Certificate revocation, renewed and revocation again

Help
1

I noticed a certificate revocation yesterday evening. As I could not find a reason, I have renewed the certificate via the Synology DSM interface and obtained a new cert. This one was revoked again within 15 minutes? What is going on?

My domain is: mail.bmwmclub.nl

I ran this command: https://crt.sh/?q=bmwmclub.nl

It produced this output:

Mechanism Provider Status Revocation Date Last Observed in CRL Last Checked (Error)
OCSP The CA Revoked 2019-10-15 23:54:53 UTC n/a 2019-10-16 01:00:21 UTC
CRL The CA Unknown n/a n/a
CRLSet/Blacklist Google Not Revoked n/a n/a n/a
disallowedcert.stl Microsoft Not Revoked n/a n/a n/a
OneCRL Mozilla Not Revoked n/a n/a n/a

My web server is (include version): Apache 2.4

The operating system my web server runs on is (include version):DSM

I can login to a root shell on my machine (yes or no, or I don’t know):Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):DSM

2

Check some of the previous threads regarding Synology and unexpected revocation: https://community.letsencrypt.org/search?q="synology"%20"revoked"

Quickly reading a few of them, it seems that updating Diskstation should resolve that behavior.

2 Likes
3

Thanks, Should have used the search in the forum rather than google :wink: I added a new cert and will see tomorrow if it holds.

1 Like
4

All stable now after _az directions.

5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.