginx/1.10.1, root, no admin panel.

And the certificate letsencrypt: Serial Number: 03:c0:49:46:f6:f0:ab:5c:af:3c:0f:7f:56:d9:f5:b9:3b:0f ( Not Before: Sep 1 11:07:00 2017 GMT/Not After : Nov 30 11:07:00 2017 GMT)

When I try to update the certificate manually or automatically I see a message about a successful update. The script overwrites the certificate files in the folder. But the certificate’s end date remains the same.
When I try to get a new certificate in manual mode (letsencrypt-auto --agree-dev-preview --server \ -a manual auth) the effect is the same

  • Congratulations! Your certificate and chain have been saved at:
    Your key file has been saved at:
    Your cert will expire on 2017-11-30. To obtain a new or tweaked
    version of this certificate in the future, simply run
    letsencrypt-auto again. To non-interactively renew all of your
    certificates, run “letsencrypt-auto renew”

Which command did you run in detail?
Whats the output of letsencrypt-auto certificates?
Whats the output of the command openssl x509 -dates -noout < /etc/letsencrypt/live/

A post was split to a new topic: What to do about renewal notice

letsencrypt-auto certificates
Saving debug log to /var/log/letsencrypt/letsencrypt.log

Found the following certs:
Certificate Name:
Expiry Date: 2017-11-30 11:07:00+00:00 (VALID: 15 days)
Certificate Path: /etc/letsencrypt/live/
Private Key Path: /etc/letsencrypt/live/

openssl x509 -dates -noout < /etc/letsencrypt/live/
notBefore=Sep 1 11:07:00 2017 GMT
notAfter=Nov 30 11:07:00 2017 GMT

Commands (tried 2 variants) :

  1. letsencrypt-auto
  2. letsencrypt-auto --agree-dev-preview --server \ -a manual auth

Have you ever tried letsencrypt-auto renew?

By the way: The second command seems a bit overcomplicated, you don’t have to specify the server in most cases.

letsencrypt-auto renew
Saving debug log to /var/log/letsencrypt/letsencrypt.log

Processing /etc/letsencrypt/renewal/

Cert not yet due for renewal

Processing /etc/letsencrypt/renewal/

Cert is due for renewal, auto-renewing…
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for
http-01 challenge for
http-01 challenge for
http-01 challenge for
Waiting for verification…
Cleaning up challenges

new certificate deployed without reload, fullchain is

The following certs are not due for renewal yet:
/etc/letsencrypt/live/ (skipped)
Congratulations, all renewals succeeded. The following certs have been renewed:
/etc/letsencrypt/live/ (success)

But in fact the certificate is old:
root@vps-19776:/opt/letsencrypt# openssl x509 -dates -noout < /etc/letsencrypt/live/
notBefore=Sep 1 11:07:00 2017 GMT
notAfter=Nov 30 11:07:00 2017 GMT

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.