Debian based web server issue with new root certificate

I run an API from my web server, and the recent LetsEncrypt certificate expiry has caused a TrustFailure error from my Xamarin Forms based Android app.

I have renewed the certificate using Certbot through the terminal but the old certificate remains. When connecting from a browser there is no problem.

Does anyone have any ideas?

I’m having the same issue on my Debian. Curl from command line to same server fails - ssl expired. It’s not actually expired. Web https still works. What’s the easiest solution. Do I have to renew my certs even tho they are not expired??

I renewed my certs and it made no difference. It somehow is still looking at the old one.

I think the answer may be in this thread: Help thread for DST Root CA X3 expiration (September 2021) - #547 by aaronp

If somebody finds the solution, can they post it here so its clear? That thread above is a monster.

You need to restart your web server.

  • What version of Debian do you use?
  • Can you post the exact curl command?
  • "Web https still works" <- what does that mean? Can you access the site with a web browser? (if so which one?)
  • Bonus question: which version of OpenSSL do you use?
1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.