Remove cached certificate

[williampeterpaul]

I've set up a server to auto generate certificates using Let's Encrypt and lua-resty-auto-ssl. It's working as expected for all but one domain, for which I am getting a privacy error in browser:

NET::ERR_CERT_AUTHORITY_INVALID Subject: sni-support-required-for-valid-ssl Issuer: sni-support-required-for-valid-ssl Expires on: 17 Nov 2031 Current date: 5 Mar 2024

In the past when I've had a similar error, for example due to an expired certificate I've been able to fix the problem by removing the certificate from the storage folder /etc/resty-auto-ssl/storage/file and restarting the openresty service with sudo service openresty restart to regenerate upon next visit.

In this case the above fix isn't working. I can't see any certificate for the domain under /etc/resty-auto-ssl/letsencrypt/certs and restarting the entire server hasn't worked, either.

It seems like the invalid certificate response has been cached and is being served, regardless of my attempts to remove it. Would anyone be able to point me in the right direction for why this might be occurring and how to resolve?

Can share my nginx.conf if needed.