When you open a website and see the NET::ERR_CERT_AUTHORITY_INVALID error, your browser cannot verify the website’s SSL certificate. Because the browser cannot confirm the certificate authority, it blocks the connection to protect your data.
This error often appears in browsers like Google Chrome, Microsoft Edge, Mozilla Firefox, and Safari when the SSL certificate cannot be trusted.
In most cases, the issue comes from an expired certificate, incorrect system time, browser cache problems, or security software interfering with HTTPS connections. This guide explains the causes and shows practical steps to fix the problem quickly.
What NET::ERR_CERT_AUTHORITY_INVALID Means
The NET::ERR_CERT_AUTHORITY_INVALID error appears when a browser cannot validate the SSL certificate used by a website. Browsers trust only certificates issued by recognized Certificate Authorities (CAs). If a certificate comes from an unknown authority, has expired, or contains configuration problems, the browser blocks the connection.
Instead of loading the page normally, the browser displays warnings such as:
- Your connection is not private
- Potential Security Risk Ahead
- Certificate Authority Invalid
These warnings help prevent attackers from intercepting encrypted traffic.
Common Causes of NET::ERR_CERT_AUTHORITY_INVALID
Several technical issues can trigger this error.
- Expired SSL Certificate: SSL certificates expire after a fixed validity period. When the certificate expires, browsers mark it invalid.
- Self-Signed SSL Certificate: Self-signed certificates do not come from trusted Certificate Authorities, so browsers cannot verify them.
- Incorrect Date and Time: Browsers use system time to validate certificate expiration dates. Incorrect time settings can make valid certificates appear expired.
- Corrupted Browser Cache or SSL State: Browsers store cached certificates to speed up connections. A corrupted cache can cause certificate validation errors.
- VPN or Security Software Interference: VPN services, firewalls, or antivirus programs sometimes intercept HTTPS connections and break certificate validation.
- Browser Extensions: Certain browser extensions modify web traffic and may interfere with SSL verification.
How to Fix NET::ERR_CERT_AUTHORITY_INVALID
Follow these troubleshooting methods step by step until the error disappears.
1. Check Your Computer’s Date and Time
Incorrect system time often causes SSL errors.
Steps
- Press Windows + I
- Open Time & Language
- Click Date & Time
- Enable Set time automatically
- Click Sync now
Restart the browser after updating the time.
2. Clear Browser Cache and Cookies
Outdated cache files can cause SSL validation problems.
Steps in Chrome
- Open Chrome
- Press Ctrl + Shift + Delete
- Select Cookies and Cached Images
- Click Clear Data
Restart the browser and try opening the website again.
3. Clear the SSL State
Your operating system stores SSL certificates locally. Clearing the SSL state forces the system to request fresh certificate information.
Steps
- Open Control Panel
- Go to Network and Internet
- Click Internet Options
- Open the Content tab
- Click Clear SSL State
Restart the browser afterward.
4. Disable Browser Extensions
Browser extensions sometimes modify page requests and interfere with SSL verification.
Steps
- Open your browser menu
- Go to Extensions
- Disable all extensions temporarily
- Reload the website
If the site loads correctly, enable extensions one by one to find the problematic one.
5. Disable VPN Temporarily
VPN services can change network routing and disrupt SSL validation.
Steps
- Disconnect your VPN
- Reload the website
- Check if the error disappears
If the problem stops, contact the VPN provider or try another server location.
6. Temporarily Disable Antivirus or Firewall
Some antivirus programs scan HTTPS traffic, which can cause certificate errors.
Steps
- Open your antivirus software
- Look for HTTPS scanning or SSL inspection
- Disable it temporarily
- Reload the website
Enable the protection again after testing.
7. Update Your Browser
Outdated browsers may not recognize modern certificate authorities.
Steps in Chrome
- Open Chrome menu
- Click Help
- Select About Google Chrome
- Install available updates
- Restart the browser
8. Run an SSL Certificate Test (For Website Owners)
If the error occurs on your own website, test the SSL configuration.
SSL testing tools can detect:
- expired certificates
- incorrect domain names
- missing intermediate certificates
- invalid certificate chains
Fix any issues reported by the test.
9. Install a Trusted SSL Certificate
If your website uses a self-signed certificate, replace it with one issued by a trusted Certificate Authority such as Let’s Encrypt. If your site runs behind Cloudflare, you can also install a Cloudflare Origin Certificate on your server to ensure secure connections between Cloudflare and your hosting server. Using a valid certificate helps prevent browser errors like NET::ERR_CERT_AUTHORITY_INVALID and ensures secure HTTPS connections for visitors.
Trusted SSL certificates ensure browsers can verify your site correctly.
10. Renew the SSL Certificate
SSL certificates usually expire within about one year. Renew the certificate before it expires to prevent security warnings.
Check certificate details by clicking the padlock icon in the browser address bar.
When the Error Appears Only on One Website
If the error appears only on a single website:
- The website likely has a misconfigured SSL certificate
- Your device may not be the problem
- Only the website administrator can fix the issue
In that situation, wait until the site owner renews or fixes the certificate.
The NET::ERR_CERT_AUTHORITY_INVALID error appears when a browser cannot verify a website’s SSL certificate authority. You can usually fix it by correcting the system date and time, clearing browser cache, disabling extensions or VPN, or updating the browser. If the certificate itself is invalid, the website owner must install or renew a trusted SSL certificate.
