Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: saraband.uk
I ran this command: sudo certbot renew --dry-run
It produced this output: Timeout during connect (likely firewall problem) - further detail to follow
My web server is (include version): apache 2.0
The operating system my web server runs on is (include version): Raspberry Pi Buster
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know): Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 1.22.0
Full response from renew command :
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/saraband.uk.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Simulating renewal of an existing certificate for saraband.uk and www.saraband.uk
Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: saraband.uk
Type: connection
Detail: Fetching http://saraband.uk/.well-known/acme-challenge/nKaLW1lJFKesqTUQ8Z7VIDn3GmEv5in9872VKmEC4lA: Timeout during connect (likely firewall problem)
Domain: www.saraband.uk
Type: connection
Detail: Fetching http://www.saraband.uk/.well-known/acme-challenge/zHVSQNwF9o21TOe8L86w6jdjZE2MxA6bRt83QME_rFg: Timeout during connect (likely firewall problem)
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.
Failed to renew certificate saraband.uk with error: Some challenges have failed.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
All simulated renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/saraband.uk/fullchain.pem (failure)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1 renew failure(s), 0 parse failure(s)
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
Firewall settings:
To Action From
-- ------ ----
[ 1] Anywhere on eth0 ALLOW FWD 10.6.0.0/24 on wg0
[ 2] 51000/udp ALLOW IN Anywhere
[ 3] 22/tcp ALLOW IN 192.168.1.0/24
[ 4] Anywhere ALLOW IN 192.168.1.0/24
[ 5] 22 ALLOW IN 192.168.1.0/24
[ 6] 443/tcp ALLOW IN Anywhere
[ 7] 80 ALLOW IN Anywhere
[ 8] 51000/udp (v6) ALLOW IN Anywhere (v6)
[ 9] 443/tcp (v6) ALLOW IN Anywhere (v6)
[10] 80 (v6) ALLOW IN Anywhere (v6)
Log file:
2022-02-01 10:26:52,767:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97
2022-02-01 10:26:53,956:DEBUG:certbot._internal.main:certbot version: 1.22.0
2022-02-01 10:26:53,956:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/1669/bin/certbot
2022-02-01 10:26:53,956:DEBUG:certbot._internal.main:Arguments: ['--apache', '--dry-run', '--preconfigured-renewal']
2022-02-01 10:26:53,957:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2022-02-01 10:26:53,983:DEBUG:certbot._internal.log:Root logging level set at 30
2022-02-01 10:26:53,986:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/saraband.uk.conf
2022-02-01 10:26:54,061:DEBUG:certbot._internal.plugins.selection:Requested authenticator apache and installer apache
2022-02-01 10:26:54,062:DEBUG:certbot._internal.cli:Var dry_run=True (set by user).
2022-02-01 10:26:54,062:DEBUG:certbot._internal.cli:Var server={'dry_run', 'staging'} (set by user).
2022-02-01 10:26:54,062:DEBUG:certbot._internal.cli:Var dry_run=True (set by user).
2022-02-01 10:26:54,062:DEBUG:certbot._internal.cli:Var server={'dry_run', 'staging'} (set by user).
2022-02-01 10:26:54,062:DEBUG:certbot._internal.cli:Var account={'server'} (set by user).
2022-02-01 10:26:54,062:DEBUG:certbot._internal.cli:Var authenticator=apache (set by user).
2022-02-01 10:26:54,062:DEBUG:certbot._internal.cli:Var installer=apache (set by user).
2022-02-01 10:26:54,137:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80
2022-02-01 10:26:54,301:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503
2022-02-01 10:26:54,303:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/saraband.uk/cert7.pem is signed by the certificate's issuer.
2022-02-01 10:26:54,304:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/saraband.uk/cert7.pem is: OCSPCertStatus.GOOD
2022-02-01 10:26:54,312:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2022-02-09 13:02:58 UTC.
2022-02-01 10:26:54,312:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2022-02-01 10:26:54,313:DEBUG:certbot._internal.plugins.selection:Requested authenticator apache and installer apache
2022-02-01 10:26:54,544:DEBUG:certbot_apache._internal.configurator:Apache version is 2.4.38
2022-02-01 10:26:55,255:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * apache
Description: Apache Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: apache = certbot_apache._internal.entrypoint:ENTRYPOINT
Initialized: <certbot_apache._internal.override_debian.DebianConfigurator object at 0xb32151f0>
Prep: True
2022-02-01 10:26:55,257:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * apache
Description: Apache Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: apache = certbot_apache._internal.entrypoint:ENTRYPOINT
Initialized: <certbot_apache._internal.override_debian.DebianConfigurator object at 0xb32151f0>
Prep: True
2022-02-01 10:26:55,258:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_apache._internal.override_debian.DebianConfigurator object at 0xb32151f0> and installer <certbot_apache._internal.override_debian.DebianConfigurator object at 0xb32151f0>
2022-02-01 10:26:55,258:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator apache, Installer apache
2022-02-01 10:26:55,299:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-staging-v02.api.letsencrypt.org/acme/acct/42356048', new_authzr_uri=None, terms_of_service=None), dedba55c90f1d1f2246e008a02477244, Meta(creation_dt=datetime.datetime(2022, 1, 30, 21, 44, 55, tzinfo=<UTC>), creation_host='SarabandP2', register_to_eff=None))>
2022-02-01 10:26:55,301:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory.
2022-02-01 10:26:55,305:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443
2022-02-01 10:26:55,765:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 822
2022-02-01 10:26:55,767:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:26:55 GMT
Content-Type: application/json
Content-Length: 822
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"3u-nfdPDC4U": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
"website": "https://letsencrypt.org/docs/staging-environment/"
},
"newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order",
"renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-aaron-ari/renewalInfo/",
"revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert"
}
2022-02-01 10:26:55,771:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for saraband.uk and www.saraband.uk
2022-02-01 10:26:59,020:DEBUG:acme.client:Requesting fresh nonce
2022-02-01 10:26:59,020:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce.
2022-02-01 10:26:59,156:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2022-02-01 10:26:59,157:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:26:59 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002jaSLBApfALN2YwTx1fPy4tp8zcf6rP0VheEPsZ1LEfI
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2022-02-01 10:26:59,158:DEBUG:acme.client:Storing nonce: 0002jaSLBApfALN2YwTx1fPy4tp8zcf6rP0VheEPsZ1LEfI
2022-02-01 10:26:59,158:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "saraband.uk"\n },\n {\n "type": "dns",\n "value": "www.saraband.uk"\n }\n ]\n}'
2022-02-01 10:26:59,167:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyamFTTEJBcGZBTE4yWXdUeDFmUHk0dHA4emNmNnJQMFZoZUVQc1oxTEVmSSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ",
"signature": "ZJV0YwG9S8eP5H7gmX8AATe58tcH8JrrJnB5Cp87nwedABHNvJC8CkIZkBm4C8BrOdx3tD7hpoIROp8zrdzP8XBlcwABGdhiExCHre8HZ27pNcG5NpQaG9bQC9HpcOKJdkxZqffDXm2jJ-ZZceBcMcjAprcL-yIZNw8o7hdAjxNPrSOe0e7ET-_hIp5ul8JVM2K6iGor5msfD75hqelJkN52fJ3fJEfWjhRY60-ZflUUGUmBTm7EpVNi2KLPUKgVxqIsbODhnQhDrBWC-orKWLIh1CkLyK21q-jT4jVjg9j0qUYmXPC8F3MMx1fw5zf7p-dEeLU3TgUoKtu40J0uXQ",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInNhcmFiYW5kLnVrIgogICAgfSwKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInd3dy5zYXJhYmFuZC51ayIKICAgIH0KICBdCn0"
}
2022-02-01 10:26:59,328:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 491
2022-02-01 10:26:59,329:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Tue, 01 Feb 2022 10:26:59 GMT
Content-Type: application/json
Content-Length: 491
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/42356048/1684200268
Replay-Nonce: 0002MqZyKZJP-DzUpr9PxPmdactMuiRGLWqwDT1idjog1fQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"identifiers": [
{
"type": "dns",
"value": "saraband.uk"
},
{
"type": "dns",
"value": "www.saraband.uk"
}
],
"authorizations": [
"https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468",
"https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478"
],
"finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/42356048/1684200268"
}
2022-02-01 10:26:59,330:DEBUG:acme.client:Storing nonce: 0002MqZyKZJP-DzUpr9PxPmdactMuiRGLWqwDT1idjog1fQ
2022-02-01 10:26:59,330:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:26:59,339:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyTXFaeUtaSlAtRHpVcHI5UHhQbWRhY3RNdWlSR0xXcXdEVDFpZGpvZzFmUSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "XGaNaVxhX0orKGMNC_FiLR3TZcsYwTq30a4mmcovsMVLBFsI2zMXSv1KwyrGPJlTQlZB7rQNgculcMxhzuHtyF36BXlB3AhzUAIK2eIVE3CyAwKIAGcOFFBlguIy2T68He6Vkt4c_ScjV2_6uG4VCjWo44_7ZTobMrRm3e1OMCradm2QxVk9aAJZSHNXkDtAKEQxQ004Ie5SoMJhT_G22-QGnlXa0Hrws33Waagt6zgAQtIMWRArMCTChEvFf_-FgLtVTd1gY9JINzGCbKf5VNsPLdPNHXcganolpKMmkg_szDa0mOVUdYZfpV4ZAoVL8BZ1irVYKbDQo8mi_fjqcg",
"payload": ""
}
2022-02-01 10:26:59,478:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 813
2022-02-01 10:26:59,479:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:26:59 GMT
Content-Type: application/json
Content-Length: 813
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002dGSIHs_yxCuDJJ4XeB5lo3fR4roIRiglfP4Is-f9KlA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/UOmwpQ",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/sfk5Tw",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
]
}
2022-02-01 10:26:59,480:DEBUG:acme.client:Storing nonce: 0002dGSIHs_yxCuDJJ4XeB5lo3fR4roIRiglfP4Is-f9KlA
2022-02-01 10:26:59,481:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:26:59,493:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyZEdTSUhzX3l4Q3VESko0WGVCNWxvM2ZSNHJvSVJpZ2xmUDRJcy1mOUtsQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "RzSj_B7-wIDx2Kz8yFmrtfxX48Q-Cd0mBgsq6syQH0yHnC64GA3AAS4J4Db6-euSYK3e0hLwxc0bFYI5gMFD5S2fqspujLA64DpJUsgzoPgCVC7nvLi6uy390821Y6io6-aH7I48ox9jVGEvVJOvdldTNPDuPD05oCfpnbidDY5czQseqFZCm93Sdi9AL1ljlv-o-lZBEm12t31f5-SoMTFgyg_ehXHG2dg-gnHoENSlt_kMPlAlGoKkJeP45NZsdO2VN7SsqolV_s-sl1Ks4REsvAz3PtPy0g7tve6_w6bKhBVOZBARpsGI7w_q3dd-Ds0xbYnknY4v_71Xie8OYA",
"payload": ""
}
2022-02-01 10:26:59,636:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 817
2022-02-01 10:26:59,638:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:26:59 GMT
Content-Type: application/json
Content-Length: 817
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002PKY59w_sbS00SWPKakOseVe3w2PGCsoc5D-6JY7pE6w
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/52VQ4Q",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/t_Svyg",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
]
}
2022-02-01 10:26:59,639:DEBUG:acme.client:Storing nonce: 0002PKY59w_sbS00SWPKakOseVe3w2PGCsoc5D-6JY7pE6w
2022-02-01 10:26:59,641:INFO:certbot._internal.auth_handler:Performing the following challenges:
2022-02-01 10:26:59,641:INFO:certbot._internal.auth_handler:http-01 challenge for saraband.uk
2022-02-01 10:26:59,642:INFO:certbot._internal.auth_handler:http-01 challenge for www.saraband.uk
2022-02-01 10:26:59,679:DEBUG:certbot_apache._internal.http_01:Adding a temporary challenge validation Include for name: saraband.uk in: /etc/apache2/sites-enabled/saraband.uk.conf
2022-02-01 10:26:59,680:DEBUG:certbot_apache._internal.http_01:Adding a temporary challenge validation Include for name: saraband.uk in: /etc/apache2/sites-enabled/saraband.uk-le-ssl.conf
2022-02-01 10:26:59,681:DEBUG:certbot_apache._internal.http_01:Adding a temporary challenge validation Include for name: saraband.uk in: /etc/apache2/sites-enabled/saraband.uk-le-ssl.conf
2022-02-01 10:26:59,682:DEBUG:certbot_apache._internal.http_01:Adding a temporary challenge validation Include for name: None in: /etc/apache2/sites-enabled/000-default.conf
2022-02-01 10:26:59,684:DEBUG:certbot_apache._internal.http_01:writing a pre config file with text:
RewriteEngine on
RewriteRule ^/\.well-known/acme-challenge/([A-Za-z0-9-_=]+)$ /var/lib/letsencrypt/http_challenges/$1 [END]
2022-02-01 10:26:59,685:DEBUG:certbot_apache._internal.http_01:writing a post config file with text:
<Directory /var/lib/letsencrypt/http_challenges>
Require all granted
</Directory>
<Location /.well-known/acme-challenge>
Require all granted
</Location>
2022-02-01 10:26:59,803:DEBUG:certbot.reverter:Creating backup of /etc/apache2/sites-enabled/000-default.conf
2022-02-01 10:26:59,804:DEBUG:certbot.reverter:Creating backup of /etc/apache2/sites-enabled/saraband.uk.conf
2022-02-01 10:26:59,804:DEBUG:certbot.reverter:Creating backup of /etc/apache2/sites-enabled/saraband.uk-le-ssl.conf
2022-02-01 10:27:03,334:DEBUG:acme.client:JWS payload:
b'{}'
2022-02-01 10:27:03,356:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyUEtZNTl3X3NiUzAwU1dQS2FrT3NlVmUzdzJQR0Nzb2M1RC02Slk3cEU2dyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8xNTc2MTczNDY4Ly0yNHBHZyJ9",
"signature": "Y2LKN8S4BubSsh3761DWfJgZG3ZES_SVTDbDZFQtS6GWvBjKWO-playhHTNil_WFz_DZ-bHj1EFmlrT9mKLToYk-0GWLtEcTdsNpQvucuZ4MxJXkudGJTz6RVbRS3eZU61eYJbyotauDroQtm-CcatryJqVpeKZFFD1eGASDo35M9hs6gK_kVoETDghV-ZLdOHfkRPWTqHq_4rptKlEH7aHblMWmmS7aKKp0XVVrMMRycTw-cR3qkSixnU8IiLEfvk3eZ5R18ziJyS07S8L9lF3YT-3w41Of5e_8pfYOiPO915f8O4yKT43fwDQzd_NapFWutMlGAcng5PXLaJIJLw",
"payload": "e30"
}
2022-02-01 10:27:03,505:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/1576173468/-24pGg HTTP/1.1" 200 193
2022-02-01 10:27:03,507:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:03 GMT
Content-Type: application/json
Content-Length: 193
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468>;rel="up"
Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg
Replay-Nonce: 0002byBZEPkzd5BuHu9ZqpxEP8Zw-wb8tgpkJ3KIP_nPZGU
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
2022-02-01 10:27:03,508:DEBUG:acme.client:Storing nonce: 0002byBZEPkzd5BuHu9ZqpxEP8Zw-wb8tgpkJ3KIP_nPZGU
2022-02-01 10:27:03,510:DEBUG:acme.client:JWS payload:
b'{}'
2022-02-01 10:27:03,526:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyYnlCWkVQa3pkNUJ1SHU5WnFweEVQOFp3LXdiOHRncGtKM0tJUF9uUFpHVSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8xNTc2MTczNDc4Lzd6bEh5dyJ9",
"signature": "E0kFmvYYoauIeQ7ByiZ06FMkPchDbr4WJ5j5pQvKzJqZR_6t4SU0jXzKH0fdwUZwcJ8Zv1pAXX1SDamgGnN-hMM2m4X-u1lot3REJfRBMGylkKHrWMEgXOGaA1KF7WUfVER3Qu_zLF-ju22Sza8kpImb17n5pj4ZORtQ8I2S_sqS8TdZx5eEjHVK1ROeI9ZbfjWtheKOnqlmG69aiUZMHCUfUu5rSz1volMKgbxwtACj2FdH77c38lBApeus-q85UZ7n8dkS7eOszyazYR-kSKOpLX1uYtEgul989iOqTDs1jtFwT0NVdoxUS6hugwHSQhcmExmhdf9MqS6zokg_JA",
"payload": "e30"
}
2022-02-01 10:27:03,671:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/1576173478/7zlHyw HTTP/1.1" 200 193
2022-02-01 10:27:03,674:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:03 GMT
Content-Type: application/json
Content-Length: 193
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478>;rel="up"
Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw
Replay-Nonce: 0002s2euO4RTag5kaFYLmWtY6NumAQie27pYwEdEjYkwpdw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
2022-02-01 10:27:03,675:DEBUG:acme.client:Storing nonce: 0002s2euO4RTag5kaFYLmWtY6NumAQie27pYwEdEjYkwpdw
2022-02-01 10:27:03,676:INFO:certbot._internal.auth_handler:Waiting for verification...
2022-02-01 10:27:04,678:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:04,698:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyczJldU80UlRhZzVrYUZZTG1XdFk2TnVtQVFpZTI3cFl3RWRFallrd3BkdyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "KGmTGOFgxCp6a9JviaCa3wxRnOGh2sznFWEW3QH5p7rSMGeXSTlVs3ltXkijcmL8FdthNsssbbA5hQJmyWGlkwbSY8fPlbBWIrO1-au4fEwi8NKyV2T69flKBNY0R37ghs0b0YoNbyxsxFl5fNsHxYeOSOo8z7dGnWMh5Mdl8Ue81kZ1nnBUyd5rBf29QC6JfTFhrKq_L18-zlRpka8Ujzi8vfXHztmRa0BUE4No8bq-6aSC4Y-pBEWNUVkMAp1IysAdZsU7ZdFvQChAZmRiFrcgCFxAKMYN0VjUDQf3QhsxRxqk4G0JF7J5W2kJj-9ut2QjytDV39bRin7jiDUPHg",
"payload": ""
}
2022-02-01 10:27:04,846:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 813
2022-02-01 10:27:04,848:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:04 GMT
Content-Type: application/json
Content-Length: 813
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001NxmBYF8dwMBkF-e1gPKFd44DuDJxnbfoxJC38xRC3KY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/UOmwpQ",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/sfk5Tw",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
]
}
2022-02-01 10:27:04,849:DEBUG:acme.client:Storing nonce: 0001NxmBYF8dwMBkF-e1gPKFd44DuDJxnbfoxJC38xRC3KY
2022-02-01 10:27:04,851:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:04,871:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxTnhtQllGOGR3TUJrRi1lMWdQS0ZkNDREdURKeG5iZm94SkMzOHhSQzNLWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "bw15PKE1RXDYkxhPiNaPWKPBslw8fUZk_d8sonKQlhwOtm7Q97UPaAxCrIi0XowMYMY1g2YHKvgBIEnKh_55_BpuW2cuAy8QgxB7HfCqJRL3k80pkhAZeFZDK8ObPZCJAyE_wxovF3NmahyPOWkwoS2rRhDPv9qe61J7wYNW9yPLFt8FXk5IYCtTOzJB8PHxCEaCrUA1h3s1Y5_uhSkvQeHELed2H_IQNlkOgEIGEXDZSu1bYcz2rqKwlYNe99PxNjiGPntgMTo_-IiquR2e_I2X4DRCaMJUaIMJtze74eKSJpwSvex2BwUF0tflrVKwFYFmZTvOkq0hkerdUrJcCw",
"payload": ""
}
2022-02-01 10:27:05,017:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 817
2022-02-01 10:27:05,019:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:04 GMT
Content-Type: application/json
Content-Length: 817
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001Kf2dlvV0wIF2hNt8v_1hU--4WVO5txBSmUCXPk9YASo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/52VQ4Q",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/t_Svyg",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
]
}
2022-02-01 10:27:05,022:DEBUG:acme.client:Storing nonce: 0001Kf2dlvV0wIF2hNt8v_1hU--4WVO5txBSmUCXPk9YASo
2022-02-01 10:27:08,027:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:08,048:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxS2YyZGx2VjB3SUYyaE50OHZfMWhVLS00V1ZPNXR4QlNtVUNYUGs5WUFTbyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "LOfY4Ikm15MGkfOt36GZZsoUaSxejuG0H4OOpRU8bciE70y1ZM8MsG88-iDNDKUSJOmK1kKhluuNfgcyMeqvVYBvoxkbeddikttYIoOp0LPXDcbODEP_afS21FC74Ka72OHHcXdfy7KJgrfvBLiuGBQcfUpSNTJtY3TTH7AX2DWMQstcRRQnJHYdtER4t7MbrFa6Zv3biG5GPzM352f-YjhfSy-3vwhsItNKVIvz7z2nZOjFH0euu5h271DJoY93DDuRN76de_2t3p7NsPJmeoY3GHBxie8qbW1DPYPTlJoz3x-WaLaCMyYAH9utUUGZD97oMYgpRvm2T5G3zr7DKg",
"payload": ""
}
2022-02-01 10:27:08,196:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 813
2022-02-01 10:27:08,198:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:08 GMT
Content-Type: application/json
Content-Length: 813
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 000108FQNytwcXG9ZzXKMOE8V9GOxz-QatFmzFhrbtjAs48
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/UOmwpQ",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/sfk5Tw",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
]
}
2022-02-01 10:27:08,199:DEBUG:acme.client:Storing nonce: 000108FQNytwcXG9ZzXKMOE8V9GOxz-QatFmzFhrbtjAs48
2022-02-01 10:27:08,200:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:08,214:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxMDhGUU55dHdjWEc5WnpYS01PRThWOUdPeHotUWF0Rm16RmhyYnRqQXM0OCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "al9nNn8iE47Z9otPHCLCKizoUivypraFukUW6HdqN_-qrN1M67or8InHftWohw3MMmcZ43Jxak-de3hPqBIQE0Jp7q1X6g9HqXkDAgoMT2ybCXmY0P80HHjnzge1OjzTYuvbQwYeMfDxZv0rk13c1bmt-kdIUuI8Jf_PBrmKrHd9zcu3YP2qzYN1wVfzbUpKhF6FRNrRPKEQX75NUnMGy-AvUWGv0N5mAa4MXgUZfQhRGT3iqDNwpQk5Q2yG5mFv-4w1Oy1500klhSAhL-O3rV18ranwkfIHGJBQl6mVJ-_6oF3d43Nm322F0vLNbpDc1QSTYGtYIy9_ORxOvjaCPg",
"payload": ""
}
2022-02-01 10:27:08,356:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 817
2022-02-01 10:27:08,357:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:08 GMT
Content-Type: application/json
Content-Length: 817
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002B5K1zgNCI7NdSfEboVdxwBodgibpY2Gcaxq-eL9luYY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/52VQ4Q",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/t_Svyg",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
]
}
2022-02-01 10:27:08,358:DEBUG:acme.client:Storing nonce: 0002B5K1zgNCI7NdSfEboVdxwBodgibpY2Gcaxq-eL9luYY
2022-02-01 10:27:11,363:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:11,383:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyQjVLMXpnTkNJN05kU2ZFYm9WZHh3Qm9kZ2licFkyR2NheHEtZUw5bHVZWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "UlwdUpNR8KMnT4sXKdXZgRcXGdSJ_QfvqQdXyyGVuQ1m6ahvHtEP7F2zPBhP5MxjLb9ARpfPeJMvJR_QQgTJgOWysGWsF0Jt37x8OA5EMmkl2-UMGjPnKGi3fvQqGq4vMkD6f1lhHtEAURWR1EpgvziCcROkabsfXj1Mc32HDQEv24KwKP9WGDlhDiYUFXx2evsq3Y1l6dfKFbgVC1BM9Tua0i_QFLEzcHIByr8FKiRr3plmWghC40IN7hEn8gpBtsQoeNiv2l_SEWrKWJ_rK7tw0kh0POcxbHkyMCq46CNFYU2Mm7zeHhILuZlkC5_1NSOaoZSDLRUGdvSAB0BIig",
"payload": ""
}
2022-02-01 10:27:11,528:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 813
2022-02-01 10:27:11,530:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:11 GMT
Content-Type: application/json
Content-Length: 813
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001ymbsvZmx-AiRSAsmu2vjQ8dTacx8xYJUlMG1WDMifYc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/UOmwpQ",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/sfk5Tw",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
]
}
2022-02-01 10:27:11,530:DEBUG:acme.client:Storing nonce: 0001ymbsvZmx-AiRSAsmu2vjQ8dTacx8xYJUlMG1WDMifYc
2022-02-01 10:27:11,532:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:11,547:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxeW1ic3ZabXgtQWlSU0FzbXUydmpROGRUYWN4OHhZSlVsTUcxV0RNaWZZYyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "IKNS6Exzk6vGGIR6dBaYT4vxH_6tCfqykNWJQi60APi5o_H5vD2278NPXkCExxnzL2Sc4YR4hXIURXYOf1zrRDQTVE_8rCo67tvyxVbvcXTkcjV5xxXhb7vi-B6gIQkSkMk2t0vN5NJeDuKMa9bo9aKkacgaomFawzXr-n4Ut1AOJ9F6WbCu01E-jPzHdsRF4SiNkafbGXWUcKw7tGE8OsBN3BsCRkA2fxf1JVYCnhsmMd4toI4NwU1oyefE-UnmGsQQFa5XXY-X3uiBq5JaT9CsRd0XRQ9ZWyA1oHwpjAQnjruRoaZo6dZZNujKmb7ljCUW-d0JwKWrAWPo1T2lRg",
"payload": ""
}
2022-02-01 10:27:11,690:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 817
2022-02-01 10:27:11,692:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:11 GMT
Content-Type: application/json
Content-Length: 817
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002qOx5dJUsnjkLmt4AVXnuiuK1gW1EKL967BKBTfx196I
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/52VQ4Q",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/t_Svyg",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
]
}
2022-02-01 10:27:11,693:DEBUG:acme.client:Storing nonce: 0002qOx5dJUsnjkLmt4AVXnuiuK1gW1EKL967BKBTfx196I
2022-02-01 10:27:14,698:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:14,719:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAycU94NWRKVXNuamtMbXQ0QVZYbnVpdUsxZ1cxRUtMOTY3QktCVGZ4MTk2SSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "jfOBV7xzvNZW_6E8c244niCufJuHbCj8vmhUf54V_fSZlJF4Xe5j9m_1NYec0cvwlt9ILrmavsKGowmOi0k4TBfPjx2pRDcH1TmjGwUGKTZdOkmBD4doDaUJ5xQma2u24NFhy4ep8s3Kbnr6phTjWHkfN37wwBhHNdEZi1nKGUxvRE1piZgbcPUW_PK0S3grxIuUfqQQIQokg2bCprb0rzWpCYWa28rKNwcpoJAriuVtG9F7J2JgRzAKAGd6HimOJ9kBfWOIwrhAYlruq2rVqWgUkFp5aE4SfRCMvhJS6CFgjgeMS_GxiFzSiR6YLjPVJJDs1AEo0JhIPe-VSheUkw",
"payload": ""
}
2022-02-01 10:27:14,865:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 813
2022-02-01 10:27:14,867:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:14 GMT
Content-Type: application/json
Content-Length: 813
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001sfpMFQz6tyJ-1QGan2eNCQXkw5F9gjkYcfoCMKoY1sY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/UOmwpQ",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/sfk5Tw",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
]
}
2022-02-01 10:27:14,868:DEBUG:acme.client:Storing nonce: 0001sfpMFQz6tyJ-1QGan2eNCQXkw5F9gjkYcfoCMKoY1sY
2022-02-01 10:27:14,869:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:14,883:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxc2ZwTUZRejZ0eUotMVFHYW4yZU5DUVhrdzVGOWdqa1ljZm9DTUtvWTFzWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "QiSTKENJ9XIO2K6xXjQ3aIv_gi1eorXZY26Vl4NpLQVbIqEuVYi8hi_XInYRyvNWbPIWz1_bJYu-GOPkD57PHaRsElvZr6BGM7CoKjNI8ZUN2_vx-OweJpt-pC7VkDb3J9N6_8pLl4Zf89L7PFPcHiO3GFTa2iannWGDq-6iVI71fFAiCSxCG_FETpCn-_L9Zvb3HXgDY-4b43RpMtkEQoWPj181Hw3l77qIaxeS8WJEsCKtYNHsZWOTZt2z5Pvo51q13IwBfEnbCxrUn5oryT2WD7MnyRRkA_A6r8JZXRsv1ANZ6na3NgiDSGw6vrs-QgbHXff_Nd7p_ywGGIo77A",
"payload": ""
}
2022-02-01 10:27:15,024:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 817
2022-02-01 10:27:15,027:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:14 GMT
Content-Type: application/json
Content-Length: 817
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001BIp4xUachdjmlAu_qw3cqjvfcKyF41IIj64UwL1MwSY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/52VQ4Q",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/t_Svyg",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
]
}
2022-02-01 10:27:15,028:DEBUG:acme.client:Storing nonce: 0001BIp4xUachdjmlAu_qw3cqjvfcKyF41IIj64UwL1MwSY
2022-02-01 10:27:18,033:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:18,054:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxQklwNHhVYWNoZGptbEF1X3F3M2NxanZmY0t5RjQxSUlqNjRVd0wxTXdTWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "mI2H6XKEo2-nVjf-uIudaLUIo58XDqN6jJD_b0AJlW4F4rZMJ335TZPGKoUEzzf-qQ1nh4hAJLdGWlGD9pVB_GtSUMzpEivL15NSKG1irLknBg4EV9jqLnmjUOcgM0YYYtmHzGzvSKfgxoOWNqBFmF2Azf8y_5WTZ7m7T7TQP70Fw9Emn6gpr2IK7vB55Q4SbjH5l8thvNSFnUvC5lMKukib3o55Q-m9j0p9hMoa-2qHLTxkVyZlIzXAJWjtdV5eimKtFR4W9wWbXmBRW8CvyaKUfUW0E7aSKV8dS55C_7K278lhi2EaL0HNn0OTc4TgmiJepiWbL4dCp0CkUFdGQQ",
"payload": ""
}
2022-02-01 10:27:18,207:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 813
2022-02-01 10:27:18,208:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:18 GMT
Content-Type: application/json
Content-Length: 813
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002nIlr5OeZfXqVWwo3OhocLSMyKjBbmU1kG3B9g_7Hi9A
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/UOmwpQ",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/sfk5Tw",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
]
}
2022-02-01 10:27:18,209:DEBUG:acme.client:Storing nonce: 0002nIlr5OeZfXqVWwo3OhocLSMyKjBbmU1kG3B9g_7Hi9A
2022-02-01 10:27:18,210:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:18,226:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAybklscjVPZVpmWHFWV3dvM09ob2NMU015S2pCYm1VMWtHM0I5Z183SGk5QSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "RuLawpDDehO1T1N9T-JZzuKry20arU3SWdihMXk9kEMFrldltBzkJ2H-yFNtob6h2Bbux6QtuIGCWD3QRI62qAOXXLuUgSXa7FhAq-UznHLnmDCIXUuAtlVPiqMtC7bazvL4bZZiGRqocdza0-ogHh2HxUGGTVve6M5e9_lnDF_nOw8IJPLq6q_uxqUd-fn0oYUt1MyaI2RReFc3LdaxlyCFSg91K21s6Ss9LUqBWlWYXW_WWYjqRDBSulip0MKjHuN8caFdLQhYClWyqQzJLwLsK_GBHHZi11_64zPJYnHQtz1SpY_9-iaqW9GR7j12xlAGX8yGz8Xg-cQgxvROmQ",
"payload": ""
}
2022-02-01 10:27:18,368:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 817
2022-02-01 10:27:18,370:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:18 GMT
Content-Type: application/json
Content-Length: 817
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001QmXblhdofhh4mUCronMRCalABOTR4aFdTJyCW5-p1FM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/52VQ4Q",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/t_Svyg",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
]
}
2022-02-01 10:27:18,371:DEBUG:acme.client:Storing nonce: 0001QmXblhdofhh4mUCronMRCalABOTR4aFdTJyCW5-p1FM
2022-02-01 10:27:21,376:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:21,394:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxUW1YYmxoZG9maGg0bVVDcm9uTVJDYWxBQk9UUjRhRmRUSnlDVzUtcDFGTSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "bGQRZekWTNJV2Nhk4X2mwG8VyreiyerumuNupvVOVXw62dotH-Y7zQ_tZldJnySDwqVauObwTP-D8rPIAEuLV4ZoP3rG_ZBoscpoX44bf_CIqEKaqAxoYiI3wwSbSe1edNTr1dq72Mopff9aEWYMzYhD6YfmX4l7k5XG0Lbv6HJ5pYS-2jxobgNU-CpWdPt15xzVvEbwsShyni0Ta78wvogsbBU9MwYawdhKiX7XXpAK-QOJ3vmn4r2de2sG4GJ5ZT1GcxeJy3OUyPZHRyXMaPBMUsei2xtAL_8Q7eIdCV2O2dqto8VOYKDjKM9OxdWIxdVox8pDcgZ67DQ-ho_eZg",
"payload": ""
}
2022-02-01 10:27:21,537:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 813
2022-02-01 10:27:21,539:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:21 GMT
Content-Type: application/json
Content-Length: 813
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002cWHmheDV5wwDXjp-7a8pVxGLsmZS3hfirXqw-pm19Rg
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/UOmwpQ",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/sfk5Tw",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM"
}
]
}
2022-02-01 10:27:21,540:DEBUG:acme.client:Storing nonce: 0002cWHmheDV5wwDXjp-7a8pVxGLsmZS3hfirXqw-pm19Rg
2022-02-01 10:27:21,542:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:21,623:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyY1dIbWhlRFY1d3dEWGpwLTdhOHBWeEdMc21aUzNoZmlyWHF3LXBtMTlSZyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "PZI9jvtzAs5u_g4PN49shqeJZh3pXnvYf-1Sbgx03D78_a0qUeBmTGog3wg-s1RFiPHjHDm2PfA4PBRYenx99rNwDWoJegzlMFNBw2vV7XIzMNSdss5vcIiCUhdmP8SVB2y_6Buc5r5vp7rqepMyYcrzPWIVUuHIzaEiqTxXTDV21AfRRGSFrX1wsu8ilL2v7XIVx8bb9_Pt2xAdBFL9hMpSfoj6_BKF_BdaMtx14GiA3et8aIwdgEUrCfXDrsKu0M7XP_8FFeanDsgh3Rf_duLBqfgn1XCQQxvHTS-FY9J7kB7aZQ-378DvgMJZOedsej0moXzfXRPQhX5Egp8N9A",
"payload": ""
}
2022-02-01 10:27:21,763:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 817
2022-02-01 10:27:21,765:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:21 GMT
Content-Type: application/json
Content-Length: 817
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002g3jrmXjNizzXZaMNKTn_8Ke3TfVzQF02ejhtn79kFL8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "pending",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/52VQ4Q",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/t_Svyg",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4"
}
]
}
2022-02-01 10:27:21,765:DEBUG:acme.client:Storing nonce: 0002g3jrmXjNizzXZaMNKTn_8Ke3TfVzQF02ejhtn79kFL8
2022-02-01 10:27:24,770:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:24,793:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173468:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAyZzNqcm1Yak5penpYWmFNTktUbl84S2UzVGZWelFGMDJlamh0bjc5a0ZMOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDY4In0",
"signature": "mGMW3bcQl8Rz-TgclBA8Vrgxg_e7NraPIOWtoj61kG0OzU6v55BzFeAiIjNr6vXh81XY5_qJ1lh346IJ1oz8CZwD9WeaQQ8PtOrsbmZQoq518xTGfU6AUHNmi0N7XeaDC0931iJGwXwjCEFBK17TPhL4wPJ-e-PZ2Aongzf1BvdNlFtydpMdRsAhyTKfOr58AGrdB_k7bHg4bKvjp2irdFXAoF8I-8nefmM7yVE8NUxNaDNXOah7-OrvEcLrzrYzOHFT-Dcy04uLNSo41QsBhY_obc0DyDl9Gg5IpzoAVYCewiW823gAsOJhyLntXoxmm5k1fK8wcSEHFGdNTyIZWA",
"payload": ""
}
2022-02-01 10:27:24,938:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173468 HTTP/1.1" 200 1476
2022-02-01 10:27:24,940:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:24 GMT
Content-Type: application/json
Content-Length: 1476
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001M8apxWO-b9ZK_kGti0wQ0t5fLDMKpSWugqMU_CYjkf8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "saraband.uk"
},
"status": "invalid",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:ietf:params:acme:error:connection",
"detail": "Fetching http://saraband.uk/.well-known/acme-challenge/5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM: Timeout during connect (likely firewall problem)",
"status": 400
},
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173468/-24pGg",
"token": "5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM",
"validationRecord": [
{
"url": "http://saraband.uk/.well-known/acme-challenge/5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM",
"hostname": "saraband.uk",
"port": "80",
"addressesResolved": [
"109.147.67.51",
"2a00:23c8:2008:4401:7d3c:7f68:dfae:801e"
],
"addressUsed": "2a00:23c8:2008:4401:7d3c:7f68:dfae:801e"
},
{
"url": "http://saraband.uk/.well-known/acme-challenge/5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM",
"hostname": "saraband.uk",
"port": "80",
"addressesResolved": [
"109.147.67.51",
"2a00:23c8:2008:4401:7d3c:7f68:dfae:801e"
],
"addressUsed": "109.147.67.51"
}
],
"validated": "2022-02-01T10:27:03Z"
}
]
}
2022-02-01 10:27:24,941:DEBUG:acme.client:Storing nonce: 0001M8apxWO-b9ZK_kGti0wQ0t5fLDMKpSWugqMU_CYjkf8
2022-02-01 10:27:24,943:DEBUG:acme.client:JWS payload:
b''
2022-02-01 10:27:24,963:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/1576173478:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC80MjM1NjA0OCIsICJub25jZSI6ICIwMDAxTThhcHhXTy1iOVpLX2tHdGkwd1EwdDVmTERNS3BTV3VncU1VX0NZamtmOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTc2MTczNDc4In0",
"signature": "pWZtv-eoJyVWbq7E-sg406XwkImQxAyvKNWzoL1eO0_3y2rYC4qhnqJGvgT3uqlmHjFETzXxrqw9bBf7fg6-YTyHegOz0QY-RuEBUgvej5N4y95LpvmRiXlgUhshp8VIxU4uNe3GEsYASKCDnaMfSySEHCbXs_oY8qg16-O-UcZ1PNDCJkDmhfLEpESAyxSkTjX5KqvnH_fEnxZZZxkO3DYbYYg_-iKLiP5-MNlGD3kKxmHCZujLmOHMq--a6QRlVQkUeW19GRbxkSDeEw_lfdRRiKfRbWdPlp_spVWSvIA9TpLk9A2F-O_hzeX5lysVbML0przThOH43nkl6SN88g",
"payload": ""
}
2022-02-01 10:27:25,114:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/1576173478 HTTP/1.1" 200 1500
2022-02-01 10:27:25,115:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 01 Feb 2022 10:27:25 GMT
Content-Type: application/json
Content-Length: 1500
Connection: keep-alive
Boulder-Requester: 42356048
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002K3wbleu25Q77Mv-cfwtYPDy9HbNEwMFQUcTObHHDoB8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.saraband.uk"
},
"status": "invalid",
"expires": "2022-02-08T10:26:59Z",
"challenges": [
{
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:ietf:params:acme:error:connection",
"detail": "Fetching http://www.saraband.uk/.well-known/acme-challenge/FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4: Timeout during connect (likely firewall problem)",
"status": 400
},
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/1576173478/7zlHyw",
"token": "FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4",
"validationRecord": [
{
"url": "http://www.saraband.uk/.well-known/acme-challenge/FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4",
"hostname": "www.saraband.uk",
"port": "80",
"addressesResolved": [
"109.147.67.51",
"2a00:23c8:2008:4401:7d3c:7f68:dfae:801e"
],
"addressUsed": "2a00:23c8:2008:4401:7d3c:7f68:dfae:801e"
},
{
"url": "http://www.saraband.uk/.well-known/acme-challenge/FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4",
"hostname": "www.saraband.uk",
"port": "80",
"addressesResolved": [
"109.147.67.51",
"2a00:23c8:2008:4401:7d3c:7f68:dfae:801e"
],
"addressUsed": "109.147.67.51"
}
],
"validated": "2022-02-01T10:27:03Z"
}
]
}
2022-02-01 10:27:25,116:DEBUG:acme.client:Storing nonce: 0002K3wbleu25Q77Mv-cfwtYPDy9HbNEwMFQUcTObHHDoB8
2022-02-01 10:27:25,117:INFO:certbot._internal.auth_handler:Challenge failed for domain saraband.uk
2022-02-01 10:27:25,118:INFO:certbot._internal.auth_handler:Challenge failed for domain www.saraband.uk
2022-02-01 10:27:25,118:INFO:certbot._internal.auth_handler:http-01 challenge for saraband.uk
2022-02-01 10:27:25,118:INFO:certbot._internal.auth_handler:http-01 challenge for www.saraband.uk
2022-02-01 10:27:25,119:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: saraband.uk
Type: connection
Detail: Fetching http://saraband.uk/.well-known/acme-challenge/5wJV8eK0odkL0xvVJTLSoEx2Nc8qCkJBX5yNJbK2yxM: Timeout during connect (likely firewall problem)
Domain: www.saraband.uk
Type: connection
Detail: Fetching http://www.saraband.uk/.well-known/acme-challenge/FOlichpBRHoTGEE8q5BLptqJ-U6CdAxuBjMqLrXsAN4: Timeout during connect (likely firewall problem)
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.
2022-02-01 10:27:25,121:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2022-02-01 10:27:25,121:DEBUG:certbot._internal.error_handler:Calling registered functions
2022-02-01 10:27:25,121:INFO:certbot._internal.auth_handler:Cleaning up challenges
2022-02-01 10:27:25,827:ERROR:certbot._internal.renewal:Failed to renew certificate saraband.uk with error: Some challenges have failed.
2022-02-01 10:27:25,831:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 485, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/main.py", line 1441, in renew_cert
renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/main.py", line 127, in _get_and_save_cert
renewal.renew_cert(config, domains, le_client, lineage)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 345, in renew_cert
new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/client.py", line 424, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/client.py", line 476, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2022-02-01 10:27:25,837:DEBUG:certbot._internal.display.obj:Notifying user:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2022-02-01 10:27:25,840:ERROR:certbot._internal.renewal:All simulated renewals failed. The following certificates could not be renewed:
2022-02-01 10:27:25,841:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/saraband.uk/fullchain.pem (failure)
2022-02-01 10:27:25,841:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2022-02-01 10:27:25,842:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/snap/certbot/1669/bin/certbot", line 8, in <module>
sys.exit(main())
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/main.py", line 19, in main
return internal_main.main(cli_args)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/main.py", line 1632, in main
return config.func(config, plugins)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/main.py", line 1518, in renew
renewal.handle_renewal_request(config)
File "/snap/certbot/1669/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 511, in handle_renewal_request
raise errors.Error("{0} renew failure(s), {1} parse failure(s)".format(
certbot.errors.Error: 1 renew failure(s), 0 parse failure(s)
2022-02-01 10:27:25,843:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s)
Conf file:
# renew_before_expiry = 30 days
version = 0.31.0
archive_dir = /etc/letsencrypt/archive/saraband.uk
cert = /etc/letsencrypt/live/saraband.uk/cert.pem
privkey = /etc/letsencrypt/live/saraband.uk/privkey.pem
chain = /etc/letsencrypt/live/saraband.uk/chain.pem
fullchain = /etc/letsencrypt/live/saraband.uk/fullchain.pem
# Options used in the renewal process
[renewalparams]
account = 85d3ed...........
authenticator = apache
installer = apache
server = https://acme-v02.api.letsencrypt.org/directory
I found a few ideas from similar threads but none seemed directly appropriate, tried reducing mtu (one suggestion) with "sudo ifconfig eth0 mtu 1100" but no effect so put it back to original 1500 value.
What to try next?
Thanks