Hello
We have a Cisco 3900 acting as a CA Router we point the spokes to this router with the enrollment url command, on the spoke router I now see this error and when I do a show crypto pki cert verbose I dont see a certificate on the spokewhich is (SN: 02)
but I do see (SN: 02) on the branch router and its expired and it matches the error below on the spoke, any idea how i fix this, and also coul this generate invalid spi errors also.
Branch Router
Status: Available
Version: 3
Certificate Serial Number (hex): 02
Certificate Usage: General Purpose
Validity Date:
start date: 15:29:55 BST Aug 29 2016
end date: 15:29:55 BST Aug 28 2021
Subject Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (2048 bit)
Spoke Router
Sep 16 08:35:01.042: %PKI-3-CERTIFICATE_INVALID_EXPIRED: Certificate chain validation has failed. The certificate (SN: 02) has expired. Validity period ended on 15:29:55 BST Aug 28 2021