Invalid TLS certificate on https://docs.bolt.cm
ich199 opened this issue · 2 comments
ich199 commented
The certificate for the documentation website docs.bolt.cm appears to have expired, and is no longer valid. HSTS is preventing viewing of the documentation
$ :| openssl s_client -connect docs.bolt.cm:443
CONNECTED(00000003)
depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
verify return:1
depth=0 CN = bolt.cm
verify error:num=10:certificate has expired
notAfter=Dec 11 13:57:52 2020 GMT
verify return:1
depth=0 CN = bolt.cm
notAfter=Dec 11 13:57:52 2020 GMT
verify return:1
---
Certificate chain
0 s:CN = bolt.cm
i:C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
1 s:C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
i:O = Digital Signature Trust Co., CN = DST Root CA X3
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = bolt.cm
issuer=C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
---
No client certificate CA names sent
Peer signing digest: SHA512
Peer signature type: ECDSA
Server Temp Key: ECDH, P-384, 384 bits
---
SSL handshake has read 2759 bytes and written 464 bytes
Verification error: certificate has expired
---
New, TLSv1.2, Cipher is ECDHE-ECDSA-AES256-GCM-SHA384
Server public key is 384 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-ECDSA-AES256-GCM-SHA384
Session-ID: 74C026D0A3D7218EAB6190A8729ED1F2F0D07A88183BED049828D4B232128EE8
Session-ID-ctx:
Master-Key: 2CD87AD270516247AAA3021BAD862BC025EB690E59C7B4D86FA44C878DF5783FBC082BC6DF764E24AFFDBBFA2FDB35E1
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1607695820
Timeout : 7200 (sec)
Verify return code: 10 (certificate has expired)
Extended master secret: no
---
DONE
ich199 commented
looks like the certificate has been updated
bobdenotter commented
Yeah, sorry for not pinging you here. It’s been fixed indeed! 😇