SSL renewal issue

Help
1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: digitup.in
My web server is (include version): Netlify

My hosting provider, if applicable, is: AWS Hosted Zone

Whenever I am trying to renew the SSL certificate I am not able to generate it even if I have added CAA record in my DNS hosted zone for digitup.in .

2

All the answers to the questionnaire are required. Unanswered questions:

I ran this command:

It produced this output:

The operating system my web server runs on is (include version):

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

3

2 posts were split to a new topic: Certificate renewal issue: OpenSSL legacy provider failed to load

4

Hello @Shyam,

There seems to be some DNS Name Server issues going on here:

2 Likes
5

One of those DNS problems is clearly shown at DNSViz. The delegation for the Route53 name servers it not correct

You need to make sure that the 4 nameservers listed under "Hosted zone details" in the Route 53 console are the same ones listed at both your registrar, and in the NS record for your zone. (Refer to "Step 4" of the documentation for using Route 53 as your DNS.)

3 Likes
6

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.