(Final EDIT: in this present case, the key was that Apache was prevented from restarting by a third-party issue; fix that issue, allow Apache to restart, and all's good)
A serious problem: virtualmin tells it manages to renew Let's Encrypt certificates, however while it appears good on the virtualmin side, those renewed certificates aren't "seen" by the rest of the internet. For the rest of the internet, we're still with an expired certificate; the new certificate isn't seen O_o
I have that for 2 websites that had Let's Encrypt expire, olivertest.net and gogovertigo.com I'll give the example for one of them.
I added Let's Encrypt to the olivertest.net domain (my sandbox where I test stuff) a few months ago, with Virtualmin, didn't notice it expired 3 days ago, and renewed it yesterday evening. But when I wanted to test something in SSL for the first time, I found out the website doesn't load anything in SSL, with the error message the certificate has expired. So, I renewed it again in virtualmin just 20 minutes ago. Once again, same deal, the certificate renewal isn't witnessed by the rest of the internet.
It's as if something fails to tell "hey, I'm the new certificate, I'm still good".
I'm totally at a loss at the moment, may I humbly ask for help or opinions? Please? :)
The certificate installation result in virtualmin says all's good:
Requesting a certificate for olivertest.net, www.olivertest.net, autoconfig.olivertest.net from Let's Encrypt ..
.. request was successful!
Configuring webserver to use new certificate and key ..
Applying web server configuration ..
Screenshot of the SSL Certificate tab in Virtualmin, no error status: http://olivertest.net/stable/olivertestletsencrypt1.jpg http://olivertest.net/stable/olivertestletsencrypt2.jpg
But... SSL tests say otherwise: https://www.sslshopper.com/ssl-checker.html#hostname=olivertest.net ("This certificate has expired (3 days ago). Renew now." ) Microsoft Edge agrees: "DLG_FLAGS_SEC_CERT_DATE_INVALID" Firefox too: SEC_ERROR_EXPIRED_CERTIFICATE, and it goes to say the certificate expired 3 days ago
The website is NOT behind cloudflare or any CDN, directly plugged onto the internet from my Debian dedi.
I tried requesting a new Letsencrypt certificate, I also tried simply renewing it, both without any change in the results, not working in SSL, expired.
Super duper quick EDIT: I'm mentioning it just in case, maybe, just maybe, there might be a relation, ATM my server can't restart Apache for unrelated reasons. So - once again: maybe - if Virtualmin needs to restart Apache for the certificate renewal to be taken into account, this might be a cause.
And at this point, this it it, I'm totally lost :(
Please, would someone know what might be wrong?