I have a VPS with Centos 7 minimal, Apache 2.4.6, Webmin, and LE. Initially, the certificate I issued for the domain worked, and was served correctly. The certificate has been renewed, but Apache doesn’t seem to serve it correcty. Interesting thing is that Webmin does, and they both point to the exact same files.
SSLCertificateFile /etc/letsencrypt/live/s0.domain/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/s0.domain/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateChainFile /etc/letsencrypt/live/s0.domain/chain.pem
This is the Apache vhost config for *:443, as generated by LE. When loading up the domain in a browser, it says the certificate authority is invalid. Upon inspection of the certificate being issued, it looks like a self-signed certificate is being served, instead of the LE one. What’s interesting here as well as that there are 4 other vhosts with identical configuration, and their certs are being served correctly, and auto-renew works.
What could I do to investigate this further and solve the problem?
PS: I know our domains should be made public, but this isn’t a public site; it’s a private VPS for internal staff systems.