This error appears when your browser fails to recognise an SSL certificate returned by the site, meaning the issue occurs before any redirect takes place. Your redirect rule is unrelated to the error you’re seeing.
From my end, your DNS records look fine, and both the TLS handshake and redirects function as expected:
% dig claytonandcory.com @1.1.1.1 +short
104.21.32.1
104.21.48.1
104.21.96.1
104.21.16.1
104.21.64.1
104.21.80.1
104.21.112.1
% dig www.claytonandcory.com @1.1.1.1 +short
104.21.112.1
104.21.64.1
104.21.96.1
104.21.32.1
104.21.48.1
104.21.80.1
104.21.16.1
% curl -svo /dev/null https://claytonandcory.com/google/web-test
* Host claytonandcory.com:443 was resolved.
* IPv6: (none)
* IPv4: 104.21.80.1, 104.21.48.1, 104.21.32.1, 104.21.16.1, 104.21.64.1, 104.21.96.1, 104.21.112.1
* Trying 104.21.80.1:443...
* Connected to claytonandcory.com (104.21.80.1) port 443
* ALPN: curl offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
} [323 bytes data]
* CAfile: /etc/ssl/cert.pem
* CApath: none
* (304) (IN), TLS handshake, Server hello (2):
{ [122 bytes data]
* (304) (IN), TLS handshake, Unknown (8):
{ [19 bytes data]
* (304) (IN), TLS handshake, Certificate (11):
{ [2548 bytes data]
* (304) (IN), TLS handshake, CERT verify (15):
{ [79 bytes data]
* (304) (IN), TLS handshake, Finished (20):
{ [36 bytes data]
* (304) (OUT), TLS handshake, Finished (20):
} [36 bytes data]
* SSL connection using TLSv1.3 / AEAD-CHACHA20-POLY1305-SHA256 / [blank] / UNDEF
* ALPN: server accepted h2
* Server certificate:
* subject: CN=claytonandcory.com
* start date: Dec 17 02:07:22 2024 GMT
* expire date: Mar 17 03:05:54 2025 GMT
* subjectAltName: host "claytonandcory.com" matched cert's "claytonandcory.com"
* issuer: C=US; O=Google Trust Services; CN=WE1
* SSL certificate verify ok.
* using HTTP/2
* [HTTP/2] [1] OPENED stream for https://claytonandcory.com/google/web-test
* [HTTP/2] [1] [:method: GET]
* [HTTP/2] [1] [:scheme: https]
* [HTTP/2] [1] [:authority: claytonandcory.com]
* [HTTP/2] [1] [:path: /google/web-test]
* [HTTP/2] [1] [user-agent: curl/8.7.1]
* [HTTP/2] [1] [accept: */*]
> GET /google/web-test HTTP/2
> Host: claytonandcory.com
> User-Agent: curl/8.7.1
> Accept: */*
>
* Request completely sent off
< HTTP/2 301
< date: Fri, 07 Feb 2025 17:34:22 GMT
< content-type: text/html
< content-length: 167
< location: https://calendar.google.com/
< cache-control: max-age=3600
< expires: Fri, 07 Feb 2025 18:34:22 GMT
< report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wKM%2FyM91Fmfo94rWspjevuRf%2FuhJnDXNDZKtMABTw3feY5tZymHA8MFlo%2BB1wVh9jC%2FJj32CyNB7ey6YIr7PmJkmlEh3Q5ivPjQnhoSIMnsgr1bu4QndcGcChGDW8S64WN5mW9k%3D"}],"group":"cf-nel","max_age":604800}
< nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
< server: cloudflare
< cf-ray: 90e5215c5819edea-LHR
<
{ [167 bytes data]
* Connection #0 to host claytonandcory.com left intact
% curl -svo /dev/null https://www.claytonandcory.com/google/web-test
* Host www.claytonandcory.com:443 was resolved.
* IPv6: (none)
* IPv4: 104.21.80.1, 104.21.16.1, 104.21.48.1, 104.21.112.1, 104.21.96.1, 104.21.32.1, 104.21.64.1
* Trying 104.21.80.1:443...
* Connected to www.claytonandcory.com (104.21.80.1) port 443
* ALPN: curl offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
} [327 bytes data]
* CAfile: /etc/ssl/cert.pem
* CApath: none
* (304) (IN), TLS handshake, Server hello (2):
{ [122 bytes data]
* (304) (IN), TLS handshake, Unknown (8):
{ [19 bytes data]
* (304) (IN), TLS handshake, Certificate (11):
{ [2548 bytes data]
* (304) (IN), TLS handshake, CERT verify (15):
{ [79 bytes data]
* (304) (IN), TLS handshake, Finished (20):
{ [36 bytes data]
* (304) (OUT), TLS handshake, Finished (20):
} [36 bytes data]
* SSL connection using TLSv1.3 / AEAD-CHACHA20-POLY1305-SHA256 / [blank] / UNDEF
* ALPN: server accepted h2
* Server certificate:
* subject: CN=claytonandcory.com
* start date: Dec 17 02:07:22 2024 GMT
* expire date: Mar 17 03:05:54 2025 GMT
* subjectAltName: host "www.claytonandcory.com" matched cert's "*.claytonandcory.com"
* issuer: C=US; O=Google Trust Services; CN=WE1
* SSL certificate verify ok.
* using HTTP/2
* [HTTP/2] [1] OPENED stream for https://www.claytonandcory.com/google/web-test
* [HTTP/2] [1] [:method: GET]
* [HTTP/2] [1] [:scheme: https]
* [HTTP/2] [1] [:authority: www.claytonandcory.com]
* [HTTP/2] [1] [:path: /google/web-test]
* [HTTP/2] [1] [user-agent: curl/8.7.1]
* [HTTP/2] [1] [accept: */*]
> GET /google/web-test HTTP/2
> Host: www.claytonandcory.com
> User-Agent: curl/8.7.1
> Accept: */*
>
* Request completely sent off
< HTTP/2 301
< date: Fri, 07 Feb 2025 17:36:01 GMT
< content-type: text/html
< content-length: 167
< location: https://calendar.google.com/
< cache-control: max-age=3600
< expires: Fri, 07 Feb 2025 18:36:01 GMT
< report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fwj4U9wlIURa3LaCXNmIAFSYDVqCAaIa28V%2BZrNdwjRqwdN7rketEq3cZGKwzOCAZIyYkZoGRytmSu534udMrZ%2Bl4tFQ8eCj5e8c%2BHgDGlswzCAjWaa6ej9v2Ti3Whxp1Qwg%2Bp7hzk5X"}],"group":"cf-nel","max_age":604800}
< nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
< server: cloudflare
< cf-ray: 90e523c98b9bbeae-LHR
<
{ [167 bytes data]
* Connection #0 to host www.claytonandcory.com left intact
% curl -svo /dev/null https://calendar.claytonandcory.com/google/web-test
* Host calendar.claytonandcory.com:443 was resolved.
* IPv6: (none)
* IPv4: 104.21.80.1, 104.21.112.1, 104.21.96.1, 104.21.48.1, 104.21.16.1, 104.21.32.1, 104.21.64.1
* Trying 104.21.80.1:443...
* Connected to calendar.claytonandcory.com (104.21.80.1) port 443
* ALPN: curl offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
} [332 bytes data]
* CAfile: /etc/ssl/cert.pem
* CApath: none
* (304) (IN), TLS handshake, Server hello (2):
{ [122 bytes data]
* (304) (IN), TLS handshake, Unknown (8):
{ [19 bytes data]
* (304) (IN), TLS handshake, Certificate (11):
{ [2548 bytes data]
* (304) (IN), TLS handshake, CERT verify (15):
{ [79 bytes data]
* (304) (IN), TLS handshake, Finished (20):
{ [36 bytes data]
* (304) (OUT), TLS handshake, Finished (20):
} [36 bytes data]
* SSL connection using TLSv1.3 / AEAD-CHACHA20-POLY1305-SHA256 / [blank] / UNDEF
* ALPN: server accepted h2
* Server certificate:
* subject: CN=claytonandcory.com
* start date: Dec 17 02:07:22 2024 GMT
* expire date: Mar 17 03:05:54 2025 GMT
* subjectAltName: host "calendar.claytonandcory.com" matched cert's "*.claytonandcory.com"
* issuer: C=US; O=Google Trust Services; CN=WE1
* SSL certificate verify ok.
* using HTTP/2
* [HTTP/2] [1] OPENED stream for https://calendar.claytonandcory.com/google/web-test
* [HTTP/2] [1] [:method: GET]
* [HTTP/2] [1] [:scheme: https]
* [HTTP/2] [1] [:authority: calendar.claytonandcory.com]
* [HTTP/2] [1] [:path: /google/web-test]
* [HTTP/2] [1] [user-agent: curl/8.7.1]
* [HTTP/2] [1] [accept: */*]
> GET /google/web-test HTTP/2
> Host: calendar.claytonandcory.com
> User-Agent: curl/8.7.1
> Accept: */*
>
* Request completely sent off
< HTTP/2 301
< date: Fri, 07 Feb 2025 17:36:16 GMT
< content-type: text/html
< content-length: 167
< location: https://calendar.google.com/
< cache-control: max-age=3600
< expires: Fri, 07 Feb 2025 18:36:16 GMT
< report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DUQ2DXpjg3Va0Iu7Wuu9erdZO4x5Yhld7LkpSALl%2BxHRE8%2Fx5EV23aMJefwxqDujJ52AIjm1wqSH0GqK16KS0lW6vX3qQvoZ3RUCv%2BLhbbjVH9R6G%2BR80bBkRRRcQ1KU%2F0mwYvS4QqcCnm9UvN4%3D"}],"group":"cf-nel","max_age":604800}
< nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
< server: cloudflare
< cf-ray: 90e52429bfedefdc-LHR
<
{ [167 bytes data]
* Connection #0 to host calendar.claytonandcory.com left intact
As such, I believe the problem is likely to be local to your environment (browser, device or network). Hence, I would suggest to:
- Purge DNS cache
- Disable VPNs and proxies that might interfere with SSL verification.
- Test from a different network (e.g., mobile data) to see if it’s an ISP or local issue.
- Use Incognito mode and clear browser cache.