Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [paho-dev] iot.eclipse.org's certificate has expired

Hey Tomoaki, good catch!

I actually renewed the certificate in time, it simply looks like I didn't restart Mosquitto afterwards. I just did, and the certificate should now be valid again. Thanks for reporting this!
There might be a question for Roger here, actually (cc'd mosquitto-dev): it doesn't look like new certificates are picked up when sending SIGHUP to a live instance of Mosquitto?

Benjamin –



Benjamin Cabé – IoT Evangelist

Eclipse Foundation
+33 (0) 619196101
@kartben

De : <paho-dev-bounces@xxxxxxxxxxx> on behalf of Tomoaki Yamaguchi <tomoaki@xxxxxxxxxxxxx>
Répondre à : General development discussions for paho project <paho-dev@xxxxxxxxxxx>
Date : vendredi 9 septembre 2016 10:45
À : General development discussions for paho project <paho-dev@xxxxxxxxxxx>
Objet : [paho-dev] iot.eclipse.org's certificate has expired

I'm checking the TLSv1.2 connection of iot.eclipse.org server.
It seems that certificate has expired.  it needs to renew the server certificate.
notAfter=Sep  1 17:23:00 2016 GMT

CAfile was copied from https://letsencrypt.org/certificates/

$ openssl s_client -connect iot.eclipse.org:8883 -CAfile /usr/share/ca-certificates/lets-encrypt-x3-cross-signed.crt

CONNECTED(00000003)
depth=2 O = Digital Signature Trust Co., CN = DST Root CA X3
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
verify return:1
depth=0 CN = iot.eclipse.org
verify error:num=10:certificate has expired
notAfter=Sep  1 17:23:00 2016 GMT
verify return:1
depth=0 CN = iot.eclipse.org
notAfter=Sep  1 17:23:00 2016 GMT
verify return:1



Tomy Technology
Tomoaki  YAMAGUCHI
_______________________________________________ paho-dev mailing list paho-dev@xxxxxxxxxxx To change your delivery options, retrieve your password, or unsubscribe from this list, visit https://dev.eclipse.org/mailman/listinfo/paho-dev

Back to the top