How can I renew an expired certificate?

Help
1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: www.atlantashaman.com

I ran this command: N/A

It produced this output: N/A

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is: Hostica

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

2

Hi @dwiatl

there is an expired Letsencrypt certificate ( https://check-your-website.server-daten.de/?q=atlantashaman.com#certificates ):

CN=atlantashaman.com
	18.03.2019
	16.06.2019
4 days expired	
atlantashaman.com, www.atlantashaman.com - 2 entries

How did you create that certificate?

There are some older certificates:

CRT-Id Issuer not before not after Domain names LE-Duplicate next LE
1300792813 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2019-03-18 15:44:19 2019-06-16 14:44:19 atlantashaman.com, www.atlantashaman.com
2 entries
1042152703 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2018-12-19 13:52:07 2019-03-19 13:52:07 atlantashaman.com, d6765896.m194.plainhost.com, www.atlantashaman.com
3 entries
822558607 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2018-10-05 13:14:09 2019-01-03 14:14:09 atlantashaman.com, d6765896.m194.plainhost.com, www.atlantashaman.com
3 entries
586908472 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2018-07-06 20:46:00 2018-10-04 20:46:00 atlantashaman.com, d6765896.m194.plainhost.com, www.atlantashaman.com
3 entries
347873929 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2018-03-05 17:39:56 2018-06-03 16:39:56 atlantashaman.com, www.atlantashaman.com
2 entries
133439036 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2017-05-05 19:18:00 2017-08-03 19:18:00 atlantashaman.com, www.atlantashaman.com
2 entries

Looks like you have used tls-sni-01 validation, that's not longer supported.

So you have to switch to another validation method.

3

Thanks, how do I go about setting up a new method? Actually have a support ticket into my hosting company and they will get me a new certificate, but they’re also the ones that told me that the expired certificate would automatically renew.

Dwight

4

If you use a client from your hoster, you should ask your hoster.

That's the reason of these questions:

If you don't have root access, you have to use a solution of your hoster. But then it's the problem of the hoster to renew certificates or to fix it, if a renew doesn't work.

5

Yeah, frustrated with Hostica right now. Sorry, don’t deal with this end of the site much, so I don’t know what you’re asking, much less the correct answers.

I do appreciate the help.

And my host just renewed my certificate, so the immediate problem is resolved. Is it possible for me to download Certbot and keep this from happening again?

6

Hi @dwiatl,

We have a new page published recently describing the circumstances in which Certbot is most likely to be useful and relevant. You can take a look and see if your situation matches.

7

Thanks I’ll check it out.

8

The main questions: Do you have root access, do you use a shared hosting, is there something like cPanel or Plesk? If you have cPanel, Plesk or something else, you should use that (instead of certbot). If you have root access, you can do what you want. If it is a shared hosting, your options are limited.

9

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.