I am pretty sure that my certificates now are renewed, but I still get the email from Let's Encrypt Expiry Bot expiry@letsencrypt.org with topic "Let's Encrypt certificate expiration notice for domain "example.com" (and 55 more)" saying that "Your certificate (or certificates) for the names listed below will expire in 1 days (on 16 Oct 21 22:03 +0000). Please make sure to renew your certificate before then, or visitors to your web site will encounter errors."
I've visited the web-domains with a browser and it says the certificates are valid until 10.jan.2022.....
Is there a way to figure out why I am receiving this email and/or if something is misconfigured?
Have you read the e-mail entirely? Because there's a paragraph regarding what Let's Encrypt views as a renewal and what not as a renewal. (Where renewals don't trigger expiry e-mails, but all other issuances do..)
My native language is not english so Im not sure....Here is the entire email with the domans redacted:
Hello,
Your certificate (or certificates) for the names listed below will expire in 1 days (on 16 Oct 21 22:03 +0000). Please make sure to renew your certificate before then, or visitors to your web site will encounter errors.
We recommend renewing certificates automatically when they have a third of their total lifetime left. For Let's Encrypt's current 90-day certificates, that means renewing 30 days before expiration. See Integration Guide - Let's Encrypt for details.
For details about when we send these emails, please visit: Expiration Emails - Let's Encrypt In particular, note that this reminder email is still sent if you've obtained a slightly different certificate by adding or removing names. If you've replaced this certificate with a newer one that covers more or fewer names than the list above, you may be able to ignore this message.
If you are receiving this email in error, unsubscribe at:
You have issued a certificate for 54 domains 3 days ago, that means you removed 2 domains from your previous certificate so for Let's Encrypt your new certificate is not a renewal because doesn't have the same domains so Let's Encrypt sent an email to let you know your certificate will expire but if you don't care about the two removed domains (a*.b*a.*o and m*.b*a.*o) you are good, nothing to worry about it.
This is the part of the e-mail I meant specifically. You could see if the expiry e-mail documentation in the paragraph above is available in your own language.
@sahsanu & @Osiris - thanks for your help!! I did indeed reduce the number of domains with two.
It would ofcourse be helpful (or easier for newbies like me) if the expiration-email was a bit more spesific (ie: listing the domains that are now missing or something), but I have no idea if this is even possible to implement.
Is there some command I could run on my certbot that shows all domains and their expiration-dates?
