My domain is:
signexpert.sk
I ran this command:
certbot --apache --expand --agree-tos --no-eff-email --redirect --hsts --email peter@draxler.ml -d signexpert.sk -d signexpert.cz -d signexpert.hu -d signexpert.eu
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Cert not yet due for renewal
You have an existing certificate that has exactly the same domains or certificate name you requested and isn't close to expiry.
(ref: /etc/letsencrypt/renewal/signexpert.sk.conf)
What would you like to do?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: Attempt to reinstall this existing certificate
2: Renew & replace the cert (limit ~5 per 7 days)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate number [1-2] then [enter] (press 'c' to cancel): 2
Renewing an existing certificate
Deploying Certificate to VirtualHost /etc/apache2/sites-enabled/vhost-signexpert.sk-le-ssl.conf
Deploying Certificate to VirtualHost /etc/apache2/sites-enabled/vhost-signexpert.cz-le-ssl.conf
Deploying Certificate to VirtualHost /etc/apache2/sites-enabled/vhost-signexpert.hu-le-ssl.conf
Deploying Certificate to VirtualHost /etc/apache2/sites-enabled/vhost-signexpert.eu-le-ssl.conf
Enhancement Strict-Transport-Security was already set.
Enhancement Strict-Transport-Security was already set.
Enhancement Strict-Transport-Security was already set.
Enhancement Strict-Transport-Security was already set.
Enhancement redirect was already set.
Enhancement redirect was already set.
Enhancement redirect was already set.
Enhancement redirect was already set.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Your existing certificate has been successfully renewed, and the new certificate
has been installed.
The new certificate covers the following domains: https://signexpert.sk,
https://signexpert.cz, https://signexpert.hu, and https://signexpert.eu
You should test your configuration at:
https://www.ssllabs.com/ssltest/analyze.html?d=signexpert.sk
https://www.ssllabs.com/ssltest/analyze.html?d=signexpert.cz
https://www.ssllabs.com/ssltest/analyze.html?d=signexpert.hu
https://www.ssllabs.com/ssltest/analyze.html?d=signexpert.eu
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/signexpert.sk/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/signexpert.sk/privkey.pem
Your cert will expire on 2020-06-27. To obtain a new or tweaked
version of this certificate in the future, simply run certbot again
with the "certonly" option. To non-interactively renew *all* of
your certificates, run "certbot renew"
- If you like Certbot, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
Donating to EFF: https://eff.org/donate-le
My web server is (include version):
Server version: Apache/2.4.38 (Debian)
Server built: 2019-10-15T19:53:42
The operating system my web server runs on is (include version):
Debian GNU/Linux 10.3
I'm using Docker image based onphp:7.4-apache
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
certbot 0.31.0
Everything went through fine. However, when I access my website from Chrome or Edge, I get a nasty error message:
Your connection is not private
Attackers might be trying to steal your information from signexpert.sk (for example, passwords, messages, or credit cards). Learn more
NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED
Is there anything that can be done to fix this? Will this get fixed by itself? Can anything be done to speed up the resolution? My website is not accessible for customers .
Thanks for any help.