Curl and Lynx and bunch of other apps on my Debian Testing cant seem to be able to access letsencrypt.org sites and some other LE certificate sites. I tried disabling the DST certs
Then I did update-ca-certificates but that did not help. What else can I try?
curl https://valid-isrgrootx1.letsencrypt.org/
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
This is a server, it does not have desktop running.
wget https://letsencrypt.org/certs/isrgrootx1.der
--2021-10-02 00:10:13-- https://letsencrypt.org/certs/isrgrootx1.der
Resolving letsencrypt.org (letsencrypt.org)...
67.207.81.229, 161.35.60.200, 2604:a880:400:d0::1b6b:7001, ...
Connecting to letsencrypt.org (letsencrypt.org)|67.207.81.229|:443... connected.
ERROR: The certificate of ‘letsencrypt.org’ is not trusted.
ERROR: The certificate of ‘letsencrypt.org’ doesn't have a known issuer.
Well OpenSSL is new enough...
It must have something to do with ca-certificates
I'm not sure how things get Debianed, but if it apts...
First: sudo apt update sudo apt-get update
[yeah both]
Then update your ca-certs.