Crl.entrust.com not responding

My domain is: hypori.com

We are getting systemwide failures trying to contact crl.identrust.com - the server does not respond and connections timeout.

Ran traceroute. Things look ok until we get to customer.algx.net - after that, things time out. I think their server is down (been down since sometime this am).

1 Like

Hi @bjvetter, welcome to the community forum.

This is unrelated to Let’s Encrypt and sounds like a problem with a different CA: Entrust. You’ll likely have to investigate this problem with Entrust’s support channels.

2 Likes

Well, these are letsencrypt certs whose root CA is signed by identrust.com with a CRL that points at https://crl.identrust.com/… So, it is a problem with letsencrypt CA’s and certs since they can no longer be verified via the provided CRL url.

There are no Let’s Encrypt intermediate or root CAs cross-signed by Entrust. I think there’s some confusion at work here.

This website isn’t responding to HTTPS requests with a Let’s Encrypt issued certificate. It’s using Cloudflare’s CA.

2 Likes

My mistake - they are trying to access crl.identrust.com

3 Likes

For what it’s worth, crt.sh (which automatically processes CRLs) also shows issues accessing http://crl.identrust.com/.

https://crt.sh/?id=15706126

3 Likes

Oh, and I did not provide the full hostname/domain path. hypauth.iw.hypori.com is using letsencrypt certs as well as various droidcloud.mobi servers.

1 Like

After pinging here and sending to support@identrust.com, their servers are now back up.

5 Likes

Aha! That makes sense :+1:

Glad to hear it. Thanks for contacting Identrust support.

3 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.