First of all, huge props to all the people who have been helping the rest of us navigate this recent expiry issue, you guys are incredible.
Unfortunately, after the Root X3 certificates expired on the 30th, users accessing my site on Android 6 have reported getting certificate error messages. I did some trawling around this forum looking for a solution, but didn't have much luck. I have attempted to troubleshoot this by re-installing my certificates with certbot with the --preferred-chain "DST Root CA X3" flag, but had no success with that. The website is fully accessible for all of my other users, to my knowledge.
Grateful to anyone who has suggestions about how I can proceed, thank you.
And in your case, you used --preferred-chain "DST Root CA X3" (not needed because this is the default chain) and the output of above command should look like:
0 s:CN = taimaka-internal.org
i:C = US, O = Let's Encrypt, CN = R3
1 s:C = US, O = Let's Encrypt, CN = R3
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
2 s:C = US, O = Internet Security Research Group, CN = ISRG Root X1
i:O = Digital Signature Trust Co., CN = DST Root CA X3
So, I would recheck the Apache conf because the part where you define the paths to your cert and key should look like this: