My domain is: www.cloner.cl / zifre.cloner.cl
I ran this command: openssl s_client -servername $anyserverusingLE -connect $anyserverusingLE:443
It produced this output: Code 20 Unable to get local issuer certificate / Code 10 Certificate period has expired
My web server is (include version): nginx/1.10.3 (Ubuntu)
The operating system my web server runs on is (include version): Ubuntu 16.04.7 LTS
My hosting provider, if applicable, is: digitalocean
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot): certbot 0.31.0
We have a lot of clients that connect to our servers. Recently, a few of them with older Ubuntu versions (16.04.3 and 12.04.5) couldn't validate the certificate correctly through OpenSSL.
The question is, did something change recently (recent days/weeks) that these obsolete OS couldn't validate any certificate of any site that uses LE? Because they stopped working all of a sudden.
Yes, i didn't only try our own servers, i also tried letsencrypt.org and it returned Error Code 10.
I tried to validate through other cert authorities and they all seemed to work.
We just want to get details of this issue so we can communicate properly to our clients and not just tell them to upgrade.