Expiry date in email does not match the browser

My domain is:
www.foundationlaboratory.com

I am using kubernetes cert manager which I believe should auto renew the certificate.

I am getting emails saying my certificate will expire in a few days but when I look at the details of the certificate through the web browser it looks like it should expire June 6. Also when I visit crt.sh | www.foundationlaboratory.com it looks like it was renewed March 8? Are these emails correct or are the certificates renewed?

3 Likes

Welcome to the Let's Encrypt Community, Chris :slightly_smiling_face:

https://crt.sh/?Identity=foundationlaboratory.com&deduplicate=Y

1 Like

I received an email on March 17 saying the certificate would expire in 19 days (06 April) and then another email on March 27 saying it would expire in 10 days (06 April). It looks to me like the certificate renewed for this domain on March 8 which I believe matches the June 6 expiration. Is there a way to tell if the emails are correct or the browser expiration and crt.sh | foundationlaboratory.com corrent?

2 Likes

The date on the actual certificate (in both the browser and crt.sh) is correct. It's possible that you are receiving the emails for an old certificate that covers slightly different domain names.

2 Likes

This is the certificate (covering foundationlaboratory.com) to which the email refers:

https://crt.sh/?id=3887856793

This certificate (covering foundationlaboratory.com and www.foundationlaboratory.com):

https://crt.sh/?id=3892992222

was successfully renewed at 60 days:

https://crt.sh/?id=4183562909


A better perspective:

https://crt.sh/?Identity=foundationlaboratory.com&deduplicate=Y&dir=v&sort=3&group=none

1 Like

Let's see if we can do better...

1 Like

Got it, so it looks like there is another certificate that was generated that is no longer being used and it is about to expire. Thanks for your help.

3 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.