On Sunday, December 5th, 2021 at 00:00:00 UTC, the SSL certificate on the public domain *.pushnotificaiton.pusher.com expired. As a result, all requests for device subscription and notification publishing APIs failed with a “certificate expired” error. Our engineers got paged and started investigating the situation. The issue was promptly identified and the team worked on creating a new certificate. After the new certificate got deployed, the coming requests stopped receiving errors and the system went back to normal which concluded the incident.
That was an internal process failure where we failed to update the SSL certificate on time before it expired. Better monitoring will be applied to this SSL certificate and others. In addition to that, an investigation for using certificate auto-renewal tools is in progress.
All times are in UTC on the 5th of December 2021: