I just installed 22.03.3 on an RT-AX53U (Asus). I'm trying to fetch letsencrypt cert via dns challenge.
It seems this is failing due to OpenWrt not recognizing a valid Letscencrypt certificate. When I manually curl against the API URL of the powerdns server it says
root@ax1800:~# curl https://mypowerdnsapi.server.com
curl: (35) ssl_handshake returned - mbedTLS: (-0x7780) SSL - A fatal alert message was received from our peer
I cross checked by curling to a regular webserver I know it uses letsencrypt certs. This also fails with the same error.
ca-bundle was already installed ca-certificates was not. Even after installing, curl against https://libcom.de throws an error while against another letsencrypt site like https://relaix.net it does not.