Certbot renew giving BAD SSL Handshake Error

hans2k6 · March 19, 2018, 12:52pm

Dear all,

certbot renew produced this output:

SSLError: ("bad handshake: Error([('SSL routines', 'SSL3_GET_SERVER_CERTIFICATE', 'certificate verify failed')],)",)
Please see the logfiles in /var/log/letsencrypt for more details.

My web server is: Apache/2.4.10 (Debian)
The operating system: SMP Debian 3.16.51-3 (2017-12-13) x86_64 GNU/Linux

I have root access.

echo | openssl s_client -connect acme-v01.api.letsencrypt.org:443 gives the following output:

Verify return code: 9 (certificate is not yet valid)

Any suggestions what I can do to fix this?

Thank you very much

stevenzhu · March 19, 2018, 12:58pm

Hi,

Can you share the latest logs from /var/log/letsencrypt ?

Thank you

bytecamp · March 19, 2018, 2:06pm

Please check your system clock (e.g. with the date command).
If I look for expiration fields, I get:

notBefore=Jan 8 11:54:35 2018 GMT
notAfter=Apr 8 11:54:35 2018 GMT

hans2k6 · March 19, 2018, 3:29pm

It was the date.

Thank you so much!

system · April 18, 2018, 3:29pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Certificate renew is failing “bad handshake..” Help	8	1736	January 9, 2022
Certbot, certificate verify failed Help	18	2593	April 8, 2022
SSL Error Certificate verify failed Help	3	4342	February 22, 2017
Urgent certbot does not update due DNS issue Help	31	3144	December 6, 2021
Certbot 0.28 option --server seems to not work Help	4	1084	December 13, 2021

Certbot renew giving BAD SSL Handshake Error

Related topics