Certificate Authority Invalid Issue

Hi "LetsEncrypt" Team,

Your Service is amazing...

We are renewed the certificate 14 hours before it's expire. Now we are facing the following Error.


My domain is: b2bmobilelab.com

I ran this command:

  1. certbot renew
  2. certbot renew --cert-name b2bmobilelab.com --dry-run

It produced this output:
Congratulations, all simulated renewals succeeded.
C:\Certbot\live\b2bmobilelab.com\fullchain.pem (success)

The operating system my web server runs on is (include version): Windows 11

I can login to a root shell on my machine (yes or no, or I don't know): Yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot --version 1.31.0

1 Like

Hi @SanthoshKumar, and welcome to the LE community forum :slight_smile:

It's kind of hard for me to see what it throwing that error message.
Is the problem seen over the Internet OR within the same LAN OR both?

There is a self-signed cert seen being server over port 443 now over the Internet.
SSL Server Test: b2bmobilelab.com (Powered by Qualys SSL Labs)


yeah its seen over the internet

Well, then whatever is serving that certificate needs to be instructed to serve the real [renewed] certificate.


Is there any period of time to activate for certificate after renewed...

Not from Let's Encrypt's side.

But the new certificate has to be installed on your server. What http server software are you using?


Nginx server

I would expect

Did you after using the Staging Environment actually get a production issued Certificate and install it in you web server to serve the new Certificate?
(likely needing to restart the web server).

Here is a list of issued certificates crt.sh | b2bmobilelab.com, the latest being 2022-10-15.
How did you obtain that certificate?

1 Like

Let's Debug reported 2 ERRORs for the HTTP-01 Challenge https://letsdebug.net/b2bmobilelab.com/1334974
Please check them out.

Also Best Practice - Keep Port 80 Open.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.