Acme-v02.api.letsencrypt.org - Read timed out

Hello all together,
I have been using Certbot for years without any problems, always with the same script. I never had problems with the Certbot script and now I get a timeout message.

My domain is: nztechno.at

I ran this command:

#!/bin/bash
# file 
git reset --hard
git pull
DOMAIN=nztechno.at
/usr/bin/certbot certonly --manual -d *.$DOMAIN -d $DOMAIN --agree-tos --manual-public-ip-logging-ok --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory --register-unsafely-without-email --rsa-key-size 4096
/etc/init.d/nginx restart

It produced this output:

HEAD is now at 693c674a7 Merge pull request #9128 from certbot/candidate-1.22.0
Already up to date.
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Renewing an existing certificate for *.nztechno.at and nztechno.at
An unexpected error occurred:
requests.exceptions.ReadTimeout: HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443): Read timed out. (read timeout=45)
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
[ ok ] Restarting nginx (via systemctl): nginx.service.

My web server is (include version): nginx version: nginx/1.20.2

The operating system my web server runs on is (include version):

|Distributor ID:|Debian|
|---|---|
|Description:|Debian GNU/Linux 10 (buster)|
|Release:|10|
|Codename:|buster|

My hosting provider, if applicable, is: contabo

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 0.31.0

Logfile

2021-12-09 09:10:35,520:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97
2021-12-09 09:10:36,092:DEBUG:certbot._internal.main:certbot version: 1.22.0
2021-12-09 09:10:36,092:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/1670/bin/certbot
2021-12-09 09:10:36,092:DEBUG:certbot._internal.main:Arguments: ['--manual', '-d', '*.nztechno.at', '-d', 'nztechno.at', '--agree-tos', '--manual-public-ip-logging-ok', '--preferred-challenges', 'dns-01', '--server', 'https://acme-v02.api.letsencrypt.org/directory', '--register-unsafely-without-email', '--rsa-key-size', '4096', '--preconfigured-renewal']
2021-12-09 09:10:36,092:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2021-12-09 09:10:36,105:DEBUG:certbot._internal.log:Root logging level set at 30
2021-12-09 09:10:36,107:DEBUG:certbot._internal.plugins.selection:Requested authenticator manual and installer None
2021-12-09 09:10:36,110:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * manual
Description: Manual configuration or run your own shell scripts
Interfaces: Authenticator, Plugin
Entry point: manual = certbot._internal.plugins.manual:Authenticator
Initialized: <certbot._internal.plugins.manual.Authenticator object at 0x7fa4d1547d00>
Prep: True
2021-12-09 09:10:36,111:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot._internal.plugins.manual.Authenticator object at 0x7fa4d1547d00> and installer None
2021-12-09 09:10:36,111:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator manual, Installer None
2021-12-09 09:10:36,144:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/76023472', new_authzr_uri=None, terms_of_service=None), 64f35bb57d6ff4bf8db45789eeacce9b, Meta(creation_dt=datetime.datetime(2020, 1, 17, 7, 3, 59, tzinfo=<UTC>), creation_host='vmi161682.contaboserver.net', register_to_eff=None))>
2021-12-09 09:10:36,146:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2021-12-09 09:10:36,148:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2021-12-09 09:11:21,232:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/connectionpool.py", line 382, in _make_request
    self._validate_conn(conn)
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/connectionpool.py", line 1010, in _validate_conn
    conn.connect()
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/connection.py", line 416, in connect
    self.sock = ssl_wrap_socket(
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/util/ssl_.py", line 449, in ssl_wrap_socket
    ssl_sock = _ssl_wrap_socket_impl(
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/util/ssl_.py", line 493, in _ssl_wrap_socket_impl
    return ssl_context.wrap_socket(sock, server_hostname=server_hostname)
  File "/snap/certbot/1670/usr/lib/python3.8/ssl.py", line 500, in wrap_socket
    return self.sslsocket_class._create(
  File "/snap/certbot/1670/usr/lib/python3.8/ssl.py", line 1040, in _create
    self.do_handshake()
  File "/snap/certbot/1670/usr/lib/python3.8/ssl.py", line 1309, in do_handshake
    self._sslobj.do_handshake()
socket.timeout: _ssl.c:1114: The handshake operation timed out

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/snap/certbot/1670/lib/python3.8/site-packages/requests/adapters.py", line 439, in send
    resp = conn.urlopen(
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/connectionpool.py", line 755, in urlopen
    retries = retries.increment(
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/util/retry.py", line 532, in increment
    raise six.reraise(type(error), error, _stacktrace)
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/packages/six.py", line 770, in reraise
    raise value
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/connectionpool.py", line 699, in urlopen
    httplib_response = self._make_request(
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/connectionpool.py", line 385, in _make_request
    self._raise_timeout(err=e, url=url, timeout_value=conn.timeout)
  File "/snap/certbot/1670/lib/python3.8/site-packages/urllib3/connectionpool.py", line 336, in _raise_timeout
    raise ReadTimeoutError(
urllib3.exceptions.ReadTimeoutError: HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443): Read timed out. (read timeout=45)

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "/snap/certbot/1670/bin/certbot", line 8, in <module>
    sys.exit(main())
  File "/snap/certbot/1670/lib/python3.8/site-packages/certbot/main.py", line 19, in main
    return internal_main.main(cli_args)
  File "/snap/certbot/1670/lib/python3.8/site-packages/certbot/_internal/main.py", line 1632, in main
    return config.func(config, plugins)
  File "/snap/certbot/1670/lib/python3.8/site-packages/certbot/_internal/main.py", line 1473, in certonly
    le_client = _init_le_client(config, auth, installer)
  File "/snap/certbot/1670/lib/python3.8/site-packages/certbot/_internal/main.py", line 793, in _init_le_client
    return client.Client(config, acc, authenticator, installer, acme=acme)
  File "/snap/certbot/1670/lib/python3.8/site-packages/certbot/_internal/client.py", line 294, in __init__
    acme = acme_from_config_key(config, self.account.key, self.account.regr)
  File "/snap/certbot/1670/lib/python3.8/site-packages/certbot/_internal/client.py", line 59, in acme_from_config_key
    client = acme_client.BackwardsCompatibleClientV2(net, key, config.server)
  File "/snap/certbot/1670/lib/python3.8/site-packages/acme/client.py", line 875, in __init__
    directory = messages.Directory.from_json(net.get(server).json())
  File "/snap/certbot/1670/lib/python3.8/site-packages/acme/client.py", line 1236, in get
    self._send_request('GET', url, **kwargs), content_type=content_type)
  File "/snap/certbot/1670/lib/python3.8/site-packages/acme/client.py", line 1174, in _send_request
    response = self.session.request(method, url, *args, **kwargs)
  File "/snap/certbot/1670/lib/python3.8/site-packages/requests/sessions.py", line 542, in request
    resp = self.send(prep, **send_kwargs)
  File "/snap/certbot/1670/lib/python3.8/site-packages/requests/sessions.py", line 655, in send
    r = adapter.send(request, **kwargs)
  File "/snap/certbot/1670/lib/python3.8/site-packages/requests/adapters.py", line 529, in send
    raise ReadTimeout(e, request=request)
requests.exceptions.ReadTimeout: HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443): Read timed out. (read timeout=45)
2021-12-09 09:11:21,239:ERROR:certbot._internal.log:An unexpected error occurred:
2021-12-09 09:11:21,243:ERROR:certbot._internal.log:requests.exceptions.ReadTimeout: HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443): Read timed out. (read timeout=45)

Hello,
I have problems with lets encrypt as well:

requests.exceptions.ConnectionError: ('Connection aborted.', ConnectionResetError(104, 'Connection reset by peer'))

I use the docker container: certbot/dns-digitalocean

Thanks

I think the api is broken at the moment..

1 Like

After a few attempts and some time passed, I was now able to renew the certificate and the site is back online. I also suspect that there was a problem at the endpoint of the API.

Br

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.