Find out where certificate came from

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. |, so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command: Open Web Page

It produced this output: Certificate is expired

My web server is (include version): UKN

The operating system my web server runs on is (include version): UKN

My hosting provider, if applicable, is: UKN

I can login to a root shell on my machine (yes or no, or I don't know): Don't Know

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): UKN

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): N/A

When attempting to bring up our website internally it says that our lets encrypt certificate is expired. If we try to access the web site externally it comes up just fine with a certificate from Cloudflare

Welcome to the community @AdminBCC

It looks like you are using the Cloudflare CDN. In this case there are two HTTPS connections and each has its own cert.

The HTTPS connection between a client (like a browser) and the Cloudflare CDN Edge uses a cert the Edge obtained and manages.

The HTTPS connection between the Edge and your Origin Server has a cert on your Server that you got.

You can see your cert history with a tool like (see here).

The reason you see the LE cert when checking locally is you are connecting to your Server directly (I presume).

So, all looks fine to me. Except, you should review your origin server to see why the cert is not renewing. You must have your Cloudflare settings set to ignore expired certs and that's why normal browser connections still work.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.