I recently transferred my domain name legioncapital.ch to a different account on my registrar. But I messed up my kubernetes config in doing so and the HTTPS certificate now seems broken.
It is broken at the order level:
kubectl get order
NAME STATE AGE
legion-tls-hfk6c-2181229722 5m4s
As you can see, the state is not setting itself
Also:
kubectl get challenge
Error from server: conversion webhook for acme.cert-manager.io/v1alpha2, Kind=Challenge failed: Post "https://cert-manager-webhook.cert-manager.svc:443/convert?timeout=30s": x509: certificate signed by unknown authority (possibly because of "x509: ECDSA verification failure" while trying to verify candidate authority certificate "cert-manager-webhook-ca")
My domain is: legioncapital.ch
My web server is (include version): Nginx
The operating system my web server runs on is (include version): Kubernetes
My hosting provider, if applicable, is: Digitalocean
I can login to a root shell on my machine (yes or no, or I don't know): Yes
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): cert-manager.io/v1