Once upon a time, Tim ignored_mailbox@yahoo.com.au said:
Allegedly, on or about 09 April 2014, Edward M sent:
You may also want to create new private key, buy a new cert from CA and install the new key for each website supporting OpenSSL and change the passwords.
Hmm, certificate issues must be loving that - people spending money, early, replacing a certificate before it expires.
Many of the CAs are not charging for reissues (keeping the same expiration I assume).