1. The problem I’m having:
I have made a mistake somehow and accidentally issued way too many certificates using ZeroSSL. I am receiving this message in their dashboard:
Note: Your account is holding more than 100 ACME certificates. For using the Dashboard or API with this amount of ACME certificates you have to upgrade at least to the ZeroSSL basic plan.
I only have ~20 subdomains that I’m using caddy to get certificates for so I simply just have way too many unneeded certificates. I would like to revoke these.
ZeroSSL requires a POST request that contains the certificate ID in order to revoke it. This is what I’m trying to retrieve.
I was able to get the X509v3 Subject Key Identifier from a certificate using openssl x509 -in api.myexample.com.crt -text -noout from the /data/caddy/certificates/acme.zerossl.com-v2-dv90/api.myexample.com directory (within the docker container), but using the corresponding hash with the ZeroSSL api returned a certificate_not_found error, so I don’t even know if this is the ID I want. I tried the same thing with a few different subdomain folders with no luck.
2. Error messages and/or full log output:
n/a
3. Caddy version:
v2.7.5
4. How I installed and ran Caddy:
Docker compose
a. System environment:
Ubuntu 23.04
b. Command:
docker compose up caddy -d
c. Service/unit/compose file:
caddy:
image: caddy:latest
container_name: caddy
restart: unless-stopped
networks:
- caddy
ports:
- 80:80
- 443:443
- 443:443/udp
volumes:
- /opt/appdata/caddy/Caddyfile:/etc/caddy/Caddyfile:rw
- /opt/appdata/caddy/site:/srv
- /opt/appdata/caddy/data:/data/caddy
- /opt/appdata/caddy/config:/config/caddy
d. My complete Caddy config:
{
cert_issuer zerossl REDACTED
email REDACTED
}
api.myexample.com {
reverse_proxy example:80
}
# I have about 20 entries similar to the one above