SSL certificate renewal

[ClubMilonga]

I have a web site which has been running on the free X10hosting without problems since Nov 2021. It has had a Let's Encrypt SSL certificate since not long after that. Trying to access the web site recently started getting errors with what seem to be its SSL certificate somehow not working anymore: Firefox stopped showing the padlock, Opera gave error: net::ERR_CERT_DATE_INVALID.

I tried running it through whynopadlock.com. Results:

domain is clubmilonga.com
Finds the SSL certificate from Let's Encrypt okay
issued on 2025-02-08 (would have been the most recent auto-renewal date)
web server is forcing use of SSL okay
SSL domains all match up
Signature is okay
"Invalid intermediate - You have an invalid or missing intermediate (bundle) certificate... Please contact your SSL vendor for assistance with this error"
"Expiration date - Your SSL certificate is expired! (Expired on: 2025-05-08) You will want to renew your SSL certificate as soon as possible!"

It had been auto-renewing fine without any errors, all the way from Nov-Dec 2021 until apparently this past February. From what the analysis is saying, it seems to have not renewed automatically in May. Browsing to the site didn't have any such trouble at all until just the past month or so, after the certificate apparently stopped renewing..

Did something happen earlier this year to make auto-renewals of the SSL certificate in the free x10hosting (or in my account?) suddenly stop happening as it had been?

Can my existing (but apparently now expired) SSL certificate be renewed, or do I have to scrap it and install a new one?

Thanks.

 

[mrburnsx]

A glitch had likely occurred at the time. You can manually have a new one issued in hosting control panel

Account Manager > SSL Certificates > Get Automatic Certificate from ACME Provider

 

[pausatfx]

I'm having the same problem. (When I try to view my site, https://pausatf.x10host.com/, the browser shows the certificate expired and has the following info:
net::ERR_CERT_DATE_INVALID
Subject: pausatf.x10host.com
Issuer: E5
Expires on: Jul 8, 2025
Current date: Jul 10, 2025
"This server could not prove that it is pausatf.x10host.com; its security certificate expired 3 days ago."

When I follow the instructions given above to have a new certificate issued in the hosting control panel, a message pops up saying:
Could not execute your request
Weekly Rate limit of 200 for 'x10host.com' has been been reached.

An image of the message is:



Any other suggestions for how this problem can be fixed?

Thanks,

Jeff

 

[mrburnsx]

I'm having the same problem. (When I try to view my site, https://pausatf.x10host.com/, the browser shows the certificate expired and has the following info:
net::ERR_CERT_DATE_INVALID
Subject: pausatf.x10host.com
Issuer: E5
Expires on: Jul 8, 2025
Current date: Jul 10, 2025
"This server could not prove that it is pausatf.x10host.com; its security certificate expired 3 days ago."

When I follow the instructions given above to have a new certificate issued in the hosting control panel, a message pops up saying:
Could not execute your request
Weekly Rate limit of 200 for 'x10host.com' has been been reached.

An image of the message is:

View attachment 12407

Any other suggestions for how this problem can be fixed?

Thanks,

Jeff

The rate limit can not be bypassed. All you can do is try to change ACME Provider setting between let’s encrypt and ZeroSSL or:

Use service like sslforfree to create a certificate and download the zip file it provides and extract it.

Follow the instructions:

1. Log on to DirectAdmin Control Panel.

2. Go to the "SSL Certificates" panel (underneath Account Manager).

3. Select the option "Paste a pre-generated certificate and key".

4. Open your Private Key file (private.key) and your Certificate file (certificate.crt) in Notepad and paste them both in the text box.

NOTE : Paste the Private key and then paste the certificate file content

5. When you are done, click Save.

6. Return to the 'SSL Certificates' panel and click 'SSL CA Certificate' (ca-bundle.crt).

7. Paste the intermediate certificate (Based on type of certificate you have get intermediate file) followed by the root certificate in the text box.

OR : Simply Get the CA-Bundle and paste it into the CA-Certificate field.

8. Make sure you select option "Use a CA Cert".

9. Click Save.

10. All certificates are now installed.

 

[pausatfx]

That worked. (I used sslforfree to generate the certificate which I uploaded using your instructions.)

Thanks a lot for providing such clear and detailed instruction.

Jeff