On March 20, I got a cert expiration notice that states:
Your certificate (or certificates) for the names listed below will expire in 9 days (on 30 Mar 16 23:00 +0000). Please make sure to renew your certificate before then, or visitors to your website will encounter errors.
However, 19 days earlier, my letsencrypt cron job successfully renewed that domain’s cert:
2016-03-01 00:00:23,175:INFO:letsencrypt.reporter:Reporting to user: Congratulations! Your certificate and chain have been saved at /etc/letsencrypt/live/mydomain/fullchain.pem. Your cert will expire on 2016-05-29.
A Qualys SSL scan passes with grade “A” and confirms the expiration date of 2016-5-29.
I guess the email notice is telling me about expirations of previous certs for this domain, which is fine, but couldn’t it also include info about the most recent cert issued for the domain, and when that cert expires? It seems a little weird to warn somebody to renew a domain’s cert when you yourselves have successfully renewed that domain’s cert recently.