When try renew my cert, cerbot says: Cert not yet due for renewal

Please help me
My certificate was created on 08/13/2020, more than 30 days ago

[root@fireshield ~]# certbot renew
Saving debug log to /var/log/letsencrypt/letsencrypt.log

Processing /etc/letsencrypt/renewal/bigavatar.cubacel.entumovil.cu.conf

Cert not yet due for renewal

Processing /etc/letsencrypt/renewal/preproduccion.cubacel.entumovil.cu.conf

Cert not yet due for renewal

The following certs are not due for renewal yet:
/etc/letsencrypt/live/bigavatar.cubacel.entumovil.cu/fullchain.pem expires on 2020-11-29 (skipped)
/etc/letsencrypt/live/preproduccion.cubacel.entumovil.cu/fullchain.pem expires on 2020-11-11 (skipped)
No renewals were attempted.

Well, almost, August 31th to be exact (for bigavatar.cubacel.entumovil.cu). And it's valid for another 60 days. Your other cert has a few days less, but still more than enough.

Please help me to the issue at hand?

Help you do what?
Advertise your site?

The messages are clear:

Thank you for your response.

Ok, not for *.bigavatar.cubacel.entumovil.cu but for the other.
The documentation does not say that 30 days after the certificate has
been created, it can be renewed?

Thanks again

1 Like

Strictly speaking, you can renew any time you want (with the rate limits in mind), but why would you?

Let's Encrypt reccommends to renew a cert after 60 days, so that when something goes wrong, you've got 30 days to fix the issue.

That cert also has more then enough time left before renewal is necessary.

1 Like

I think you may have misunderstood the "30 days" (in the opposite direction).

When there are 30 days left on the cert, it should be renewed.

In your cases:

  • "expires on 2020-11-29" = ready to renew on 2020-10-30 (38 days from today)
  • "expires on 2020-11-11" = ready to renew on 2020-10-12 (20 days from today)

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.