Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
delete expired lets encrypt certificates
unix_todate=$(date -d "${todate}" "+%s")
getDomainName() {
echo $1 | cut -d'/' -f 5
for pem in /etc/letsencrypt/live/*/cert.pem; do
if [ $(date --date="$(openssl x509 -enddate -noout -in "$pem"|cut -d= -f 2)" "+%s") -le $unix_todate ];
domain=$(getDomainName $pem)
printf 'deleting cert %s expired: %s\n' \
"$domain" \
"$(date --date="$(openssl x509 -enddate -noout -in "$pem"|cut -d= -f 2)" --iso-8601)"
certbot delete --cert-name $domain
done | sort
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment