Acme.sh fails to issue multiple certs

My domain is: mvopd.mywire.org

I ran this command: $ acme.sh --issue --debug --force --log-level 2 --server https://acme-staging.api.letsencrypt.org/directory --dns dns_dynu -d mvopd.mywire.org -d blog.mvopd.mywire.org -d cal.mvopd.mywire.org -d cirrus.mvopd.mywire.org -d game01.mvopd.mywire.org -d gen01.mvopd.mywire.org -w /var/www

It produced this output (acme_sh.log, truncated to fit within character limits):

LE_WORKING_DIR=’/home/john/.acme.sh’
Using server: https://acme-staging.api.letsencrypt.org/directory
_main_domain=‘mvopd.mywire.org
_alt_domains=‘blog.mvopd.mywire.org,cal.mvopd.mywire.org,cirrus.mvopd.mywire.org,game01.mvopd.mywire.org,gen01.mvopd.mywire.org
Using config home:/home/john/.acme.sh
ACME_DIRECTORY=‘https://acme-staging.api.letsencrypt.org/directory
_ACME_SERVER_HOST=‘acme-staging.api.letsencrypt.org
DOMAIN_PATH=’/home/john/.acme.sh/mvopd.mywire.org’
‘dns_dynu,/var/www’ does not contain ‘dns’
Using ACME_DIRECTORY: https://acme-staging.api.letsencrypt.org/directory
_init api for server: https://acme-staging.api.letsencrypt.org/directory
GET
url=‘https://acme-staging.api.letsencrypt.org/directory
timeout=
_CURL=‘curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
ret=‘0’
response=’{
“5N4FqeETFKA”: “Adding random entries to the directory”,
“key-change”: “https://acme-staging.api.letsencrypt.org/acme/key-change”,
“meta”: {
“caaIdentities”: [
letsencrypt.org
],
“terms-of-service”: “https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf”,
“website”: “https://letsencrypt.org/docs/staging-environment/
},
“new-authz”: “https://acme-staging.api.letsencrypt.org/acme/new-authz”,
“new-cert”: “https://acme-staging.api.letsencrypt.org/acme/new-cert”,
“new-reg”: “https://acme-staging.api.letsencrypt.org/acme/new-reg”,
“revoke-cert”: “https://acme-staging.api.letsencrypt.org/acme/revoke-cert
}’
ACME_KEY_CHANGE=‘https://acme-staging.api.letsencrypt.org/acme/key-change
ACME_NEW_AUTHZ=‘https://acme-staging.api.letsencrypt.org/acme/new-authz
ACME_NEW_ORDER=‘https://acme-staging.api.letsencrypt.org/acme/new-cert
ACME_NEW_ACCOUNT=‘https://acme-staging.api.letsencrypt.org/acme/new-reg
ACME_REVOKE_CERT=‘https://acme-staging.api.letsencrypt.org/acme/revoke-cert
ACME_AGREEMENT=‘https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf
ACME_NEW_NONCE
ACME_VERSION
Le_NextRenewTime=‘1564797579’
_on_before_issue
_chk_main_domain=‘mvopd.mywire.org
_chk_alt_domains=‘blog.mvopd.mywire.org,cal.mvopd.mywire.org,cirrus.mvopd.mywire.org,game01.mvopd.mywire.org,gen01.mvopd.mywire.org
‘dns_dynu,/var/www’ does not contain ‘no’
Le_LocalAddress
d=‘mvopd.mywire.org
Check for domain=‘mvopd.mywire.org
_currentRoot=‘dns_dynu’
d=‘blog.mvopd.mywire.org
Check for domain=‘blog.mvopd.mywire.org
_currentRoot=’/var/www’
d=‘cal.mvopd.mywire.org
Check for domain=‘cal.mvopd.mywire.org
_currentRoot=’/var/www’
d=‘cirrus.mvopd.mywire.org
Check for domain=‘cirrus.mvopd.mywire.org
_currentRoot=’/var/www’
d=‘game01.mvopd.mywire.org
Check for domain=‘game01.mvopd.mywire.org
_currentRoot=’/var/www’
d=‘gen01.mvopd.mywire.org
Check for domain=‘gen01.mvopd.mywire.org
_currentRoot=’/var/www’
d
‘dns_dynu,/var/www’ does not contain ‘apache’
_saved_account_key_hash=‘P6ojyfeNYbv75aNeeL4lymbWKYLHd04p6KroGRnVlYQ=’
_saved_account_key_hash is not changed, skip register account.
Read key length:
_createcsr
domain=‘mvopd.mywire.org
domainlist=‘blog.mvopd.mywire.org,cal.mvopd.mywire.org,cirrus.mvopd.mywire.org,game01.mvopd.mywire.org,gen01.mvopd.mywire.org
csrkey=’/home/john/.acme.sh/mvopd.mywire.org/mvopd.mywire.org.key’
csr=’/home/john/.acme.sh/mvopd.mywire.org/mvopd.mywire.org.csr’
csrconf=’/home/john/.acme.sh/mvopd.mywire.org/mvopd.mywire.org.csr.conf’
_is_idn_d=‘blog.mvopd.mywire.org,cal.mvopd.mywire.org,cirrus.mvopd.mywire.org,game01.mvopd.mywire.org,gen01.mvopd.mywire.org
_idn_temp
domainlist=‘blog.mvopd.mywire.org,cal.mvopd.mywire.org,cirrus.mvopd.mywire.org,game01.mvopd.mywire.org,gen01.mvopd.mywire.org
_is_idn_d=‘mvopd.mywire.org
_idn_temp
Multidomain=‘DNS:mvopd.mywire.org,DNS:blog.mvopd.mywire.org,DNS:cal.mvopd.mywire.org,DNS:cirrus.mvopd.mywire.org,DNS:game01.mvopd.mywire.org,DNS:gen01.mvopd.mywire.org’
_is_idn_d=‘mvopd.mywire.org
_idn_temp
_csr_cn=‘mvopd.mywire.org
Getting domain auth token for each domain
d=‘mvopd.mywire.org
Getting webroot for domain=‘mvopd.mywire.org
_w=‘dns_dynu’
_currentRoot=‘dns_dynu’
Getting new-authz for domain=‘mvopd.mywire.org
_init api for server: https://acme-staging.api.letsencrypt.org/directory
Try new-authz for the 0 time.
_is_idn_d=‘mvopd.mywire.org

<< REMOVED TO REDUCE CHARACTER COUNT >>

The new-authz request is ok.
entry=’“type”:“dns-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93",“token”:"cw...Ns”’
token=‘cw…Ns’
uri=‘https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93
keyauthorization=‘cw…98’
dvlist=‘mvopd.mywire.org#cw...98#https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93#dns-01#dns_dynu
d=‘blog.mvopd.mywire.org
Getting webroot for domain=‘blog.mvopd.mywire.org
_w=’/var/www’
_currentRoot=’/var/www’
Getting new-authz for domain=‘blog.mvopd.mywire.org
_init api for server: https://acme-staging.api.letsencrypt.org/directory
Try new-authz for the 0 time.
_is_idn_d=‘blog.mvopd.mywire.org

<< REMOVED TO REDUCE CHARACTER COUNT >>

The new-authz request is ok.
entry=’“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96",“token”:"nt...uo”’
token=‘nt…uo’
uri=‘https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96
keyauthorization=‘nt…98’
dvlist=‘blog.mvopd.mywire.org#nt...98#https://acme-staging.api.letsencrypt.org/acme/challenge/8F...01#/var/www
d=‘cal.mvopd.mywire.org
Getting webroot for domain=‘cal.mvopd.mywire.org
_w
_currentRoot=’/var/www’
Getting new-authz for domain=‘cal.mvopd.mywire.org
_init api for server: https://acme-staging.api.letsencrypt.org/directory
Try new-authz for the 0 time.
_is_idn_d=‘cal.mvopd.mywire.org

<< REMOVED TO REDUCE CHARACTER COUNT >>

The new-authz request is ok.
entry=’“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/us...97",“token”:"Ij...0c”’
token=‘Ij…0c’
uri=‘https://acme-staging.api.letsencrypt.org/acme/challenge/us...97
keyauthorization=‘Ij…98’
dvlist=‘cal.mvopd.mywire.org#Ij...98#https://acme-staging.api.letsencrypt.org/acme/challenge/us...97#http-01#/var/www
d=‘cirrus.mvopd.mywire.org
Getting webroot for domain=‘cirrus.mvopd.mywire.org
_w
_currentRoot=’/var/www’
Getting new-authz for domain=‘cirrus.mvopd.mywire.org
_init api for server: https://acme-staging.api.letsencrypt.org/directory
Try new-authz for the 0 time.
_is_idn_d=‘cirrus.mvopd.mywire.org

<< REMOVED TO REDUCE CHARACTER COUNT >>

The new-authz request is ok.
entry=’“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03",“token”:"Nn...Ws”’
token=‘Nn…Ws’
uri=‘https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03
keyauthorization=‘Nn…98’
dvlist=‘cirrus.mvopd.mywire.org#Nn...98#https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03#http-01#/var/www
d=‘game01.mvopd.mywire.org
Getting webroot for domain=‘game01.mvopd.mywire.org
_w
_currentRoot=’/var/www’
Getting new-authz for domain=‘game01.mvopd.mywire.org
_init api for server: https://acme-staging.api.letsencrypt.org/directory
Try new-authz for the 0 time.
_is_idn_d=‘game01.mvopd.mywire.org

<< REMOVED TO REDUCE CHARACTER COUNT >>

The new-authz request is ok.
entry=’“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10",“token”:"mK...xQ”’
token=‘mK…xQ’
uri=‘https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10
keyauthorization=‘mK…98’
dvlist=‘game01.mvopd.mywire.org#mK...98#https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10#http-01#/var/www
d=‘gen01.mvopd.mywire.org
Getting webroot for domain=‘gen01.mvopd.mywire.org
_w
_currentRoot=’/var/www’
Getting new-authz for domain=‘gen01.mvopd.mywire.org
_init api for server: https://acme-staging.api.letsencrypt.org/directory
Try new-authz for the 0 time.
_is_idn_d=‘gen01.mvopd.mywire.org

<< REMOVED TO REDUCE CHARACTER COUNT >>

The new-authz request is ok.
entry=’“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16",“token”:"E_...zI”’
token=‘E_…zI’
uri=‘https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16
keyauthorization=‘E_…98’
dvlist=‘gen01.mvopd.mywire.org#E_...98#https://acme-staging.api.letsencrypt.org/acme/challenge/kH...01#/var/www
d
vlist=‘mvopd.mywire.org#cw...98#https://acme-staging.api.letsencrypt.org/acme/challenge/j6…...93#dns-01#dns_dynu,blog.mvopd.mywire.org#nt...98#https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96#http-01#/var/www,cal.mvopd.mywire.org#Ij...98#https://acme-staging.api.letsencrypt.org/acme/challenge/us...97#http-01#/var/www,cirrus.mvopd.mywire.org#Nn...98#https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03#http-01#/var/www,game01.mvopd.mywire.org#mK...98#https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10#http-01#/var/www,gen01.mvopd.mywire.org#E_...98#https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16#http-01#/var/www,’
d=‘mvopd.mywire.org
_d_alias
txtdomain=’_acme-challenge.mvopd.mywire.org’
txt=‘b_3B4b9ExuMiAw3XCBEry9gd8mvFQCC1oB45BVaeAGY’
d_api=’/home/john/.acme.sh/dnsapi/dns_dynu.sh’
dns_entry=‘mvopd.mywire.org,_acme-challenge.mvopd.mywire.org,dns_dynu,b_3B4b9ExuMiAw3XCBEry9gd8mvFQCC1oB45BVaeAGY,/home/john/.acme.sh/dnsapi/dns_dynu.sh’
Found domain api file: /home/john/.acme.sh/dnsapi/dns_dynu.sh
Adding txt value: b_3B4b9ExuMiAw3XCBEry9gd8mvFQCC1oB45BVaeAGY for domain: _acme-challenge.mvopd.mywire.org
Getting Dynu token.
GET
url=‘https://api.dynu.com/v2/oauth2/token
timeout=
_CURL=‘curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
ret=‘0’
response=’{“statusCode”:401,“type”:“Authentication Exception”,“message”:“Failed.”}’
Detect root zone
h=‘mvopd.mywire.org
dns/getroot/mvopd.mywire.org
Getting https://api.dynu.com/v2/dns/getroot/mvopd.mywire.org
GET
url=‘https://api.dynu.com/v2/dns/getroot/mvopd.mywire.org
timeout=
_CURL=‘curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
ret=‘0’
response=’{“statusCode”:401,“type”:“Authentication Exception”,“message”:“Failed.”}’
h=‘mywire.org
dns/getroot/mywire.org
Getting https://api.dynu.com/v2/dns/getroot/mywire.org
GET
url=‘https://api.dynu.com/v2/dns/getroot/mywire.org
timeout=
_CURL=‘curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
ret=‘0’
response=’{“statusCode”:401,“type”:“Authentication Exception”,“message”:“Failed.”}’
h=‘org’
dns/getroot/org
Getting https://api.dynu.com/v2/dns/getroot/org
GET
url=‘https://api.dynu.com/v2/dns/getroot/org
timeout=
_CURL=‘curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
ret=‘0’
response=’{“statusCode”:401,“type”:“Authentication Exception”,“message”:“Failed.”}’
h
Invalid domain.
Error add txt for domain:_acme-challenge.mvopd.mywire.org
_on_issue_err
Please check log file for more details: /home/john/.acme.sh/acme.sh.log
chk_vlist='mvopd.mywire.org#cw...98#https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93#dns-01#dns_dynu,blog.mvopd.mywire.org#nt...98#https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96#http-01#/var/www,cal.mvopd.mywire.org#Ij...98#https://acme-staging.api.letsencrypt.org/acme/challenge/us...97#http-01#/var/www,cirrus.mvopd.mywire.org#Nn...98#https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03#http-01#/var/www,game01.mvopd.mywire.org#mK...98#https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10#http-01#/var/www,gen01.mvopd.mywire.org#E…98#https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16#http-01#/var/www,’
start to deactivate authz
Trigger domain validation.
_t_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93
_t_key_authz=‘cw…98’
_t_vtype
url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93
payload=’{“resource”: “challenge”, “type”: “”, “keyAuthorization”: “cw…98”}’
Use cached jwk for file: /home/john/.acme.sh/ca/acme-staging.api.letsencrypt.org/account.key
Use _CACHED_NONCE=‘tP…78’
nonce=‘tP…78’
POST
_post_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93
body=’{“protected”: “ey…19”, “payload”: “ey…fQ”, “signature”: “Op…-A”}’
_postContentType=‘application/jose+json’
_CURL='curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
_ret=‘0’
responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 11 Jun 2019 15:19:27 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 338
Boulder-Requester: 9562553
Link: https://acme-staging.api.letsencrypt.org/acme/authz/j6...7I;rel=“up”
Location: https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93
Replay-Nonce: YY…M0
Expires: Tue, 11 Jun 2019 15:19:27 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 11 Jun 2019 15:19:27 GMT
Connection: keep-alive


code=‘202’
original=’{
“type”: “dns-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93”,
“token”: “cw…Ns”,
“keyAuthorization”: “cw…98”
}’
response=’{“type”:“dns-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/j6...93",“token”:“cw...Ns”,“keyAuthorization”:"cw...98”}’
Trigger domain validation.
_t_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96
_t_key_authz=‘nt…98’
_t_vtype
url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96
payload=’{“resource”: “challenge”, “type”: “”, “keyAuthorization”: “nt…98”}’
Use cached jwk for file: /home/john/.acme.sh/ca/acme-staging.api.letsencrypt.org/account.key
Use _CACHED_NONCE=‘YY…M0’
nonce=‘YY…M0’
POST
_post_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96
body=’{“protected”: “ey…19”, “payload”: “ey…fQ”, “signature”: “fF…CA”}’
_postContentType=‘application/jose+json’
_CURL='curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
_ret=‘0’
responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 11 Jun 2019 15:19:27 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 9562553
Link: https://acme-staging.api.letsencrypt.org/acme/authz/8F...2Q;rel=“up”
Location: https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96
Replay-Nonce: nn…EM
Expires: Tue, 11 Jun 2019 15:19:27 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 11 Jun 2019 15:19:27 GMT
Connection: keep-alive


code=‘202’
original=’{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96”,
“token”: “nt…uo”,
“keyAuthorization”: “nt…98”
}’
response=’{“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/8F...96",“token”:“nt...uo”,“keyAuthorization”:"nt...98”}’
Trigger domain validation.
_t_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/us...97
_t_key_authz=‘Ij…98’
_t_vtype
url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/us...97
payload=’{“resource”: “challenge”, “type”: “”, “keyAuthorization”: “Ij…98”}’
Use cached jwk for file: /home/john/.acme.sh/ca/acme-staging.api.letsencrypt.org/account.key
Use _CACHED_NONCE=‘nn…EM’
nonce=‘nn…EM’
POST
_post_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/us...97
body=’{“protected”: “ey…19”, “payload”: “ey…fQ”, “signature”: “g8…cg”}’
_postContentType=‘application/jose+json’
_CURL='curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
_ret=‘0’
responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 11 Jun 2019 15:19:28 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 9562553
Link: https://acme-staging.api.letsencrypt.org/acme/authz/us...WI;rel=“up”
Location: https://acme-staging.api.letsencrypt.org/acme/challenge/us...97
Replay-Nonce: gs…NI
Expires: Tue, 11 Jun 2019 15:19:28 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 11 Jun 2019 15:19:28 GMT
Connection: keep-alive


code=‘202’
original=’{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/us...97”,
“token”: “Ij…0c”,
“keyAuthorization”: “Ij…98”
}’
response=’{“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/us...97",“token”:“Ij...0c”,“keyAuthorization”:"Ij...98”}’
Trigger domain validation.
_t_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03
_t_key_authz=‘Nn…98’
_t_vtype
url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03
payload=’{“resource”: “challenge”, “type”: “”, “keyAuthorization”: “Nn…98”}’
Use cached jwk for file: /home/john/.acme.sh/ca/acme-staging.api.letsencrypt.org/account.key
Use _CACHED_NONCE=‘gs…NI’
nonce=‘gs…NI’
POST
_post_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03
body=’{“protected”: “ey…19”, “payload”: “ey…fQ”, “signature”: “Ci…yw”}’
_postContentType=‘application/jose+json’
_CURL='curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
_ret=‘0’
responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 11 Jun 2019 15:19:28 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 9562553
Link: https://acme-staging.api.letsencrypt.org/acme/authz/XR...48;rel=“up”
Location: https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03
Replay-Nonce: l6…mg
Expires: Tue, 11 Jun 2019 15:19:28 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 11 Jun 2019 15:19:28 GMT
Connection: keep-alive


code=‘202’
original=’{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03”,
“token”: “Nn…Ws”,
“keyAuthorization”: “Nn…98”
}’
response=’{“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/XR...03",“token”:“Nn...Ws”,“keyAuthorization”:"Nn...98”}’
Trigger domain validation.
_t_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10
_t_key_authz=‘mK…98’
_t_vtype
url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10
payload=’{“resource”: “challenge”, “type”: “”, “keyAuthorization”: “mK…98”}’
Use cached jwk for file: /home/john/.acme.sh/ca/acme-staging.api.letsencrypt.org/account.key
Use _CACHED_NONCE=‘l6…mg’
nonce=‘l6…mg’
POST
_post_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10
body=’{“protected”: “ey…19”, “payload”: “ey…fQ”, “signature”: “by…qw”}’
_postContentType=‘application/jose+json’
_CURL='curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
_ret=‘0’
responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 11 Jun 2019 15:19:29 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 9562553
Link: https://acme-staging.api.letsencrypt.org/acme/authz/6T...uE;rel=“up”
Location: https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10
Replay-Nonce: ns…dw
Expires: Tue, 11 Jun 2019 15:19:29 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 11 Jun 2019 15:19:29 GMT
Connection: keep-alive


code=‘202’
original=’{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10”,
“token”: “mK…xQ”,
“keyAuthorization”: “mK…98”
}’
response=’{“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/6T...10",“token”:“mK...xQ”,“keyAuthorization”:"mK...98”}’
Trigger domain validation.
_t_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16
t_key_authz='E…98’
t_vtype
url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16
payload=’{“resource”: “challenge”, “type”: “”, “keyAuthorization”: "E
…98"}’
Use cached jwk for file: /home/john/.acme.sh/ca/acme-staging.api.letsencrypt.org/account.key
Use _CACHED_NONCE=‘ns…dw’
nonce=‘ns…dw’
POST
_post_url=‘https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16
body=’{“protected”: “ey…19”, “payload”: “ey…fQ”, “signature”: “Dj…TQ”}’
_postContentType=‘application/jose+json’
_CURL='curl -L --silent --dump-header /home/john/.acme.sh/http.header -g ’
_ret=‘0’
responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 11 Jun 2019 15:19:29 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 9562553
Link: https://acme-staging.api.letsencrypt.org/acme/authz/kH...0g;rel=“up”
Location: https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16
Replay-Nonce: PO…bU
Expires: Tue, 11 Jun 2019 15:19:29 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 11 Jun 2019 15:19:29 GMT
Connection: keep-alive


code=‘202’
original=’{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16”,
“token”: “E_…zI”,
“keyAuthorization”: “E_…98”
}’
response=’{“type”:“http-01”,“status”:“pending”,“uri”:“https://acme-staging.api.letsencrypt.org/acme/challenge/kH...16",“token”:“E_...zI”,“keyAuthorization”:"E_...98”}’
socat doesn’t exists.
Diagnosis versions:
openssl:openssl
OpenSSL 1.1.0g 2 Nov 2017
apache:
apache doesn’t exists.
nginx:
nginx doesn’t exists.
socat:
pid
No need to restore nginx, skip.
_clearupdns
dns_entries
skip dns.

<< ------- Thus endith the log ------- >>

My web server is: Apache/2.4.29 (Ubuntu)

The operating system my web server runs on is: Linux Mint 19.1 (Ubuntu 18.04)

My hosting provider is myself, using Dynu DDNS.

I can login to a root shell on my machine: Absolutely

I use no control panel to manage my site.

The version of my client is: acme.sh version 2.8.2


The server is name-based. I have write permissions on /var/www. I can create text records for all domains. All hosts are visible on :80. I previously used acme.sh to issue a cert for mvopd.mywire.org on :443.

acme_sh.log shows failures occuring when dns_dynu.sh attempts to ‘detect the root zone’.

In advance I thank everyone involved for creating a great product (Let’s Encrypt), a terrific process (acme.sh), and focused service and support.

please report issues here: https://github.com/Neilpang/acme.sh/issues

2 Likes

Issue created as requested (#2326).

1 Like