Certbot failed to authenticate some domains

dokgu · December 30, 2021, 7:00pm

I have a domain that is currently accessible via http://charkath.com and http://www.charkath.com - and I am trying to get it moved to HTTPS. I have a Ubuntu 20.04LTS server with Apache installed. I installed the certbot and initiated the process of getting the certificates but I got this error:

Which names would you like to activate HTTPS for?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: charkath.com
2: live.charkath.com
3: www.live.charkath.com
4: www.charkath.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel): 
Requesting a certificate for charkath.com and 3 more domains

Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
  Domain: www.charkath.com
  Type:   dns
  Detail: DNS problem: SERVFAIL looking up CAA for www.charkath.com - the domain's nameservers may be malfunctioning

Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.

How do I fix this issue?

dokgu · December 30, 2021, 7:18pm

On Google's Cloud DNS dashboard I added a TXT record for the primary domain and the subdomain and retried the command. I now get a different error message:

Which names would you like to activate HTTPS for?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: charkath.com
2: live.charkath.com
3: www.live.charkath.com
4: www.charkath.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel): 
Requesting a certificate for charkath.com and 3 more domains

Successfully received certificate.
Certificate is saved at: /etc/letsencrypt/live/charkath.com/fullchain.pem
Key is saved at:         /etc/letsencrypt/live/charkath.com/privkey.pem
This certificate expires on 2022-03-30.
These files will be updated when the certificate renews.
Certbot has set up a scheduled task to automatically renew this certificate in the background.

Deploying certificate
Successfully deployed certificate for charkath.com to /etc/apache2/sites-available/charkath-le-ssl.conf
Successfully deployed certificate for live.charkath.com to /etc/apache2/sites-available/charkath-le-ssl.conf
Successfully deployed certificate for www.live.charkath.com to /etc/apache2/sites-available/charkath-le-ssl.conf
Could not install certificate
An unexpected error occurred:
augeas.AugeasValueError: Augeas.set() failed: Too many matches for path expression
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.

griffin · December 30, 2021, 7:20pm

Hello

What is the output of:

sudo apachectl -S

Please put ``` above and below the output, like this:

```
output
```

dokgu · December 30, 2021, 7:22pm

This is what I get:

VirtualHost configuration:
*:80                   is a NameVirtualHost
         default server charkath.com (/etc/apache2/sites-enabled/charkath.conf:1)
         port 80 namevhost charkath.com (/etc/apache2/sites-enabled/charkath.conf:1)
                 alias www.charkath.com
         port 80 namevhost live.charkath.com (/etc/apache2/sites-enabled/charkath.conf:14)
                 alias www.live.charkath.com
ServerRoot: "/etc/apache2"
Main DocumentRoot: "/var/www/html"
Main ErrorLog: "/var/log/apache2/error.log"
Mutex mpm-accept: using_defaults
Mutex watchdog-callback: using_defaults
Mutex default: dir="/var/run/apache2/" mechanism=default 
PidFile: "/var/run/apache2/apache2.pid"
Define: DUMP_VHOSTS
Define: DUMP_RUN_CFG
User: name="www-data" id=33
Group: name="www-data" id=33

griffin · December 30, 2021, 7:24pm

What are the outputs of:

sudo cat /etc/apache2/sites-available/charkath.conf
sudo cat /etc/apache2/sites-available/charkath-le-ssl.conf

dokgu · December 30, 2021, 7:24pm

It gives me:

<VirtualHost *:80>
    ServerAdmin patrickvgregorio@gmail.com
    ServerName charkath.com
    ServerAlias www.charkath.com
    DocumentRoot /var/www/html
    <Directory /var/www/html>
        Options -Indexes +FollowSymLinks
        AllowOverride All
    </Directory>
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

<VirtualHost *:80>
    ServerAdmin patrickvgregorio@gmail.com
    ServerName live.charkath.com
    ServerAlias www.live.charkath.com
    DocumentRoot /var/www/live.charkath.com
    <Directory /var/www/live.charkath.com>
        Options -Indexes +FollowSymLinks
        AllowOverride All
    </Directory>
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

Update

For the second command:

dokgu@charkath:~$ sudo cat /etc/apache2/sites-available/charkath-le-ssl.conf
cat: /etc/apache2/sites-available/charkath-le-ssl.conf: No such file or directory

dokgu · December 30, 2021, 7:28pm

I only see three files under sites-available:

dokgu@charkath:/etc/apache2/sites-available$ ls -la
total 24
drwxr-xr-x 2 root root 4096 Dec 30 19:13 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
-rw-r--r-- 1 root root 1332 Sep 30  2020 000-default.conf
-rw-r--r-- 1 root root  789 Dec 30 18:33 charkath.conf
-rw-r--r-- 1 root root 6338 Sep 30  2020 default-ssl.conf

griffin · December 30, 2021, 7:28pm

What is the output of:

sudo ls -lRa /etc/apache2

griffin · December 30, 2021, 7:29pm

Yet...

dokgu:

Successfully deployed certificate for charkath.com to /etc/apache2/sites-available/charkath-le-ssl.conf
Successfully deployed certificate for live.charkath.com to /etc/apache2/sites-available/charkath-le-ssl.conf
Successfully deployed certificate for www.live.charkath.com to /etc/apache2/sites-available/charkath-le-ssl.conf

dokgu · December 30, 2021, 7:29pm

This is a long one:

lrwxrwxrwx 1 root root   33 Dec 30 16:24 auth_basic.load -> ../mods-available/auth_basic.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authn_core.load -> ../mods-available/authn_core.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authn_file.load -> ../mods-available/authn_file.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authz_core.load -> ../mods-available/authz_core.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authz_host.load -> ../mods-available/authz_host.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authz_user.load -> ../mods-available/authz_user.load
lrwxrwxrwx 1 root root   32 Dec 30 16:24 autoindex.conf -> ../mods-available/autoindex.conf
lrwxrwxrwx 1 root root   32 Dec 30 16:24 autoindex.load -> ../mods-available/autoindex.load
lrwxrwxrwx 1 root root   30 Dec 30 16:24 deflate.conf -> ../mods-available/deflate.conf
lrwxrwxrwx 1 root root   30 Dec 30 16:24 deflate.load -> ../mods-available/deflate.load
lrwxrwxrwx 1 root root   26 Dec 30 16:24 dir.conf -> ../mods-available/dir.conf
lrwxrwxrwx 1 root root   26 Dec 30 16:24 dir.load -> ../mods-available/dir.load
lrwxrwxrwx 1 root root   26 Dec 30 16:24 env.load -> ../mods-available/env.load
lrwxrwxrwx 1 root root   29 Dec 30 16:24 filter.load -> ../mods-available/filter.load
lrwxrwxrwx 1 root root   27 Dec 30 16:24 mime.conf -> ../mods-available/mime.conf
lrwxrwxrwx 1 root root   27 Dec 30 16:24 mime.load -> ../mods-available/mime.load
lrwxrwxrwx 1 root root   34 Dec 30 16:24 mpm_prefork.conf -> ../mods-available/mpm_prefork.conf
lrwxrwxrwx 1 root root   34 Dec 30 16:24 mpm_prefork.load -> ../mods-available/mpm_prefork.load
lrwxrwxrwx 1 root root   34 Dec 30 16:24 negotiation.conf -> ../mods-available/negotiation.conf
lrwxrwxrwx 1 root root   34 Dec 30 16:24 negotiation.load -> ../mods-available/negotiation.load
lrwxrwxrwx 1 root root   29 Dec 30 16:24 php7.4.conf -> ../mods-available/php7.4.conf
lrwxrwxrwx 1 root root   29 Dec 30 16:24 php7.4.load -> ../mods-available/php7.4.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 reqtimeout.conf -> ../mods-available/reqtimeout.conf
lrwxrwxrwx 1 root root   33 Dec 30 16:24 reqtimeout.load -> ../mods-available/reqtimeout.load
lrwxrwxrwx 1 root root   31 Dec 30 16:24 setenvif.conf -> ../mods-available/setenvif.conf
lrwxrwxrwx 1 root root   31 Dec 30 16:24 setenvif.load -> ../mods-available/setenvif.load
lrwxrwxrwx 1 root root   29 Dec 30 16:24 status.conf -> ../mods-available/status.conf
lrwxrwxrwx 1 root root   29 Dec 30 16:24 status.load -> ../mods-available/status.load

/etc/apache2/sites-available:
total 24
drwxr-xr-x 2 root root 4096 Dec 30 19:13 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
-rw-r--r-- 1 root root 1332 Sep 30  2020 000-default.conf
-rw-r--r-- 1 root root  789 Dec 30 18:33 charkath.conf
-rw-r--r-- 1 root root 6338 Sep 30  2020 default-ssl.conf

/etc/apache2/sites-enabled:
total 8
drwxr-xr-x 2 root root 4096 Dec 30 19:13 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
lrwxrwxrwx 1 root root   32 Dec 30 17:03 charkath.conf -> ../sites-available/charkath.conf

griffin · December 30, 2021, 7:33pm

Odd...

Did you remove parts of the output?

dokgu · December 30, 2021, 7:35pm

Sorry I'm having issues trying to copy long outputs from the web browser terminal that Google provides for SSH'ing into the server.

griffin · December 30, 2021, 7:38pm

No problem.

Run this then upload output.txt in a post:

sudo ls -lRa /etc/apache2 > output.txt

griffin · December 30, 2021, 7:40pm

Out of curiosity, does this directory actually exist and have correct permissions for Apache:

/var/www/live.charkath.com

dokgu · December 30, 2021, 7:41pm

It should..

dokgu@charkath:/var/www$ ls -la
total 16
drwxr-xr-x  4 root     root  4096 Dec 30 16:57 .
drwxr-xr-x 14 root     root  4096 Dec 30 16:24 ..
drwxr-xr-x  2 www-data dokgu 4096 Dec 30 16:51 html
drwxr-xr-x  2 www-data dokgu 4096 Dec 30 16:59 live.charkath.com

Also, there's a problem with the previous command you wanted me to run. /etc/apache2 is a directory. What did you want me to cat with?

griffin · December 30, 2021, 7:43pm

Copy and paste mistake on my part. Check the updated command.

griffin · December 30, 2021, 7:45pm

Never mind on that command. I think I have a fix. Just a minute.

dokgu · December 30, 2021, 7:49pm

You know what, I wasn't thinking out of the box.. I could just copy bit by bit before I post the output lol..

/etc/apache2:
total 88
drwxr-xr-x  8 root root  4096 Dec 30 19:13 .
drwxr-xr-x 98 root root  4096 Dec 30 19:32 ..
-rw-r--r--  1 root root  7245 Dec 30 18:08 apache2.conf
drwxr-xr-x  2 root root  4096 Dec 30 16:24 conf-available
drwxr-xr-x  2 root root  4096 Dec 30 16:24 conf-enabled
-rw-r--r--  1 root root  1782 Sep 30  2020 envvars
-rw-r--r--  1 root root 31063 Sep 30  2020 magic
drwxr-xr-x  2 root root 12288 Dec 30 16:24 mods-available
drwxr-xr-x  2 root root  4096 Dec 30 19:13 mods-enabled
-rw-r--r--  1 root root   320 Sep 30  2020 ports.conf
drwxr-xr-x  2 root root  4096 Dec 30 19:13 sites-available
drwxr-xr-x  2 root root  4096 Dec 30 19:13 sites-enabled

/etc/apache2/conf-available:
total 32
drwxr-xr-x 2 root root 4096 Dec 30 16:24 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
-rw-r--r-- 1 root root  315 Sep 30  2020 charset.conf
-rw-r--r-- 1 root root 3224 Sep 30  2020 localized-error-pages.conf
-rw-r--r-- 1 root root  189 Sep 30  2020 other-vhosts-access-log.conf
-rw-r--r-- 1 root root  804 Nov 25 23:16 php7.4-fpm.conf
-rw-r--r-- 1 root root 2174 Sep 30  2020 security.conf
-rw-r--r-- 1 root root  455 Sep 30  2020 serve-cgi-bin.conf

/etc/apache2/conf-enabled:
total 8
drwxr-xr-x 2 root root 4096 Dec 30 16:24 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
lrwxrwxrwx 1 root root   30 Dec 30 16:24 charset.conf -> ../conf-available/charset.conf
lrwxrwxrwx 1 root root   44 Dec 30 16:24 localized-error-pages.conf -> ../conf-available/localized-error-pages.conf
lrwxrwxrwx 1 root root   46 Dec 30 16:24 other-vhosts-access-log.conf -> ../conf-available/other-vhosts-access-log.conf
lrwxrwxrwx 1 root root   31 Dec 30 16:24 security.conf -> ../conf-available/security.conf
lrwxrwxrwx 1 root root   36 Dec 30 16:24 serve-cgi-bin.conf -> ../conf-available/serve-cgi-bin.conf

/etc/apache2/mods-available:
total 592
drwxr-xr-x 2 root root 12288 Dec 30 16:24 .
drwxr-xr-x 8 root root  4096 Dec 30 19:13 ..
-rw-r--r-- 1 root root   100 Sep 30  2020 access_compat.load
-rw-r--r-- 1 root root   377 Sep 30  2020 actions.conf
-rw-r--r-- 1 root root    66 Sep 30  2020 actions.load
-rw-r--r-- 1 root root   843 Sep 30  2020 alias.conf
-rw-r--r-- 1 root root    62 Sep 30  2020 alias.load
-rw-r--r-- 1 root root    76 Sep 30  2020 allowmethods.load
-rw-r--r-- 1 root root    76 Sep 30  2020 asis.load
-rw-r--r-- 1 root root    94 Sep 30  2020 auth_basic.load
-rw-r--r-- 1 root root    96 Sep 30  2020 auth_digest.load
-rw-r--r-- 1 root root   100 Sep 30  2020 auth_form.load
-rw-r--r-- 1 root root    72 Sep 30  2020 authn_anon.load
-rw-r--r-- 1 root root    72 Sep 30  2020 authn_core.load
-rw-r--r-- 1 root root    85 Sep 30  2020 authn_dbd.load
-rw-r--r-- 1 root root    70 Sep 30  2020 authn_dbm.load
-rw-r--r-- 1 root root    72 Sep 30  2020 authn_file.load
-rw-r--r-- 1 root root    78 Sep 30  2020 authn_socache.load
-rw-r--r-- 1 root root    74 Sep 30  2020 authnz_fcgi.load
-rw-r--r-- 1 root root    90 Sep 30  2020 authnz_ldap.load
-rw-r--r-- 1 root root    72 Sep 30  2020 authz_core.load
-rw-r--r-- 1 root root    96 Sep 30  2020 authz_dbd.load
-rw-r--r-- 1 root root    92 Sep 30  2020 authz_dbm.load
-rw-r--r-- 1 root root   104 Sep 30  2020 authz_groupfile.load
-rw-r--r-- 1 root root    94 Sep 30  2020 authz_host.load
-rw-r--r-- 1 root root    74 Sep 30  2020 authz_owner.load
-rw-r--r-- 1 root root    94 Sep 30  2020 authz_user.load
-rw-r--r-- 1 root root  3374 Sep 30  2020 autoindex.conf
-rw-r--r-- 1 root root    70 Sep 30  2020 autoindex.load
-rw-r--r-- 1 root root    64 Sep 30  2020 brotli.load
-rw-r--r-- 1 root root    64 Sep 30  2020 buffer.load
-rw-r--r-- 1 root root    62 Sep 30  2020 cache.load
-rw-r--r-- 1 root root   889 Sep 30  2020 cache_disk.conf
-rw-r--r-- 1 root root    89 Sep 30  2020 cache_disk.load
-rw-r--r-- 1 root root    95 Sep 30  2020 cache_socache.load
-rw-r--r-- 1 root root    70 Sep 30  2020 cern_meta.load
-rw-r--r-- 1 root root    58 Sep 30  2020 cgi.load
-rw-r--r-- 1 root root   115 Sep 30  2020 cgid.conf
-rw-r--r-- 1 root root    60 Sep 30  2020 cgid.load
-rw-r--r-- 1 root root    76 Sep 30  2020 charset_lite.load
-rw-r--r-- 1 root root    60 Sep 30  2020 data.load
-rw-r--r-- 1 root root    58 Nov 10  2020 dav.load
-rw-r--r-- 1 root root    83 Sep 30  2020 dav_fs.conf
-rw-r--r-- 1 root root    79 Sep 30  2020 dav_fs.load
-rw-r--r-- 1 root root    68 Sep 30  2020 dav_lock.load
-rw-r--r-- 1 root root    58 Sep 30  2020 dbd.load
-rw-r--r-- 1 root root   395 Nov 10  2020 deflate.conf
-rw-r--r-- 1 root root    84 Sep 30  2020 deflate.load
-rw-r--r-- 1 root root    64 Sep 30  2020 dialup.load
-rw-r--r-- 1 root root   157 Sep 30  2020 dir.conf
-rw-r--r-- 1 root root    58 Sep 30  2020 dir.load
-rw-r--r-- 1 root root    64 Sep 30  2020 dump_io.load
-rw-r--r-- 1 root root    60 Sep 30  2020 echo.load
-rw-r--r-- 1 root root    58 Sep 30  2020 env.load
-rw-r--r-- 1 root root    66 Sep 30  2020 expires.load
-rw-r--r-- 1 root root    72 Sep 30  2020 ext_filter.load
-rw-r--r-- 1 root root    89 Sep 30  2020 file_cache.load
-rw-r--r-- 1 root root    64 Sep 30  2020 filter.load
-rw-r--r-- 1 root root    66 Sep 30  2020 headers.load
-rw-r--r-- 1 root root   176 Sep 30  2020 heartbeat.load
-rw-r--r-- 1 root root   182 Sep 30  2020 heartmonitor.load
-rw-r--r-- 1 root root  1240 Sep 30  2020 http2.conf
-rw-r--r-- 1 root root    62 Sep 30  2020 http2.load
-rw-r--r-- 1 root root    62 Sep 30  2020 ident.load
-rw-r--r-- 1 root root    68 Sep 30  2020 imagemap.load
-rw-r--r-- 1 root root    82 Sep 30  2020 include.load
-rw-r--r-- 1 root root   402 Sep 30  2020 info.conf
-rw-r--r-- 1 root root    60 Sep 30  2020 info.load
-rw-r--r-- 1 root root   116 Sep 30  2020 lbmethod_bybusyness.load
-rw-r--r-- 1 root root   116 Sep 30  2020 lbmethod_byrequests.load
-rw-r--r-- 1 root root   114 Sep 30  2020 lbmethod_bytraffic.load
-rw-r--r-- 1 root root   114 Sep 30  2020 lbmethod_heartbeat.load
-rw-r--r-- 1 root root   121 Sep 30  2020 ldap.conf
-rw-r--r-- 1 root root    60 Sep 30  2020 ldap.load
-rw-r--r-- 1 root root    70 Sep 30  2020 log_debug.load
-rw-r--r-- 1 root root    76 Sep 30  2020 log_forensic.load
-rw-r--r-- 1 root root    58 Sep 30  2020 lua.load
-rw-r--r-- 1 root root    62 Sep 30  2020 macro.load
-rw-r--r-- 1 root root    56 Sep 30  2020 md.load
-rw-r--r-- 1 root root  7676 Sep 30  2020 mime.conf
-rw-r--r-- 1 root root    60 Sep 30  2020 mime.load
-rw-r--r-- 1 root root   120 Sep 30  2020 mime_magic.conf
-rw-r--r-- 1 root root    72 Sep 30  2020 mime_magic.load
-rw-r--r-- 1 root root   668 Sep 30  2020 mpm_event.conf
-rw-r--r-- 1 root root   106 Sep 30  2020 mpm_event.load
-rw-r--r-- 1 root root   571 Sep 30  2020 mpm_prefork.conf
-rw-r--r-- 1 root root   108 Sep 30  2020 mpm_prefork.load
-rw-r--r-- 1 root root   836 Sep 30  2020 mpm_worker.conf
-rw-r--r-- 1 root root   107 Sep 30  2020 mpm_worker.load
-rw-r--r-- 1 root root   724 Sep 30  2020 negotiation.conf
-rw-r--r-- 1 root root    74 Sep 30  2020 negotiation.load
-rw-r--r-- 1 root root   855 Nov 25 23:16 php7.4.conf
-rw-r--r-- 1 root root   102 Nov 25 23:16 php7.4.load
-rw-r--r-- 1 root root   822 Sep 30  2020 proxy.conf
-rw-r--r-- 1 root root    62 Sep 30  2020 proxy.load
-rw-r--r-- 1 root root    87 Sep 30  2020 proxy_ajp.load
-rw-r--r-- 1 root root   347 Sep 30  2020 proxy_balancer.conf
-rw-r--r-- 1 root root   115 Sep 30  2020 proxy_balancer.load
-rw-r--r-- 1 root root    95 Sep 30  2020 proxy_connect.load
-rw-r--r-- 1 root root    95 Sep 30  2020 proxy_express.load
-rw-r--r-- 1 root root    89 Sep 30  2020 proxy_fcgi.load
-rw-r--r-- 1 root root    93 Sep 30  2020 proxy_fdpass.load
-rw-r--r-- 1 root root   189 Sep 30  2020 proxy_ftp.conf
-rw-r--r-- 1 root root    87 Sep 30  2020 proxy_ftp.load
-rw-r--r-- 1 root root    93 Sep 30  2020 proxy_hcheck.load
-rw-r--r-- 1 root root  2511 Sep 30  2020 proxy_html.conf
-rw-r--r-- 1 root root    97 Sep 30  2020 proxy_html.load
-rw-r--r-- 1 root root    89 Sep 30  2020 proxy_http.load
-rw-r--r-- 1 root root    97 Sep 30  2020 proxy_http2.load
-rw-r--r-- 1 root root    89 Sep 30  2020 proxy_scgi.load
-rw-r--r-- 1 root root    91 Sep 30  2020 proxy_uwsgi.load
-rw-r--r-- 1 root root    97 Sep 30  2020 proxy_wstunnel.load
-rw-r--r-- 1 root root    85 Sep 30  2020 ratelimit.load
-rw-r--r-- 1 root root    70 Sep 30  2020 reflector.load
-rw-r--r-- 1 root root    68 Sep 30  2020 remoteip.load
-rw-r--r-- 1 root root  1190 Sep 30  2020 reqtimeout.conf
-rw-r--r-- 1 root root    72 Sep 30  2020 reqtimeout.load
-rw-r--r-- 1 root root    66 Sep 30  2020 request.load
-rw-r--r-- 1 root root    66 Sep 30  2020 rewrite.load
-rw-r--r-- 1 root root    58 Sep 30  2020 sed.load
-rw-r--r-- 1 root root    66 Sep 30  2020 session.load
-rw-r--r-- 1 root root    99 Sep 30  2020 session_cookie.load
-rw-r--r-- 1 root root    99 Sep 30  2020 session_crypto.load
-rw-r--r-- 1 root root    93 Sep 30  2020 session_dbd.load
-rw-r--r-- 1 root root  1280 Sep 30  2020 setenvif.conf
-rw-r--r-- 1 root root    68 Sep 30  2020 setenvif.load
-rw-r--r-- 1 root root    78 Sep 30  2020 slotmem_plain.load
-rw-r--r-- 1 root root    74 Sep 30  2020 slotmem_shm.load
-rw-r--r-- 1 root root    74 Sep 30  2020 socache_dbm.load
-rw-r--r-- 1 root root    84 Sep 30  2020 socache_memcache.load
-rw-r--r-- 1 root root    78 Sep 30  2020 socache_redis.load
-rw-r--r-- 1 root root    78 Sep 30  2020 socache_shmcb.load
-rw-r--r-- 1 root root    66 Sep 30  2020 speling.load
-rw-r--r-- 1 root root  3110 Sep 30  2020 ssl.conf
-rw-r--r-- 1 root root    97 Sep 30  2020 ssl.load
-rw-r--r-- 1 root root   749 Sep 30  2020 status.conf
-rw-r--r-- 1 root root    64 Sep 30  2020 status.load
-rw-r--r-- 1 root root    72 Sep 30  2020 substitute.load
-rw-r--r-- 1 root root    64 Sep 30  2020 suexec.load
-rw-r--r-- 1 root root    70 Sep 30  2020 unique_id.load
-rw-r--r-- 1 root root   324 Sep 30  2020 userdir.conf
-rw-r--r-- 1 root root    66 Sep 30  2020 userdir.load
-rw-r--r-- 1 root root    70 Sep 30  2020 usertrack.load
-rw-r--r-- 1 root root    74 Sep 30  2020 vhost_alias.load
-rw-r--r-- 1 root root    66 Sep 30  2020 xml2enc.load

/etc/apache2/mods-enabled:
total 8
drwxr-xr-x 2 root root 4096 Dec 30 19:13 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
lrwxrwxrwx 1 root root   36 Dec 30 16:24 access_compat.load -> ../mods-available/access_compat.load
lrwxrwxrwx 1 root root   28 Dec 30 16:24 alias.conf -> ../mods-available/alias.conf
lrwxrwxrwx 1 root root   28 Dec 30 16:24 alias.load -> ../mods-available/alias.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 auth_basic.load -> ../mods-available/auth_basic.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authn_core.load -> ../mods-available/authn_core.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authn_file.load -> ../mods-available/authn_file.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authz_core.load -> ../mods-available/authz_core.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authz_host.load -> ../mods-available/authz_host.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 authz_user.load -> ../mods-available/authz_user.load
lrwxrwxrwx 1 root root   32 Dec 30 16:24 autoindex.conf -> ../mods-available/autoindex.conf
lrwxrwxrwx 1 root root   32 Dec 30 16:24 autoindex.load -> ../mods-available/autoindex.load
lrwxrwxrwx 1 root root   30 Dec 30 16:24 deflate.conf -> ../mods-available/deflate.conf
lrwxrwxrwx 1 root root   30 Dec 30 16:24 deflate.load -> ../mods-available/deflate.load
lrwxrwxrwx 1 root root   26 Dec 30 16:24 dir.conf -> ../mods-available/dir.conf
lrwxrwxrwx 1 root root   26 Dec 30 16:24 dir.load -> ../mods-available/dir.load
lrwxrwxrwx 1 root root   26 Dec 30 16:24 env.load -> ../mods-available/env.load
lrwxrwxrwx 1 root root   29 Dec 30 16:24 filter.load -> ../mods-available/filter.load
lrwxrwxrwx 1 root root   27 Dec 30 16:24 mime.conf -> ../mods-available/mime.conf
lrwxrwxrwx 1 root root   27 Dec 30 16:24 mime.load -> ../mods-available/mime.load
lrwxrwxrwx 1 root root   34 Dec 30 16:24 mpm_prefork.conf -> ../mods-available/mpm_prefork.conf
lrwxrwxrwx 1 root root   34 Dec 30 16:24 mpm_prefork.load -> ../mods-available/mpm_prefork.load
lrwxrwxrwx 1 root root   34 Dec 30 16:24 negotiation.conf -> ../mods-available/negotiation.conf
lrwxrwxrwx 1 root root   34 Dec 30 16:24 negotiation.load -> ../mods-available/negotiation.load
lrwxrwxrwx 1 root root   29 Dec 30 16:24 php7.4.conf -> ../mods-available/php7.4.conf
lrwxrwxrwx 1 root root   29 Dec 30 16:24 php7.4.load -> ../mods-available/php7.4.load
lrwxrwxrwx 1 root root   33 Dec 30 16:24 reqtimeout.conf -> ../mods-available/reqtimeout.conf
lrwxrwxrwx 1 root root   33 Dec 30 16:24 reqtimeout.load -> ../mods-available/reqtimeout.load
lrwxrwxrwx 1 root root   31 Dec 30 16:24 setenvif.conf -> ../mods-available/setenvif.conf
lrwxrwxrwx 1 root root   31 Dec 30 16:24 setenvif.load -> ../mods-available/setenvif.load
lrwxrwxrwx 1 root root   29 Dec 30 16:24 status.conf -> ../mods-available/status.conf
lrwxrwxrwx 1 root root   29 Dec 30 16:24 status.load -> ../mods-available/status.load

/etc/apache2/sites-available:
total 24
drwxr-xr-x 2 root root 4096 Dec 30 19:13 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
-rw-r--r-- 1 root root 1332 Sep 30  2020 000-default.conf
-rw-r--r-- 1 root root  789 Dec 30 18:33 charkath.conf
-rw-r--r-- 1 root root 6338 Sep 30  2020 default-ssl.conf

/etc/apache2/sites-enabled:
total 8
drwxr-xr-x 2 root root 4096 Dec 30 19:13 .
drwxr-xr-x 8 root root 4096 Dec 30 19:13 ..
lrwxrwxrwx 1 root root   32 Dec 30 17:03 charkath.conf -> ../sites-available/charkath.conf

There you go.. in all its glory.

griffin · December 30, 2021, 7:54pm

Download these into /etc/apache2/sites-available :

charkath.com.conf.txt (376 Bytes)

live.charkath.com.conf.txt (412 Bytes)

Run these:

sudo mv /etc/apache2/sites-available/charkath.com.conf.txt /etc/apache2/sites-available/charkath.com.conf
sudo mv /etc/apache2/sites-available/live.charkath.com.conf.txt /etc/apache2/sites-available/live.charkath.com.conf
sudo a2dissite charkath.conf
sudo a2ensite charkath.com.conf
sudo a2ensite live.charkath.com.conf
sudo apachectl -k graceful
sudo certbot --apache -d "charkath.com,www.charkath.com"
sudo certbot --apache -d "live.charkath.com,www.live.charkath.com"

griffin · December 30, 2021, 7:58pm

Here's the related bug:

github.com/certbot/certbot

Augeas "too many matches" crash when deploying many vhosts to one file

opened 09:54PM - 24 Nov 21 UTC

alexzorin

bug area: apache priority: significant

This was reported on the community forum: https://community.letsencrypt.org/t/ce…rtbot-fails-to-install-certificate-augeas-augeasvalueerror/166266 ## My operating system is (include version): Ubuntu 20.04 ## I installed Certbot with (snap, OS package manager, pip, certbot-auto, etc): snap (v1.21.0) ## I ran this command and it produced this output: certbot --apache ## Certbot's behavior differed from what I expected because: Sometimes, Certbot will try to write directives to an Augeas path which matches multiple vhosts. How this seems to happen is that Certbot starts building up an SSL vhost file from scratch: 1. Initially `/files/etc/apache2/sites-enabled/example.com.conf/IfModule/VirtualHost` is a perfectly good path that matches the vhost we added 2. Then, Certbot adds a second vhost and the `IfModule` now matches multiple vhosts. 3. Then, Certbot adds a third and fourth. 4. Then Certbot tries to modify the first vhost again, but it can't, because the path matches every vhost, rather than just one vhost. The Apache config file below is enough to reproduce this by running `certbot --apache` and just continuing with all domains selected. ## Here is a Certbot log showing the issue (if available): ###### Logs are stored in `/var/log/letsencrypt` by default. Feel free to redact domains, e-mail and IP addresses as you see fit. 2021-11-24 15:05:53,611:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2021-11-24 15:05:54,826:DEBUG:certbot._internal.main:certbot version: 1.21.0 2021-11-24 15:05:54,828:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/1583/bin/certbot 2021-11-24 15:05:54,828:DEBUG:certbot._internal.main:Arguments: ['-v', '--apache', '--preconfigured-renewal'] 2021-11-24 15:05:54,828:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2021-11-24 15:05:54,891:DEBUG:certbot._internal.log:Root logging level set at 20 2021-11-24 15:05:54,894:DEBUG:certbot._internal.plugins.selection:Requested authenticator apache and installer apache 2021-11-24 15:05:55,129:DEBUG:certbot_apache._internal.configurator:Apache version is 2.4.48 2021-11-24 15:05:55,845:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * apache Description: Apache Web Server plugin Interfaces: Installer, Authenticator, Plugin Entry point: apache = certbot_apache._internal.entrypoint:ENTRYPOINT Initialized: <certbot_apache._internal.override_debian.DebianConfigurator object at 0xffffbbe6e730> Prep: True 2021-11-24 15:05:55,847:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_apache._internal.override_debian.DebianConfigurator object at 0xffffbbe6e730> and installer <certbot_apache._internal.override_debian.DebianConfigurator object at 0xffffbbe6e730> 2021-11-24 15:05:55,847:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator apache, Installer apache 2021-11-24 15:05:55,886:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/292369370', new_authzr_uri=None, terms_of_service=None), b0dd42afe39d8abe179b4c8671eed70c, Meta(creation_dt=datetime.datetime(2021, 11, 23, 14, 31, 17, tzinfo=), creation_host='rpi4', register_to_eff=None))> 2021-11-24 15:05:55,888:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2021-11-24 15:05:55,895:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2021-11-24 15:05:56,318:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658 2021-11-24 15:05:56,320:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:05:56 GMT Content-Type: application/json Content-Length: 658 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "UE4OOHW0ATI": "Adding random entries to the directory", "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2021-11-24 15:06:07,511:DEBUG:certbot._internal.display.obj:Notifying user: Requesting a certificate for salah.dk and 9 more domains 2021-11-24 15:06:07,782:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/0002_key-certbot.pem 2021-11-24 15:06:07,792:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0002_csr-certbot.pem 2021-11-24 15:06:07,793:DEBUG:acme.client:Requesting fresh nonce 2021-11-24 15:06:07,793:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2021-11-24 15:06:07,927:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2021-11-24 15:06:07,928:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:07 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0102d-F05mZ1yLutzQq6-PH-pucxtFr5WMMbrSSSjV6EJTM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2021-11-24 15:06:07,929:DEBUG:acme.client:Storing nonce: 0102d-F05mZ1yLutzQq6-PH-pucxtFr5WMMbrSSSjV6EJTM 2021-11-24 15:06:07,930:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "salah.dk"\n },\n {\n "type": "dns",\n "value": "a.salah.dk"\n },\n {\n "type": "dns",\n "value": "www.a.salah.dk"\n },\n {\n "type": "dns",\n "value": "aa.salah.dk"\n },\n {\n "type": "dns",\n "value": "www.aa.salah.dk"\n },\n {\n "type": "dns",\n "value": "m.salah.dk"\n },\n {\n "type": "dns",\n "value": "www.m.salah.dk"\n },\n {\n "type": "dns",\n "value": "o.salah.dk"\n },\n {\n "type": "dns",\n "value": "www.o.salah.dk"\n },\n {\n "type": "dns",\n "value": "www.salah.dk"\n }\n ]\n}' 2021-11-24 15:06:07,938:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDJkLUYwNW1aMXlMdXR6UXE2LVBILXB1Y3h0RnI1V01NYnJTU1NqVjZFSlRNIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "kOmLoXSSC2N7VVBAqdNhJiGLWwzbdenKrwiSGagmWRT85RX8UyI9OgMR4vjretF7MCS0GaOkQkNVApXQB0Nxv_xq7AJ3CLC_oSEUfMV_RbxvlAJfkG0_eieXMSQUGRDWvo6D6ICKr2ZVMRUmQk48uzVhfJZ8HyXxOs0pb382t3dYRCqik6xKaExwlFf3pSbB2iXSukJ30cHW6eHxnYEUt5Y7Lve2oz0_aA-G9Mn6o0q2KD7bWstXeDmvQEq8ISzAGo9_ST93LIELcZfK_p_JZAlSMpvBdiTLVyXmJyWruVnS6LRzUyDgSq4QEO1q6_SKt-MhT2khaVw6VlDHCeYtoA", "payload": "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" } 2021-11-24 15:06:08,192:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 1537 2021-11-24 15:06:08,194:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 24 Nov 2021 14:06:08 GMT Content-Type: application/json Content-Length: 1537 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/292369370/42156941650 Replay-Nonce: 01014tiZKM64l63YyK9vMWe3hhfb9e7aCHnKngfU2mOe5eM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "ready", "expires": "2021-12-01T14:06:08Z", "identifiers": [ { "type": "dns", "value": "a.salah.dk" }, { "type": "dns", "value": "aa.salah.dk" }, { "type": "dns", "value": "m.salah.dk" }, { "type": "dns", "value": "o.salah.dk" }, { "type": "dns", "value": "salah.dk" }, { "type": "dns", "value": "www.a.salah.dk" }, { "type": "dns", "value": "www.aa.salah.dk" }, { "type": "dns", "value": "www.m.salah.dk" }, { "type": "dns", "value": "www.o.salah.dk" }, { "type": "dns", "value": "www.salah.dk" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213380", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213390", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213400", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213410", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213420", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213440", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213450", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213460", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213470", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213480" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/292369370/42156941650" } 2021-11-24 15:06:08,195:DEBUG:acme.client:Storing nonce: 01014tiZKM64l63YyK9vMWe3hhfb9e7aCHnKngfU2mOe5eM 2021-11-24 15:06:08,197:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:08,209:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213380: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDE0dGlaS002NGw2M1l5Szl2TVdlM2hoZmI5ZTdhQ0huS25nZlUybU9lNWVNIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzM4MCJ9", "signature": "Bl_WPpR00rWPvO8NyQMB_WvdvlqYEAagEBLGEc7GLyyimvJinsBLawME9O_ox1cK2czCRR4FDGGWYGtZOrgqz-dELiJ05u-sknQmtmsWRU7NkxZZGTnAo7UjkZuLyzbBN4a8SH8oIwFye5VNxMdpbNZqtlAchBSFGWYsqaHssZmYDU4TuhRikxCVepNrQJcQ1eudYv3SENZnKshG4rcqqR7GhODn2s23EncosYLhx_bQfsXI8LQz66ApBrqbq5JA79e7Ax7wmVlnsb9aHznUBpUruLBQAOe6gB0JxQBBBjovUA5qHZETHdSTfd0pLMdjZYV6BVxoF7WF9wr8DL8CcA", "payload": "" } 2021-11-24 15:06:08,373:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213380 HTTP/1.1" 200 742 2021-11-24 15:06:08,376:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:08 GMT Content-Type: application/json Content-Length: 742 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0101t7DHqv270-_FgFzW_A0IvRaTgJIxye76Qv3unpKuJSU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "a.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:19Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213380/nLZO_g", "token": "0p2F2jQUYk88xAlKsxVQK0OfMnKLeIzTPaGZomdVM9o", "validationRecord": [ { "url": "http://a.salah.dk/.well-known/acme-challenge/0p2F2jQUYk88xAlKsxVQK0OfMnKLeIzTPaGZomdVM9o", "hostname": "a.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:18Z" } ] } 2021-11-24 15:06:08,377:DEBUG:acme.client:Storing nonce: 0101t7DHqv270-_FgFzW_A0IvRaTgJIxye76Qv3unpKuJSU 2021-11-24 15:06:08,379:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:08,389:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213390: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDF0N0RIcXYyNzAtX0ZnRnpXX0EwSXZSYVRnSkl4eWU3NlF2M3VucEt1SlNVIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzM5MCJ9", "signature": "w0HdQzk-wEbJ1bWMl3k6sfrQSwud2rWdfdIb--fK0f6k260B6M7JQeD_ByKpiaop-hhTfXqCEyOqxgJww-EUHwoDF1kW-Jbdb7-C2IpoUYDquG1GWNLVdd8bfxBp2xQCPyw6Fpy9g71XMZ0PhFTpdGawY5DtgQB11yPKFP7ZXATyd_09Qh-u2WLFjV0d801TYnyiafjW9hLoAB_j46yT78n_X_2oEjd9s-iPjcrNI77LBG3-xIuxx1m7mWHjKNuyH9c3ggb5bcm41LwP2o2uwlabx5yTtazPbHgPFKWh4UrG2OD6QKW-Uvc1O78FwmpyU9zFthWY4UiVfcSap-Vl3w", "payload": "" } 2021-11-24 15:06:08,555:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213390 HTTP/1.1" 200 745 2021-11-24 15:06:08,558:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:08 GMT Content-Type: application/json Content-Length: 745 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0101oH7AASCpeNFlZ_aJhY8Kn1Lf9Q6_qKbgOjMqYmqozYc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "aa.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:19Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213390/mDOZvg", "token": "i_ka9Sp0LN0iGUmZSKc2PG2qzKozu_zUNnr1s2Nspu0", "validationRecord": [ { "url": "http://aa.salah.dk/.well-known/acme-challenge/i_ka9Sp0LN0iGUmZSKc2PG2qzKozu_zUNnr1s2Nspu0", "hostname": "aa.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:18Z" } ] } 2021-11-24 15:06:08,558:DEBUG:acme.client:Storing nonce: 0101oH7AASCpeNFlZ_aJhY8Kn1Lf9Q6_qKbgOjMqYmqozYc 2021-11-24 15:06:08,560:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:08,572:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213400: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDFvSDdBQVNDcGVORmxaX2FKaFk4S24xTGY5UTZfcUtiZ09qTXFZbXFvelljIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQwMCJ9", "signature": "kLJptn1KTTRv03qgIuEZh56HvH7vw9C3Y7WSfPBQjwgb4-3MHdBEdyf-mZTcuT0mxFHeEL1lNFfRwnXSTmk441rPsfAMnV4070iD2tfO014zP3r1o4dsQg26id-pAtqMiVD1YqGuWsTtmTCY9w8uw96XAdifRExWOtGg6dFhCTTjWhEbcLFk5JfMQfSig2o_HACCg7N8k_bee3KImQxmJxKff1DEHxWNvl0wxAPi0K9MJeZmKPMTuA86RilfyO-nx8WwBegmkUmpXDSo5LkSw7GqHAT9lYk1uU3xntD4V16DA3GWne-3axSSI8wUnmjYTpGhvESc1sKUvAogbSwOwg", "payload": "" } 2021-11-24 15:06:08,734:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213400 HTTP/1.1" 200 742 2021-11-24 15:06:08,736:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:08 GMT Content-Type: application/json Content-Length: 742 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0102bH-eBSlPsxiPQTsTCoVehNlotOKvhLQ1iEUDtQRZY_E X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "m.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:23Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213400/9VdT7Q", "token": "l2o6dKVRrAn6bG5AYqvILN7e2ajWbYlWMnd1hapeC7Q", "validationRecord": [ { "url": "http://m.salah.dk/.well-known/acme-challenge/l2o6dKVRrAn6bG5AYqvILN7e2ajWbYlWMnd1hapeC7Q", "hostname": "m.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:19Z" } ] } 2021-11-24 15:06:08,737:DEBUG:acme.client:Storing nonce: 0102bH-eBSlPsxiPQTsTCoVehNlotOKvhLQ1iEUDtQRZY_E 2021-11-24 15:06:08,739:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:08,751:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213410: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDJiSC1lQlNsUHN4aVBRVHNUQ29WZWhObG90T0t2aExRMWlFVUR0UVJaWV9FIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQxMCJ9", "signature": "z82l0rBL08kR3Px1RfmSeuxNFhx0eSBL9GyX7K33vyVDFx76bgHL2E0245abV-oLTy12STTsHDTZvH5EMjbSjfPFbDldlByZD-ydRu6YfsemlRq5SLZ5PMt9-s4DgmOvAWwjH5lp-nOQ9szzFHgdfGdLMTOokXN200UBdQyLMyxwbJn-0pY2IPhYqC9xxeOyJNEBlLVrhlGl-Pnd3Ux33iHUmRHMhEdCdvBDmfNIej73e4JJNTKLb2kuKeHIbFiQN4ZoB-7SFBNwTm4ROP6lLM-t-iOkueCwLWaVwgzcx_AyHa0ZzaoArdbKTcj2enlFLEUhxQv6osXnMEh15tCU5g", "payload": "" } 2021-11-24 15:06:08,915:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213410 HTTP/1.1" 200 742 2021-11-24 15:06:08,917:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:08 GMT Content-Type: application/json Content-Length: 742 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0102lDKgwh1KH1yUMVE1YdVWoXSmmy54oj3Q5ZtLrNP-gkM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "o.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:20Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213410/DDmNnw", "token": "VyZ-n9vmQpUjEOrZzkBqXuMDLVfZ8lYVa2zTQESnjIc", "validationRecord": [ { "url": "http://o.salah.dk/.well-known/acme-challenge/VyZ-n9vmQpUjEOrZzkBqXuMDLVfZ8lYVa2zTQESnjIc", "hostname": "o.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:19Z" } ] } 2021-11-24 15:06:08,918:DEBUG:acme.client:Storing nonce: 0102lDKgwh1KH1yUMVE1YdVWoXSmmy54oj3Q5ZtLrNP-gkM 2021-11-24 15:06:08,920:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:08,932:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213420: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDJsREtnd2gxS0gxeVVNVkUxWWRWV29YU21teTU0b2ozUTVadExyTlAtZ2tNIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQyMCJ9", "signature": "Vjfq0HnjetmU3EcJ3ijPkSFj-qsnBcVPcnR27AjsedyuRkAz4VNTIXF5jrDa8v4QxE18-MAKqcStldsBdtv6jVL1sdKx0wOevDl_11T4vY_MT09Ii4nzruI71RTzoce3kzThZf43wUABfDCLE4kDzW1ApWdiQAxMGRUmW-_MKHAMB8rOFgwK-x92MTh1R80iacZgZ1Tu1FsquSu_KmMXslqMj1Wx8kLAllLC0VueTryx0_d0ngu35XeAbeoURBP3IMRKZ39yED8T60nsZ_NEIc5dMuwXM2JGzf7FNCECqoH1FYrOVFIVA1aWnk8zmkMyFzQphgJZUNR6fYMuzA7f2g", "payload": "" } 2021-11-24 15:06:09,097:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213420 HTTP/1.1" 200 736 2021-11-24 15:06:09,099:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:09 GMT Content-Type: application/json Content-Length: 736 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0101tLo--wEdTgYi7ZRYBjSGhYj6SfsujrLMRDQzYhsOiRw X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:23Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213420/vmIgQA", "token": "zQkDQays6zqEBnsUZKlXF_VE_ua0OZChRUWPNYCCxhg", "validationRecord": [ { "url": "http://salah.dk/.well-known/acme-challenge/zQkDQays6zqEBnsUZKlXF_VE_ua0OZChRUWPNYCCxhg", "hostname": "salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:19Z" } ] } 2021-11-24 15:06:09,100:DEBUG:acme.client:Storing nonce: 0101tLo--wEdTgYi7ZRYBjSGhYj6SfsujrLMRDQzYhsOiRw 2021-11-24 15:06:09,102:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:09,113:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213440: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDF0TG8tLXdFZFRnWWk3WlJZQmpTR2hZajZTZnN1anJMTVJEUXpZaHNPaVJ3IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQ0MCJ9", "signature": "ejN5MbpOhAbaYbMnWSTi_JVgppH3XefuFEPWCZDL5koDWj5h-bXA_FLfu6GZHaSwLgZQuAtFgjwNNKsjAfgf5b10eJRwmLgxGVyHhR0ZNKLpBHe87ADMHUjMWuHF53a7oEc7ylj37tUgGuza5LUqzFvoIQhKYlhAXH-ronCu6gtzzz1mkGtxF-u9Lm3ep0Zxy_l5NwQu3MsB9oqsoopaf674kyCymtd01KhNHPcmBWjfudzeODlVay8BcfextzhY1JOlFm3iIw_TVClKI5xk9bz5-87FG88V8OUDjoTSXUvnRfMEaUpe375ZQYVSzGLl111xEXu2a3Do_CSJ6Z62fQ", "payload": "" } 2021-11-24 15:06:09,275:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213440 HTTP/1.1" 200 754 2021-11-24 15:06:09,277:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:09 GMT Content-Type: application/json Content-Length: 754 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0101-A6y3IgF-oeGqjIhAQAqiw5i3ZYt3xu1qoIRkqU_QCc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "www.a.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:22Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213440/qOEqVw", "token": "QPhbqVFh4AdU1bypRkDc2ZIKBdPL2x7PW3yQtWSFxPE", "validationRecord": [ { "url": "http://www.a.salah.dk/.well-known/acme-challenge/QPhbqVFh4AdU1bypRkDc2ZIKBdPL2x7PW3yQtWSFxPE", "hostname": "www.a.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:20Z" } ] } 2021-11-24 15:06:09,278:DEBUG:acme.client:Storing nonce: 0101-A6y3IgF-oeGqjIhAQAqiw5i3ZYt3xu1qoIRkqU_QCc 2021-11-24 15:06:09,280:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:09,292:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213450: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDEtQTZ5M0lnRi1vZUdxakloQVFBcWl3NWkzWll0M3h1MXFvSVJrcVVfUUNjIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQ1MCJ9", "signature": "ukFjWB4aZjDoCgfmD3Zmom4gOrBlozj7jRuxPZYaALOYam8p63eFFeRdtA_qSkdaM81SXaWZalWiRvcaOkqVePlUq83Cj0U8maJVZgjJ046qFR-_1ev6VDVX22SRWSMBUx2WUAQuXtF_8SjkI3glVIg4p07Wreb_xbWii5VmuP1VybR4ArazRmlHii3U5m0i0CuRBBQxI6ztFJRbVbWFCkKyvmb9qDkQdeqJHQiZ9coO4SsC_BEsj960ZBREY_5E7pGQjoSAFPpCK-ejun2-X_IwV3W273Lb4CnvSut9R1Iqm2llu72325hc7nHg77uAimu_pMHzFgvoxseGXeb49Q", "payload": "" } 2021-11-24 15:06:09,457:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213450 HTTP/1.1" 200 757 2021-11-24 15:06:09,460:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:09 GMT Content-Type: application/json Content-Length: 757 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0101BWzZUTtY6qb7OAjs3OBzXXhKcTIrD0KwiQlUAQMkcU4 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "www.aa.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:21Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213450/4ejRVA", "token": "AGmUZXHbMLZasZuLigoNb9YsP8ZdIAjUfajTGArlJ1I", "validationRecord": [ { "url": "http://www.aa.salah.dk/.well-known/acme-challenge/AGmUZXHbMLZasZuLigoNb9YsP8ZdIAjUfajTGArlJ1I", "hostname": "www.aa.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:20Z" } ] } 2021-11-24 15:06:09,460:DEBUG:acme.client:Storing nonce: 0101BWzZUTtY6qb7OAjs3OBzXXhKcTIrD0KwiQlUAQMkcU4 2021-11-24 15:06:09,462:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:09,473:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213460: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDFCV3paVVR0WTZxYjdPQWpzM09CelhYaEtjVElyRDBLd2lRbFVBUU1rY1U0IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQ2MCJ9", "signature": "0kT1d2O-eHrbgoKK88tPd2Flxw97djylCY34QWkVsSl77vrSxv6LaR-cm9ApG3XJEDkGLnIWXrhtBhgZLkTvPFjguUOmrOx4HuwaE-7JWXpmE8IVHYb423y090k1fyZC2DdgqT9PDv49Hj0tNDhBr9rD3CyP8RZuSScMCff6fq_9kqUEhwWhrJBU8lWrfo6ooCbHnskrWOpsDCANrCljQglPxUzKBiBlcKEmsh5p9hM9SnwGwn5_GuGKd0IGtNAxYxIZanJ4dZaA8JXQLReusaaM2NMMgokFIHLftuSH2M-sdkZrjphrdXixQUJrMQtA8Ed-iI9jXpImyqf6wJUjMA", "payload": "" } 2021-11-24 15:06:09,637:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213460 HTTP/1.1" 200 754 2021-11-24 15:06:09,639:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:09 GMT Content-Type: application/json Content-Length: 754 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0102RdQbDNHDQq19k-Lg4w838-W_QOr6kuMaTqqYbDNfTpQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "www.m.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:21Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213460/VY4Hiw", "token": "0cD0sLq6p52-oZcsws97IwIKv-0l3_DW5N20e-fqqcg", "validationRecord": [ { "url": "http://www.m.salah.dk/.well-known/acme-challenge/0cD0sLq6p52-oZcsws97IwIKv-0l3_DW5N20e-fqqcg", "hostname": "www.m.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:20Z" } ] } 2021-11-24 15:06:09,640:DEBUG:acme.client:Storing nonce: 0102RdQbDNHDQq19k-Lg4w838-W_QOr6kuMaTqqYbDNfTpQ 2021-11-24 15:06:09,642:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:09,653:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213470: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDJSZFFiRE5IRFFxMTlrLUxnNHc4MzgtV19RT3I2a3VNYVRxcVliRE5mVHBRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQ3MCJ9", "signature": "wCUMX8WrcsORqrd1h9-GysOuWWgNLPc-y-0jhvT14A8LlDgFoL81O26LwyCo4Jv3TyIeBQyztW7vJTK-7nrjF0EsBuBOieg4eHbHS7qVfzPgIFy_lX61EyD89FxzmNS7PXLZc7CCXbVqEvZXVy6c-VO_tCCnVT7Jye6JE-KyFN5HzOs3f-FSnh91T4XMFF6CFl8MtR232zKYxlpYztlOky1k4Y9-ct9kZrsPsWmPvthtf3PEArV21d2hyI-KYiq6ik8KCo5mQGPzzT2mU5zR8pkMdrZHR_wqNnD2oyobupfwuPjzNuMCStitsZcpP4BVpVS7McQ4660zae1Xrwt7eA", "payload": "" } 2021-11-24 15:06:09,819:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213470 HTTP/1.1" 200 754 2021-11-24 15:06:09,821:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:09 GMT Content-Type: application/json Content-Length: 754 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0102hW4v9m2Flr0kmksJCbYQ4EFkGocBrTgtqFOjHZRv4pg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "www.o.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:21Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213470/4qMkKg", "token": "amXu5AcJoKK89rrVM7LahtEATr5NeL4pz2lypRGSlQE", "validationRecord": [ { "url": "http://www.o.salah.dk/.well-known/acme-challenge/amXu5AcJoKK89rrVM7LahtEATr5NeL4pz2lypRGSlQE", "hostname": "www.o.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:20Z" } ] } 2021-11-24 15:06:09,822:DEBUG:acme.client:Storing nonce: 0102hW4v9m2Flr0kmksJCbYQ4EFkGocBrTgtqFOjHZRv4pg 2021-11-24 15:06:09,824:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:09,836:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213480: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDJoVzR2OW0yRmxyMGtta3NKQ2JZUTRFRmtHb2NCclRndHFGT2pIWlJ2NHBnIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My81MjI0ODIxMzQ4MCJ9", "signature": "H9zJposU56tBElYOeH4lMIWSRa1JMYdcaH3ODDnlfJ68Tx1bJpHf8iYYwBfrNq0Zs5Xd2Xx4cRIAjWQXguLkqilBdDsRtatC1AeFUjM8SJuykWXXwwNvJEPpNp-WyVEuTBg-p84tx9YT56vdKGtkHD0JNBti26QHLnnJtL7JSc9bmBqHxMxnHzzjeHzN1gTYXeuytqAuWLM0Hxk4fd0uuNCx-mQg8fJe5tFdkm2VNtwsFRKvrzzX0OH_LiDoNiDkLPwCQ2TRfCt348k2kKBy6OMVQMWWtl45GmxPTys4mN1eiYGrPhs6R6ap7xDnYZ5olu-H7Twml5iG_Cr6e4v6Iw", "payload": "" } 2021-11-24 15:06:09,998:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/52248213480 HTTP/1.1" 200 748 2021-11-24 15:06:10,001:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:09 GMT Content-Type: application/json Content-Length: 748 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0101P7vT8aQb-S79DfLHk1JV1KdwVOSjcbVnm2O10xGzqVk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "www.salah.dk" }, "status": "valid", "expires": "2021-12-24T08:43:21Z", "challenges": [ { "type": "http-01", "status": "valid", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/52248213480/wvINNQ", "token": "D9PgyUsZ9t7TeUIF2XVi_is6u6ji1QRCc5abglt8aAs", "validationRecord": [ { "url": "http://www.salah.dk/.well-known/acme-challenge/D9PgyUsZ9t7TeUIF2XVi_is6u6ji1QRCc5abglt8aAs", "hostname": "www.salah.dk", "port": "80", "addressesResolved": [ "2.108.151.56" ], "addressUsed": "2.108.151.56" } ], "validated": "2021-11-24T08:43:20Z" } ] } 2021-11-24 15:06:10,002:DEBUG:acme.client:Storing nonce: 0101P7vT8aQb-S79DfLHk1JV1KdwVOSjcbVnm2O10xGzqVk 2021-11-24 15:06:10,004:DEBUG:certbot._internal.client:CSR: CSR(file='/etc/letsencrypt/csr/0002_csr-certbot.pem', data=b'-----BEGIN CERTIFICATE REQUEST-----\nMIIC8jCCAdoCAQIwADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKkN\nFUYEZUyMQLIuwFYQ3SDXfeay7TGZXrRmUfC2Fox88Gc5Es0+vgLMDVSKq6imfYcd\nMkzg+TkSS87o+/Ae1Zbi4EJk9YweiV3XAORZILMT2jCpggUFRZlfZJdPpi62SEjp\nMBtP0SaPHVbP0oFBy4iR7/h4Glp5j+Mr2vF59co4UKJkkAYgtjyltpQr7jrRYHjm\n2I3Q/F2zzw9dAqBfdAx+8GGweC2/103j03k3N4r8jjZi0kZ/OxsQCIM/CMh6QNj4\nVKHhvmZnnmKgmyY6fvwVVcirO6cJQD4c+dxVz012aJx+bIMrPNE6c+bSblzTXJ3O\ndx2vFWYdk6YNditohZ0CAwEAAaCBrDCBqQYJKoZIhvcNAQkOMYGbMIGYMIGVBgNV\nHREEgY0wgYqCCHNhbGFoLmRrggphLnNhbGFoLmRrgg53d3cuYS5zYWxhaC5ka4IL\nYWEuc2FsYWguZGuCD3d3dy5hYS5zYWxhaC5ka4IKbS5zYWxhaC5ka4IOd3d3Lm0u\nc2FsYWguZGuCCm8uc2FsYWguZGuCDnd3dy5vLnNhbGFoLmRrggx3d3cuc2FsYWgu\nZGswDQYJKoZIhvcNAQELBQADggEBABp1pg+4zoyGlUiaaMJVA8IveM1IjwouNqZx\nHGnhnlPvrSUvA9kS2l1ev6wxNLNc6MDUg9Pog1hhE721C7ZIhbgY81As860YkzlV\neQgTyXtjbGS4RcQfKnsP3PgpLFX5tWrH/Wh9EVXoUrz7LWkLkiWtohCF16cX7WJY\n+C6KpaCQs5JvjY/cxTYQXoClk1/6Ac7jhlgII41cSL6Aw5++161oQ134FXFG9TcQ\npHwqPOU0hcqdBBdzDqmbdRTKOVQQWGls3F4gxVAFH0V9UXBml94ZvjUN2iUz+zgs\nxbevDtIx17sER0wmLREI1QC+ZgiLjDD+sSWnF7UkZZTh+lhtSB8=\n-----END CERTIFICATE REQUEST-----\n', form='pem') 2021-11-24 15:06:10,007:DEBUG:acme.client:JWS payload: b'{\n "csr": "MIIC8jCCAdoCAQIwADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKkNFUYEZUyMQLIuwFYQ3SDXfeay7TGZXrRmUfC2Fox88Gc5Es0-vgLMDVSKq6imfYcdMkzg-TkSS87o-_Ae1Zbi4EJk9YweiV3XAORZILMT2jCpggUFRZlfZJdPpi62SEjpMBtP0SaPHVbP0oFBy4iR7_h4Glp5j-Mr2vF59co4UKJkkAYgtjyltpQr7jrRYHjm2I3Q_F2zzw9dAqBfdAx-8GGweC2_103j03k3N4r8jjZi0kZ_OxsQCIM_CMh6QNj4VKHhvmZnnmKgmyY6fvwVVcirO6cJQD4c-dxVz012aJx-bIMrPNE6c-bSblzTXJ3Odx2vFWYdk6YNditohZ0CAwEAAaCBrDCBqQYJKoZIhvcNAQkOMYGbMIGYMIGVBgNVHREEgY0wgYqCCHNhbGFoLmRrggphLnNhbGFoLmRrgg53d3cuYS5zYWxhaC5ka4ILYWEuc2FsYWguZGuCD3d3dy5hYS5zYWxhaC5ka4IKbS5zYWxhaC5ka4IOd3d3Lm0uc2FsYWguZGuCCm8uc2FsYWguZGuCDnd3dy5vLnNhbGFoLmRrggx3d3cuc2FsYWguZGswDQYJKoZIhvcNAQELBQADggEBABp1pg-4zoyGlUiaaMJVA8IveM1IjwouNqZxHGnhnlPvrSUvA9kS2l1ev6wxNLNc6MDUg9Pog1hhE721C7ZIhbgY81As860YkzlVeQgTyXtjbGS4RcQfKnsP3PgpLFX5tWrH_Wh9EVXoUrz7LWkLkiWtohCF16cX7WJY-C6KpaCQs5JvjY_cxTYQXoClk1_6Ac7jhlgII41cSL6Aw5--161oQ134FXFG9TcQpHwqPOU0hcqdBBdzDqmbdRTKOVQQWGls3F4gxVAFH0V9UXBml94ZvjUN2iUz-zgsxbevDtIx17sER0wmLREI1QC-ZgiLjDD-sSWnF7UkZZTh-lhtSB8"\n}' 2021-11-24 15:06:10,018:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/finalize/292369370/42156941650: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDFQN3ZUOGFRYi1TNzlEZkxIazFKVjFLZHdWT1NqY2JWbm0yTzEweEd6cVZrIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9maW5hbGl6ZS8yOTIzNjkzNzAvNDIxNTY5NDE2NTAifQ", "signature": "CdZGCXoDm3uBI2RxXCQa24znySobTTFYILuHwE4h2mofjH7UmULWqC5sYo4PcOvgULEssBBFjOC1Jepd7MeozY38gjzeEsHKnFUXKALq0kAFc9Nv9hN6yXH1L303J3SBK0tG836MFwBb2-H-2UH8zCr3tCjlqvp7LKXycTxI5-gBkhB6GNMkANU6uFKL-542Jc1l5LjuzvREhJX700twGXUvIpFi4OquHL65Iau1XO6XcP72o2Rr6ABdcPHgbngKLnMGmUlSfygAYeRSECjrc9y9wjj5XAGDAIFZx8nRStKECxkPHyWhpOU072soaGu1AgS5Cpvg90lHrdPzO1vp5w", "payload": "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" } 2021-11-24 15:06:11,457:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/finalize/292369370/42156941650 HTTP/1.1" 200 1641 2021-11-24 15:06:11,460:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:11 GMT Content-Type: application/json Content-Length: 1641 Connection: keep-alive Boulder-Requester: 292369370 Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/292369370/42156941650 Replay-Nonce: 0102Xnq5o1J8AC3YuNLDh-mbH_8FeSd6J-sTRYV3kiVR2Y0 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "valid", "expires": "2021-12-01T14:06:08Z", "identifiers": [ { "type": "dns", "value": "a.salah.dk" }, { "type": "dns", "value": "aa.salah.dk" }, { "type": "dns", "value": "m.salah.dk" }, { "type": "dns", "value": "o.salah.dk" }, { "type": "dns", "value": "salah.dk" }, { "type": "dns", "value": "www.a.salah.dk" }, { "type": "dns", "value": "www.aa.salah.dk" }, { "type": "dns", "value": "www.m.salah.dk" }, { "type": "dns", "value": "www.o.salah.dk" }, { "type": "dns", "value": "www.salah.dk" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213380", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213390", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213400", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213410", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213420", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213440", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213450", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213460", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213470", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213480" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/292369370/42156941650", "certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/0492dd5386ebd4dff5a1d16ce51154bfc8e5" } 2021-11-24 15:06:11,461:DEBUG:acme.client:Storing nonce: 0102Xnq5o1J8AC3YuNLDh-mbH_8FeSd6J-sTRYV3kiVR2Y0 2021-11-24 15:06:12,463:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:12,478:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/order/292369370/42156941650: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDJYbnE1bzFKOEFDM1l1TkxEaC1tYkhfOEZlU2Q2Si1zVFJZVjNraVZSMlkwIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9vcmRlci8yOTIzNjkzNzAvNDIxNTY5NDE2NTAifQ", "signature": "zYH_IvWX15DjRelMjvB4V_UV5-YFghXGkGfjhGuIfKRiqrXx5SKVPU_7fCh5g16NZg5HthatCXobtJfgbSoJkjVTqi9zbi9xJcoTYcMkyeJ60Kb2RzYMJo-kaAeOjcSdtXQyIc2pwgixBbDriN0q3_g5Iezv_0onemcc1asX0W-F45pqQMUmdSi20WEq-_M7UigU0tsSxP2na7vGoveEPYk3yXcilINvg3KK6C192xxzefWpLz10kPR2RbsDOP-TqIMKTRAIJZHetr3dUqJCJq0CeeHAgY8hXCMaT-bLCW22Cx3xqVqy-tl9jjNGGltZ3trjZGvScbbj0hxjouYFUA", "payload": "" } 2021-11-24 15:06:12,648:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/order/292369370/42156941650 HTTP/1.1" 200 1641 2021-11-24 15:06:12,650:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:12 GMT Content-Type: application/json Content-Length: 1641 Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index" Replay-Nonce: 0102kv6A8wlOKcJ1eapJG0McJgxNfsKu_9vdUk5Mr-UjIJs X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "valid", "expires": "2021-12-01T14:06:08Z", "identifiers": [ { "type": "dns", "value": "a.salah.dk" }, { "type": "dns", "value": "aa.salah.dk" }, { "type": "dns", "value": "m.salah.dk" }, { "type": "dns", "value": "o.salah.dk" }, { "type": "dns", "value": "salah.dk" }, { "type": "dns", "value": "www.a.salah.dk" }, { "type": "dns", "value": "www.aa.salah.dk" }, { "type": "dns", "value": "www.m.salah.dk" }, { "type": "dns", "value": "www.o.salah.dk" }, { "type": "dns", "value": "www.salah.dk" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213380", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213390", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213400", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213410", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213420", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213440", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213450", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213460", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213470", "https://acme-v02.api.letsencrypt.org/acme/authz-v3/52248213480" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/292369370/42156941650", "certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/0492dd5386ebd4dff5a1d16ce51154bfc8e5" } 2021-11-24 15:06:12,651:DEBUG:acme.client:Storing nonce: 0102kv6A8wlOKcJ1eapJG0McJgxNfsKu_9vdUk5Mr-UjIJs 2021-11-24 15:06:12,653:DEBUG:acme.client:JWS payload: b'' 2021-11-24 15:06:12,665:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/cert/0492dd5386ebd4dff5a1d16ce51154bfc8e5: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjkyMzY5MzcwIiwgIm5vbmNlIjogIjAxMDJrdjZBOHdsT0tjSjFlYXBKRzBNY0pneE5mc0t1Xzl2ZFVrNU1yLVVqSUpzIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jZXJ0LzA0OTJkZDUzODZlYmQ0ZGZmNWExZDE2Y2U1MTE1NGJmYzhlNSJ9", "signature": "DSB8gHgWbJxabz70G92bmEwYLQi9ZqGr9Q6ovnlcMj9HBFaorMZJ8esTzHrnV_8lKLBX7uPsGQilWRqqWFm3R344kfaPdwuXgrZYI4jyVbi_58KZNYGwosiicvcFFn2OhJZhfSl_otzZQ_NQb0_5dlMSJNhh5zPa9pnhLvdmdKr7GbO_XILF5HIVqoLxc9Icah6Dw6mSxz7lpYpgR4P7oU6WZTXjarzcLaxlaHPMT0SpZriqX2L1R4Tl9pAouVaAPrJZtYTYEoJwRGMbAVS6KMliDkGjA8dctpCpbZwJRXdfn7MXmEC197O-3DfbnSEJsYmNpgp4L50yOS76mUDMyw", "payload": "" } 2021-11-24 15:06:12,832:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/cert/0492dd5386ebd4dff5a1d16ce51154bfc8e5 HTTP/1.1" 200 5751 2021-11-24 15:06:12,835:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 24 Nov 2021 14:06:12 GMT Content-Type: application/pem-certificate-chain Content-Length: 5751 Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: https://acme-v02.api.letsencrypt.org/directory;rel="index", https://acme-v02.api.letsencrypt.org/acme/cert/0492dd5386ebd4dff5a1d16ce51154bfc8e5/1;rel="alternate" Replay-Nonce: 01012KlM9cHalx9l0ugJ4bPlgm-4BvcEV3kxguLPDiH8MT0 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISBJLdU4br1N/1odFs5RFUv8jlMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTExMjQxMzA2MTBaFw0yMjAyMjIxMzA2MDlaMBMxETAPBgNVBAMT CHNhbGFoLmRrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQ0VRgRl TIxAsi7AVhDdINd95rLtMZletGZR8LYWjHzwZzkSzT6+AswNVIqrqKZ9hx0yTOD5 ORJLzuj78B7VluLgQmT1jB6JXdcA5FkgsxPaMKmCBQVFmV9kl0+mLrZISOkwG0/R Jo8dVs/SgUHLiJHv+HgaWnmP4yva8Xn1yjhQomSQBiC2PKW2lCvuOtFgeObYjdD8 XbPPD10CoF90DH7wYbB4Lb/XTePTeTc3ivyONmLSRn87GxAIgz8IyHpA2PhUoeG+ ZmeeYqCbJjp+/BVVyKs7pwlAPhz53FXPTXZonH5sgys80Tpz5tJuXNNcnc53Ha8V Zh2Tpg12K2iFnQIDAQABo4ICxDCCAsAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRp 1iYvS7cyLWBJVLw2TG7LsgYr9DAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+d ixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxl bmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCBlQYD VR0RBIGNMIGKggphLnNhbGFoLmRrggthYS5zYWxhaC5ka4IKbS5zYWxhaC5ka4IK by5zYWxhaC5ka4IIc2FsYWguZGuCDnd3dy5hLnNhbGFoLmRrgg93d3cuYWEuc2Fs YWguZGuCDnd3dy5tLnNhbGFoLmRrgg53d3cuby5zYWxhaC5ka4IMd3d3LnNhbGFo LmRrMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIE AgSB8wSB8ADuAHUAKXm+8J45OSHwVnOfY6V35b5XfZxgCvj5TV0mXCVdx4QAAAF9 UkSlagAABAMARjBEAiA6/xK1fvIHBs7cfSOpQU1jJtBiS+bzOxgi8HfvPTi6wAIg bBmtgQdD1x8XPYEW6dFg0DMTF0ZFTJ3rCM69fibmrkQAdQDfpV6raIJPH2yt7rhf Tj5a6s2iEqRqXo47EsAgRFwqcwAAAX1SRKlfAAAEAwBGMEQCIFxhRuCl7Vn+Ozu5 ah4WaDqTWe2fYO8+TndsVghHm7c/AiBgr6JqK0SEFFn7iunYSPfe2bERoWKTQnpu 2vHcgy+RoDANBgkqhkiG9w0BAQsFAAOCAQEAL1NGbb3GFgBPcavG6hTNt1xgIvD1 wBirLA7X9djjUogXodmKE2FqVuBMvHGGZN9TBVYxoilFsyDhJdKtNNMNggLqGv/2 L6CZb00vhg9e9N3r5/aKf6hHkncmX+zm1IhzcGnjHIUNPhbBI6C5kcv2SC2zeaRM 7ZbosAA6maHu1cQJ5OnSkBgONv8rPWdmhNfMd2M3jmhBr0bO8ZvBA6WKi2Q0ccdK Mje+Mvf8OIAQWzUi57udysz3UKe7XwUREHDkaZ7ahr4oD0513YUNKceq4qJVMAM6 3x+balz1HNjHKl6fi/nMh+hR9/VboOQyrho1nbU46GagaOnPdWe8u8A0pw== -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAw WhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cP R5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdx sxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8Zutm NHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxg Z3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG /kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMC AYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYB Af8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaA FHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcw AoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRw Oi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQB gt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6W PTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wl ikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz CkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BIm lJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4 avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2 yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1O yK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90Ids hCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+ HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6Zv MldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqX nLRbwHOoq7hHwg== -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/ MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMT DkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1ow TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XC ov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpL wYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+D LtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK 4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5 bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5y sR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZ Xmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4 FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBc SLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2ql PRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TND TwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYw SwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1 c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx +tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEB ATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQu b3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9E U1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26Ztu MA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC 5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW 9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuG WCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9O he8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFC Dfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5 -----END CERTIFICATE----- 2021-11-24 15:06:12,836:DEBUG:acme.client:Storing nonce: 01012KlM9cHalx9l0ugJ4bPlgm-4BvcEV3kxguLPDiH8MT0 2021-11-24 15:06:12,842:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive/salah.dk-0001. 2021-11-24 15:06:12,843:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live/salah.dk-0001. 2021-11-24 15:06:12,845:DEBUG:certbot._internal.storage:Writing certificate to /etc/letsencrypt/live/salah.dk-0001/cert.pem. 2021-11-24 15:06:12,845:DEBUG:certbot._internal.storage:Writing private key to /etc/letsencrypt/live/salah.dk-0001/privkey.pem. 2021-11-24 15:06:12,845:DEBUG:certbot._internal.storage:Writing chain to /etc/letsencrypt/live/salah.dk-0001/chain.pem. 2021-11-24 15:06:12,846:DEBUG:certbot._internal.storage:Writing full chain to /etc/letsencrypt/live/salah.dk-0001/fullchain.pem. 2021-11-24 15:06:12,846:DEBUG:certbot._internal.storage:Writing README to /etc/letsencrypt/live/salah.dk-0001/README. 2021-11-24 15:06:12,986:DEBUG:certbot._internal.plugins.selection:Requested authenticator apache and installer apache 2021-11-24 15:06:12,987:DEBUG:certbot._internal.cli:Var authenticator=apache (set by user). 2021-11-24 15:06:12,987:DEBUG:certbot._internal.cli:Var installer=apache (set by user). 2021-11-24 15:06:12,988:DEBUG:certbot._internal.storage:Writing new config /etc/letsencrypt/renewal/salah.dk-0001.conf. 2021-11-24 15:06:12,994:DEBUG:certbot._internal.display.obj:Notifying user: Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/salah.dk-0001/fullchain.pem Key is saved at: /etc/letsencrypt/live/salah.dk-0001/privkey.pem This certificate expires on 2022-02-22. These files will be updated when the certificate renews. Certbot has set up a scheduled task to automatically renew this certificate in the background. 2021-11-24 15:06:12,994:DEBUG:certbot._internal.display.obj:Notifying user: Deploying certificate 2021-11-24 15:06:13,036:INFO:certbot_apache._internal.configurator:Created an SSL vhost at /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:13,073:DEBUG:certbot.reverter:Creating backup of /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:13,273:INFO:certbot_apache._internal.override_debian:Enabled Apache socache_shmcb module 2021-11-24 15:06:13,926:INFO:certbot_apache._internal.override_debian:Enabled Apache ssl module 2021-11-24 15:06:14,805:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:14,806:INFO:certbot_apache._internal.override_debian:Enabling available site: /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:14,807:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:14,917:INFO:certbot_apache._internal.configurator:Created an SSL vhost at /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:15,181:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:15,183:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for a.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:15,737:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:15,737:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for www.a.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:16,292:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:16,292:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for aa.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:16,842:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:16,843:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for www.aa.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:16,965:INFO:certbot_apache._internal.configurator:Created an SSL vhost at /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:17,249:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:17,250:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for m.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:17,849:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:17,850:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for www.m.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:17,983:INFO:certbot_apache._internal.configurator:Created an SSL vhost at /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:18,297:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:18,299:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for o.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:18,960:INFO:certbot_apache._internal.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:18,961:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for www.o.salah.dk to /etc/apache2/sites-available/salah.dk-le-ssl.conf 2021-11-24 15:06:19,114:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/1583/lib/python3.8/site-packages/certbot/_internal/client.py", line 556, in deploy_certificate self.installer.deploy_cert( File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 512, in deploy_cert self._deploy_cert(vhost, cert_path, key_path, chain_path, fullchain_path) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 634, in _deploy_cert self._add_dummy_ssl_directives(vhost.path) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 1683, in _add_dummy_ssl_directives self.parser.add_dir(vh_path, "SSLCertificateFile", File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/parser.py", line 426, in add_dir self.aug.set(aug_conf_path + "/directive[last() + 1]", directive) File "/snap/certbot/1583/lib/python3.8/site-packages/augeas/init.py", line 263, in set self._raise_error(AugeasValueError, "Augeas.set() failed") File "/snap/certbot/1583/lib/python3.8/site-packages/augeas/init.py", line 154, in _raise_error raise errorclass(ec, fullmessage, msg, minor, details) augeas.AugeasValueError: Augeas.set() failed: Too many matches for path expression 2021-11-24 15:06:19,115:DEBUG:certbot._internal.error_handler:Calling registered functions 2021-11-24 15:06:19,426:DEBUG:certbot._internal.display.obj:Notifying user: Could not install certificate 2021-11-24 15:06:19,429:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/1583/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot/main.py", line 15, in main return internal_main.main(cli_args) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot/_internal/main.py", line 1574, in main return config.func(config, plugins) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot/_internal/main.py", line 1301, in run _install_cert(config, le_client, domains, new_lineage) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot/_internal/main.py", line 929, in _install_cert le_client.deploy_certificate(domains, path_provider.key_path, path_provider.cert_path, File "/snap/certbot/1583/lib/python3.8/site-packages/certbot/_internal/client.py", line 556, in deploy_certificate self.installer.deploy_cert( File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 512, in deploy_cert self._deploy_cert(vhost, cert_path, key_path, chain_path, fullchain_path) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 634, in _deploy_cert self._add_dummy_ssl_directives(vhost.path) File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/configurator.py", line 1683, in _add_dummy_ssl_directives self.parser.add_dir(vh_path, "SSLCertificateFile", File "/snap/certbot/1583/lib/python3.8/site-packages/certbot_apache/_internal/parser.py", line 426, in add_dir self.aug.set(aug_conf_path + "/directive[last() + 1]", directive) File "/snap/certbot/1583/lib/python3.8/site-packages/augeas/init.py", line 263, in set self._raise_error(AugeasValueError, "Augeas.set() failed") File "/snap/certbot/1583/lib/python3.8/site-packages/augeas/init.py", line 154, in _raise_error raise errorclass(ec, fullmessage, msg, minor, details) augeas.AugeasValueError: Augeas.set() failed: Too many matches for path expression 2021-11-24 15:06:19,433:ERROR:certbot._internal.log:An unexpected error occurred: 2021-11-24 15:06:19,433:ERROR:certbot._internal.log:augeas.AugeasValueError: Augeas.set() failed: Too many matches for path expression ## Here is the relevant nginx server block or Apache virtualhost for the domain I am configuring: <VirtualHost *:80> ServerAdmin shiraz3@gmail.com ServerName salah.dk ServerAlias www.salah.dk DocumentRoot /tmp <Location /> Require all granted </Location> ErrorLog /tmp LogLevel warn CustomLog /tmp combined </VirtualHost> <VirtualHost *:80> ServerAdmin shiraz3@gmail.com ServerName a.salah.dk ServerAlias aa.salah.dk ServerAlias www.aa.salah.dk ServerAlias www.a.salah.dk DocumentRoot /tmp <Location /> Require all granted </Location> ErrorLog /tmp LogLevel warn CustomLog /tmp combined </VirtualHost> <VirtualHost *:80> ServerAdmin shiraz3@gmail.com ServerName o.salah.dk ServerAlias www.o.salah.dk DocumentRoot /tmp <Location /> Require all granted </Location> ErrorLog /tmp LogLevel warn CustomLog /tmp combined </VirtualHost> <VirtualHost *:80> ServerAdmin shiraz3@gmail.com ServerName m.salah.dk ServerAlias www.m.salah.dk DocumentRoot /tmp <Location /> Require all granted </Location> ErrorLog /tmp LogLevel warn CustomLog /tmp combined </VirtualHost>

Tagging certbot engineer @_az for review.