The certificate is only valid for lobste.rs
I have www.lobste.rs in my browser history and keep hitting it by mistake.
This is a known issue, see https://github.com/lobsters/lobsters-ansible/issues/2
Question is why it’s taking this long to just generate a new cert with the extra SAN…
No one is paid to work on lobsters. If you know ansible and letsencrypt you should be able to help out.
Well I don’t really know how the current Lets Encrypt cert was generated, but it’s literally just another argument. Did ask about it when it came up on IRC 3 weeks ago, but didn’t get a reply then, and figured it would probably be fixed pretty quickly then so completely forgot about it.
It was manually created with certbot but, as noted in the bug, should probably be replaced with use of acmeclient to have much fewer moving parts, if nothing else.
It’d be great to have someone who knows the topic well to help the issue along in any capacity, if you have the spare attention.
I’ve done entirely too much work with acmeclient to automate certs for http://conj.io and some other properties I run. Will try and find time this weekend to take a run at this.
That or to use dehydrated: in a text file, one certificate per line, each domain separated by a space.