Thread

  1. Re: https://cfbot.cputube.org - certificate has expired

    Nazir Bilal Yavuz <byavuz81@gmail.com> — 2025-11-27T13:07:18Z

    Hi,
    
    On Thu, 27 Nov 2025 at 16:00, Aleksander Alekseev
    <aleksander@tigerdata.com> wrote:
    >
    > Hi,
    >
    > I've just discovered that cfbot has a little problem with TLS:
    >
    > ```
    > $ curl -vvv https://cfbot.cputube.org
    > * Host cfbot.cputube.org:443 was resolved.
    > * IPv6: (none)
    > * IPv4: 139.180.174.5
    > *   Trying 139.180.174.5:443...
    > * Connected to cfbot.cputube.org (139.180.174.5) port 443
    > * ALPN: curl offers h2,http/1.1
    > * TLSv1.3 (OUT), TLS handshake, Client hello (1):
    > *  CAfile: /etc/ssl/certs/ca-certificates.crt
    > *  CApath: /etc/ssl/certs
    > * TLSv1.3 (IN), TLS handshake, Server hello (2):
    > * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
    > * TLSv1.3 (IN), TLS handshake, Certificate (11):
    > * TLSv1.3 (OUT), TLS alert, certificate expired (557):
    > * SSL certificate problem: certificate has expired
    > * Closing connection
    > curl: (60) SSL certificate problem: certificate has expired
    > More details here: https://curl.se/docs/sslcerts.html
    >
    > curl failed to verify the legitimacy of the server and therefore could not
    > establish a secure connection to it. To learn more about this situation and
    > how to fix it, please visit the web page mentioned above.
    > ```
    >
    > The non-encrypted version serves fine. Sorry for the message to a wide
    > audience, but I don't know who maintains cfbot.
    
    Thomas and Jelte maintain the CFBot. AFAIK, CFBot has worked like that
    from the start so I guess that is expected.
    
    
    -- 
    Regards,
    Nazir Bilal Yavuz
    Microsoft