SSL Certificate (Universal) renewed but website show Expired

user88110 · May 22, 2025, 4:31pm

What is the name of the domain?

cabico{.}com

What is the error number?

SSL Expired

What is the error message?

SSL Expired

What is the issue you’re encountering

Entire Website response with NOT SECURE

What steps have you taken to resolve the issue?

2 days ago the cert expired it was renewed auto but my server in OVH shows the old certificate not the new one and is not browsable due that. I disabled Universal SSL and after a 20 min re-enable it for the domain affected but no changes at all, it’s still down. How may I fix the issue?? If
the certificate is verified via TXT register where can I find the TXT string to add into the DNS record??

Thanks

What feature, service or problem is this related to?

I don’t know

cloonan · May 22, 2025, 4:40pm

Enable Universal SSL, https://dash.cloudflare.com/?to=/:account/:zone/ssl-tls/edge-certificates

user88110 · May 22, 2025, 4:53pm

Thanks for reply. In fact I disabled it following suggestion in another post. Same result it shows active in cloudflare but server/web still shows expired certificate (2 days ago), I did that again but I’m waiting a bit more time to re-enable.

Laudian · May 22, 2025, 4:55pm

The expired certificate isn’t on Cloudflare but on your server.

Your domain isn’t proxied by Cloudflare, so Cloudflare doesn’t have anything to do with your expired certificate.

user88110 · May 22, 2025, 5:00pm

My main domain and others domain and the public DNS of them are managed at cloudflare.

Laudian · May 22, 2025, 5:02pm

Yes, but the expired certificate is on your server, not on Cloudflare. I don’t know how you usually manage the certificate on your server, but that’s how you’ll need to renew it.

user88110 · May 22, 2025, 5:05pm

OK if that is the case… May you tell or guide me where I can download the certificate to install into the OVH server?? Thanks.

Laudian · May 22, 2025, 5:24pm

Do you manage your own server (with root access)?

user88110 · May 22, 2025, 5:30pm

Yes I have access into it, looking at the web service config (nginx) no certificate for this domain is in place, only certs for other 2 domains and will check the certbot config soon, but so far no files for this domain, in fact it’s listening on port 80 for the domain with error.

Laudian · May 22, 2025, 5:38pm

You have conflicting DNS records.

Your A records point directly to your server IP (no proxy), but your AAAA records point to Cloudflare IP addresses.

That indicates a misconfiguration to me.

dig +short cabico.com
15.235.xxx.xxx

dig +short cabico.com aaaa
2606:4700:3032::6815:471a
2606:4700:3031::ac43:8e6d

Check that your DNS records are configured correctly.

In any case, your server responds with an expired certificate for your domain, so you’ll need to fix that. Check that certbot renews the certificate and also reloads nginx after a renewal.

system · May 24, 2025, 5:38pm

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Universal SSL active but error on page SSL / TLS ssl	1	16	May 22, 2025
Expired Universal SSL will not renew SSL / TLS	5	1311	November 22, 2022
SSL Certificate (Universal) Expired and not renewing DNS & Network	8	2027	November 27, 2022
Universal Certificate Seems to be Expired SSL / TLS ssl , dns , dash-ssl-tls , dash-troubleshooting	8	2893	July 19, 2018
Universal SSL Edge certificate has expired and not renewed on its own SSL / TLS	1	1200	December 18, 2022