CloudFront SSL Invalid Error

Question

I am distributing the nextjs project through CloudFront.

I have an SSL certificate issued through AWS Certificate Manager.
This SSL certificate is connected by route53.
And the domain name and certificate are also linked to CloudFront.

However, the following error occurred.
What should I fix? Please let me know.
Thank you.

```
Invalid request provided: The specified SSL certificate doesn't exist, isn't in us-east-1 region, isn't valid, or doesn't include a valid certificate chain
```

![여기에 이미지 설명 입력](/media/postImages/original/IMSbRM-FIFRLupu9wehwd3qA)
![여기에 이미지 설명 입력](/media/postImages/original/IM2v62Q863TASigijkekhTCA)
![여기에 이미지 설명 입력](/media/postImages/original/IMB5UiENLqRCCjiZBQDdk13Q)

```
✔  Building...
|  Site PUBLISH_ASSETS_COMPLETE 
|  Site site/ServerFunction/AssetReplacer Custom::AssetReplacer UPDATE_COMPLETE 
|  Site site/S3AssetUploader Custom::S3Uploader UPDATE_COMPLETE 
|  Site site/RevalidationInsertFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/RevalidationFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/ImageFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/RevalidationResource AWS::CloudFormation::CustomResource UPDATE_COMPLETE 
|  Site site/ServerFunction/ServerFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/Distribution AWS::CloudFront::Distribution UPDATE_FAILED Resource handler returned message: "Invalid request provided: The specified SSL certificate doesn't exist, isn't in us-east-1 region, isn't valid, or doesn't include a valid certificate chain. (Service: CloudFront, Status Code: 400, Request ID: cf266906-2d34-43de-8d3f-b1bd72edafd8)" (RequestToken: 55e0ff90-a2fa-8e90-ea0c-455f681b3453, HandlerErrorCode: InvalidRequest)
|  Site site/ServerFunction/AssetReplacer Custom::AssetReplacer UPDATE_COMPLETE 
|  Site site/S3AssetUploader Custom::S3Uploader UPDATE_COMPLETE 
|  Site site/RevalidationFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/RevalidationInsertFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/ImageFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/RevalidationResource AWS::CloudFormation::CustomResource UPDATE_COMPLETE 
|  Site site/ServerFunction/ServerFunction AWS::Lambda::Function UPDATE_COMPLETE 
|  Site site/Distribution AWS::CloudFront::Distribution UPDATE_COMPLETE 
|  Site AWS::CloudFormation::Stack UPDATE_ROLLBACK_COMPLETE 
⠋  Deploying...
✖  Errors
   Site UPDATE_ROLLBACK_COMPLETE
   site/Distribution: Resource handler returned message: "Invalid request provided: The specified SSL certificate doesn't exist, isn't in us-east-1 region, isn't valid, or doesn't include a valid certificate chain. (Service: CloudFront, Status Code: 400, Request ID: cf266906-2d34-43de-8d3f-b1bd72edafd8)" (RequestToken: 55e0ff90-a2fa-8e90-ea0c-455f681b3453, HandlerErrorCode: InvalidRequest)
```

Answer

Hello.

ACM's SSL certificate used with CloudFront must meet the requirements listed in the following documents:  
Do you meet all of these requirements?  
https://repost.aws/knowledge-center/cloudfront-invalid-viewer-certificate  
> * The certificate must be imported in the US East (N. Virginia) Region.  
> * The certificate must be 2048 bits or smaller.  
> * The certificate must not be password-protected.  
> * The certificate must be PEM encoded.

CloudFront SSL Invalid Error

Relevant content