diff --git a/AUTHORS.md b/AUTHORS.md
index 78ed21215..130d68055 100644
--- a/AUTHORS.md
+++ b/AUTHORS.md
@@ -139,6 +139,7 @@ Authors
 * [John Reed](https://github.com/leerspace)
 * [Jonas Berlin](https://github.com/xkr47)
 * [Jonathan Herlin](https://github.com/Jonher937)
+* [Jonathan Vanasco](https://github.com/jvanasco)
 * [Jon Walsh](https://github.com/code-tree)
 * [Joona Hoikkala](https://github.com/joohoi)
 * [Josh McCullough](https://github.com/JoshMcCullough)
diff --git a/certbot/certbot/crypto_util.py b/certbot/certbot/crypto_util.py
index 1926deccf..7cd384592 100644
--- a/certbot/certbot/crypto_util.py
+++ b/certbot/certbot/crypto_util.py
@@ -594,10 +594,13 @@ def cert_and_chain_from_fullchain(fullchain_pem: str) -> Tuple[str, str]:
         raise errors.Error("failed to parse fullchain into cert and chain: " +
                            "less than 2 certificates in chain")
 
-    # Second pass: for each certificate found, parse it using OpenSSL and re-encode it,
+    # Second pass: for each certificate found, parse it using cryptography and re-encode it,
     # with the effect of normalizing any encoding variations (e.g. CRLF, whitespace).
-    certs_normalized = [crypto.dump_certificate(crypto.FILETYPE_PEM,
-        crypto.load_certificate(crypto.FILETYPE_PEM, cert)).decode() for cert in certs]
+    certs_normalized: List[str] = []
+    for cert_pem in certs:
+        cert = x509.load_pem_x509_certificate(cert_pem)
+        cert_pem = cert.public_bytes(Encoding.PEM)
+        certs_normalized.append(cert_pem.decode())
 
     # Since each normalized cert has a newline suffix, no extra newlines are required.
     return (certs_normalized[0], "".join(certs_normalized[1:]))