If you have any questions about whether you need to do anything special for the upcoming DST Root CA X3 expiration in September 2021, please post them here. A staff member may split out some conversations into their own threads. Note: Your first step in debugging should be to update your operating …

So are you saying that just simply creating a new cert fixed the problem? Wayne Sallee Wayne@WayneSallee.com

Yes. Because the fullchain.pem had the expired cert in it.

Didn't work for me, with lftp. Wayne Sallee Wayne@WayneSallee.com

[image] eladnava: On my Ubuntu 16.04.6 LTS machine, the solution to SSL trust issues was to remove the DST Root CA X3 certificate by running the following two commands: sudo rm /usr/share/ca-certificates/mozilla/DST_Root_CA_X3.crt sudo update-ca-certificates That's the approach I tried, but …

Actually I did. Start with this article: DST Root CA X3 Expiration (September 2021) - Let's Encrypt You must not be getting Windows updates (as is the case with me) for it to break. Otherwise an update would have already downloaded the ISRG Root X1 root cert. Chrome, strangely, uses Windows's root …

Thanks, man! Gonna try the update and if not the FF method.

[image] alimovz: ISRG Root X1 It worked! I exported it from another PC that had it and imported it on the problematic PC. Important confusion is not to double click, but to use the IMPORT function.

Precisely. I double clicked first also.

I had some trouble using Python 3.9 on Windows 10 The standard way (up to 2021-09-30) was: Python 3.9.5 (tags/v3.9.5:0a7dcbd, May 3 2021, 17:27:52) [MSC v.1928 64 bit (AMD64)] on win32 Type "help", "copyright", "credits" or "license" for more information. >>> import urllib3 >>> http = urllib3.Poo…

Help thread for DST Root CA X3 expiration (September 2021)

Help

paezguga October 2, 2021, 2:10pm 1203

Thanks! This fixed my problem.
Is this solution permanent? Do you know if it might break in the future?

Can i set auto renew using this approach?

Topic		Replies	Views
DST Root CA X3 expiry countdown ISRG/Organizational	103	10279	May 23, 2022
Understanding DST Root expiry and the older default cert chain Help	36	3706	December 8, 2021
R3 Intermediate certificate has expired Help	133	36930	November 1, 2021
Feedback wanted: DST Root CA X3 expiration all-subscriber email Issuance Tech	14	3137	May 6, 2021
Questions re: OpenSSL Client Compatibility Changes for Let’s Encrypt Certificates Issuance Tech	55	10375	September 7, 2021

Help thread for DST Root CA X3 expiration (September 2021)

Related topics