HELP please! URG: SSL/TLS certificate from AWS Certificate Manager (ACM) in my AWS account expired

Hello.

The certificate may have expired and could not be renewed for some reason.
Once the certificate expires, automatic renewal will not be possible, so you will need to issue a new one.
https://repost.aws/knowledge-center/acm-certificate-ineligible

Therefore, please follow the steps in the document below to issue a new certificate with ACM and switch the certificate used by ALB etc. to the newly issued certificate.
https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html

Hi,

Automatic ACM cerificate renewal happens under a few restrictions listed here: https://docs.aws.amazon.com/acm/latest/userguide/managed-renewal.html

ELIGIBLE if associated with another AWS service, such as Elastic Load Balancing or CloudFront.
ELIGIBLE if exported since being issued or last renewed.
ELIGIBLE if it is a private certificate issued by calling the ACM RequestCertificate API and then exported or associated with another AWS service.
ELIGIBLE if it is a private certificate issued through the management console and then exported or associated with another AWS service.
NOT ELIGIBLE if it is a private certificate issued by calling the AWS Private CA IssueCertificate API.
NOT ELIGIBLE if imported.
NOT ELIGIBLE if already expired.

As your current certificate expired, automatic renewal is no longer possible: see last line.

You'll have to create a new one

Please, follow instruction to create the new one and validate it in Route53: https://docs.aws.amazon.com/acm/latest/userguide/dns-validation.html

Best,

Didier

Just to be sure, if you open the expired certificate in the ACM console, does the associated resources list show any resources? AWS won't automatically renew a certificate that isn't used.