'pod install' has the same issue, guess something wrong with the new cdn server

same wrong

Have you solved the problem ?

I have a same wrong, so sad

I had the same wrong, and it's been a day.

i had the same problem in the whole day, It's annoying

CDN: cocoapods- URL couldn't be downloaded: https://cdn.jsdelivr.net/cocoa/Specs/f/c/8/YF_HotFix/1.0.0/YF_HotFix.podspec.json Response: SSL peer certificate or SSH remote key was not OK
CDN: cocoapods- URL couldn't be downloaded: https://cdn.jsdelivr.net/cocoa/Specs/f/c/8/YF_HotFix/1.0.1/YF_HotFix.podspec.json Response: SSL peer certificate or SSH remote key was not OK

I had the same wrong, and it's been a day.

I use curl to test "https://cdn.jsdelivr.net":
curl: (60) SSL certificate problem: certificate has expired

it's ok to open "https://cdn.jsdelivr.net/cocoa/Specs/f/c/8/YF_HotFix/1.0.0/YF_HotFix.podspec.json" in the web browser, but not work in terminal

We've contacted jsDelivr to see if they can find any issues on their end. It looks like this might be specific to certain regions (so far looks like this is only happening in China).

@JackStronger can you please run "curl https://cdn.jsdelivr.net --verbose" and post the results here? I tried to check it myself by running the command from within China but even that worked without issues.

// cc @jimaek

@JackStronger can you please run "curl https://cdn.jsdelivr.net --verbose" and post the results here? I tried to check it myself by running the command from within China but even that worked without issues.

// cc @jimaek

sure，the results is:

Thanks, we've temporarily switched China traffic from Quantil to Cloudflare. It should work now (with worse performance). @jimaek will follow up shortly to fix the original issue and enable Quantil again.

@MartinKolarik thank you for investigating, and for your support of CocoaPods!

Closing for now given the above change

The traffic was switched back to Quantil and everything should be working fine. Our certificate did not expire, it was an issue with the CA chain

Everything works like a charm now, thank you guys.

Same issue here now
[!] CDN: trunk URL couldn't be downloaded: https://cdn.jsdelivr.net/cocoa/Specs/0/8/4/GoogleUtilities/6.7.1/GoogleUtilities.podspec.json Response: Timeout was reached

`curl https://cdn.jsdelivr.net --verbose

• Trying 151.101.194.109...
• TCP_NODELAY set
• Connected to cdn.jsdelivr.net (151.101.194.109) port 443 (#0)
• ALPN, offering h2
• ALPN, offering http/1.1
• successfully set certificate verify locations:
• CAfile: /etc/ssl/cert.pem
  CApath: none
• TLSv1.2 (OUT), TLS handshake, Client hello (1):
• TLSv1.2 (IN), TLS handshake, Server hello (2):
• TLSv1.2 (IN), TLS handshake, Certificate (11):
• TLSv1.2 (IN), TLS handshake, Server key exchange (12):
• TLSv1.2 (IN), TLS handshake, Server finished (14):
• TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
• TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
• TLSv1.2 (OUT), TLS handshake, Finished (20):
• TLSv1.2 (IN), TLS change cipher, Change cipher spec (1):
• TLSv1.2 (IN), TLS handshake, Finished (20):
• SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
• ALPN, server accepted to use h2
• Server certificate:
• subject: C=US; ST=California; L=San Francisco; O=Fastly, Inc.; CN=f3.shared.global.fastly.net
• start date: Jul 8 22:07:09 2020 GMT
• expire date: Apr 17 15:42:40 2021 GMT
• subjectAltName: host "cdn.jsdelivr.net" matched cert's "*.jsdelivr.net"
• issuer: C=BE; O=GlobalSign nv-sa; CN=GlobalSign CloudSSL CA - SHA256 - G3
• SSL certificate verify ok.
• Using HTTP2, server supports multi-use
• Connection state changed (HTTP/2 confirmed)
• Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
• Using Stream ID: 1 (easy handle 0x7fa58b80de00)

GET / HTTP/2
Host: cdn.jsdelivr.net
User-Agent: curl/7.64.1
Accept: /

• Connection state changed (MAX_CONCURRENT_STREAMS == 100)!
  < HTTP/2 301
  < access-control-allow-origin: *
  < access-control-expose-headers: *
  < timing-allow-origin: *
  < cache-control: no-cache, no-store, must-revalidate
  < x-content-type-options: nosniff
  < strict-transport-security: max-age=31536000; includeSubDomains; preload
  < location: https://www.jsdelivr.com
  < content-type: text/plain; charset=utf-8
  < accept-ranges: bytes
  < date: Wed, 15 Jul 2020 20:53:45 GMT
  < age: 0
  < x-served-by: cache-fra19127-FRA, cache-cph20620-CPH
  < x-cache: HIT, MISS
  < vary: Accept-Encoding, Accept
  < content-length: 58
  <
• Connection #0 to host cdn.jsdelivr.net left intact
  Moved Permanently. Redirecting to https://www.jsdelivr.com* Closing connection 0
  `

Was it a one time error or it keeps happening? Fastly seems to be working fine without any issues.

@JakubTHOC I don't see any issue here, the curl output you posted shows correct response. A timeout may occur for a great number of reasons including issues with your connection but should usually go away in a moment.

still happening

Issue still exist.

@koyta do you mean the originally reported SSL issue or something else? Please provide more details with a curl output as above, if possible.

@koyta do you mean the originally reported SSL issue or something else? Please provide more details with a curl output as above, if possible.

Originally reported. BTW, updating cocoapods manually helps resolve this issue. No idea how it works.

still happening

I had the same problem. What worked for me was using a VPN.

For those who want to know my exact steps:
I used ProtonVPN and the US server "US-FREE#4".

Nothing else worked until I tried this. As others mentioned above, people seem to have the problem based on their region, so using a VPN allows you to switch over to a region where it connects successfully.

Not work even I use a VPN in China.

>> pod update --verbose
Update all pods
  Preparing

Updating local specs repositories
  CDN: trunk URL couldn't be downloaded:
  https://cdn.cocoapods.org/CocoaPods-version.yml Response: SSL peer certificate
  or SSH remote key was not OK, retries: 4
  CDN: trunk URL couldn't be downloaded:
  https://cdn.cocoapods.org/CocoaPods-version.yml Response: SSL peer certificate
  or SSH remote key was not OK, retries: 3

Not work even I use a VPN in China.

>> pod update --verbose
Update all pods
  Preparing

Updating local specs repositories
  CDN: trunk URL couldn't be downloaded:
  https://cdn.cocoapods.org/CocoaPods-version.yml Response: SSL peer certificate
  or SSH remote key was not OK, retries: 4
  CDN: trunk URL couldn't be downloaded:
  https://cdn.cocoapods.org/CocoaPods-version.yml Response: SSL peer certificate
  or SSH remote key was not OK, retries: 3

Try using a VPN from a different country

I just want to clarify that this issue seems unrelated to jsDelivr in any way. It would maybe make sense to open a new issue about this.

Not work even I use a VPN in China.

>> pod update --verbose
Update all pods
  Preparing

Updating local specs repositories
  CDN: trunk URL couldn't be downloaded:
  https://cdn.cocoapods.org/CocoaPods-version.yml Response: SSL peer certificate
  or SSH remote key was not OK, retries: 4
  CDN: trunk URL couldn't be downloaded:
  https://cdn.cocoapods.org/CocoaPods-version.yml Response: SSL peer certificate
  or SSH remote key was not OK, retries: 3

Try using a VPN from a different country

Yes, have tried VPNs from US, HK. Same issue.