"Your connection is not private" - Invalid Cert

When users go to our website www.bunglaow5.com they receive the error below (also attached).

I checked the cert and it is directly from Cloudflare (issued 2019) so not sure why all of a sudden users are getting thi


s error. Please advise.

Thanks,
Antoine

Your connection is not private

Attackers might be trying to steal your information from www.bungalow5.com (for example, passwords, messages, or credit cards). Learn more

NET::ERR_CERT_AUTHORITY_INVALID

Subject: CloudFlare Origin Certificate

Issuer: CloudFlare, Inc.

Expires on: Oct 25, 2034

Current date: Oct 21, 2021

PEM encoded chain:-----BEGIN CERTIFICATE-----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-----END CERTIFICATE—

To get Chrome’s highest level of security, turn on enhanced protection

That domain is not using Cloudflare. A Cloudflare origin certificate is only for sites proxied by Cloudflare.

Thanks for the feedback. When I view the cert here is what I see.

Can you please share with me how you determined the cert was not from CF? and if it’s not is there a way to determine who it is from?

Thanks,
Antoine

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.