I understand a Certificate Authority issues a certificate saying "hey, this public key is the Real Deal." but that certificate expires, because it could be Dangerous if it didn't expire. So you gotta renew them peridoically!
That is the extents of my knowledge. The person at my work who is supposed to renew certs is on vacation and none of us know how to fix it. Oh no! This is just like what happened to Raddle.
So, I Googled a Solution to the Problem and am waiting for someone with permissions to come fix it. But, while waiting, I wonder... Why is this not automated? Turns out Big Sites have this issue too.
I don't mean this question critically, I mean it because I know jack sqack about certs. Is there a reason not to automatically renew them? Is there great difficulty there?