On Sat, 30 May 2020 at 12:16, Konstantin Ryabitsev <konstan...@linuxfoundation.org> wrote: > > > $ curl https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ > > > curl: (60) SSL certificate problem: certificate has expired > > > More details here: https://curl.haxx.se/docs/sslcerts.html > > > > > > curl failed to verify the legitimacy of the server and therefore could not > > > establish a secure connection to it. To learn more about this situation > > > and > > > how to fix it, please visit the web page mentioned above. > > > > > > > Well, the cert is expired: "notAfter=May 30 10:48:38 2020 GMT" > > It's one of the intermediaries. We're replacing that cert right now.
The bad intermediate cert is gone now, so you shouldn't see this problem any more (and the fact that you were seeing it in the first place suggests that you should update your openssl library, see https://calnetweb.berkeley.edu/calnet-technologists/incommon-sectigo-certificate-service/addtrust-external-root-expiration-may-2020). -K