Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: solartest.org.uk
I ran this command:
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator manual, Installer None
Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org
Cert not yet due for renewal
You have an existing certificate that has exactly the same domains or certificate name you requested and isn't close to expiry.
What would you like to do?
1: Keep the existing certificate for now
2: Renew & replace the cert (limit ~5 per 7 days)
Select the appropriate number [1-2] then [enter] (press 'c' to cancel): 2
Renewing an existing certificate
Congratulations! Your certificate and chain have been saved at: /etc/letsencrypt/live/solartest.org.uk/fullchain.pem Your key file has been saved at: /etc/letsencrypt/live/solartest.org.uk/privkey.pem Your cert will expire on 2021-03-01. To obtain a new or tweaked version of this certificate in the future, simply run certbot again. To non-interactively renew all of your certificates, run "certbot renew" If you like Certbot, please consider supporting our work by: Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate Donating to EFF: https://eff.org/donate-le
My web server is (include version): nginx/1.12.2
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is: Linode
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot): certbot 0.37.2
The problem I have is that I now appear to have a certificate divided into two parts: one called *.solartest.org.uk which expired 01/12/2020, 12:47:56 (Greenwich Mean Time); and one called Let's Encrypt Authority X3, which expires 17/03/2021, 16:40:46 (Greenwich Mean Time).
When I attempt to access this server, with, e.g. demos.solartest.org.uk I get site’s certificate is expired.
I always use the command above to renew the certificate (adding the _acme_challenge token to the DNS TXT Record and waiting 5 minutes TTL).
It appeared to work. But it didn't !?