Hi all
Many thanks to your help in advance.
I still have issues with auto renew SSL on our site.
Here is the command run to renew existing SSL.
sudo -H /opt/letsencrypt/letsencrypt-auto certonly --standalone --renew-by-default -d www.c
-cor.com.au -d c-cor.com.au -dmy.c-cor.com.au -d spec.c-cor.com.au >>/home/ec2-user/log/let
sencrypt-auto-update.log
Output is:
[ec2-user@ip-172-31-21-249 letsencrypt]$ /bin/sh /home/ec2-user/bin/renewSSLscript.sh
Stopping httpd: [ OK ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for c-cor.com.au
http-01 challenge for my.c-cor.com.au
http-01 challenge for spec.c-cor.com.au
http-01 challenge for www.c-cor.com.au
Waiting for verification…
Cleaning up challenges
Starting httpd:
My domain is:www.c-cor.com.au
I ran this command:
sudo ./certbot-auto certificates
It produced this output:
Invalid OCSP response for /etc/letsencrypt/live/my.c-cor.com.au/cert.pem: param nextUpdate is in the past…
Invalid OCSP response for /etc/letsencrypt/live/www.c-cor.com.au/cert.pem: param nextUpdate is in the past…
Found the following certs:
Certificate Name: c-cor.com.au
Domains: www.c-cor.com.au c-cor.com.au
Expiry Date: 2019-07-06 21:58:55+00:00 (VALID: 25 days)
Certificate Path: /etc/letsencrypt/live/c-cor.com.au/fullchain.pem
Private Key Path: /etc/letsencrypt/live/c-cor.com.au/privkey.pem
Certificate Name: my.c-cor.com.au
Domains: my.c-cor.com.au
Expiry Date: 2019-04-27 23:18:39+00:00 (INVALID: EXPIRED)
Certificate Path: /etc/letsencrypt/live/my.c-cor.com.au/fullchain.pem
Private Key Path: /etc/letsencrypt/live/my.c-cor.com.au/privkey.pem
Certificate Name: spec.c-cor.com.au
Domains: www.c-cor.com.au c-cor.com.au my.c-cor.com.au spec.c-cor.com.au
Expiry Date: 2019-09-09 19:49:09+00:00 (VALID: 89 days)
Certificate Path: /etc/letsencrypt/live/spec.c-cor.com.au/fullchain.pem
Private Key Path: /etc/letsencrypt/live/spec.c-cor.com.au/privkey.pem
Certificate Name: www.c-cor.com.au
Domains: www.c-cor.com.au
Expiry Date: 2019-04-27 23:28:00+00:00 (INVALID: EXPIRED)
Certificate Path: /etc/letsencrypt/live/www.c-cor.com.au/fullchain.pem
Private Key Path: /etc/letsencrypt/live/www.c-cor.com.au/privkey.pem
My web server is (include version): Apache 2.4.39
The operating system my web server runs on is (include version):
[ec2-user@ip-172-31-21-249 letsencrypt]$ cat /etc/os-release
NAME=“Amazon Linux AMI”
VERSION=“2018.03”
ID=“amzn”
ID_LIKE=“rhel fedora”
VERSION_ID=“2018.03”
PRETTY_NAME=“Amazon Linux AMI 2018.03”
ANSI_COLOR=“0;33”
CPE_NAME=“cpe:/o:amazon:linux:2018.03:ga”
HOME_URL=“http://aws.amazon.com/amazon-linux-ami/”
My hosting provider, if applicable, is: AWS
I can login to a root shell on my machine (yes or no, or I don’t know):Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot):