The above -0002 cert is the only working cert profile you have. Yet, below, your Apache is referring to one of the (now broken) cert profiles. The easiest way forward is to manually change your config file
/etc/apache2/sites-enabled/default-ssl.conf
And modify these 2 lines
SSLCertificateFile /etc/letsencrypt/live/mail.alliedvaughndam.com/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/mail.alliedvaughndam.com/privkey.pem
to look like this (changing file path and using fullchain.pem)
SSLCertificateFile /etc/letsencrypt/live/mail.alliedvaughndam.com-0002/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/mail.alliedvaughndam.com-0002/privkey.pem
and remove this ChainFile line completely (it is deprecated and the full chain is already set in new SSLCertificateFile above
SSLCertificateChainFile /etc/letsencrypt/live/mail.alliedvaughndam.com/fullchain.pem
Once those are changed and Apache reloaded let us know. There are other things to get fixed
- Removing the broken cert renewal profiles
- Changing standalone to use
certonly --apache - Removing duplicate VirtualHosts for port 80