Certificate Renewal

Hi, I have taken over from a developer that is no longer here, and a certificate has expired on one of our internal servers that I need to renew, but I am not sure what steps I need to take

the domain is www2.selectscience.net

If the server is internal and cannot be reached from the public internet then you must have used the DNS Challenge when getting the cert. You are using Cloudflare DNS so that is well-supported for this purpose.

The next step is to find out what ACME Client you used to get the cert. This is essential. There are dozens of possibilities. Please fill out the answers from the form questions as best you can so we can help you identify which client you are using.


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):


@GPSS this is information is mostly ancillary information to assist you and others in the debugging process.

List of issued certificates for crt.sh | www2.selectscience.net
List of issued certificates for https://crt.sh/?q=selectscience.net

Looks good with DNS-01 Let's Debug

DNS https://unboundtest.com/m/CAA/www2.selectscience.net/A2LF5FUF
and www2.selectscience.net | DNSViz

Testing and debugging are best done using the Staging Environment as the Rate Limits are much higher. Rate Limits are per week (rolling).

1 Like

Can you speak with the previous developer (or anyone else) about how the cert was being managed?
Is there any record of it in that "company"?
Can you search through the server for cron type jobs being run?


Thanks, I managed to figure it all out and got it renewed


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.