Renew-email expiration date wrong?

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: wiccandesigns.nl

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is: cloud86

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

PLESK

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Hi there,
I received a mail that my certificate is expiring on 30 november 2020, and that I should renew.
But in my plesk control panel it clearly states valid till 29 januari 2021 and will automatically be renewed.

I'm kinda confused by this email and wonder what to do.

From mail ''Hello,

Your certificate (or certificates) for the names listed below will expire in 20 days (on 30 Nov 20 04:48 +0000). Please make sure to renew your certificate before then, or visitors to your website will encounter errors.

We recommend renewing certificates automatically when they have a third of their
total lifetime left. For Let's Encrypt's current 90-day certificates, that means
renewing 30 days before expiration. See
https://letsencrypt.org/docs/integration-guide/ for details. "

any help would be greatly appreciated.

1 Like

Nothing.

Your site currently uses the correct and recently renewed certificate. However, on 1 September there were two certificates issued:

The second hasn't been renewed. That's probably not necessary. However, Let's Encrypt doesn't know it's not necessary. You might have a good reason to have a separate hostname with that single hostname. Probably not, if looked at it from a human perspective, but a computer program can't know that. That's why you're getting the e-mail.

The e-mail should have provided a list of hostnames for which the certificate would be. It is probably just the single hostname.
The e-mail should also have given a link to https://letsencrypt.org/docs/expiration-emails/ which explains the above.

3 Likes

Thank you very much for your quick reply.
I must've overlooked the explaination mentioned in the link, I appologize for that.
But thanks again for easing my mind and I hope you are well...

3 Likes

Welcome to the Let's Encrypt Community, Danny :slightly_smiling_face:

If you have any further questions or run into any trouble, you know where to find us. :+1:

2 Likes