I hope this email finds you well. I am facing some difficulties with Koji's SSL certification and would greatly appreciate your guidance on these matters.

I have generated the CA and certificates as per the "Server How To" document. I imported the PKCS12 generated by user "kojiadmin" into my browser, and all components are communicating well with each other. However, my browser still treats Kojiweb as an insecure link.

When I try to log in to the Koji webpage, I encounter the "SSL_ERROR_BAD_CERT_DOMAIN" error, which indicates that the requested domain name does not match the server's certificate. Even after accepting the risk and continuing, Koji returns the error: "An error has occurred in the web interface code. This could be due to a bug or a configuration issue. koji.AuthError: could not verify client: None."

I noticed there are two certificates in the Koji server, "kojihub" and the FQDN of the server. Their information is quite similar except for the "Organizational Unit". The problem must be caused by one of the certificates among "kojihub", "koji_ca_cert", or "PKCS12", whose 'CN' and 'OU' were filled according to https://docs.pagure.org/koji/server_howto/#generate-the-koji-component-certificates-and-the-admin-certificate. 

Is there any way to debug this issue? or am I missing something?

Thank you very much for your attention and assistance. I am looking forward to your response.