Email reminders for Certs that don't exist


#1

My question is, how can I see what sites are registered for renewal notifications? The certs for these sites are fine and have months to run, but I am getting renewal notices for these domains saying they expire in 10 days. I’m just trying to make sure the notifications we get are correct and relevant. Thanks :slight_smile:

My domain is:
certconverter.ivs.nz
certconverter.project42.nz

I ran this command:
sudo certbot certificates

It produced this output:
Found the following certs:
Certificate Name: certconverter.ivs.nz
Domains: … domains… (private) including these ones…
Expiry Date: 2018-12-08 20:15:50+00:00 (VALID: 50 days)
Certificate Path: /etc/letsencrypt/live/certconverter.ivs.nz/fullchain.pem
Private Key Path: /etc/letsencrypt/live/certconverter.ivs.nz/privkey.pem

My web server is (include version):
Ubuntu 14.04.0 LTS / Apache 2.4.33

I can login to a root shell on my machine (yes or no, or I don’t know): yes


#2

Hi @spithers

searching your domain name:

https://transparencyreport.google.com/https/certificates?cert_search_auth=&cert_search_cert=&cert_search=include_expired:false;include_subdomains:false;domain:certconverter.ivs.nz&lu=cert_search

You see: You have a lot of different certificates created. The one with epiry date 2018-12-08 has 24 domain names.

https://transparencyreport.google.com/https/certificates/kXm2Tillq7aAjzO2FA%2Bp4%2FDZznXPZKgnG5Rc3Bdd4vo%3D

has only one domain name, valid 2018-10-28 -> ten days, that’s the mail.

But Letsencrypt doesn’t know that you don’t use this certificate, because you use your certificate with 24 domain names.

So ignore the mail.


#3

@JuergenAuer Thanks so much for you quick reply! I wasn’t aware of that url to search for Certs. That explains it all. Great! Thanks again


#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.