Certbot renew giving BAD SSL Handshake Error


Dear all,

certbot renew produced this output:

SSLError: (“bad handshake: Error([(‘SSL routines’, ‘SSL3_GET_SERVER_CERTIFICATE’, ‘certificate verify failed’)],)”,)
Please see the logfiles in /var/log/letsencrypt for more details.

My web server is: Apache/2.4.10 (Debian)
The operating system: SMP Debian 3.16.51-3 (2017-12-13) x86_64 GNU/Linux

I have root access.

echo | openssl s_client -connect acme-v01.api.letsencrypt.org:443 gives the following output:

Verify return code: 9 (certificate is not yet valid)

Any suggestions what I can do to fix this?

Thank you very much



Can you share the latest logs from /var/log/letsencrypt ?

Thank you


Please check your system clock (e.g. with the date command).
If I look for expiration fields, I get:

notBefore=Jan 8 11:54:35 2018 GMT
notAfter=Apr 8 11:54:35 2018 GMT


It was the date.

Thank you so much!


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.