How to revoke old certificate from Lets Encrypt which opens on another domain

I create cert for test.fermion-risk.com domain on Lets Encrypt. This domain is our test server. After few months i buy certificate on Comodo fom www.fermion-risk.com, which is our production server. I install new cert on server but when i open the page it shows old cert which is issued for test.fermion-risk.com and issued by Lets encrypt, and that cert is not installed on that server. How can i revoke old certificate and fix that.

Server is on Windows OS. Application server is Tomcat.

Hi @marko.dudic

don't revoke the certificate.

It's valid ( https://check-your-website.server-daten.de/?q=fermion-risk.com ):

CN=test.fermion-risk.com
	11.03.2019
	09.06.2019
expires in 66 days	test.fermion-risk.com, 
www.fermion-risk.com - 2 entries

www is secure. If you install the new certificate, the old certificate is replaced.

If you revoke the certificate without replacing it, your website would be dead.

Ask Comodo how to install the new certificate. If this is done, the old certificate isn't longer important.

I install cert from comodo, but i dont know why browser use old Lets encrypt cert.
i want browser to use this cert from

Last Certificates - Certificate Transparency Log Check (BETA)

1315804109
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester
2019-03-24 23:00:00
2020-03-24 22:59:59
COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com

Your website sends

CN=test.fermion-risk.com
	11.03.2019
	09.06.2019
expires in 61 days	test.fermion-risk.com, www.fermion-risk.com - 2 entries

So

  • you didn't install it correct (and / or)
  • you didn't restart your server

You have two comodo certificates from the last 7 days:

CRT-Id Issuer not before not after Domain names LE-Duplicate next LE
1352680425 CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester 2019-04-04 22:00:00 2020-03-24 22:59:59 COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com
1352758520 CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester 2019-04-04 22:00:00 2020-03-24 22:59:59 COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com
1315804109 CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester 2019-03-24 23:00:00 2020-03-24 22:59:59 COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com
1275625553 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2019-03-11 09:34:52 2019-06-09 08:34:52 test.fermion-risk.com, www.fermion-risk.com
1009209758 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2018-12-07 13:02:55 2019-03-07 13:02:55 test.fermion-risk.com
1008486487 CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US 2018-12-07 06:32:58 2019-03-07 06:32:58 test.fermion-risk.com

But if you don't install one of these, the current certificate is used.

It's irrelevant, which CA has created that certificate.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.