Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: orgibisph.net
I have two websites on same server and same IP: trac.orgibisph.net and svn.orgibisph.net
I ran this command, from web browser:
crt.sh | trac.orgibisph.net
crt.sh | svn.orgibisph.net
It produced this output:
Multiple lines of what appear to be same URLs but with different expiry dates
My web server is (include version):
Server version: Apache/2.4.58 (Ubuntu)
Server built: 2024-07-17T18:55:23
The operating system my web server runs on is (include version):
Ubuntu linux 24.04
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know): YES
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 2.11.0
I am getting expiry notices from Let's Encrypt.
If I examine the certs in the browser the expiration date is farther in the future for both svn.orgibisph.net and trac.orgibisph.net
In a browser crt.sh show multiple entries, I think it would be best for folks to run the commands
And it is showing multiple certs with different expiration dates.
I can't seem to find what else is different about them, and I also am not sure how what I am seeing happened. I think for now, I would like to remove the older certs, if that is a reasonable thing to do, but am not sure how.
Crontab shows a commented out renewal.
The following entries for snap.certbot.renew.timer and server are:
root@ip-10-0-0-102:/etc/systemd/system# cat snap.certbot.renew.timer
[Unit]
Auto-generated, DO NOT EDIT
Description=Timer renew for snap application certbot.renew
Requires=snap-certbot-3834.mount
After=snap-certbot-3834.mount
X-Snappy=yes
[Timer]
Unit=snap.certbot.renew.service
OnCalendar=--* 10:36
OnCalendar=--* 12:39
[Install]
WantedBy=timers.target
root@ip-10-0-0-102:/etc/systemd/system#
root@ip-10-0-0-102:/etc/systemd/system# cat snap.certbot.renew.service
[Unit]
Auto-generated, DO NOT EDIT
Description=Service for snap application certbot.renew
Requires=snap-certbot-3834.mount
Wants=network.target
After=snap-certbot-3834.mount network.target snapd.apparmor.service
X-Snappy=yes
[Service]
EnvironmentFile=-/etc/environment
ExecStart=/usr/bin/snap run --timer="00:00~24:00/2" certbot.renew
SyslogIdentifier=certbot.renew
Restart=no
WorkingDirectory=/var/snap/certbot/3834
TimeoutStopSec=30
Type=oneshot
root@ip-10-0-0-102:/etc/systemd/system#