Win-acme: INVALID CERTIFICATE

Created on 18 Jan 2020 · 4Comments · Source: win-acme/win-acme

Hello,

It semana that certificate is not valid. How to ideal with Fake LE intermediate X1. Tested with Chrome.

Best regards

question

Source

vibarco

Most helpful comment

Sounds like you created the certificate with --test. With this parameter you‘re using the staging environment of Let’s Encrypt. Certificates created with this staging environment are using this fake certificate.

Virinum on 18 Jan 2020

👍2

All 4 comments

Virinum on 18 Jan 2020

👍2

Sounds like you created the certificate with --test. With this parameter you‘re using the staging environment of Let’s Encrypt. Certificates created with this staging environment are using this fake certificate.

Thank you so much Virinum. I removed --test directive from de command but i get a diferent error now:

[WARN] Preliminary validation failed because A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond.. The ACME server might have a different perspective

vibarco on 18 Jan 2020

This the trace from letsdebug-test

ANotWorking
ERROR
mydomaincom has an A (IPv4) record (3.218.61.203) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with mydomain.com/3.218.61.203: Get http://mydomain.com/.well-known/acme-challenge/letsdebug-test: context deadline exceeded

Trace:
@0ms: Making a request to http://mydomain.com/.well-known/acme-challenge/letsdebug-test (using initial IP 3.218.61.203)
@0ms: Dialing 3.218.61.203
@10000ms: Experienced error: context deadline exceeded

vibarco on 18 Jan 2020

So it looks like your website is not accessible from the internet, therefor you won't be able to use HTTP validation. Perhaps you can try with DNS or TLS validation.