Certificate created but not uploaded

Help
1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:rodgerscompanies.com

I ran this command:certbot renew

It produced this output:

Processing /etc/letsencrypt/renewal/rodgerscompanies.com.conf

Cert is due for renewal, auto-renewing…
Plugins selected: Authenticator webroot, Installer None
Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for rodgerscompanies.com
http-01 challenge for www.rodgerscompanies.com
Using the webroot path /home/rodgerscompanies/public_html for all unmatched domains.
Waiting for verification…
Cleaning up challenges

Congratulations, all renewals succeeded. The following certs have been renewed:
/etc/letsencrypt/live/rodgerscompanies.com/fullchain.pem (success)

My web server is (include version): apache 2.4.6

The operating system my web server runs on is (include version): CentOS Linux 7.7.1908

My hosting provider, if applicable, is: Digital Ocean VPS

I can login to a root shell on my machine (yes or no, or I don’t know):yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no using Webmin 1.942 and command line

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 1.3.0

Webmin has Lets Encrypt installed. I also installed certbot - yum install certbot

When I run certbot manually (certbot), select the domains, and install new certificate, I am able to install and upload the certificate successfully.
However, when I run “certbot renew” I get the message “Congratulations, all renewals succeeded.” But the certificate apparently is not uploaded

Here is the log:

2020-03-29 12:16:01,233:DEBUG:certbot._internal.plugins.selection:Requested authenticator apache and installer apache
2020-03-29 12:16:01,235:DEBUG:certbot._internal.plugins.selection:Selecting plugin: * apache
Description: Apache Web Server plugin
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = certbot_apache._internal.entrypoint:ENTRYPOINT
Initialized: <certbot_apache._internal.override_centos.CentOSConfigurator object at 0x7fc35cf4a610>
2020-03-29 12:16:01,236:DEBUG:certbot.plugins.storage:Plugin storage file /etc/letsencrypt/.pluginstorage.json was empty, no values loaded
2020-03-29 12:16:01,272:DEBUG:certbot.ocsp:Querying OCSP for /etc/letsencrypt/archive/rodgerscompanies.com/cert1.pem
2020-03-29 12:16:01,272:DEBUG:certbot.ocsp:openssl ocsp -no_nonce -issuer /etc/letsencrypt/archive/rodgerscompanies.com/chain1.pem -cert /etc/letsencrypt/archive/rodgerscompanies.com/cert1.pem -url http://ocsp.int-x3.letsencrypt.org -CAfile /etc/letsencrypt/archive/rodgerscompanies.com/chain1.pem -verify_other /etc/letsencrypt/archive/rodgerscompanies.com/chain1.pem -trust_other -header Host ocsp.int-x3.letsencrypt.org
2020-03-29 12:16:01,399:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2020-04-28 12:49:18 UTC.
2020-03-29 12:16:01,400:INFO:certbot._internal.renewal:Cert is due for renewal, auto-renewing…
2020-03-29 12:16:01,400:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None
2020-03-29 12:16:01,403:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot
Description: Place files in webroot directory
Interfaces: IAuthenticator, IPlugin
Entry point: webroot = certbot._internal.plugins.webroot:Authenticator
Initialized: <certbot._internal.plugins.webroot.Authenticator object at 0x7fc35b9958d0>
Prep: True
2020-03-29 12:16:01,404:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot._internal.plugins.webroot.Authenticator object at 0x7fc35b9958d0> and installer None
2020-03-29 12:16:01,404:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None
2020-03-29 12:16:01,435:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, terms_of_service_agreed=None, agreement=None, only_return_existing=None, contact=(), key=None, external_account_binding=None), uri=u’https://acme-v02.api.letsencrypt.org/acme/acct/75622145’, new_authzr_uri=None, terms_of_service=None), 897ad2b34a54ed6f0c3f35a46e154c20, Meta(creation_host=u’host.bluebassdesign.com’, creation_dt=datetime.datetime(2020, 1, 11, 15, 27, 6, tzinfo=)))>
2020-03-29 12:16:01,439:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2020-03-29 12:16:01,456:INFO:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org
2020-03-29 12:16:01,760:DEBUG:urllib3.connectionpool:“GET /directory HTTP/1.1” 200 658
2020-03-29 12:16:01,762:DEBUG:acme.client:Received response:
HTTP 200
content-length: 658
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
cache-control: public, max-age=0, no-cache
date: Sun, 29 Mar 2020 16:16:01 GMT
x-frame-options: DENY
content-type: application/json

{
“keyChange”: “https://acme-v02.api.letsencrypt.org/acme/key-change”,
“meta”: {
“caaIdentities”: [
letsencrypt.org
],
“termsOfService”: “https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf”,
“website”: “https://letsencrypt.org
},
“newAccount”: “https://acme-v02.api.letsencrypt.org/acme/new-acct”,
“newNonce”: “https://acme-v02.api.letsencrypt.org/acme/new-nonce”,
“newOrder”: “https://acme-v02.api.letsencrypt.org/acme/new-order”,
“qEGqvF0w2A4”: “Adding random entries to the directory”,
“revokeCert”: “https://acme-v02.api.letsencrypt.org/acme/revoke-cert
}
2020-03-29 12:16:01,763:INFO:certbot._internal.main:Renewing an existing certificate
2020-03-29 12:16:01,929:DEBUG:certbot.crypto_util:Generating key (2048 bits): /etc/letsencrypt/keys/0108_key-certbot.pem
2020-03-29 12:16:01,965:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0108_csr-certbot.pem
2020-03-29 12:16:01,966:DEBUG:acme.client:Requesting fresh nonce
2020-03-29 12:16:01,966:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2020-03-29 12:16:02,026:DEBUG:urllib3.connectionpool:“HEAD /acme/new-nonce HTTP/1.1” 200 0
2020-03-29 12:16:02,027:DEBUG:acme.client:Received response:
HTTP 200
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”
cache-control: public, max-age=0, no-cache
date: Sun, 29 Mar 2020 16:16:01 GMT
x-frame-options: DENY
replay-nonce: 0001FNIdV__eCzBu8sMgjVRa1w0jZn7Saz0p4KEmmuZcUsc

2020-03-29 12:16:02,028:DEBUG:acme.client:Storing nonce: 0001FNIdV__eCzBu8sMgjVRa1w0jZn7Saz0p4KEmmuZcUsc
2020-03-29 12:16:02,029:DEBUG:acme.client:JWS payload:
{
“identifiers”: [
{
“type”: “dns”,
“value”: “rodgerscompanies.com
},
{
“type”: “dns”,
“value”: “www.rodgerscompanies.com
}
]
}
2020-03-29 12:16:02,033:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
“protected”: “eyJub25jZSI6ICIwMDAxRk5JZFZfX2VDekJ1OHNNZ2pWUmExdzBqWm43U2F6MHA0S0VtbXVaY1VzYyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvbmV3LW9yZGVyIiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0Lzc1NjIyMTQ1IiwgImFsZyI6ICJSUzI1NiJ9”,
“payload”: “ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwgCiAgICAgICJ2YWx1ZSI6ICJyb2RnZXJzY29tcGFuaWVzLmNvbSIKICAgIH0sIAogICAgewogICAgICAidHlwZSI6ICJkbnMiLCAKICAgICAgInZhbHVlIjogInd3dy5yb2RnZXJzY29tcGFuaWVzLmNvbSIKICAgIH0KICBdCn0”,
“signature”: “BohaAn6X6VGLZbUXBQl0TpljqPsBfaAl8kWFm9EGOJZIcSk8uhWWok01jNO864KpZjnvJzlQo-d4KEAp14BVx8KDJHGudH7qw-jKJOH91BYr1yHCMHmnxguhoM9dz4Oemp3TTysqCU3aoYdOGGj3PycTwomIpvXCsSJgL85qOnb0C-u5U89yFIXlHCMny5wrWRN-qk9yM3wALxdynucx8zHi9gfD04JDNuRiAw63G0nFdPgiskHqR6MEYlQZSkqOiOnGiW71bwXZb6NxCW9YX8PJMqeaCuzxB-mpvVPojgae39NE_uN4Gd8RrLhXrGKaoEKjT8ktQmEm6Uno-I9goA”
}
2020-03-29 12:16:02,164:DEBUG:urllib3.connectionpool:“POST /acme/new-order HTTP/1.1” 201 495
2020-03-29 12:16:02,165:DEBUG:acme.client:Received response:
HTTP 201
content-length: 495
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”
location: https://acme-v02.api.letsencrypt.org/acme/order/75622145/2821729086
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:02 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0001FyYBEsKAOXttOZ0sRqlDHmvQN-26X6-CFkQwy_Dtx3E

{
“status”: “pending”,
“expires”: “2020-04-05T16:16:02.122625133Z”,
“identifiers”: [
{
“type”: “dns”,
“value”: “rodgerscompanies.com
},
{
“type”: “dns”,
“value”: “www.rodgerscompanies.com
}
],
“authorizations”: [
https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693199”,
https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693202
],
“finalize”: “https://acme-v02.api.letsencrypt.org/acme/finalize/75622145/2821729086
}
2020-03-29 12:16:02,166:DEBUG:acme.client:Storing nonce: 0001FyYBEsKAOXttOZ0sRqlDHmvQN-26X6-CFkQwy_Dtx3E
2020-03-29 12:16:02,166:DEBUG:acme.client:JWS payload:

2020-03-29 12:16:02,168:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693199:
{
“protected”: “eyJub25jZSI6ICIwMDAxRnlZQkVzS0FPWHR0T1owc1JxbERIbXZRTi0yNlg2LUNGa1F3eV9EdHgzRSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvMzYzNTY5MzE5OSIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC83NTYyMjE0NSIsICJhbGciOiAiUlMyNTYifQ”,
“payload”: “”,
“signature”: “oXAqfJYi0623KCjA5d9zpwGT1CHeovW2i3H0EiDnTWj72kH_FUDaYT7bPh5sV0N_r7T7A9CORoX9s1mn5wjwD-4rWgPyQnQLwyYeQuf45b0f846Ka1SP-PQHMVB-A-A44aE7vON9gBnZFEdblTc5iT-bfNs3tATIsaxaXMUN3fs09cmnQa-JUJ7icBy4HjqEXaQk11vfRv-F6UvcXtj9q-hXwSshfU5PZW4ixA38A6yz_lSWB53GLuGohE5_rcH4DUWdyCmK1vGyZziMH2b77Xr4ddMnMNMDY5Sq-_bXNm8xwMFe7_ifGGZWKHZw8xDTtQTjcGv0Vb_t96MGrlN52Q”
}
2020-03-29 12:16:02,737:DEBUG:urllib3.connectionpool:“POST /acme/authz-v3/3635693199 HTTP/1.1” 200 798
2020-03-29 12:16:02,738:DEBUG:acme.client:Received response:
HTTP 200
content-length: 798
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:02 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0001qVY_DxAe0DGRwcjvoPU0S8Y8X0qPtg2UP2MGn7kW1dU

{
“identifier”: {
“type”: “dns”,
“value”: “rodgerscompanies.com
},
“status”: “pending”,
“expires”: “2020-04-05T16:16:02Z”,
“challenges”: [
{
“type”: “http-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693199/1EmI7g”,
“token”: “YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk”
},
{
“type”: “dns-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693199/fTwLSg”,
“token”: “YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk”
},
{
“type”: “tls-alpn-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693199/--2Fyg”,
“token”: “YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk”
}
]
}
2020-03-29 12:16:02,739:DEBUG:acme.client:Storing nonce: 0001qVY_DxAe0DGRwcjvoPU0S8Y8X0qPtg2UP2MGn7kW1dU
2020-03-29 12:16:02,740:DEBUG:acme.client:JWS payload:

2020-03-29 12:16:02,743:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693202:
{
“protected”: “eyJub25jZSI6ICIwMDAxcVZZX0R4QWUwREdSd2Nqdm9QVTBTOFk4WDBxUHRnMlVQMk1HbjdrVzFkVSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvMzYzNTY5MzIwMiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC83NTYyMjE0NSIsICJhbGciOiAiUlMyNTYifQ”,
“payload”: “”,
“signature”: “KzqWjBXbRQEqw0xQoAB2PzejCLXLFhwildUzAzTgUpU2nPOFmxVqG0ToLMjlRhiPei58KQ8KXcGwxX8XXDpkDoZQEtDbwVMBFTKEIm2W9ufKJMS7PSo4f8jdRHDqR1M9wq2fCcT97Gz_h3vNCRlIAn1ZcBXDFM5kUS6ckG1ZEMgbugM36P3MSUF-XJewEAqK-exazHg7D6Cfz6omZwqfoyCxLhPj08117SlxYP1Ka4nePmYpt9oPW-FZrtJ_GiT4LgsRgO1Yu-Rf6lBIZMVfSCHGX_Ie4bxP9BxE6q_sH_2_qLM12bszh9cGtfuJSXoejGsVMr60zJKDodlq2tnhHA”
}
2020-03-29 12:16:02,858:DEBUG:urllib3.connectionpool:“POST /acme/authz-v3/3635693202 HTTP/1.1” 200 802
2020-03-29 12:16:02,859:DEBUG:acme.client:Received response:
HTTP 200
content-length: 802
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:02 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 00024PfIboP9yuy0WDsBEedCQqnh14ptIOC8qkPw6UPUrPE

{
“identifier”: {
“type”: “dns”,
“value”: “www.rodgerscompanies.com
},
“status”: “pending”,
“expires”: “2020-04-05T16:16:02Z”,
“challenges”: [
{
“type”: “http-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693202/6ewlZQ”,
“token”: “ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc”
},
{
“type”: “dns-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693202/FmMJXw”,
“token”: “ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc”
},
{
“type”: “tls-alpn-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693202/wpyXcw”,
“token”: “ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc”
}
]
}
2020-03-29 12:16:02,860:DEBUG:acme.client:Storing nonce: 00024PfIboP9yuy0WDsBEedCQqnh14ptIOC8qkPw6UPUrPE
2020-03-29 12:16:02,862:INFO:certbot._internal.auth_handler:Performing the following challenges:
2020-03-29 12:16:02,862:INFO:certbot._internal.auth_handler:http-01 challenge for rodgerscompanies.com
2020-03-29 12:16:02,863:INFO:certbot._internal.auth_handler:http-01 challenge for www.rodgerscompanies.com
2020-03-29 12:16:02,863:INFO:certbot._internal.plugins.webroot:Using the webroot path /home/rodgerscompanies/public_html for all unmatched domains.
2020-03-29 12:16:02,863:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /home/rodgerscompanies/public_html/.well-known/acme-challenge
2020-03-29 12:16:02,864:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /home/rodgerscompanies/public_html/.well-known/acme-challenge
2020-03-29 12:16:02,872:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /home/rodgerscompanies/public_html/.well-known/acme-challenge/YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk
2020-03-29 12:16:02,877:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /home/rodgerscompanies/public_html/.well-known/acme-challenge/ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc
2020-03-29 12:16:02,878:INFO:certbot._internal.auth_handler:Waiting for verification…
2020-03-29 12:16:02,879:DEBUG:acme.client:JWS payload:
{
“type”: “http-01”,
“resource”: “challenge”
}
2020-03-29 12:16:02,881:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693199/1EmI7g:
{
“protected”: “eyJub25jZSI6ICIwMDAyNFBmSWJvUDl5dXkwV0RzQkVlZENRcW5oMTRwdElPQzhxa1B3NlVQVXJQRSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMzYzNTY5MzE5OS8xRW1JN2ciLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzU2MjIxNDUiLCAiYWxnIjogIlJTMjU2In0”,
“payload”: “ewogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9”,
“signature”: “og4CMza6sdB4ycDzh3TAW9nohflH6olzzoFG6b_ZzXcS8tnutlDXAY8WSoJh9Uh-9U8MtpkALAcpFzxxDu1d1J5BnvBFNcXcLnIuElHqNsxwaUmo7ZuFXvg_eWwC7Ea9TvLdHXKUUrkH8GKaiIMNywcD1kWPMfI44rRyLKkhpkhWyzNydrNCrapax0MXvoMrOvtXVTLQVXnU7vX0mVLRFNkRymSBOCr5aUD1Jd8IcY4vHvOqU90u0Lcu_MEOXndEatsr7eAnA8dOZOX5DMEfIYx0sviWe8EOsjKjoa8v2WIu_6wwFH0-Y5yznUs07Angyam-iV7vtMICoPzdjTBxyA”
}
2020-03-29 12:16:03,124:DEBUG:urllib3.connectionpool:“POST /acme/chall-v3/3635693199/1EmI7g HTTP/1.1” 200 185
2020-03-29 12:16:03,125:DEBUG:acme.client:Received response:
HTTP 200
content-length: 185
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”, https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693199;rel=“up”
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693199/1EmI7g
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:03 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 00022DjlJhCZKruDt70Unev79FltceJANmUEETjcFTZylXo

{
“type”: “http-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693199/1EmI7g”,
“token”: “YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk”
}
2020-03-29 12:16:03,126:DEBUG:acme.client:Storing nonce: 00022DjlJhCZKruDt70Unev79FltceJANmUEETjcFTZylXo
2020-03-29 12:16:03,127:DEBUG:acme.client:JWS payload:
{
“type”: “http-01”,
“resource”: “challenge”
}
2020-03-29 12:16:03,130:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693202/6ewlZQ:
{
“protected”: “eyJub25jZSI6ICIwMDAyMkRqbEpoQ1pLcnVEdDcwVW5ldjc5Rmx0Y2VKQU5tVUVFVGpjRlRaeWxYbyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMzYzNTY5MzIwMi82ZXdsWlEiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzU2MjIxNDUiLCAiYWxnIjogIlJTMjU2In0”,
“payload”: “ewogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9”,
“signature”: “fErsWasYscFYyiO6HAjLd64kpGsqAu22GngYy9lZ7DpmbxKrvrS_YgDUtZeGBM4H_x6tAnUUWxuePKh8ZHexDgU34mThIX31kAtG7ukVSJJOkfE1Fco18dfMBcZen-wVHWb2TXgDZ_eoHsKVFvOMS-FBOk-Yho0Gz2JDBEklKB3D0ZE9qd4c6vO9ryToPBGoHcMdZLPLVejiA6idjzPYK2qYBa9Izc99aB865ti8Oz0AP1f49B2URiQ0QUSIvgdgHM-61PYB-YkrlIC9mtnBfN1tCMzCfTdy2OQ6Qppu30xgEn_iGz5xjzOCnxXuUhtYAOl1iWRpTtejUFfhFO7YCg”
}
2020-03-29 12:16:03,447:DEBUG:urllib3.connectionpool:“POST /acme/chall-v3/3635693202/6ewlZQ HTTP/1.1” 200 185
2020-03-29 12:16:03,448:DEBUG:acme.client:Received response:
HTTP 200
content-length: 185
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”, https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693202;rel=“up”
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693202/6ewlZQ
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:03 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0002fq0do-KZn_M9KUAsDbLUPPgU6gJa0nh7hdCHiY2Jgqs

{
“type”: “http-01”,
“status”: “pending”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693202/6ewlZQ”,
“token”: “ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc”
}
2020-03-29 12:16:03,449:DEBUG:acme.client:Storing nonce: 0002fq0do-KZn_M9KUAsDbLUPPgU6gJa0nh7hdCHiY2Jgqs
2020-03-29 12:16:04,451:DEBUG:acme.client:JWS payload:

2020-03-29 12:16:04,455:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693199:
{
“protected”: “eyJub25jZSI6ICIwMDAyZnEwZG8tS1puX005S1VBc0RiTFVQUGdVNmdKYTBuaDdoZENIaVkySmdxcyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvMzYzNTY5MzE5OSIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC83NTYyMjE0NSIsICJhbGciOiAiUlMyNTYifQ”,
“payload”: “”,
“signature”: “ops5qojdwq4Cm_asMpg–s2KmQILPiQxfY8DF4yBvImRgm–jDVr_J3Ef2jW56hxvgi7-SB_gZwQhczDWVA7SW4FkpLVJxv99fOQvy9W5R1wqTl7-1k9labQOp8G_F_a7_MtCVjuYn23sO1VSvK6Jr5272ECxzdvjEjtH-D8DLdQUlm2xzwIW-Z9wZHIEae_cE-XQIF1qWSEZL-dCBPKjEtnw1VyVKVcSaYguWBVAToGGV0SDiZ9GuPjKx0WmY-i2O00PsOq68UzLK2bpNIE1N7pRNOC-bOWuLno3GKPJgGZXcaVb55YDYBoz0d5xPfwhoaFxnFTxh-XF0LpwmD3IQ”
}
2020-03-29 12:16:04,619:DEBUG:urllib3.connectionpool:“POST /acme/authz-v3/3635693199 HTTP/1.1” 200 1061
2020-03-29 12:16:04,620:DEBUG:acme.client:Received response:
HTTP 200
content-length: 1061
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:04 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0002B2bHPqV3p2btCU3eqn4T7AyhrLdd64UTok9_TDfhVNE

{
“identifier”: {
“type”: “dns”,
“value”: “rodgerscompanies.com
},
“status”: “valid”,
“expires”: “2020-04-28T16:16:04Z”,
“challenges”: [
{
“type”: “http-01”,
“status”: “valid”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693199/1EmI7g”,
“token”: “YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk”,
“validationRecord”: [
{
“url”: “http://rodgerscompanies.com/.well-known/acme-challenge/YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk”,
“hostname”: “rodgerscompanies.com”,
“port”: “80”,
“addressesResolved”: [
“159.65.238.168”
],
“addressUsed”: “159.65.238.168”
},
{
“url”: “https://rodgerscompanies.com/.well-known/acme-challenge/YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk”,
“hostname”: “rodgerscompanies.com”,
“port”: “443”,
“addressesResolved”: [
“159.65.238.168”
],
“addressUsed”: “159.65.238.168”
}
]
}
]
}
2020-03-29 12:16:04,621:DEBUG:acme.client:Storing nonce: 0002B2bHPqV3p2btCU3eqn4T7AyhrLdd64UTok9_TDfhVNE
2020-03-29 12:16:04,622:DEBUG:acme.client:JWS payload:

2020-03-29 12:16:04,625:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693202:
{
“protected”: “eyJub25jZSI6ICIwMDAyQjJiSFBxVjNwMmJ0Q1UzZXFuNFQ3QXlockxkZDY0VVRvazlfVERmaFZORSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvMzYzNTY5MzIwMiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC83NTYyMjE0NSIsICJhbGciOiAiUlMyNTYifQ”,
“payload”: “”,
“signature”: “Zvj_NArhMFFdQgQrZen8AUcnttyYhCSENxIysByBfm2SX2t0hb0XgQkg2QfTOhId-kWPHFNneRUfs32OC1GLGlPG-WXOeUsnNyeum079JjoQoh1lJrxO2yh6N0Q5fsaE3hlkIkP6ARsszkzhokL58W_6O4M4PAUPRdCkbJIV123J7Rcj75czlHmqL36B9tVGgQGsbprGtaGM2Pl-iZIvnTFbTy8ZBCfK5hll7iasYFsx7p-3u1ASI_UqxFh00Kk9IWyrb0d5kNGA60ffoznyZ1LNE8wCaGBdE_ksiaNON2f9qg1Faaovkv5YuMmsna391UIEEl344SaZYXtccn7hAA”
}
2020-03-29 12:16:04,771:DEBUG:urllib3.connectionpool:“POST /acme/authz-v3/3635693202 HTTP/1.1” 200 1081
2020-03-29 12:16:04,772:DEBUG:acme.client:Received response:
HTTP 200
content-length: 1081
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:04 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0001TNDPaQh-sj1bKz6rm7Ql8DfoWpAwr0F0nr-izY3ZzNI

{
“identifier”: {
“type”: “dns”,
“value”: “www.rodgerscompanies.com
},
“status”: “valid”,
“expires”: “2020-04-28T16:16:04Z”,
“challenges”: [
{
“type”: “http-01”,
“status”: “valid”,
“url”: “https://acme-v02.api.letsencrypt.org/acme/chall-v3/3635693202/6ewlZQ”,
“token”: “ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc”,
“validationRecord”: [
{
“url”: “http://www.rodgerscompanies.com/.well-known/acme-challenge/ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc”,
“hostname”: “www.rodgerscompanies.com”,
“port”: “80”,
“addressesResolved”: [
“159.65.238.168”
],
“addressUsed”: “159.65.238.168”
},
{
“url”: “https://www.rodgerscompanies.com/.well-known/acme-challenge/ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc”,
“hostname”: “www.rodgerscompanies.com”,
“port”: “443”,
“addressesResolved”: [
“159.65.238.168”
],
“addressUsed”: “159.65.238.168”
}
]
}
]
}
2020-03-29 12:16:04,773:DEBUG:acme.client:Storing nonce: 0001TNDPaQh-sj1bKz6rm7Ql8DfoWpAwr0F0nr-izY3ZzNI
2020-03-29 12:16:04,773:DEBUG:certbot._internal.error_handler:Calling registered functions
2020-03-29 12:16:04,774:INFO:certbot._internal.auth_handler:Cleaning up challenges
2020-03-29 12:16:04,774:DEBUG:certbot._internal.plugins.webroot:Removing /home/rodgerscompanies/public_html/.well-known/acme-challenge/YS3wiqL-5g2oYllaRt51RBLNBPOOWEgJgCkBMuTW-hk
2020-03-29 12:16:04,775:DEBUG:certbot._internal.plugins.webroot:Removing /home/rodgerscompanies/public_html/.well-known/acme-challenge/ICVSFHPHL9KVB6WH0dCUhz-hGj8QSvae2UpsvnElnoc
2020-03-29 12:16:04,776:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up
2020-03-29 12:16:04,776:DEBUG:certbot._internal.client:CSR: CSR(file=’/etc/letsencrypt/csr/0108_csr-certbot.pem’, data=’-----BEGIN CERTIFICATE REQUEST-----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\nWfqCltj8pufP/VzRAUSVl9fRND39t/FT+2BbMmWprUaQ/w+bTA==\n-----END CERTIFICATE REQUEST-----\n’, form=‘pem’)
2020-03-29 12:16:04,777:DEBUG:acme.client:JWS payload:
{
“resource”: “new-cert”,
“csr”: “MIICkTCCAXkCAQIwADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALXiSEDU59ggp7AUw9M3P4uDdO44UUcGsAZqgJK4_S6blRaTETtf2hNJFvfDJyymZVzMHVQpzAkOfmUfwlAwBMcMKEcZU1MNcIL1kO9dGjH1Qi6cjaY154ZmRTuVvRH8DEPbNs32j7SSyJIa5Vo_dNIGs2ASo-GeBMODielQewS8lUZMacxLek5qTbXY5HqbB2EjUuaeZU8BQwhSNzHcYS3CV5tKdNnslcaCIBSf1mSYhd5K80_A1XnR3i2yIUr9a3m5pqUdMUKzuLKL4CU1OFvIyBuz8QbMKWFZPtoBO-5nPESIe5oQuz-8ur89KqiuL4_2n5I4bcOeG_SzD50_30kCAwEAAaBMMEoGCSqGSIb3DQEJDjE9MDswOQYDVR0RBDIwMIIUcm9kZ2Vyc2NvbXBhbmllcy5jb22CGHd3dy5yb2RnZXJzY29tcGFuaWVzLmNvbTANBgkqhkiG9w0BAQsFAAOCAQEAFXWmsaVYc1kuOC0U32glteIktct4BcF3EHnrzpL1aJoGwvrDasbgFQxn58Fl_idcgsWWxpyBoPVtHZ_lIQfKdjUaNtJfb4vaPm8bHpLbF7ue55CoN8xCwr8HBHijNLjzTldwlWJi0vTAp6wRnoORDjBU6vt0h5SmVNiEkcYjExUsohdQjqnIgcy8EmVcI3HM4oV_IoJsAW3OFVjelFBin2S7jbXltzzgR0mpPeQH8aFxFJpfRp91RxE8kzD6KizMbvKJsuGuvkAiUrEfiGy45pZvN9mjjLgOum4EWfqCltj8pufP_VzRAUSVl9fRND39t_FT-2BbMmWprUaQ_w-bTA”
}
2020-03-29 12:16:04,779:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/finalize/75622145/2821729086:
{
“protected”: “eyJub25jZSI6ICIwMDAxVE5EUGFRaC1zajFiS3o2cm03UWw4RGZvV3BBd3IwRjBuci1pelkzWnpOSSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvZmluYWxpemUvNzU2MjIxNDUvMjgyMTcyOTA4NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC83NTYyMjE0NSIsICJhbGciOiAiUlMyNTYifQ”,
“payload”: “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”,
“signature”: “LY-3MOtKwDFSlXQ_MZ75_hOv6MwJSgk-xM8zsYsBNp92bcZVdG7vlzERh6HsbJVrrDuC9vNasg_fBbKvtrsBnpHUrBgb3arKCrsPR4vGU7Ey0GmuQWVfWVJKAE5kicTEWfzEH0hweamILIZn53XcinduIrK2wja1nQK17c309UM5b-EaDsyvCPEwktI6WLOHaUz_6ZAld4jL0WU163huN-IpCHMhzQN53QTuqaou2pLHOhqdQgNOyR04Ro5BytMXaXr25kT1i3g8c-_oQapZsQVFbEOyd6oXyE0SEBsZXzx3QK3EpY8Gbo3sk4RSFciRLSzP50BuwnlRm_r0P4XZBw”
}
2020-03-29 12:16:05,492:DEBUG:urllib3.connectionpool:“POST /acme/finalize/75622145/2821729086 HTTP/1.1” 200 587
2020-03-29 12:16:05,493:DEBUG:acme.client:Received response:
HTTP 200
content-length: 587
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel=“index”
location: https://acme-v02.api.letsencrypt.org/acme/order/75622145/2821729086
boulder-requester: 75622145
date: Sun, 29 Mar 2020 16:16:05 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0002Pqu4LXr1pBdm34PBoWo2XSzkMjube5Uu42UXxOcVG9A

{
“status”: “valid”,
“expires”: “2020-04-05T16:16:02Z”,
“identifiers”: [
{
“type”: “dns”,
“value”: “rodgerscompanies.com
},
{
“type”: “dns”,
“value”: “www.rodgerscompanies.com
}
],
“authorizations”: [
https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693199”,
https://acme-v02.api.letsencrypt.org/acme/authz-v3/3635693202
],
“finalize”: “https://acme-v02.api.letsencrypt.org/acme/finalize/75622145/2821729086”,
“certificate”: “https://acme-v02.api.letsencrypt.org/acme/cert/038163e57ec8e6f610d36d595d42ee9f39e4
}
2020-03-29 12:16:05,493:DEBUG:acme.client:Storing nonce: 0002Pqu4LXr1pBdm34PBoWo2XSzkMjube5Uu42UXxOcVG9A
2020-03-29 12:16:06,495:DEBUG:acme.client:JWS payload:

2020-03-29 12:16:06,497:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/order/75622145/2821729086:
{

truncated due to body limitations

1 Like
2

Hi @gscerb

minimal a restart of your webserver is required, so the new certificate is used.

1 Like
3

I did a manual “certbot”, selected the domain (rodgerscompanies.com), reinstall, and the certificate was successful. https://www.ssllabs.com/ssltest/ immediately recognized the renewal.

Systemd ran a timer renewal for betsyblackconsulting.com and updated the certificate on my server. I rebooted the server. However, https://www.ssllabs.com/ssltest/ did not recognize the renewal but had the old valid from… and valid to… dates.

It seems that “certbot renew” is not working for me.

4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.