OWASP dependency-check includes an analyzer that will detect software packages and checks the Sonatype OSS Index(https://ossindex.sonatype.org/) if the package contains vulnerability information to include in the report.
The SSL certificate for ossindex just expired, so dependency-check fails to securely connect to it.
(As a consequence of this, software builds are failing whenever dependency-check is used the CI/CD pipelines)