the TLS cert from digicert labeled as digicert-2019a expired on October 6th:
vgutierrez@cp3050:/etc/ssl/localcerts$ openssl x509 -dates -noout -in digicert-2019a-rsa-unified.crt notBefore=Nov 12 00:00:00 2019 GMT notAfter=Oct 6 12:00:00 2020 GMT
that's triggering some OCSP stapling alerts even when the cert isn't being used anymore. It not longer makes sense to have the certificate deployed on the caching cluster. Let's wipe it!