Ssl error cert-date-invalid

Help
1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: https://willbode.com

I ran this command:

It produced this output:

My web server is (include version): Not sure? I think apache (how to find out?)

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is: google cloud

I can login to a root shell on my machine (yes or no, or I donā€™t know):

Iā€™m using a control panel to manage my site (no, or provide the name and version of the control panel): bitnami

The version of my client is (e.g. output of certbot --version or certbot-auto --version if youā€™re using Certbot): Cerbot (not sure the version should be the most uptodateā€¦

I know I am not giving you much information because I donā€™t have itā€¦ and am unsure how to find it at this point. Yes, it is all very new to me. I am hosting my wp website on google cloud and just renewed my ssl certificate with letā€™s encrypt - Certbot - following a tutorial. It has renewed the certificate but when I try to see the site from chrome it displays the NET::ERR_CERT_DATE_INVALIDā€¦ I found this post in stckoverflow

which appears to be the same issue but I do not know how to find out where my ssl is pointing, where it is located and how to change the folder name (within bitnami) as the person did in this post to resolve the issue.

I appreciate any help!

2

I new(er) cert has been issued.
See: https://crt.sh/?q=willbode.com
Perhaps you only need to restart the web service.

3

Excuse my ignorance. Do I do this in Bitnami? What code do I use? How did you find that out? Thank you kindly for your response.

4

I know less than you do about your system.
But if you have access to a root shell, then we can do some troubleshooting.

5

how do I find out if I have a root shell?

6

Can you login to the server?
[via SSH or PuTTY]

7

I can log in to Bitnami with sudo is that root?

8

sudo should be (super user) root.

Try:
sudo certbot certificates

9

ok

so it gave me a certificate path and an private key path.

10

It works better is you show the resultsā€¦
But how many days are left on that cert?
[presuming there is only one cert]

11

it says valid 74 days

12

OK that is good.
(most likely) That means the cert is auto-renewing.

Please show:
netstat -pant | grep -iv ssh
[connections minus any SSH connections]
or
netstat -pant | grep -i listen
[only show listening services]

13

(No info could be read for ā€œ-pā€: geteuid()=1002 but you should be root.)
Active Internet connections (servers and established)

Then it listed a bunch of addresses.

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name

14

OK add sudo to the start of those commands.

Yeah, that's what I need.

Something like:

tcp        0      0 127.0.0.53:53           0.0.0.0:*               LISTEN      90644/systemd-resol
tcp        0      0 0.0.0.0:86              0.0.0.0:*               LISTEN      1255/nginx: master
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      1231/sshd
tcp6       0      0 :::81                   :::*                    LISTEN      59160/apache2
tcp6       0      0 :::86                   :::*                    LISTEN      1255/nginx: master
tcp6       0      0 :::22                   :::*                    LISTEN      1231/sshd
15

$ sudo netstat -pant | grep -iv ssh
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 31280/mysqld.bin
tcp 0 0 10.142.0.2:60208 169.254.169.254:80 ESTABLISHED 834/python3
tcp 0 0 10.142.0.2:60210 169.254.169.254:80 ESTABLISHED 837/python3
tcp 0 0 10.142.0.2:60206 169.254.169.254:80 CLOSE_WAIT 837/python3
tcp 0 0 10.142.0.2:60212 169.254.169.254:80 ESTABLISHED 833/python3
tcp 0 0 10.142.0.2:60144 173.194.217.95:443 ESTABLISHED 629/google_osconfig
tcp6 0 0 :::33060 :::* LISTEN 31280/mysqld.bin
tcp6 0 0 :::80 :::* LISTEN 2182/httpd.bin
tcp6 0 0 :::443 :::* LISTEN 2182/httpd.bin
tcp6 0 0 10.142.0.2:443 83.77.170.184:53878 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53882 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53885 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53877 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53870 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53883 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53869 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53873 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53874 TIME_WAIT -
tcp6 0 0 10.142.0.2:443 83.77.170.184:53884 TIME_WAIT -

$ sudo netstat -pant | grep -i listen
tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 31280/mysqld.bin
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 840/sshd
tcp6 0 0 :::33060 :::* LISTEN 31280/mysqld.bin
tcp6 0 0 :::80 :::* LISTEN 2182/httpd.bin
tcp6 0 0 :::22 :::* LISTEN 840/sshd
tcp6 0 0 :::443 :::* LISTEN 2182/httpd.bin

16

Iā€™m not familiar with Google.
But this is the service I would restart:

tcp6 0 0 :::80 :::* LISTEN 2182/httpd.bin
tcp6 0 0 :::443 :::* LISTEN 2182/httpd.bin

httpd.bin

17

So I just copy and paste that?

18

No.
Try:

sudo apachectl -k restart

If that fails, perhaps you can just restart the server.

19

how do you restart the server - it didnā€™t do anything

20

Try:
shutdown -r now
or
sudo shutdown -r now
or
reboot