Let’s Encrypt certificates are valid for 90 days; by default, Certbot renews them every 60 days.
https://admin.gdnet.com.ar/ was using this certificate: 2018-04-04
Certbot automatically renewed it on schedule, on 2018-06-03.
Apparently, the web server wasn’t configured to use that certificate. Or it was configured to, but had not yet been reloaded.
At that point, since Certbot has renewed the certificate, if you run “
certbot renew”, it will say that the certificate doesn’t need to be renewed.
Today, another certificate got issued, 2018-07-03, and the website is now using it.
It sounds like Certbot is managing certificate renewal, but somehow the web server is never using the new certificates. Then when the old certificate expires, you notice the error, force Certbot to issue an extra certificate, and then update the web server.
As far as Certbot and Let’s Encrypt are aware, your certificates are being renewed 30-60 days before expiration, and they’re never close to expiring.
You need to do one or both of:
- Set up monitoring to warn you if your websites are using certificates that are going to expire soon.
- Configure Certbot, the control panel, and the web server to automatically use the new certificates that Certbot issues.