My domain is:
git.hilie.de
I ran this command:
certbot renew --cert-name npm-8 --dry-run --verbose
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Processing /etc/letsencrypt/renewal/npm-8.conf
/opt/certbot/lib/python3.11/site-packages/certbot/ocsp.py:238: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to this_update_utc.
if not response_ocsp.this_update:
/opt/certbot/lib/python3.11/site-packages/certbot/ocsp.py:240: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to this_update_utc.
if response_ocsp.this_update > now + timedelta(minutes=5):
/opt/certbot/lib/python3.11/site-packages/certbot/ocsp.py:242: CryptographyDeprecationWarning: Properties that return a naïve datetime object have been deprecated. Please switch to next_update_utc.
if response_ocsp.next_update and response_ocsp.next_update < now - timedelta(minutes=5):
Certificate not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator webroot, Installer None
Simulating renewal of an existing certificate for git.hilie.de
Performing the following challenges:
http-01 challenge for git.hilie.de
Using the webroot path /data/letsencrypt-acme-challenge for all unmatched domains.
Waiting for verification...
Challenge failed for domain git.hilie.de
http-01 challenge for git.hilie.de
Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
Domain: git.hilie.de
Type: connection
Detail: 88.217.198.250: Fetching https://git.hilie.de/.well-known/acme-challenge/qNqlczaMLy7hLGOLnuJ0-SGc5fJbol2mFO-A23TTgew: Error getting validation data
Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.
Cleaning up challenges
Failed to renew certificate npm-8 with error: Some challenges have failed.
All simulated renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/npm-8/fullchain.pem (failure)
1 renew failure(s), 0 parse failure(s)
My web server is (include version):
nginx version: openresty/1.25.3.2
The operating system my web server runs on is (include version):
docker image jc21/nginx-proxy-manager:2.12.1
My hosting provider, if applicable, is:
I am self hosting
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
jc21/nginx-proxy-manager:2.12.1
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): 2.11.0
certbot 2.11.0