原因国外论坛说了原因大致是:Let’s Encrypt 's — 一个免费、自动化和开放的证书颁发机构,根证书“DST Root CA X3”已于2021 年 9 月 30 日到期。 Show
对于大多数实际用途而言,这无关紧要,因为 Let’s Encrypt 已经将其证书迁移到“ISRG Root X1”。它与新系统上的 ISRG Root X1 证书链接,而旧系统上的 ISRG Root X1 与 DST Root CA X3 交叉签名。但是,DST Root CA X3 到期会影响依赖与操作系统捆绑的旧可信证书的嵌入式系统和服务器。 lynx或curl依赖默认证书**库来信任安全 URL,如果证书尚未更新,它将在 2021 年 9 月 30 日之后开始失败,并收到类似于以下内容的错误: curl: (60) The certificate issuer's certificate has expired. Check your system date and time.OR server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none解决办法centos sudo yum install ca-certificates sudo update-ca-trust extractDebian sudo apt-get install --reinstall ca-certificatesPS:如果yum之前清了缓存,更新不了,下面有一个方案,一般不推荐使用 在编辑器上添加一行 sslverify=false在关闭认证后,可以正常使用yum更新包,注意更新完成后将这行去掉, 跳转到内容 yum [Errno 14] curl#60 – “The certificate issuer’s certificate has expired. Check your system date and time.(yum [Errno 14] curl#60 – “The certificate issuer’s certificate has expired. Check your system date and time.)1. 原因 yum 调用curl 命令下载软件包,而curl 命令在从https 路径下载软件包时,会通过本地ca-certicifates 包中的文件校验证书合法性,如果ca-certificates 包过期,则会出现证书过期的问题2. 解决 手动更新ca-certificates 软件包及其依赖更新完成后再执行 命令即恢复正常 yum makecahce fast———————— 1. Reasons yum 调用curl 命令下载软件包,而curl 命令在从https 路径下载软件包时,会通过本地ca-certicifates 包中的文件校验证书合法性,如果ca-certificates 包过期,则会出现证书过期的问题2. Solution 手动更新ca-certificates 软件包及其依赖Execute after the update is completed The command returns to normal yum makecahce fast文章导航一 错误信息 点击查看代码 curl performs SSL certificate verification by default, using a "bundle" 二 解决办法 2.2 找到网站证书并导出2.3 打开导出的证书2.4 将内容追加到 /etc/pki/tls/certs/ca-bundle.crt三 验证结果 点击查看代码
举报文章 请选择举报类型 内容侵权 涉嫌营销 内容抄袭 违法信息 其他 上传截图 格式支持JPEG/PNG/JPG,图片不超过1.9M 已经收到您得举报信息,我们会尽快审核 How do I fix curl 60 SSL certificate problem certificate has expired?The only solution to this problem is to get your host to update the root certificate on your server. So, you need to contact your server host and ask them to insert a new cacert. pem file into their servers, and configure it within their php.
How do you fix curl Error 60?How to solve this problem: download and extract cacert. pem following the instructions at https://curl.se/docs/caextract.html. save it on your filesystem somewhere (for example, XAMPP users might use C:\xampp\php\extras\ssl\cacert.
What is a curl Error 60?Error “curl: (60) SSL certificate problem: unable to get local issuer certificate” can be seen when the SSL certificate on the server is not verified or properly configured.
How do you fix Peer's certificate issuer has been marked as not trusted by the user?You can do this in two ways.. Set SSL Verify to false only for specific repo: git config http.sslVerify false.. Set SSL Verify to false Globally: git config --global http.sslVerify false.. |