I have the following doubt:
Which command should I run to check the expiration date of my certificates on my server?
Operating System: Ubuntu
You can use the openssl tools for that:
$ openssl x509 -dates -noout < /path/to/certificate
But I have many certificates on server, each one in one folder, with the following files in folders:
Which of the files should I specify on the command?
cert.pem, because this is the leaf certificate.
I tried to run the following command:
sudo openssl x509 -dates -noout < /etc/letsencrypt/live/admin.mypharma.net.br/cert.pem
But it showed me this:
-bash: /etc/letsencrypt/live/admin.mypharma.net.br/cert.pem: Permission denied
Please show output of command:
$ ls -l /etc/letsencrypt/live/admin.mypharma.net.br/cert.pem
But I used sudo to run the command.
Ah, the problem is sudo invocation. The redirect of standard input seems to happen before privilege expansion.
$ sudo openssl x509 -dates -noout -in /path/to/cert.pem
It worked now.
Are you using Certbot? If so the command
certbot certificates will show output that includes the expiry and is easier to use than
Found the following certs: Certificate Name: example.com Domains: example.com, www.example.com Expiry Date: 2017-02-19 19:53:00+00:00 (VALID: 30 days) Certificate Path: /etc/letsencrypt/live/example.com/fullchain.pem Private Key Path: /etc/letsencrypt/live/example.com/privkey.pem
Ok, I’ll try this command.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.