Expiration of certificate related to non existant subdomain

Hello,

Since several days now, i received notification of expiration from letsencrypt to warn me around 10 subdomains certificates are going to expire.

Im pretty happy to be warned, but the main issue, is that i have no clue i used those subdomain at first.

To be pretty clear i use a wildcard dns entry on my main domain with a traefik container managing all the administrative work related to certificates. I have correct certificates working more www/git/traefik/jenkins subdomains used by others containers routed by traefik

but i dont remember at all :
demo.mailbox
magento.mailbox
mailserver
old.mailbox
shop.mailbox
staging.mailbox
store.mailbox
test.mailbox
www.staging.zmail
cart
catalog
demo.staging
dev.staging
magento.staging
old.staging
proget
shop
shop.staging
store
store
test
www.cart
www.catalog
www.shop
www.store

More over i migrated my services on a fresh kubernetes cluster on a new server and wiped my old server, so im pretty helpless to check on my side anything about those certificates.

Is it possible to grab more information with certbot or online interface about those ?

1 Like

https://crt.sh/
https://transparencyreport.google.com/https/certificates?hl=en

And, as always, DNS is your friend.
Certificates are generally only functional at the IP that DNS resolves their names to.

1 Like

I will check those two sites.

For the dns there is an wildcard cname entry *.mydomain.com pointing on my server IP.
It’s traefik doing the routing, so anyrandomstring.mydomain.com will point to the server IP.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.