Deleting certificates with domains that exist in other certificates

Hello, I have some expired domains which I don’t want to renew, they however contain the same domains in other certificates. So I really wouldn’t want to hurt my live websites.

Domains: kentivo.de
Expiry Date: 2019-12-12 10:45:26+00:00 (INVALID: EXPIRED)

Certificate Name: www.kentivo.de
Domains: www.kentivo.de kentivo.nl www.kentivo.nl
Expiry Date: 2019-12-12 10:34:56+00:00 (INVALID: EXPIRED)

and here are the ACTIVE ones:

Certificate Name: kentivo.com
Domains: kentivo.com www.kentivo.com
Expiry Date: 2020-03-19 15:24:10+00:00 (VALID: 59 days)

So I would like to keep the VALID certificate and delete the two others above it that contain the same kentivo.com and www.kentivo.com domain.

My plan was to create a folder /etc/letsencrypt/retired.certs and put them there instead of deleting them so I would move the folders that are expired to the retired.certs folder ?

My web server is (include version):
Server version: Apache/2.4.25 (Debian)
Server built: 2019-08-19T19:25:31

The operating system my web server runs on is (include version):
Distributor ID: Debian
Description: Debian GNU/Linux 9.9 (stretch)
Release: 9.9
Codename: stretch

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.28.0

1 Like

See: https://certbot.eff.org/docs/using.html#re-creating-and-updating-existing-certificates
Which says:

and may be useful in removing the unused names from the cert.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.