SSL/TLS certificate from AWS Certificate Manager expiration for sandbox.civicpdx.org

[jaronheard]

TEAM NAME: Org Staff
PRIORITY (1-5): 2

Description of issue

You have an SSL/TLS certificate from AWS Certificate Manager in your AWS account that expires on Jun 12, 2020 at 12:00:00 UTC. This certificate includes the primary domain sandbox.civicpdx.org and a total of 1 domains.

AWS account ID: 845828040396
AWS Region name: us-west-2
Certificate identifier: arn:aws:acm:us-west-2:845828040396:certificate/c8064270-986f-416d-b01d-0744731ce6fa

AWS Certificate Manager (ACM) was unable to renew the certificate automatically using DNS validation. You must take action to ensure that the renewal can be completed before Jun 12, 2020 at 12:00:00 UTC. If the certificate is not renewed and the current certificate expires, your website or application may become unreachable.

To renew this certificate, you must ensure that the proper CNAME records are present in your DNS configuration for each domain listed below. You can find the CNAME records for your domains by expanding your certificate and its domain entries in the ACM console. You can also use the DescribeCertificate command in the ACM API[1] or the describe-certificate operation in the ACM CLI[2] to find a certificate’s CNAME records. For more information, see Automatic Domain Validation Failure in the ACM troubleshooting guide[3].
The following 1 domains require validation:
sandbox.civicpdx.org

Priority/Impact
Needs to be done to keep Sandbox APIs service consistent with SSL.