Certificate not trusted

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: zedmagicmusic.com

My website ssl license not trusted

It produced this output: not trusted


Hi @muma

where do you see that result? Checked with my browser, all ok. Checked via https://check-your-website.server-daten.de/?q=zedmagicmusic.com#url-checks - most is ok.

Your certificate

expires in 89 days	www.zedmagicmusic.com, zedmagicmusic.com - 2 entries

has both domain names.

Small problem: Incomplete chain - use fullchain.pem instead of cert.pem.


Hi @muma !
I agree with @JuergenAuer

Looks good to me from West Coast USA!
I can get to both www and non www no problems detected.



This is what I get


zedmagicmusic.com isn't sending an intermediate certificate:

osiris@desktop tmp $ openssl s_client -connect zedmagicmusic.com:443
depth=0 CN = zedmagicmusic.com
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = zedmagicmusic.com
verify error:num=21:unable to verify the first certificate
verify return:1
Certificate chain
 0 s:CN = zedmagicmusic.com
   i:C = US, O = Let's Encrypt, CN = R3

How did you get the certificate in the first place and how did you install it into your webserver?


What says "Advanced"?

Is there an Anti-Virus-Software with something like a "deep inspection".

Looks like you see a wrong certificate in your local network.


I pasted the private key and ssl license into my hosting account

1 Like

Try clearing your cache?

1 Like

@muma, what you pasted was incomplete; it was missing the intermediate certificate. This is what @JuergenAuer and @Osiris both noticed, and I can also confirm it.

What method did you use to obtain the certificate that you pasted this way? Maybe it provided some additional information elsewhere that you didn't end up using?


I copied everything
First from begin private key to its end which I pasted on private key

Then from begin certificate to the end then I pasted it on SSL certificate then uploaded both

1 Like

"private key" and "certificate" is not the same as "private key", "certificate" and "intermediate certificate" though.

Most "SSL upload" features support a certificate chain (which is the end leaf certificate plus intermediate certificate) as "certificate".

Unfortunately, you haven't answered the question about how you got the certificate in the first place, so no idea where you might be able to find the intermediate provided by the ACME client you've used.


I got the certificate using infinity free admin dashboard


Welcome to the Let's Encrypt Community, Muma :slightly_smiling_face:

While it's not an automated solution, you can...

  1. Download the intermediate certificate here.
  2. Append/paste the contents of the intermediate certificate file to the bottom of your certificate file (being sure to leave a blank line between the two certificates).
  3. Upload the combined file.
1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.