I have detected that the certificate transparency registry contains entries for a domain name that I control which I do not recognize:
slot-online.bash.academy, slot-pulsa.bash.academy, slot-gacor.bash.academy, mozilla.bash.academy, slot88.bash.academy, begalhaxor.bash.academy, slot.bash.academy, blog.bash.academy, www.gide.bash.academy, httpplay.bash.academy
Note: I used to use certbot for this domain but don't anymore. The domain is currently exclusively used through Cloudflare and hosted on GitHub Pages.
I'd like to understand how Let's Encrypt has been able to issue these certificates and put a stop to it.
My domain is:
I ran this command:
It produced this output:
Found the following certs: Certificate Name: countly.lyndir.com Serial Number: 429794d4faa56f728414a33e7158d82ca5e Key Type: RSA Domains: countly.lyndir.com countly.masterpassword.app countly.spectre.app Expiry Date: 2022-06-04 04:04:13+00:00 (VALID: 63 days) Certificate Path: /usr/local/etc/letsencrypt/live/countly.lyndir.com/fullchain.pem Private Key Path: /usr/local/etc/letsencrypt/live/countly.lyndir.com/privkey.pem Certificate Name: lhunath.com Serial Number: 4e7a28d7bf8f8fc090a176417f0a3b58b2c Key Type: RSA Domains: lhunath.com *.lhunath.com Expiry Date: 2022-06-04 04:04:44+00:00 (VALID: 63 days) Certificate Path: /usr/local/etc/letsencrypt/live/lhunath.com/fullchain.pem Private Key Path: /usr/local/etc/letsencrypt/live/lhunath.com/privkey.pem Certificate Name: lyndir.com Serial Number: 4a1e805ac02ad66dda23bc30c2fae419d27 Key Type: RSA Domains: lyndir.com *.lyndir.com Expiry Date: 2022-06-04 04:05:15+00:00 (VALID: 63 days) Certificate Path: /usr/local/etc/letsencrypt/live/lyndir.com/fullchain.pem Private Key Path: /usr/local/etc/letsencrypt/live/lyndir.com/privkey.pem Certificate Name: masterpassword.app Serial Number: 45d55804b9dccb95cd98b112bd394d20498 Key Type: RSA Domains: masterpassword.app *.masterpassword.app *.masterpassword.lyndir.com *.masterpasswordapp.com *.volto.app masterpassword.lyndir.com masterpasswordapp.com volto.app Expiry Date: 2022-06-04 04:06:30+00:00 (VALID: 63 days) Certificate Path: /usr/local/etc/letsencrypt/live/masterpassword.app/fullchain.pem Private Key Path: /usr/local/etc/letsencrypt/live/masterpassword.app/privkey.pem Certificate Name: matrix.lyndir.com Serial Number: 35f195c00e247753d1f8150e682b2217500 Key Type: RSA Domains: matrix.lyndir.com lyndir.com Expiry Date: 2022-06-04 04:06:53+00:00 (VALID: 63 days) Certificate Path: /usr/local/etc/letsencrypt/live/matrix.lyndir.com/fullchain.pem Private Key Path: /usr/local/etc/letsencrypt/live/matrix.lyndir.com/privkey.pem Certificate Name: spectre.app Serial Number: 37e7a095a934a449d0a88d8f2125957ad59 Key Type: RSA Domains: spectre.app *.specter.app *.spectre.app *.spectre.sh specter.app spectre.sh Expiry Date: 2022-06-04 04:07:51+00:00 (VALID: 63 days) Certificate Path: /usr/local/etc/letsencrypt/live/spectre.app/fullchain.pem Private Key Path: /usr/local/etc/letsencrypt/live/spectre.app/privkey.pem
My web server is (include version):
The operating system my web server runs on is (include version):
FreeBSD satura.lyndir.com 13.0-RELEASE-p4 FreeBSD 13.0-RELEASE-p4 #0: Tue Aug 24 07:33:27 UTC 2021 firstname.lastname@example.org:/usr/obj/usr/src/amd64.amd64/sys/GENERIC amd64
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot):