In the past I’ve used the following command with sucess:
echo | openssl s_client -connect localhost:443 2>/dev/null|openssl x509 -noout -dates
Now I like the ease of just “certbot certificates”. I am however noticing after forcing a renew that they are showing different dates.
Both should be valid commands.
One thing I"m noticing however is that the Certbot comand shows my certs having been renewed and are valid for 89 more days. The other command however, is still showing an expiration date coming up in about 10 days. When I inspect the ssl cert via Firefox it also shows an expiration date in about 10 days. Is there a way to verify that the live cert has been renewed?
I ran the force renew because “certbot renew” was throwing an error.