ACME v2 deactivated domain can not create new order

Client dev
1
  1. Issue a cert for my domain: *.acme.sh
  2. deactivate the domain authorization
  3. issue again for the same domain *.acme.sh

When I create the new order, I got the following response:

{
  "status": "pending",
  "expires": "2018-01-22T13:01:42Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "*.acme.sh"
    }
  ],
  "authorizations": [
    "https://acme-staging-v02.api.letsencrypt.org/acme/authz/nF8zzmFr3D7tMNfNck4NbihOhoGZ3T-11BNSwekKudA"
  ],
  "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/order/5345479/2285/finalize-order"
}'

The status is pending above,

but the authorizations url: https://acme-staging-v02.api.letsencrypt.org/acme/authz/nF8zzmFr3D7tMNfNck4NbihOhoGZ3T-11BNSwekKudA

{
  "identifier": {
    "type": "dns",
    "value": "acme.sh"
  },
  "status": "deactivated",
  "expires": "2018-02-05T13:25:43Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "valid",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/challenge/nF8zzmFr3D7tMNfNck4NbihOhoGZ3T-11BNSwekKudA/89898920",
      "token": "n-V7J6O_rg0SGwzs3YsUoRFVzXRj0F5c8irBjivS0Rg",
      "keyAuthorization": "n-V7J6O_rg0SGwzs3YsUoRFVzXRj0F5c8irBjivS0Rg.LG8kTsy5nip-XEh127KXV8Lfzlo2cI6QJCpVFdZIZJs",
      "validationRecord": [
        {
          "hostname": "acme.sh",
          "port": "",
          "addressesResolved": [],
          "addressUsed": "",
          "addressesTried": []
        }
      ]
    }
  ],
  "wildcard": true
}

The authorization status is ``“status”: “deactivated”.

My problem is how can I create new order for a deactivated domain ?

Thanks.

2

Hi @Neilpang,

This is a known problem: https://github.com/letsencrypt/boulder/issues/3333

Please subscribe to #3333 for information on when it will be fixed.

Thanks for reporting!

3

Got it , thanks. @cpu

4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.