SSL Error - Certificate Expired

Seeing an issue with this site:

production-creature-post.netlify.app

the custom domain https://creaturepost.co.nz and https://www.creaturepost.co.nz was working fine for months, however it is now displaying a certificate expired error.

The netlify admin panel says the cert is valid and doesnt expire until March, and all other subdomains pointing to this site continue to work fine (eg.https://creature.ghoststreet.co.nz/). I have tried renewing the cert, and verified the cname record for the www subdomain is pointing to production-creature-post.netlify.app.

Please help?

Hi @devghostst

Looking at the DNS records for creaturepost.co.nz I see an A record pointing to 104.198.14.52

% dig creaturepost.co.nz A +short
104.198.14.52

This is directing all traffic to a single CDN node as outlined in the following post

As outlined in Configure external DNS for a custom domain | Netlify Docs the A record for the domain apex should point to 75.2.60.5.

The CNAME for www is correct

% dig www.creaturepost.co.nz CNAME +short
production-creature-post.netlify.app.

Additionally, creature.ghoststreet.co.nz appears as though it is connecting via Cloudflare based on the headers (server: cloudflare; though I do also see the Netlify x-nf-request-id.)