{"id":391,"date":"2025-02-02T00:48:27","date_gmt":"2025-02-02T00:48:27","guid":{"rendered":"https:\/\/hiyokotech.com\/?p=391"},"modified":"2025-02-02T01:03:58","modified_gmt":"2025-02-02T01:03:58","slug":"updating-a-lets-encrypt-certificate","status":"publish","type":"post","link":"https:\/\/hiyokotech.com\/?p=391","title":{"rendered":"Updating a Let’s Encrypt certificate"},"content":{"rendered":"

Updating a Let’s Encrypt certificate depends on how it was originally issued. Here\u2019s a step-by-step guide based on different scenarios:<\/p>\n

1. If You Used Certbot (Recommended)<\/strong><\/h3>\n

Certbot is the most common way to obtain and renew Let’s Encrypt certificates.<\/p>\n

Check Expiry Date<\/strong><\/h4>\n

Run:<\/p>\n

\n
sudo certbot certificates
\n<\/code><\/div>\n<\/div>\n

This shows your existing certificates and their expiration dates.<\/p>\n

Renew Certificates<\/strong><\/h4>\n

Run:<\/p>\n

\n
sudo certbot renew
\n<\/code><\/div>\n<\/div>\n

This attempts to renew all certificates that are expiring within 30 days.<\/p>\n

Restart Web Server (If Required)<\/strong><\/h4>\n

After renewal, restart your web server (e.g., Apache or Nginx) to apply the new certificate:<\/p>\n

\n
sudo systemctl restart apache2 # For Apache<\/span>
\nsudo systemctl restart nginx # For Nginx<\/span><\/code><\/div>\n<\/div>\n
<\/div>\n
\n

Verify the Renewal<\/strong><\/h3>\n

Once done, check if your certificate is updated:<\/p>\n

\n
openssl x509 -noout -dates -in<\/span> \/etc\/letsencrypt\/live\/example.com\/fullchain.pem
\n<\/code><\/div>\n<\/div>\n

If everything is working correctly, your SSL certificate should now be renewed!<\/p>\n<\/div>\n

 <\/p>\n

Cron renew<\/strong><\/h3>\n

$ crontab -u root -e
\n00 00 25 * * systemctl stop httpd && certbot renew && systemctl start httpd<\/p>\n","protected":false},"excerpt":{"rendered":"

Updating a Let’s Encrypt certificate depends on how it was originally issued. Here\u2019s a step-by-step guide based on different scenarios: 1. If You Used Certbot (Recommended) Certbot is the most common way to obtain and renew Let’s Encrypt certificates. Check Expiry Date Run: sudo certbot certificates This shows your existing certificates and their expiration dates.
Read More »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/hiyokotech.com\/index.php?rest_route=\/wp\/v2\/posts\/391"}],"collection":[{"href":"https:\/\/hiyokotech.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hiyokotech.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hiyokotech.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hiyokotech.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=391"}],"version-history":[{"count":2,"href":"https:\/\/hiyokotech.com\/index.php?rest_route=\/wp\/v2\/posts\/391\/revisions"}],"predecessor-version":[{"id":393,"href":"https:\/\/hiyokotech.com\/index.php?rest_route=\/wp\/v2\/posts\/391\/revisions\/393"}],"wp:attachment":[{"href":"https:\/\/hiyokotech.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=391"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hiyokotech.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=391"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hiyokotech.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=391"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}