My OpenSsl doesn’t find an error.
1 Like
Thank you @JuergenAuer. I believe, and I could be wrong, it’s my machine. Especially since I mentioned earlier that other computers don’t do this.
How about running this command?
sudo openssl x509 -in /etc/letsencrypt/live/www.kalodemo.com/cert.pem -noout
Do you see an error here?
1 Like
Yulp!
unable to load certificate
4600469100:error:09FFF06C:PEM routines:CRYPTO_internal:no start line:/BuildRoot/Library/Caches/com.apple.xbs/Sources/libressl/libressl-22.250.1/libressl-2.6/crypto/pem/pem_lib.c:683:Expecting: TRUSTED CERTIFICATE
Well, something is wrong with that file somehow…
How about this command?
sudo hexdump -C /etc/letsencrypt/live/www.kalodemo.com/cert.pem
1 Like
00000000 e2 89 88 2d 2d 2d 2d 2d 42 45 47 49 4e 20 43 45 |…-----BEGIN CE|
00000010 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d 2d 0a 4d |RTIFICATE-----.M|
00000020 49 49 47 47 6a 43 43 42 51 4b 67 41 77 49 42 41 |IIGGjCCBQKgAwIBA|
00000030 67 49 53 41 7a 66 30 44 74 35 2b 4d 6a 52 30 33 |gISAzf0Dt5+MjR03|
00000040 76 42 44 61 43 6f 71 37 62 72 2b 4d 41 30 47 43 |vBDaCoq7br+MA0GC|
00000050 53 71 47 53 49 62 33 44 51 45 42 43 77 55 41 0a |SqGSIb3DQEBCwUA.|
00000060 4d 45 6f 78 43 7a 41 4a 42 67 4e 56 42 41 59 54 |MEoxCzAJBgNVBAYT|
00000070 41 6c 56 54 4d 52 59 77 46 41 59 44 56 51 51 4b |AlVTMRYwFAYDVQQK|
00000080 45 77 31 4d 5a 58 51 6e 63 79 42 46 62 6d 4e 79 |Ew1MZXQncyBFbmNy|
00000090 65 58 42 30 4d 53 4d 77 49 51 59 44 56 51 51 44 |eXB0MSMwIQYDVQQD|
000000a0 0a 45 78 70 4d 5a 58 51 6e 63 79 42 46 62 6d 4e |.ExpMZXQncyBFbmN|
000000b0 79 65 58 42 30 49 45 46 31 64 47 68 76 63 6d 6c |yeXB0IEF1dGhvcml|
000000c0 30 65 53 42 59 4d 7a 41 65 46 77 30 78 4f 44 41 |0eSBYMzAeFw0xODA|
000000d0 33 4d 54 49 78 4f 54 45 31 4e 44 6c 61 46 77 30 |3MTIxOTE1NDlaFw0|
000000e0 78 0a 4f 44 45 77 4d 54 41 78 4f 54 45 31 4e 44 |x.ODEwMTAxOTE1ND|
000000f0 6c 61 4d 42 73 78 47 54 41 58 42 67 4e 56 42 41 |laMBsxGTAXBgNVBA|
00000100 4d 54 45 48 64 33 64 79 35 72 59 57 78 76 5a 47 |MTEHd3dy5rYWxvZG|
00000110 56 74 62 79 35 6a 62 32 30 77 67 67 45 69 4d 41 |Vtby5jb20wggEiMA|
00000120 30 47 0a 43 53 71 47 53 49 62 33 44 51 45 42 41 |0G.CSqGSIb3DQEBA|
00000130 51 55 41 41 34 49 42 44 77 41 77 67 67 45 4b 41 |QUAA4IBDwAwggEKA|
00000140 6f 49 42 41 51 44 61 55 4c 63 7a 75 44 4c 4a 6f |oIBAQDaULczuDLJo|
00000150 51 31 2f 52 47 2f 4d 54 6b 33 58 72 6f 43 63 34 |Q1/RG/MTk3XroCc4|
00000160 58 4b 69 0a 46 41 6e 37 49 68 61 54 47 46 6f 35 |XKi.FAn7IhaTGFo5|
00000170 34 52 7a 51 62 52 6f 4a 63 39 52 36 6b 67 54 68 |4RzQbRoJc9R6kgTh|
00000180 47 7a 4a 37 76 67 61 79 39 6c 31 5a 59 59 44 6a |GzJ7vgay9l1ZYYDj|
00000190 68 63 41 6d 4a 56 62 73 57 63 31 67 37 30 63 70 |hcAmJVbsWc1g70cp|
000001a0 78 34 6f 53 0a 35 56 42 65 36 49 41 4f 61 34 6d |x4oS.5VBe6IAOa4m|
000001b0 73 76 35 48 48 46 36 77 54 49 69 63 5a 63 46 45 |sv5HHF6wTIicZcFE|
000001c0 33 69 78 53 64 6a 31 59 6c 51 70 47 35 63 4c 37 |3ixSdj1YlQpG5cL7|
000001d0 61 43 46 48 6d 35 7a 55 51 36 74 4d 31 72 2b 2b |aCFHm5zUQ6tM1r++|
000001e0 51 39 73 76 58 0a 41 56 4a 34 70 79 37 4b 51 32 |Q9svX.AVJ4py7KQ2|
000001f0 55 48 68 73 4d 51 7a 2b 56 4c 7a 5a 42 53 42 58 |UHhsMQz+VLzZBSBX|
00000200 49 70 79 2f 73 46 61 52 53 6e 41 6d 47 66 31 46 |Ipy/sFaRSnAmGf1F|
00000210 42 2b 38 7a 75 35 71 66 52 58 65 47 47 4d 64 72 |B+8zu5qfRXeGGMdr|
00000220 30 4a 38 41 4f 70 0a 75 57 74 46 5a 2f 33 41 65 |0J8AOp.uWtFZ/3Ae|
00000230 73 4a 51 6e 4a 2f 41 51 41 4a 61 6e 6c 6c 45 52 |sJQnJ/AQAJanllER|
00000240 74 51 48 4c 69 78 2f 2f 41 65 62 37 69 62 43 47 |tQHLix//Aeb7ibCG|
00000250 6b 67 30 73 4e 32 6c 71 34 6f 56 4e 4a 49 77 53 |kg0sN2lq4oVNJIwS|
00000260 4d 53 32 51 68 2b 63 0a 6a 56 31 45 57 37 42 35 |MS2Qh+c.jV1EW7B5|
00000270 73 6a 55 62 30 48 4e 48 48 73 51 74 30 69 57 57 |sjUb0HNHHsQt0iWW|
00000280 78 41 4b 36 70 31 70 33 46 62 36 53 72 45 78 4b |xAK6p1p3Fb6SrExK|
00000290 2f 52 56 48 6a 49 67 62 61 6e 42 78 46 39 73 58 |/RVHjIgbanBxF9sX|
000002a0 41 67 4d 42 41 41 47 6a 0a 67 67 4d 6e 4d 49 49 |AgMBAAGj.ggMnMII|
000002b0 44 49 7a 41 4f 42 67 4e 56 48 51 38 42 41 66 38 |DIzAOBgNVHQ8BAf8|
000002c0 45 42 41 4d 43 42 61 41 77 48 51 59 44 56 52 30 |EBAMCBaAwHQYDVR0|
000002d0 6c 42 42 59 77 46 41 59 49 4b 77 59 42 42 51 55 |lBBYwFAYIKwYBBQU|
000002e0 48 41 77 45 47 43 43 73 47 0a 41 51 55 46 42 77 |HAwEGCCsG.AQUFBw|
000002f0 4d 43 4d 41 77 47 41 31 55 64 45 77 45 42 2f 77 |MCMAwGA1UdEwEB/w|
00000300 51 43 4d 41 41 77 48 51 59 44 56 52 30 4f 42 42 |QCMAAwHQYDVR0OBB|
00000310 59 45 46 4f 45 4b 79 53 33 37 38 52 4b 68 6c 54 |YEFOEKyS378RKhlT|
00000320 75 4d 54 44 6b 47 44 4f 57 39 0a 43 75 43 4f 4d |uMTDkGDOW9.CuCOM|
00000330 42 38 47 41 31 55 64 49 77 51 59 4d 42 61 41 46 |B8GA1UdIwQYMBaAF|
00000340 4b 68 4b 61 6d 4d 45 66 64 32 36 35 74 45 35 74 |KhKamMEfd265tE5t|
00000350 36 5a 46 5a 65 2f 7a 71 4f 79 68 4d 47 38 47 43 |6ZFZe/zqOyhMG8GC|
00000360 43 73 47 41 51 55 46 42 77 45 42 0a 42 47 4d 77 |CsGAQUFBwEB.BGMw|
00000370 59 54 41 75 42 67 67 72 42 67 45 46 42 51 63 77 |YTAuBggrBgEFBQcw|
00000380 41 59 59 69 61 48 52 30 63 44 6f 76 4c 32 39 6a |AYYiaHR0cDovL29j|
00000390 63 33 41 75 61 57 35 30 4c 58 67 7a 4c 6d 78 6c |c3AuaW50LXgzLmxl|
000003a0 64 48 4e 6c 62 6d 4e 79 65 58 42 30 0a 4c 6d 39 |dHNlbmNyeXB0.Lm9|
000003b0 79 5a 7a 41 76 42 67 67 72 42 67 45 46 42 51 63 |yZzAvBggrBgEFBQc|
000003c0 77 41 6f 59 6a 61 48 52 30 63 44 6f 76 4c 32 4e |wAoYjaHR0cDovL2N|
000003d0 6c 63 6e 51 75 61 57 35 30 4c 58 67 7a 4c 6d 78 |lcnQuaW50LXgzLmx|
000003e0 6c 64 48 4e 6c 62 6d 4e 79 65 58 42 30 0a 4c 6d |ldHNlbmNyeXB0.Lm|
000003f0 39 79 5a 79 38 77 4b 51 59 44 56 52 30 52 42 43 |9yZy8wKQYDVR0RBC|
00000400 49 77 49 49 49 4d 61 32 46 73 62 32 52 6c 62 57 |IwIIIMa2Fsb2RlbW|
00000410 38 75 59 32 39 74 67 68 42 33 64 33 63 75 61 32 |8uY29tghB3d3cua2|
00000420 46 73 62 32 52 6c 62 57 38 75 59 32 39 74 0a 4d |Fsb2RlbW8uY29t.M|
00000430 49 48 2b 42 67 4e 56 48 53 41 45 67 66 59 77 67 |IH+BgNVHSAEgfYwg|
00000440 66 4d 77 43 41 59 47 5a 34 45 4d 41 51 49 42 4d |fMwCAYGZ4EMAQIBM|
00000450 49 48 6d 42 67 73 72 42 67 45 45 41 59 4c 66 45 |IHmBgsrBgEEAYLfE|
00000460 77 45 42 41 54 43 42 31 6a 41 6d 42 67 67 72 0a |wEBATCB1jAmBggr.|
00000470 42 67 45 46 42 51 63 43 41 52 59 61 61 48 52 30 |BgEFBQcCARYaaHR0|
00000480 63 44 6f 76 4c 32 4e 77 63 79 35 73 5a 58 52 7a |cDovL2Nwcy5sZXRz|
00000490 5a 57 35 6a 63 6e 6c 77 64 43 35 76 63 6d 63 77 |ZW5jcnlwdC5vcmcw|
000004a0 67 61 73 47 43 43 73 47 41 51 55 46 42 77 49 43 |gasGCCsGAQUFBwIC|
000004b0 0a 4d 49 47 65 44 49 47 62 56 47 68 70 63 79 42 |.MIGeDIGbVGhpcyB|
000004c0 44 5a 58 4a 30 61 57 5a 70 59 32 46 30 5a 53 42 |DZXJ0aWZpY2F0ZSB|
000004d0 74 59 58 6b 67 62 32 35 73 65 53 42 69 5a 53 42 |tYXkgb25seSBiZSB|
000004e0 79 5a 57 78 70 5a 57 51 67 64 58 42 76 62 69 42 |yZWxpZWQgdXBvbiB|
000004f0 69 0a 65 53 42 53 5a 57 78 35 61 57 35 6e 49 46 |i.eSBSZWx5aW5nIF|
00000500 42 68 63 6e 52 70 5a 58 4d 67 59 57 35 6b 49 47 |BhcnRpZXMgYW5kIG|
00000510 39 75 62 48 6b 67 61 57 34 67 59 57 4e 6a 62 33 |9ubHkgaW4gYWNjb3|
00000520 4a 6b 59 57 35 6a 5a 53 42 33 61 58 52 6f 49 48 |JkYW5jZSB3aXRoIH|
00000530 52 6f 0a 5a 53 42 44 5a 58 4a 30 61 57 5a 70 59 |Ro.ZSBDZXJ0aWZpY|
00000540 32 46 30 5a 53 42 51 62 32 78 70 59 33 6b 67 5a |2F0ZSBQb2xpY3kgZ|
00000550 6d 39 31 62 6d 51 67 59 58 51 67 61 48 52 30 63 |m91bmQgYXQgaHR0c|
00000560 48 4d 36 4c 79 39 73 5a 58 52 7a 5a 57 35 6a 63 |HM6Ly9sZXRzZW5jc|
00000570 6e 6c 77 0a 64 43 35 76 63 6d 63 76 63 6d 56 77 |nlw.dC5vcmcvcmVw|
00000580 62 33 4e 70 64 47 39 79 65 53 38 77 67 67 45 46 |b3NpdG9yeS8wggEF|
00000590 42 67 6f 72 42 67 45 45 41 64 5a 35 41 67 51 43 |BgorBgEEAdZ5AgQC|
000005a0 42 49 48 32 42 49 48 7a 41 50 45 41 64 67 41 70 |BIH2BIHzAPEAdgAp|
000005b0 50 46 47 57 0a 56 4d 67 35 5a 62 71 71 55 50 78 |PFGW.VMg5ZbqqUPx|
000005c0 59 42 39 53 33 62 37 39 59 65 69 6c 79 33 4b 54 |YB9S3b79Yeily3KT|
000005d0 44 44 50 54 6c 52 55 66 30 65 41 41 41 41 57 53 |DDPTlRUf0eAAAAWS|
000005e0 51 49 71 34 61 41 41 41 45 41 77 42 48 4d 45 55 |QIq4aAAAEAwBHMEU|
000005f0 43 49 51 43 65 0a 34 68 78 73 4c 62 79 67 6c 47 |CIQCe.4hxsLbyglG|
00000600 48 31 61 68 33 62 77 70 66 6a 52 66 41 71 53 76 |H1ah3bwpfjRfAqSv|
00000610 75 6d 6b 57 31 6f 4b 48 55 39 7a 65 73 37 33 51 |umkW1oKHU9zes73Q|
00000620 49 67 51 47 6c 4f 39 50 4e 61 50 66 72 59 49 6b |IgQGlO9PNaPfrYIk|
00000630 37 52 39 62 63 30 0a 6e 6d 78 42 57 30 71 2b 62 |7R9bc0.nmxBW0q+b|
00000640 56 53 35 31 63 35 30 4e 72 59 41 4c 43 73 41 64 |VS51c50NrYALCsAd|
00000650 77 42 56 67 64 54 43 46 70 41 32 41 55 72 71 43 |wBVgdTCFpA2AUrqC|
00000660 35 74 58 50 46 50 77 77 4f 51 34 65 48 41 6c 43 |5tXPFPwwOQ4eHAlC|
00000670 42 63 76 6f 36 6f 64 0a 42 78 50 54 44 41 41 41 |Bcvo6od.BxPTDAAA|
00000680 41 57 53 51 49 71 36 37 41 41 41 45 41 77 42 49 |AWSQIq67AAAEAwBI|
00000690 4d 45 59 43 49 51 43 6c 76 2f 7a 4a 33 41 63 47 |MEYCIQClv/zJ3AcG|
000006a0 67 2b 55 32 2b 6d 53 63 31 39 65 33 6a 6a 69 4a |g+U2+mSc19e3jjiJ|
000006b0 36 78 62 54 66 31 49 4e 0a 68 49 57 54 6b 31 4f |6xbTf1IN.hIWTk1O|
000006c0 34 6d 51 49 68 41 4f 6c 56 44 79 36 2f 51 52 74 |4mQIhAOlVDy6/QRt|
000006d0 66 6a 2f 31 53 47 58 52 36 46 43 41 33 34 6e 41 |fj/1SGXR6FCA34nA|
000006e0 56 4e 61 7a 35 63 35 77 63 47 4f 68 4c 56 7a 61 |VNaz5c5wcGOhLVza|
000006f0 79 4d 41 30 47 43 53 71 47 0a 53 49 62 33 44 51 |yMA0GCSqG.SIb3DQ|
00000700 45 42 43 77 55 41 41 34 49 42 41 51 41 79 6b 69 |EBCwUAA4IBAQAyki|
00000710 75 56 6f 72 6c 4e 61 67 4c 44 4a 49 33 42 35 72 |uVorlNagLDJI3B5r|
00000720 58 50 5a 51 67 43 38 46 68 52 7a 72 34 75 48 36 |XPZQgC8FhRzr4uH6|
00000730 35 37 38 72 49 66 35 6d 35 6e 0a 34 51 49 4e 31 |578rIf5m5n.4QIN1|
00000740 74 45 43 43 61 4a 69 4e 33 57 34 73 58 58 62 63 |tECCaJiN3W4sXXbc|
00000750 70 4e 35 41 2f 52 7a 44 54 58 2b 37 37 38 48 69 |pN5A/RzDTX+778Hi|
00000760 46 76 61 79 75 5a 4e 56 46 53 77 2b 70 6b 78 32 |FvayuZNVFSw+pkx2|
00000770 43 37 47 41 67 59 45 2b 52 6a 74 0a 4d 35 44 5a |C7GAgYE+Rjt.M5DZ|
00000780 6e 6a 4a 49 52 6a 31 65 35 73 2f 4c 35 74 7a 52 |njJIRj1e5s/L5tzR|
00000790 30 31 52 4d 32 4f 2b 44 74 38 67 61 35 68 6f 50 |01RM2O+Dt8ga5hoP|
000007a0 35 6c 74 35 78 7a 55 6f 7a 53 56 69 43 6c 41 2f |5lt5xzUozSViClA/|
000007b0 6a 64 6a 2b 56 41 4b 44 41 37 51 61 0a 64 6a 49 |jdj+VAKDA7Qa.djI|
000007c0 61 57 33 66 46 68 79 42 64 75 4d 55 6f 64 75 7a |aW3fFhyBduMUoduz|
000007d0 34 72 73 44 4d 47 47 69 4b 2b 58 39 6f 54 6a 47 |4rsDMGGiK+X9oTjG|
000007e0 62 6a 78 2f 73 73 51 6e 48 4b 38 4b 76 56 71 47 |bjx/ssQnHK8KvVqG|
000007f0 41 54 74 6e 2f 58 63 6e 33 78 45 65 4c 0a 59 6e |ATtn/Xcn3xEeL.Yn|
00000800 78 53 47 75 2b 75 66 4e 35 34 50 34 6c 38 73 61 |xSGu+ufN54P4l8sa|
00000810 34 56 49 5a 4d 5a 54 77 73 6a 70 4a 56 6d 6c 51 |4VIZMZTwsjpJVmlQ|
00000820 4d 4a 57 39 55 72 37 63 6e 66 5a 50 72 4d 31 38 |MJW9Ur7cnfZPrM18|
00000830 67 43 45 33 72 49 74 50 46 4c 50 65 78 6a 0a 68 |gCE3rItPFLPexj.h|
00000840 37 4b 74 34 2f 43 59 67 56 5a 4c 77 37 38 74 70 |7Kt4/CYgVZLw78tp|
00000850 52 67 77 6b 38 30 56 62 50 42 56 31 64 52 70 4f |Rgwk80VbPBV1dRpO|
00000860 31 74 69 6e 53 62 7a 0a 2d 2d 2d 2d 2d 45 4e 44 |1tinSbz.-----END|
00000870 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d | CERTIFICATE----|
00000880 2d 0a |-.|
00000882
Here you go.
The forum software apparently didn’t like a post full of some much numeric data but as a forum admin I can still see the post, and your certificate file begins with e2 89 88, which is indeed that suspicious ≈ character!
Here is a likely way to get rid of it in this particular situation:
sudo dd bs=1 skip=3 if=/etc/letsencrypt/live/www.kalodemo.com/cert.pem of=/tmp/cert.pem
sudo dd if=/tmp/cert.pem of=/etc/letsencrypt/live/www.kalodemo.com/cert.pem
Each of these will print some information about a number of bytes copied, but give no other output. After running both of them, your certificate file should be fixed. (Note: I do not advocate this solution for anyone else finding this thread in the future—these commands are 100% specific to @bullaka’s situation and unlikely to fix anyone else’s problem.)
1 Like
That's the UTF-8 encoding of that character.
U+224B ≋ e2 89 8b
1 Like
Yep, the buffer = buffer.encode(“ascii”) line is trying to convert from UTF-8 by default.
1 Like
You and @JuergenAuer are the bomb! This stuff is so above my head. IMMENSE thanks to you both.
I ran it and got this:
2175+0 records in
2175+0 records out
2175 bytes transferred in 0.011843 secs (183653 bytes/sec)
Then I reran the command: sudo -H certbot certonly --manual --preferred-challenges dns -d www.edenfielddentistry.com -d edenfielddentistry.com
AND IT WORKED!
Once again, IMMENSE thanks to you both!
Yay! Thanks for bearing with us. 
I don’t know how that file got corrupted, but it looks like that was the only problem in your setup. (However, you might want to look into automating your certificate setup more, by running Certbot or some other Let’s Encrypt tool directly on the web server instead of on your laptop. Ideally, you can get updated certificates automatically instead of having to re-issue them manually before they expire.)
1 Like
Bearing with you guys?! Shoot thanks for bearing with me!
I don’t believe I have the ability to do that on the web server since it’s cloud hosting correct? I would LOVE to not have to renew them every 90 days!
A windows- or Unix-file with a UTF-8 BOM (Byte Order Mark).
Then something like
cat thisfile > otherfile
but doing this on a Mac may convert the EF, BB, BF (BOM) into E2, 89, 88.
1 Like
It depends on your hosting plan; "cloud hosting" could cover a lot of different possibilities. If you have a VPS or dedicated server, then you can do it all by yourself. If you have a shared server, then you can do it if the host helps by installing appropriate tools for you.
1 Like
Got it. Thanks once again!
In trying to understand what happened, the Kalo demo install is what hosed all other attempts to renew or create new ones because of the ≋ symbol?
Yes, because Certbot will look at your existing certificates in order to determine their status, but in this case that file got corrupted with the symbol at the beginning and then Certbot would crash when trying to review the existing certificates.
I made a note to try to improve Certbot’s handling of this situation.
3 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.