Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
stopforlife.org
I ran this command:
certbot renew --dry-run
It produced this output:
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator standalone, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for www.stopforlife.org
Waiting for verificationā¦
Cleaning up challenges
Attempting to renew cert (stopforlife.org) from
/etc/letsencrypt/renewal/stopforlife.org.conf
produced an unexpected error: Failed authorization procedure.
www.stopforlife.org (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization ::
Invalid response from https://stopforlife.org/.well-known/acme-challenge/6mt6Uk72yRuVI6ujQdD1KUyx-Wt3rswO8mWDS_Jh1WI [72.1.109.234]:
ā\n\n404 Not Found\n\n
Not Found
\n<pā. Skipping.The following certs could not be renewed:
/etc/letsencrypt/live/stopforlife.org/fullchain.pem (failure)
** DRY RUN: simulating ācertbot renewā close to cert expiry
** (The test certificates below have not been saved.)
The following certs were successfully renewed:
/etc/letsencrypt/live/socialtie.com/fullchain.pem (success)
The following certs could not be renewed:
/etc/letsencrypt/live/stopforlife.org/fullchain.pem (failure)
** DRY RUN: simulating ācertbot renewā close to cert expiry
** (The test certificates above have not been saved.)
1 renew failure(s), 0 parse failure(s)
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: www.stopforlife.org
Type: unauthorized
Detail: Invalid response from
https://stopforlife.org/.well-known/acme-challenge/6mt6Uk72yRuVI6ujQdD1KUyx-Wt3rswO8mWDS_Jh1WI
[72.1.109.234]: ā\n\n404 Not
Found\n\nNot Found
\n<pāTo fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version):
HA-Proxy version 1.8.21-1ppa1~bionic 2019/08/16
The operating system my web server runs on is (include version):
Ubuntu 18.04.3 LTS (GNU/Linux 4.15.0-65-generic x86_64)
My hosting provider, if applicable, is:
Self hosted
I can login to a root shell on my machine (yes or no, or I donāt know):
Yes
Iām using a control panel to manage my site (no, or provide the name and version of the control panel):
No
The version of my client is (e.g. output of certbot --version or certbot-auto --version if youāre using Certbot):
certbot 0.31.0
Output of /etc/letsencrypt/renewal/stopforlife.org.conf:
renew_before_expiry = 30 days
version = 0.31.0
archive_dir = /etc/letsencrypt/archive/stopforlife.org
cert = /etc/letsencrypt/live/stopforlife.org/cert.pem
privkey = /etc/letsencrypt/live/stopforlife.org/privkey.pem
chain = /etc/letsencrypt/live/stopforlife.org/chain.pem
fullchain = /etc/letsencrypt/live/stopforlife.org/fullchain.pem
Options used in the renewal process
[renewalparams]
account = 123a7e8b9feccbf704e8e791a8dc5fbe
authenticator = standalone
server = https://acme-v02.api.letsencrypt.org/directory
http01_port = 54321