Yes, this will be true for many certificates affected by the TLS-ALPN-01 issue. Most clients set the renewal period to attempt renewal beginning at 30 days before expiry and if your certificate doesn’t meet that won’t requirement it won’t renew and utilize Let’s Encrypt resources unnecessarily. However, clients often have a flag or configuration option to change that and “force renew”. For certbot the command line argument is --force-renewal
2 Likes