We should renew the SSL certificates mentioned in title which, I believe, are under Inria's control.
Here is the most recent warning email I got (consistently with what icinga is currently complaining about, but note that the deadline is now only 45 days away)
Date: Sun, 26 Aug 2018 00:11:33 -0600
From: DigiCert <admin@digicert.com>
To: stefano.zacchiroli@inria.fr
Subject: Your DigiCert Certificate will expire in 60 days (Order # 788986)
Reply-To: DigiCert <admin@digicert.com>
Message-ID: <d59f1057b253aaf4cefb1e7fb0df75be@mail.digicert.com>Institut National de Recherche en Informatique et en Automatique
Hello Stefano,
This is a friendly reminder that your DigiCert Certificate will expire
in 60 days.Certificate Details
Requested By: Stefano Zacchiroli
Common Name(s): www.softwareheritage.org, softwareheritage.orgYou can renew your certificate by going to
https://www.digicert.com/secure/orders/788986/KEEP YOUR REMAINING TIME. When you renew early, DigiCert adds the
remaining time from your current certificate to your new certificate
(up to 3 months). You don't have to wait until the day before your
certificate expires just to get your money's worth.
If the certificate is installed on a Windows server, you must generate
a new CSR to renew it.If you are an administrator, you can customize your renewal notices in
your account settings here:
https://www.digicert.com/secure/preferences/Note from your administrator:Ceci est un rappel car le certificat va
bientôt arriver à expiration et n'a pas encore été renouvelé.
Si besoin, demandez le renouvellement du certificat sans tarder.
Thanks!
The DigiCert TeamPhone: 1-801-701-9600
Email: support@digicert.com [mailto:support@digicert.com]
Live Chat: www.digicert.com [https://www.digicert.com/]
@ftigeot can you take the lead on this? ideally we'd like to have a "role account" access to the renewal/registration service, so that anyone from the sysop team can do the renewal when needed. Feel free to invoke @rdicosmo super powers if authorization is needed.