Hello,
Since yesterday one of our certificate is expired. Strangely.
We manage all cert and subdomain cert on Netlify.
All “root”, “www”, “poker”, etc … subdomains works fine. Except the “shop” who expired yesterday.
This “shop” subdomain is also a CNAME for “shops.sumupstore.com”.
All is working fine for months. And we touched nothing for weeks.
I just can’t understand why this shop certificate expired and only this one.
Any help/tip/diagnotic would be helpfull
Hi, @ghk-arolla. The following statement is not entirely accurate:
You do not manage the SSL for shop.grandhotelkurhaus.com on Netlify.
This is the DNS record for shop.grandhotelkurhaus.com:
shop.grandhotelkurhaus.com. 3600 IN CNAME shops.sumupstore.com.
That CNAME target is shops.sumupstore.com (which you have confirmed above as well):
shops.sumupstore.com. 300 IN A 108.128.115.77
The IP address 108.128.115.77 isn’t controlled by Netlify which means Netlify doesn’t control the SSL for shop.grandhotelkurhaus.com.
SSL is handled in the HTTP protocol and not the DNS protocol. Netlify is only providing the DNS service for shop.grandhotelkurhaus.com and not the HTTP service. The HTTP service is controlled by the IP address 108.128.115.77 and Netlify doesn’t have anything to do with that IP address.
This means you will need to contact the technical support for the service using the IP address 108.128.115.77 and troubleshoot the SSL issue with them. Netlify cannot provision SSL for that IP address because we do not control it in any way.
If there are other questions about this, please let us know.
Thanks a lot for the clear and detailled explanation.
I understand. Makes sense.