Renewed certs not working in browser after 9 days

My domain is:
I ran this command: certbot certificates
It produced this output:

Saving debug log to /var/log/letsencrypt/letsencrypt.log

Found the following certs:
Certificate Name:
Expiry Date: 2019-11-22 23:32:56+00:00 (VALID: 81 days)
Certificate Path: /etc/letsencrypt/live/
Private Key Path: /etc/letsencrypt/live/

My web server is: Nginx 1.16.0
The operating system my web server runs on is: CentOS 7.6
I can login to a root shell on my machine: yes
Iā€™m using a control panel to manage my site: no
The version of my client is: 0.31.0

For a coupple of years I have been successfully using certbot to update certificates for several virtually-hosted domains with this simple shell command:

certbot certonly -d $1 -d www.$1 --manual --preferred-challenges dns-01

ā€¦ along with manually updating TXT records at the domain host where web forwarding has been setup.

This time round I allowed the certificates to expire but they were successfully renewed 9 days ago yet all browsers are still returning errors referring to the old expiry date.

Hi @massood

that's not enough. If you use certonly, you must restart your webserver.

You have created a new certificate -

Issuer not before not after Domain names LE-Duplicate next LE
Let's Encrypt Authority X3 2019-08-24 2019-11-22,
2 entries
Let's Encrypt Authority X3 2019-05-22 2019-08-20,
2 entries
Let's Encrypt Authority X3 2019-02-21 2019-05-22,
2 entries
Let's Encrypt Authority X3 2019-02-18 2019-05-19,
2 entries

but you use your expired:
13 days expired, - 2 entries

So first step:

  • Restart your webserver
  • recheck your domain with the online tool to see, if you use the new certificate

Fantastic. All the domains are working now. Thanks.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.