A comprehensive global search for the specified certificate ID, conducted via both CLI and API methods, yielded no corresponding findings indicating that this seems to be a stale alarm.

Hence, the alarm was moved to resolved state, after which no new alarms have been triggered again regarding this specific certificate.

• No Expired certificates reported on NSX.

• Searching for the certificate UUID from the alarm doesn't give any result.

• The API Call used to check the certificate details:
  • GET https://<nsx-mgr>/api/v1/trust-management/certificates/<cert-id>

For more information regarding this issue, please open a support case with Broadcom Support and refer to this KB article: Creating and managing Broadcom support cases