Windows client - stopped renewing certificates

#1

Using the Simple Windows ACME Client

Has been working fine, but certificate renewal stopped and now gets this error - any help appreciated!

ACME Server: https://acme-v01.api.letsencrypt.org/
Config Folder: C:\Users\Administrator\AppData\Roaming\letsencrypt-win-simple\htt
psacme-v01.api.letsencrypt.org
Certificate Folder: C:\Users\Administrator\AppData\Roaming\letsencrypt-win-simpl
e\httpsacme-v01.api.letsencrypt.org
Loading Signer from C:\Users\Administrator\AppData\Roaming\letsencrypt-win-simpl
e\httpsacme-v01.api.letsencrypt.org\Signer

System.Net.WebException: The underlying connection was closed: Could not establi
sh trust relationship for the SSL/TLS secure channel. β€”> System.Security.Authe
ntication.AuthenticationException: The remote certificate is invalid according t
o the validation procedure.
** at System.Net.Security.SslState.StartSendAuthResetSignal(ProtocolToken messag**
e, AsyncProtocolRequest asyncRequest, Exception exception)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessReceivedBlob(Byte buffer, Int32 coun**
t, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReadFrame(Byte buffer, Int32 readBytes**
, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReceiveBlob(Byte buffer, AsyncProtocol**
Request asyncRequest)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessReceivedBlob(Byte buffer, Int32 coun**
t, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReadFrame(Byte buffer, Int32 readBytes**
, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReceiveBlob(Byte buffer, AsyncProtocol**
Request asyncRequest)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessReceivedBlob(Byte buffer, Int32 coun**
t, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReadFrame(Byte buffer, Int32 readBytes**
, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReceiveBlob(Byte buffer, AsyncProtocol**
Request asyncRequest)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessReceivedBlob(Byte buffer, Int32 coun**
t, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReadFrame(Byte buffer, Int32 readBytes**
, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReceiveBlob(Byte buffer, AsyncProtocol**
Request asyncRequest)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessReceivedBlob(Byte buffer, Int32 coun**
t, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReadFrame(Byte buffer, Int32 readBytes**
, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReceiveBlob(Byte buffer, AsyncProtocol**
Request asyncRequest)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessReceivedBlob(Byte buffer, Int32 coun**
t, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReadFrame(Byte buffer, Int32 readBytes**
, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReceiveBlob(Byte buffer, AsyncProtocol**
Request asyncRequest)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessReceivedBlob(Byte buffer, Int32 coun**
t, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReadFrame(Byte buffer, Int32 readBytes**
, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartReceiveBlob(Byte buffer, AsyncProtocol**
Request asyncRequest)
** at System.Net.Security.SslState.CheckCompletionBeforeNextReceive(ProtocolToke**
n message, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.StartSendBlob(Byte incoming, Int32 count, A**
syncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ForceAuthentication(Boolean receiveFirst, Byt**
e[] buffer, AsyncProtocolRequest asyncRequest)
** at System.Net.Security.SslState.ProcessAuthentication(LazyAsyncResult lazyRes**
ult)
** at System.Net.TlsStream.CallProcessAuthentication(Object state)**
** at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionCo**
ntext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
** at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, C**
ontextCallback callback, Object state, Boolean preserveSyncCtx)
** at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, C**
ontextCallback callback, Object state)
** at System.Net.TlsStream.ProcessAuthentication(LazyAsyncResult result)**
** at System.Net.TlsStream.Write(Byte buffer, Int32 offset, Int32 size)**
** at System.Net.PooledStream.Write(Byte buffer, Int32 offset, Int32 size)**
** at System.Net.ConnectStream.WriteHeaders(Boolean async)**
** β€” End of inner exception stack trace β€”**
** at System.Net.HttpWebRequest.GetResponse()**
** at ACMESharp.AcmeClient.RequestHttpGet(Uri uri)**
** at ACMESharp.AcmeClient.Init()**
** at LetsEncrypt.ACME.Simple.Program.Main(String args)**

#2

Has your company/business deployed any inline https inspection devices/controls?

#3

No - nothing - it’s a basic 2012 server used only in a DMZ as a web server

#4

Can you reach this site from that system:
https://acme-v01.api.letsencrypt.org/directory

#5

Yes - IE prompts to open or save directory.json from that location

#6

DOH - It was an invalid date/time on the server

Would be nice if the error mentioned that!!

Thanks for repies

1 Like
closed #7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.