I am hosted on ipower, which uses cPanel and Apache. After getting a Let’s Encrypt cert and key using their service,I tried to find them to DL use on my remote box, located in my office, and which hosts several subdomains.
The certs which the service obtained were patterned example.com and *.example.com. I contacted customer service, and was told the certs don’t exist, which is patently incorrect, since they must reside on their servers to use SSL. Since it’s a given they exist,
(1) Who owns them? i.e., cert, key, CA_bundle?
(2) If they’re my property, but are needed for the smooth functioning of the site, is it legal for ipower to appropriate them without allowing me access? (Their TOS says probably)
(3) What are my rights? What is my recourse?
Thanks, community, in advance!