I’m about to start production on a balena based hardware project, with devices that need to be ‘in the wild’ for years without any physical maintenance from my side.
My devices connect to an HTTPS endpoint on my server which is secured with an SSL certificate that I have to manually update each year. I’d like to move it to a Letsencrypt certificate, but I’m not sure whether this will cause issues. I can see on some other websites that I host that the root CA certificate for these Letsencrypt certificates is pretty short-lived (it expires within a year from now), while my purchased certificates have a CA that expires in 2038.
Will using Letsencrypt on my API endpoint cause issues with my balena devices not trusting the CA when the current one expires and it switches to a newer one?