Certificate for site expired - acme.sh and Boost.Beast

My domain is: https://dragonosman.dynu.net:5501 (a dynamic DNS, just in case my router resets (happens a lot, for example due to load shedding, but otherwise the IP address doesn't change))

I ran this command:

./acme.sh --renew -d https://dragonosman.dynu.net:5501/

(on WSL)

It produced this output: > [Sun Jun 9 15:39:47 STD 2019] Renew: 'https://dragonosman.dynu.net:5501/'

[Sun Jun 9 15:39:47 STD 2019] 'https://dragonosman.dynu.net:5501/' is not a issued domain, skip.

My web server is (include version): Boost.Beast version 248 (that's how they wrote the macro value; I'm not sure if it's 2.48 or 2.4.8 or something).

The operating system my web server runs on is (include version): Windows 10 Home Single Language, version 10.0.17763.503 (taken from header of Command Prompt window)

My hosting provider, if applicable, is: Just using subdomain name from dynu.net.

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): acme.sh version 2.8.1

My certificate expired, so I tried to renew it manually since I'm not using Ngnix or Apache which could've helped me renew it automatically (if I'm not mistaken).

Try the following command:

./acme.sh --renew -d dragonosman.dynu.net

That doesn’t work either. I still get the exact same error.

The exact same error?

The one I mentioned in the opening post, except for the domain being what I just typed this time.

[Sun Jun  9 16:20:18 STD 2019] Renew: 'dragonosman.dynu.net'
[Sun Jun  9 16:20:18 STD 2019] 'dragonosman.dynu.net' is not a issued domain, skip.

Hi @DragonOsman

if you want to use http-01 validation, you must use the standard domain / port.

But your standard port isn't visible ( https://check-your-website.server-daten.de/?q=dragonosman.dynu.net#url-checks ), only timeouts.

Domainname Http-Status redirect Sec. G
http://dragonosman.dynu.net/
39.48.131.31 -14 10.026 T
Timeout - The operation has timed out
http://www.dragonosman.dynu.net/
39.48.131.31 -14 10.026 T
Timeout - The operation has timed out
https://dragonosman.dynu.net/
39.48.131.31 -14 10.026 T
Timeout - The operation has timed out
https://www.dragonosman.dynu.net/
39.48.131.31 -14 10.030 T
Timeout - The operation has timed out
http://dragonosman.dynu.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
39.48.131.31 -14 10.030 T
Timeout - The operation has timed out
Visible Content:
http://www.dragonosman.dynu.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
39.48.131.31 -14 10.027 T
Timeout - The operation has timed out
Visible Content:

What's the content of your --renew configuration? Is this standalone or is a running webserver required?

I don’t know how to check the --renew configuration.

I guess dns-01 was used with a wrong domain:

Bacuse _acme-challenge.dragonosman.dynu.net.dragonosman.dynu.net exists

Do I have to repeat the domain name like that? Is that a mistake (maybe I messed up when setting this up initially) or is that supposed to happen?

What is the output of:
/acme.sh --list

All I see is:

Main_Domain  KeyLength  SAN_Domains  Created  Renew

There

is your older thread. So you should be able to find your command you have used.

It doesn’t have the command I ran to get the certificate. Should I generate new certs and setup a new cronjob (if that’ll work)?

Update:
I tried to issue it again by running this command:

acme.sh --standalone --issue -d dragonosman.dynu.net -w /mnt/c/inetpub/wwwroot -
-dns dns_dynu --debug

And I got this output:

[Tue Jun 11 16:41:20 STD 2019] Lets find script dir.
[Tue Jun 11 16:41:20 STD 2019] SCRIPT='/mnt/c/Users/Osman/acme.sh/acme.sh'
[Tue Jun 11 16:41:20 STD 2019] _script='/mnt/c/Users/Osman/acme.sh/acme.sh'
[Tue Jun 11 16:41:20 STD 2019] _script_home='/mnt/c/Users/Osman/acme.sh'
[Tue Jun 11 16:41:20 STD 2019] Using default home:/home/osman/.acme.sh
[Tue Jun 11 16:41:20 STD 2019] Using config home:/home/osman/.acme.sh
https://github.com/Neilpang/acme.sh
v2.8.1
[Tue Jun 11 16:41:20 STD 2019] _main_domain='dragonosman.dynu.net'
[Tue Jun 11 16:41:20 STD 2019] _alt_domains='no'
[Tue Jun 11 16:41:20 STD 2019] Using config home:/home/osman/.acme.sh
[Tue Jun 11 16:41:20 STD 2019] ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
[Tue Jun 11 16:41:20 STD 2019] DOMAIN_PATH='/home/osman/.acme.sh/dragonosman.dynu.net'
[Tue Jun 11 16:41:20 STD 2019] Using ACME_DIRECTORY: https://acme-v01.api.letsencrypt.org/directory
[Tue Jun 11 16:41:20 STD 2019] _init api for server: https://acme-v01.api.letsencrypt.org/directory
[Tue Jun 11 16:41:20 STD 2019] GET
[Tue Jun 11 16:41:20 STD 2019] url='https://acme-v01.api.letsencrypt.org/directory'
[Tue Jun 11 16:41:20 STD 2019] timeout=
[Tue Jun 11 16:41:20 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:21 STD 2019] ret='0'
[Tue Jun 11 16:41:21 STD 2019] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt.org/acme/key-change'
[Tue Jun 11 16:41:21 STD 2019] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Jun 11 16:41:21 STD 2019] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt.org/acme/new-cert'
[Tue Jun 11 16:41:21 STD 2019] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencrypt.org/acme/new-reg'
[Tue Jun 11 16:41:21 STD 2019] ACME_REVOKE_CERT='https://acme-v01.api.letsencrypt.org/acme/revoke-cert'
[Tue Jun 11 16:41:21 STD 2019] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Tue Jun 11 16:41:21 STD 2019] ACME_NEW_NONCE
[Tue Jun 11 16:41:21 STD 2019] ACME_VERSION
[Tue Jun 11 16:41:21 STD 2019] Le_NextRenewTime
[Tue Jun 11 16:41:22 STD 2019] _on_before_issue
[Tue Jun 11 16:41:22 STD 2019] _chk_main_domain='dragonosman.dynu.net'
[Tue Jun 11 16:41:22 STD 2019] _chk_alt_domains
[Tue Jun 11 16:41:22 STD 2019] Le_LocalAddress
[Tue Jun 11 16:41:22 STD 2019] d='dragonosman.dynu.net'
[Tue Jun 11 16:41:22 STD 2019] Check for domain='dragonosman.dynu.net'
[Tue Jun 11 16:41:22 STD 2019] _currentRoot='no'
[Tue Jun 11 16:41:22 STD 2019] Standalone mode.
[Tue Jun 11 16:41:22 STD 2019] _checkport='80'
[Tue Jun 11 16:41:22 STD 2019] _checkaddr
[Tue Jun 11 16:41:22 STD 2019] Using: ss
[Tue Jun 11 16:41:22 STD 2019] d
[Tue Jun 11 16:41:22 STD 2019] _saved_account_key_hash is not changed, skip register account.
[Tue Jun 11 16:41:22 STD 2019] Read key length:
[Tue Jun 11 16:41:22 STD 2019] _createcsr
[Tue Jun 11 16:41:22 STD 2019] Single domain='dragonosman.dynu.net'
[Tue Jun 11 16:41:23 STD 2019] Getting domain auth token for each domain
[Tue Jun 11 16:41:23 STD 2019] d='dragonosman.dynu.net'
[Tue Jun 11 16:41:23 STD 2019] Getting webroot for domain='dragonosman.dynu.net'
[Tue Jun 11 16:41:23 STD 2019] _w='no'
[Tue Jun 11 16:41:23 STD 2019] _currentRoot='no'
[Tue Jun 11 16:41:23 STD 2019] Getting new-authz for domain='dragonosman.dynu.net'
[Tue Jun 11 16:41:23 STD 2019] _init api for server: https://acme-v01.api.letsencrypt.org/directory
[Tue Jun 11 16:41:23 STD 2019] Try new-authz for the 0 time.
[Tue Jun 11 16:41:23 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Jun 11 16:41:23 STD 2019] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "dragonosman.dynu.net"}}'
[Tue Jun 11 16:41:23 STD 2019] RSA key
[Tue Jun 11 16:41:23 STD 2019] GET
[Tue Jun 11 16:41:23 STD 2019] url='https://acme-v01.api.letsencrypt.org/directory'
[Tue Jun 11 16:41:23 STD 2019] timeout=
[Tue Jun 11 16:41:23 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:24 STD 2019] ret='0'
[Tue Jun 11 16:41:24 STD 2019] POST
[Tue Jun 11 16:41:24 STD 2019] _post_url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Jun 11 16:41:25 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:26 STD 2019] _ret='0'
[Tue Jun 11 16:41:27 STD 2019] code='201'
[Tue Jun 11 16:41:27 STD 2019] The new-authz request is ok.
[Tue Jun 11 16:41:27 STD 2019] entry='"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550","token":"lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM"'
[Tue Jun 11 16:41:27 STD 2019] token='lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM'
[Tue Jun 11 16:41:27 STD 2019] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:27 STD 2019] keyauthorization='lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk'
[Tue Jun 11 16:41:27 STD 2019] dvlist='dragonosman.dynu.net#lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk#https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550#http-01#no'
[Tue Jun 11 16:41:27 STD 2019] d
[Tue Jun 11 16:41:27 STD 2019] vlist='dragonosman.dynu.net#lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk#https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550#http-01#no,'
[Tue Jun 11 16:41:27 STD 2019] d='dragonosman.dynu.net'
[Tue Jun 11 16:41:27 STD 2019] ok, let's start to verify
[Tue Jun 11 16:41:27 STD 2019] Verifying: dragonosman.dynu.net
[Tue Jun 11 16:41:27 STD 2019] d='dragonosman.dynu.net'
[Tue Jun 11 16:41:27 STD 2019] keyauthorization='lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk'
[Tue Jun 11 16:41:27 STD 2019] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:27 STD 2019] _currentRoot='no'
[Tue Jun 11 16:41:27 STD 2019] Standalone mode server
[Tue Jun 11 16:41:27 STD 2019] content='lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk'
[Tue Jun 11 16:41:27 STD 2019] ncaddr
[Tue Jun 11 16:41:27 STD 2019] startserver: 2299
[Tue Jun 11 16:41:27 STD 2019] Le_HTTPPort='80'
[Tue Jun 11 16:41:27 STD 2019] Le_Listen_V4
[Tue Jun 11 16:41:27 STD 2019] Le_Listen_V6
[Tue Jun 11 16:41:27 STD 2019] _content_len='87'
[Tue Jun 11 16:41:27 STD 2019] _NC='socat TCP-LISTEN:80,crlf,reuseaddr,fork'
2019/06/11 16:41:27 socat[2805] E bind(5, {AF=2 0.0.0.0:80}, 16): Permission denied
[Tue Jun 11 16:41:28 STD 2019] serverproc='2805'
[Tue Jun 11 16:41:28 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:28 STD 2019] payload='{"resource": "challenge", "type": "http-01", "keyAuthorization": "lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk"}'
[Tue Jun 11 16:41:28 STD 2019] POST
[Tue Jun 11 16:41:28 STD 2019] _post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:29 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:30 STD 2019] _ret='0'
[Tue Jun 11 16:41:30 STD 2019] code='202'
[Tue Jun 11 16:41:31 STD 2019] sleep 2 secs to verify
[Tue Jun 11 16:41:33 STD 2019] checking
[Tue Jun 11 16:41:33 STD 2019] GET
[Tue Jun 11 16:41:33 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:33 STD 2019] timeout=
[Tue Jun 11 16:41:33 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:34 STD 2019] ret='0'
[Tue Jun 11 16:41:34 STD 2019] Pending
[Tue Jun 11 16:41:34 STD 2019] sleep 2 secs to verify
[Tue Jun 11 16:41:36 STD 2019] checking
[Tue Jun 11 16:41:36 STD 2019] GET
[Tue Jun 11 16:41:36 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:36 STD 2019] timeout=
[Tue Jun 11 16:41:36 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:37 STD 2019] ret='0'
[Tue Jun 11 16:41:37 STD 2019] Pending
[Tue Jun 11 16:41:37 STD 2019] sleep 2 secs to verify
[Tue Jun 11 16:41:39 STD 2019] checking
[Tue Jun 11 16:41:39 STD 2019] GET
[Tue Jun 11 16:41:39 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:39 STD 2019] timeout=
[Tue Jun 11 16:41:40 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:41 STD 2019] ret='0'
[Tue Jun 11 16:41:41 STD 2019] Pending
[Tue Jun 11 16:41:41 STD 2019] sleep 2 secs to verify
[Tue Jun 11 16:41:43 STD 2019] checking
[Tue Jun 11 16:41:43 STD 2019] GET
[Tue Jun 11 16:41:43 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:43 STD 2019] timeout=
[Tue Jun 11 16:41:43 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:44 STD 2019] ret='0'
[Tue Jun 11 16:41:45 STD 2019] dragonosman.dynu.net:Verify error:Fetching http://dragonosman.dynu.net/.well-known/acme-challenge/lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM: Timeout during connect (likely firewall problem)
[Tue Jun 11 16:41:45 STD 2019] Debug: get token url.
[Tue Jun 11 16:41:45 STD 2019] GET
[Tue Jun 11 16:41:45 STD 2019] url='http://dragonosman.dynu.net/.well-known/acme-challenge/lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM'
[Tue Jun 11 16:41:45 STD 2019] timeout=1
[Tue Jun 11 16:41:45 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g --connect-timeout 1'

HTTP/1.1 404 Not Found Server: micro_httpd Cache-Control: no-cache Date: Tue, 11 Jun 2019 16:41:47 GMT Content-Type: text/html Connection: close 404 Not Found

404 Not Found

File not found.
micro_httpd [Tue Jun 11 16:41:45 STD 2019] ret='0' [Tue Jun 11 16:41:45 STD 2019] Skip for removelevel: [Tue Jun 11 16:41:45 STD 2019] pid='2805' /mnt/c/Users/Osman/acme.sh/acme.sh: 2114: kill: No such process

[Tue Jun 11 16:41:45 STD 2019] No need to restore nginx, skip.
[Tue Jun 11 16:41:45 STD 2019] _clearupdns
[Tue Jun 11 16:41:45 STD 2019] dns_entries
[Tue Jun 11 16:41:45 STD 2019] skip dns.
[Tue Jun 11 16:41:45 STD 2019] _on_issue_err
[Tue Jun 11 16:41:45 STD 2019] Please add '--debug' or '--log' to check more details.
[Tue Jun 11 16:41:45 STD 2019] See: How to debug acme.sh · acmesh-official/acme.sh Wiki · GitHub
[Tue Jun 11 16:41:45 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:45 STD 2019] payload='{"resource": "challenge", "type": "", "keyAuthorization": "lBNMB4p8YnX6JYfeHZM7D1-Roe4Ed2vg_0iFDTkgvGM.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk"}'
[Tue Jun 11 16:41:46 STD 2019] POST
[Tue Jun 11 16:41:46 STD 2019] _post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/PG9Ue6PxVw-JncuQTwmnqekKiG2DXvAXpipVO4lFvHM/16937525550'
[Tue Jun 11 16:41:46 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header -g '
[Tue Jun 11 16:41:47 STD 2019] _ret='0'
[Tue Jun 11 16:41:47 STD 2019] code='400'
[Tue Jun 11 16:41:48 STD 2019] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.0g 2 Nov 2017
apache:
apache doesn't exists.
nginx:
nginx doesn't exists.
socat:
socat by Gerhard Rieger and contributors - see www.dest-unreach.org
Usage:
socat [options]
options:
-V print version and feature information to stdout, and exit
-h|-? print a help text describing command line options and addresses
-hh like -h, plus a list of all common address option names
-hhh like -hh, plus a list of all available address option names
-d increase verbosity (use up to 4 times; 2 are recommended)
-D analyze file descriptors before loop
-ly[facility] log to syslog, using facility (default is daemon)
-lf log to file
-ls log to stderr (default if no other log)
-lm[facility] mixed log mode (stderr during initialization, then syslog)
-lp set the program name used for logging
-lu use microseconds for logging timestamps
-lh add hostname to log messages
-v verbose data traffic, text
-x verbose data traffic, hexadecimal
-b<size_t> set data buffer size (8192)
-s sloppy (continue on error)
-t wait seconds before closing second channel
-T total inactivity timeout in seconds
-u unidirectional mode (left to right)
-U unidirectional mode (right to left)
-g do not check option groups
-L try to obtain lock, or fail
-W try to obtain lock, or wait
-4 prefer IPv4 if version is not explicitly specified
-6 prefer IPv6 if version is not explicitly specified
bi-address:
pipe[,] groups=FD,FIFO
!!

single-address:
[,]
address-head:
abstract-client: groups=FD,SOCKET,RETRY,UNIX
abstract-connect: groups=FD,SOCKET,RETRY,UNIX
abstract-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,UNIX
abstract-recv: groups=FD,SOCKET,RETRY,UNIX
abstract-recvfrom: groups=FD,SOCKET,CHILD,RETRY,UNIX
abstract-sendto: groups=FD,SOCKET,RETRY,UNIX
create: groups=FD,REG,NAMED
exec: groups=FD,FIFO,SOCKET,EXEC,FORK,TERMIOS,PTY,PARENT,UNIX
fd: groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
gopen: groups=FD,FIFO,CHR,BLK,REG,SOCKET,NAMED,OPEN,TERMIOS,UNIX
interface: groups=FD,SOCKET
ip-datagram:: groups=FD,SOCKET,RANGE,IP4,IP6
ip-recv: groups=FD,SOCKET,RANGE,IP4,IP6
ip-recvfrom: groups=FD,SOCKET,CHILD,RANGE,IP4,IP6
ip-sendto:: groups=FD,SOCKET,IP4,IP6
ip4-datagram:: groups=FD,SOCKET,RANGE,IP4
ip4-recv: groups=FD,SOCKET,RANGE,IP4
ip4-recvfrom: groups=FD,SOCKET,CHILD,RANGE,IP4
ip4-sendto:: groups=FD,SOCKET,IP4
ip6-datagram:: groups=FD,SOCKET,RANGE,IP6
ip6-recv: groups=FD,SOCKET,RANGE,IP6
ip6-recvfrom: groups=FD,SOCKET,CHILD,RANGE,IP6
ip6-sendto:: groups=FD,SOCKET,IP6
open: groups=FD,FIFO,CHR,BLK,REG,NAMED,OPEN,TERMIOS
openssl:: groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,OPENSSL
openssl-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,IP6,TCP,OPENSSL
pipe: groups=FD,FIFO,NAMED,OPEN
proxy::: groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,HTTP
pty groups=FD,NAMED,TERMIOS,PTY
sctp-connect:: groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,SCTP
sctp-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,IP6,SCTP
sctp4-connect:: groups=FD,SOCKET,CHILD,RETRY,IP4,SCTP
sctp4-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,SCTP
sctp6-connect:: groups=FD,SOCKET,CHILD,RETRY,IP6,SCTP
sctp6-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP6,SCTP
socket-connect::: groups=FD,SOCKET,CHILD,RETRY
socket-datagram:::: groups=FD,SOCKET,RANGE
socket-listen::: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE
socket-recv:::: groups=FD,SOCKET,RANGE
socket-recvfrom:::: groups=FD,SOCKET,CHILD,RANGE
socket-sendto:::: groups=FD,SOCKET
socks4::: groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,SOCKS4
socks4a::: groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,SOCKS4
stderr groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
stdin groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
stdio groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
stdout groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
system: groups=FD,FIFO,SOCKET,EXEC,FORK,TERMIOS,PTY,PARENT,UNIX
tcp-connect:: groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP
tcp-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,IP6,TCP
tcp4-connect:: groups=FD,SOCKET,CHILD,RETRY,IP4,TCP
tcp4-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,TCP
tcp6-connect:: groups=FD,SOCKET,CHILD,RETRY,IP6,TCP
tcp6-listen: groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP6,TCP
tun[:/] groups=FD,CHR,NAMED,OPEN,INTERFACE
udp-connect:: groups=FD,SOCKET,IP4,IP6,UDP
udp-datagram:: groups=FD,SOCKET,RANGE,IP4,IP6,UDP
udp-listen: groups=FD,SOCKET,LISTEN,CHILD,RANGE,IP4,IP6,UDP
udp-recv: groups=FD,SOCKET,RANGE,IP4,IP6,UDP
udp-recvfrom: groups=FD,SOCKET,CHILD,RANGE,IP4,IP6,UDP
udp-sendto:: groups=FD,SOCKET,IP4,IP6,UDP
udp4-connect:: groups=FD,SOCKET,IP4,UDP
udp4-datagram:: groups=FD,SOCKET,RANGE,IP4,UDP
udp4-listen: groups=FD,SOCKET,LISTEN,CHILD,RANGE,IP4,UDP
udp4-recv: groups=FD,SOCKET,RANGE,IP4,UDP
udp4-recvfrom:: groups=FD,SOCKET,CHILD,RANGE,IP4,UDP
udp4-sendto:: groups=FD,SOCKET,IP4,UDP
udp6-connect:: groups=FD,SOCKET,IP6,UDP
udp6-datagram:: groups=FD,SOCKET,RANGE,IP6,UDP
udp6-listen: groups=FD,SOCKET,LISTEN,CHILD,RANGE,IP6,UDP
udp6-recv: groups=FD,SOCKET,RANGE,IP6,UDP
udp6-recvfrom: groups=FD,SOCKET,CHILD,RANGE,IP6,UDP
udp6-sendto:: groups=FD,SOCKET,IP6,UDP
unix-client: groups=FD,SOCKET,NAMED,RETRY,UNIX
unix-connect: groups=FD,SOCKET,NAMED,RETRY,UNIX
unix-listen: groups=FD,SOCKET,NAMED,LISTEN,CHILD,RETRY,UNIX
unix-recv: groups=FD,SOCKET,NAMED,RETRY,UNIX
unix-recvfrom: groups=FD,SOCKET,NAMED,CHILD,RETRY,UNIX
unix-sendto: groups=FD,SOCKET,NAMED,RETRY,UNIX

My app's root is in a separate place on the same computer. I put the .well-known folder inside C:/inetpub/wwwroot, though, because I heard that's where I should put it. Also, I ran this command in the Linux bash shell using WSL.

@JuergenAuer I’m sorry for pinging you if it’s a bother, but I just gave an update and I’d like some help on it. Thanks.

@mnordhoff @_az Is one of you able to help me right now? Please look at the previous posts I made before this one.

I also want to know how I can get the TXT records again. I’ll try doing the procedure over again.

As written ( Certificate for site expired - acme.sh and Boost.Beast - #6 by JuergenAuer ):

There

you see the same - timeouts. If your server doesn't answer, you can't use http-01 validation.

But I’m trying to use the DNS validation, not the HTTP one. That’s why I passed in the --dns flag. What am I missing here?

Your command has a webroot parameter. And the output says: "Timeout", so you don't use dns-validation, instead you try to use http-01 validation.

Check your command to use the correct parameters.

I ran this command:

acme.sh --renew --standalone -d dragonosman.dynu.net --dns dns_dynu --debug

And got this result:

[Sat Jun 15 18:31:19 STD 2019] Lets find script dir.
[Sat Jun 15 18:31:19 STD 2019] _SCRIPT_='/mnt/c/Users/Osman/acme.sh/acme.sh'
[Sat Jun 15 18:31:20 STD 2019] _script='/mnt/c/Users/Osman/acme.sh/acme.sh'
[Sat Jun 15 18:31:20 STD 2019] _script_home='/mnt/c/Users/Osman/acme.sh'
[Sat Jun 15 18:31:20 STD 2019] Using default home:/home/osman/.acme.sh
[Sat Jun 15 18:31:20 STD 2019] Using config home:/home/osman/.acme.sh
https://github.com/Neilpang/acme.sh
v2.8.1
[Sat Jun 15 18:31:20 STD 2019] Using config home:/home/osman/.acme.sh
[Sat Jun 15 18:31:20 STD 2019] ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
[Sat Jun 15 18:31:21 STD 2019] DOMAIN_PATH='/home/osman/.acme.sh/dragonosman.dynu.net'
[Sat Jun 15 18:31:21 STD 2019] Renew: 'dragonosman.dynu.net'
[Sat Jun 15 18:31:21 STD 2019] Le_API='https://acme-v01.api.letsencrypt.org/directory'
[Sat Jun 15 18:31:21 STD 2019] Using config home:/home/osman/.acme.sh
[Sat Jun 15 18:31:21 STD 2019] ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
[Sat Jun 15 18:31:22 STD 2019] _main_domain='dragonosman.dynu.net'
[Sat Jun 15 18:31:22 STD 2019] _alt_domains='no'
[Sat Jun 15 18:31:22 STD 2019] Using ACME_DIRECTORY: https://acme-v01.api.letsencrypt.org/directory
[Sat Jun 15 18:31:22 STD 2019] _init api for server: https://acme-v01.api.letsencrypt.org/directory
[Sat Jun 15 18:31:22 STD 2019] GET
[Sat Jun 15 18:31:22 STD 2019] url='https://acme-v01.api.letsencrypt.org/directory'
[Sat Jun 15 18:31:22 STD 2019] timeout=
[Sat Jun 15 18:31:23 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:24 STD 2019] ret='0'
[Sat Jun 15 18:31:25 STD 2019] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt.org/acme/key-change'
[Sat Jun 15 18:31:25 STD 2019] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Sat Jun 15 18:31:25 STD 2019] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt.org/acme/new-cert'
[Sat Jun 15 18:31:25 STD 2019] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencrypt.org/acme/new-reg'
[Sat Jun 15 18:31:25 STD 2019] ACME_REVOKE_CERT='https://acme-v01.api.letsencrypt.org/acme/revoke-cert'
[Sat Jun 15 18:31:25 STD 2019] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Sat Jun 15 18:31:25 STD 2019] ACME_NEW_NONCE
[Sat Jun 15 18:31:25 STD 2019] ACME_VERSION
[Sat Jun 15 18:31:25 STD 2019] Le_NextRenewTime
[Sat Jun 15 18:31:25 STD 2019] _on_before_issue
[Sat Jun 15 18:31:25 STD 2019] _chk_main_domain='dragonosman.dynu.net'
[Sat Jun 15 18:31:25 STD 2019] _chk_alt_domains
[Sat Jun 15 18:31:25 STD 2019] Le_LocalAddress
[Sat Jun 15 18:31:25 STD 2019] d='dragonosman.dynu.net'
[Sat Jun 15 18:31:25 STD 2019] Check for domain='dragonosman.dynu.net'
[Sat Jun 15 18:31:25 STD 2019] _currentRoot='no'
[Sat Jun 15 18:31:25 STD 2019] Standalone mode.
[Sat Jun 15 18:31:25 STD 2019] _checkport='80'
[Sat Jun 15 18:31:25 STD 2019] _checkaddr
[Sat Jun 15 18:31:26 STD 2019] Using: ss
[Sat Jun 15 18:31:26 STD 2019] d
[Sat Jun 15 18:31:26 STD 2019] _saved_account_key_hash is not changed, skip register account.
[Sat Jun 15 18:31:26 STD 2019] Read key length:
[Sat Jun 15 18:31:26 STD 2019] _createcsr
[Sat Jun 15 18:31:26 STD 2019] Single domain='dragonosman.dynu.net'
[Sat Jun 15 18:31:26 STD 2019] Getting domain auth token for each domain
[Sat Jun 15 18:31:26 STD 2019] d='dragonosman.dynu.net'
[Sat Jun 15 18:31:26 STD 2019] Getting webroot for domain='dragonosman.dynu.net'
[Sat Jun 15 18:31:26 STD 2019] _w='no'
[Sat Jun 15 18:31:26 STD 2019] _currentRoot='no'
[Sat Jun 15 18:31:26 STD 2019] Getting new-authz for domain='dragonosman.dynu.net'
[Sat Jun 15 18:31:26 STD 2019] _init api for server: https://acme-v01.api.letsencrypt.org/directory
[Sat Jun 15 18:31:26 STD 2019] Try new-authz for the 0 time.
[Sat Jun 15 18:31:26 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Sat Jun 15 18:31:26 STD 2019] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "dragonosman.dynu.net"}}'
[Sat Jun 15 18:31:26 STD 2019] RSA key
[Sat Jun 15 18:31:26 STD 2019] GET
[Sat Jun 15 18:31:26 STD 2019] url='https://acme-v01.api.letsencrypt.org/directory'
[Sat Jun 15 18:31:26 STD 2019] timeout=
[Sat Jun 15 18:31:26 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:28 STD 2019] ret='0'
[Sat Jun 15 18:31:28 STD 2019] POST
[Sat Jun 15 18:31:28 STD 2019] _post_url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Sat Jun 15 18:31:28 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:30 STD 2019] _ret='0'
[Sat Jun 15 18:31:30 STD 2019] code='201'
[Sat Jun 15 18:31:30 STD 2019] The new-authz request is ok.
[Sat Jun 15 18:31:30 STD 2019] entry='"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139","token":"ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0"'
[Sat Jun 15 18:31:30 STD 2019] token='ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0'
[Sat Jun 15 18:31:30 STD 2019] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:30 STD 2019] keyauthorization='ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk'
[Sat Jun 15 18:31:30 STD 2019] dvlist='dragonosman.dynu.net#ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk#https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139#http-01#no'
[Sat Jun 15 18:31:30 STD 2019] d
[Sat Jun 15 18:31:30 STD 2019] vlist='dragonosman.dynu.net#ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk#https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139#http-01#no,'
[Sat Jun 15 18:31:30 STD 2019] d='dragonosman.dynu.net'
[Sat Jun 15 18:31:30 STD 2019] ok, let's start to verify
[Sat Jun 15 18:31:31 STD 2019] Verifying: dragonosman.dynu.net
[Sat Jun 15 18:31:31 STD 2019] d='dragonosman.dynu.net'
[Sat Jun 15 18:31:31 STD 2019] keyauthorization='ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk'
[Sat Jun 15 18:31:31 STD 2019] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:31 STD 2019] _currentRoot='no'
[Sat Jun 15 18:31:31 STD 2019] Standalone mode server
[Sat Jun 15 18:31:31 STD 2019] content='ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk'
[Sat Jun 15 18:31:31 STD 2019] ncaddr
[Sat Jun 15 18:31:31 STD 2019] startserver: 22
[Sat Jun 15 18:31:31 STD 2019] Le_HTTPPort='80'
[Sat Jun 15 18:31:31 STD 2019] Le_Listen_V4
[Sat Jun 15 18:31:31 STD 2019] Le_Listen_V6
[Sat Jun 15 18:31:31 STD 2019] _content_len='87'
[Sat Jun 15 18:31:31 STD 2019] _NC='socat TCP-LISTEN:80,crlf,reuseaddr,fork'
2019/06/15 18:31:31 socat[537] E bind(5, {AF=2 0.0.0.0:80}, 16): Permission denied
[Sat Jun 15 18:31:32 STD 2019] serverproc='537'
[Sat Jun 15 18:31:32 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:32 STD 2019] payload='{"resource": "challenge", "type": "http-01", "keyAuthorization": "ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk"}'
[Sat Jun 15 18:31:32 STD 2019] POST
[Sat Jun 15 18:31:32 STD 2019] _post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:32 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:39 STD 2019] _ret='0'
[Sat Jun 15 18:31:39 STD 2019] code='202'
[Sat Jun 15 18:31:39 STD 2019] sleep 2 secs to verify
[Sat Jun 15 18:31:41 STD 2019] checking
[Sat Jun 15 18:31:41 STD 2019] GET
[Sat Jun 15 18:31:41 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:41 STD 2019] timeout=
[Sat Jun 15 18:31:42 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:42 STD 2019] ret='0'
[Sat Jun 15 18:31:43 STD 2019] Pending
[Sat Jun 15 18:31:43 STD 2019] sleep 2 secs to verify
[Sat Jun 15 18:31:45 STD 2019] checking
[Sat Jun 15 18:31:45 STD 2019] GET
[Sat Jun 15 18:31:45 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:45 STD 2019] timeout=
[Sat Jun 15 18:31:45 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:46 STD 2019] ret='0'
[Sat Jun 15 18:31:46 STD 2019] Pending
[Sat Jun 15 18:31:46 STD 2019] sleep 2 secs to verify
[Sat Jun 15 18:31:48 STD 2019] checking
[Sat Jun 15 18:31:48 STD 2019] GET
[Sat Jun 15 18:31:48 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:48 STD 2019] timeout=
[Sat Jun 15 18:31:48 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:49 STD 2019] ret='0'
[Sat Jun 15 18:31:49 STD 2019] Pending
[Sat Jun 15 18:31:49 STD 2019] sleep 2 secs to verify
[Sat Jun 15 18:31:51 STD 2019] checking
[Sat Jun 15 18:31:51 STD 2019] GET
[Sat Jun 15 18:31:51 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:51 STD 2019] timeout=
[Sat Jun 15 18:31:51 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:52 STD 2019] ret='0'
[Sat Jun 15 18:31:52 STD 2019] dragonosman.dynu.net:Verify error:Fetching http://dragonosman.dynu.net/.well-known/acme-challenge/ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0: Timeout during connect (likely firewall problem)
[Sat Jun 15 18:31:52 STD 2019] Debug: get token url.
[Sat Jun 15 18:31:52 STD 2019] GET
[Sat Jun 15 18:31:52 STD 2019] url='http://dragonosman.dynu.net/.well-known/acme-challenge/ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0'
[Sat Jun 15 18:31:52 STD 2019] timeout=1
[Sat Jun 15 18:31:52 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g  --connect-timeout 1'
<html><head><script language='javascript'>
parent.location='login.html'
</script></head><body></body></html>HTTP/1.1 404 Not Found
Server: micro_httpd
Cache-Control: no-cache
Date: Sat, 15 Jun 2019 18:31:54 GMT
Content-Type: text/html
Connection: close

<HTML><HEAD><TITLE>404 Not Found</TITLE></HEAD>
<BODY BGCOLOR="#cc9999"><H4>404 Not Found</H4>
File not found.
<HR>
<ADDRESS><A HREF="http://www.acme.com/software/micro_httpd/">micro_httpd</A></ADDRESS>
</BODY></HTML>
[Sat Jun 15 18:31:53 STD 2019] ret='0'
[Sat Jun 15 18:31:53 STD 2019] Skip for removelevel:
[Sat Jun 15 18:31:53 STD 2019] pid='537'
/mnt/c/Users/Osman/acme.sh/acme.sh: 2114: kill: No such process

[Sat Jun 15 18:31:53 STD 2019] No need to restore nginx, skip.
[Sat Jun 15 18:31:53 STD 2019] _clearupdns
[Sat Jun 15 18:31:53 STD 2019] dns_entries
[Sat Jun 15 18:31:53 STD 2019] skip dns.
[Sat Jun 15 18:31:53 STD 2019] _on_issue_err
[Sat Jun 15 18:31:53 STD 2019] Please add '--debug' or '--log' to check more details.
[Sat Jun 15 18:31:53 STD 2019] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh
[Sat Jun 15 18:31:53 STD 2019] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:53 STD 2019] payload='{"resource": "challenge", "type": "", "keyAuthorization": "ATDEybvL1txhJYACcD8dFZlc1tA8ILCGFI8b0t8SSm0.5pNh6OaO0_wXH-sDCEAJauqu7GIQu3epS31RM9mgIuk"}'
[Sat Jun 15 18:31:53 STD 2019] POST
[Sat Jun 15 18:31:53 STD 2019] _post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/Jpyyb5wCjNnZsLxvyjFUrlyB6mF0Aq53hb2F4PAc-Nc/17105589139'
[Sat Jun 15 18:31:53 STD 2019] _CURL='curl -L --silent --dump-header /home/osman/.acme.sh/http.header  -g '
[Sat Jun 15 18:31:55 STD 2019] _ret='0'
[Sat Jun 15 18:31:55 STD 2019] code='400'
[Sat Jun 15 18:31:55 STD 2019] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.0g  2 Nov 2017
apache:
apache doesn't exists.
nginx:
nginx doesn't exists.
socat:
socat by Gerhard Rieger and contributors - see www.dest-unreach.org
Usage:
socat [options] <bi-address> <bi-address>
   options:
      -V     print version and feature information to stdout, and exit
      -h|-?  print a help text describing command line options and addresses
      -hh    like -h, plus a list of all common address option names
      -hhh   like -hh, plus a list of all available address option names
      -d     increase verbosity (use up to 4 times; 2 are recommended)
      -D     analyze file descriptors before loop
      -ly[facility]  log to syslog, using facility (default is daemon)
      -lf<logfile>   log to file
      -ls            log to stderr (default if no other log)
      -lm[facility]  mixed log mode (stderr during initialization, then syslog)
      -lp<progname>  set the program name used for logging
      -lu            use microseconds for logging timestamps
      -lh            add hostname to log messages
      -v     verbose data traffic, text
      -x     verbose data traffic, hexadecimal
      -b<size_t>     set data buffer size (8192)
      -s     sloppy (continue on error)
      -t<timeout>    wait seconds before closing second channel
      -T<timeout>    total inactivity timeout in seconds
      -u     unidirectional mode (left to right)
      -U     unidirectional mode (right to left)
      -g     do not check option groups
      -L <lockfile>  try to obtain lock, or fail
      -W <lockfile>  try to obtain lock, or wait
      -4     prefer IPv4 if version is not explicitly specified
      -6     prefer IPv6 if version is not explicitly specified
   bi-address:
      pipe[,<opts>]     groups=FD,FIFO
      <single-address>!!<single-address>
      <single-address>
   single-address:
      <address-head>[,<opts>]
   address-head:
      abstract-client:<filename>        groups=FD,SOCKET,RETRY,UNIX
      abstract-connect:<filename>       groups=FD,SOCKET,RETRY,UNIX
      abstract-listen:<filename>        groups=FD,SOCKET,LISTEN,CHILD,RETRY,UNIX
      abstract-recv:<filename>  groups=FD,SOCKET,RETRY,UNIX
      abstract-recvfrom:<filename>      groups=FD,SOCKET,CHILD,RETRY,UNIX
      abstract-sendto:<filename>        groups=FD,SOCKET,RETRY,UNIX
      create:<filename> groups=FD,REG,NAMED
      exec:<command-line>       groups=FD,FIFO,SOCKET,EXEC,FORK,TERMIOS,PTY,PARENT,UNIX
      fd:<num>  groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
      gopen:<filename>  groups=FD,FIFO,CHR,BLK,REG,SOCKET,NAMED,OPEN,TERMIOS,UNIX
      interface:<interface>     groups=FD,SOCKET
      ip-datagram:<host>:<protocol>     groups=FD,SOCKET,RANGE,IP4,IP6
      ip-recv:<protocol>        groups=FD,SOCKET,RANGE,IP4,IP6
      ip-recvfrom:<protocol>    groups=FD,SOCKET,CHILD,RANGE,IP4,IP6
      ip-sendto:<host>:<protocol>       groups=FD,SOCKET,IP4,IP6
      ip4-datagram:<host>:<protocol>    groups=FD,SOCKET,RANGE,IP4
      ip4-recv:<protocol>       groups=FD,SOCKET,RANGE,IP4
      ip4-recvfrom:<protocol>   groups=FD,SOCKET,CHILD,RANGE,IP4
      ip4-sendto:<host>:<protocol>      groups=FD,SOCKET,IP4
      ip6-datagram:<host>:<protocol>    groups=FD,SOCKET,RANGE,IP6
      ip6-recv:<protocol>       groups=FD,SOCKET,RANGE,IP6
      ip6-recvfrom:<protocol>   groups=FD,SOCKET,CHILD,RANGE,IP6
      ip6-sendto:<host>:<protocol>      groups=FD,SOCKET,IP6
      open:<filename>   groups=FD,FIFO,CHR,BLK,REG,NAMED,OPEN,TERMIOS
      openssl:<host>:<port>     groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,OPENSSL
      openssl-listen:<port>     groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,IP6,TCP,OPENSSL
      pipe:<filename>   groups=FD,FIFO,NAMED,OPEN
      proxy:<proxy-server>:<host>:<port>        groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,HTTP
      pty       groups=FD,NAMED,TERMIOS,PTY
      sctp-connect:<host>:<port>        groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,SCTP
      sctp-listen:<port>        groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,IP6,SCTP
      sctp4-connect:<host>:<port>       groups=FD,SOCKET,CHILD,RETRY,IP4,SCTP
      sctp4-listen:<port>       groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,SCTP
      sctp6-connect:<host>:<port>       groups=FD,SOCKET,CHILD,RETRY,IP6,SCTP
      sctp6-listen:<port>       groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP6,SCTP
      socket-connect:<domain>:<protocol>:<remote-address>       groups=FD,SOCKET,CHILD,RETRY
      socket-datagram:<domain>:<type>:<protocol>:<remote-address>       groups=FD,SOCKET,RANGE
      socket-listen:<domain>:<protocol>:<local-address> groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE
      socket-recv:<domain>:<type>:<protocol>:<local-address>    groups=FD,SOCKET,RANGE
      socket-recvfrom:<domain>:<type>:<protocol>:<local-address>        groups=FD,SOCKET,CHILD,RANGE
      socket-sendto:<domain>:<type>:<protocol>:<remote-address> groups=FD,SOCKET
      socks4:<socks-server>:<host>:<port>       groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,SOCKS4
      socks4a:<socks-server>:<host>:<port>      groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP,SOCKS4
      stderr    groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
      stdin     groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
      stdio     groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
      stdout    groups=FD,FIFO,CHR,BLK,REG,SOCKET,TERMIOS,UNIX,IP4,IP6,UDP,TCP,SCTP
      system:<shell-command>    groups=FD,FIFO,SOCKET,EXEC,FORK,TERMIOS,PTY,PARENT,UNIX
      tcp-connect:<host>:<port> groups=FD,SOCKET,CHILD,RETRY,IP4,IP6,TCP
      tcp-listen:<port> groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,IP6,TCP
      tcp4-connect:<host>:<port>        groups=FD,SOCKET,CHILD,RETRY,IP4,TCP
      tcp4-listen:<port>        groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP4,TCP
      tcp6-connect:<host>:<port>        groups=FD,SOCKET,CHILD,RETRY,IP6,TCP
      tcp6-listen:<port>        groups=FD,SOCKET,LISTEN,CHILD,RETRY,RANGE,IP6,TCP
      tun[:<ip-addr>/<bits>]    groups=FD,CHR,NAMED,OPEN,INTERFACE
      udp-connect:<host>:<port> groups=FD,SOCKET,IP4,IP6,UDP
      udp-datagram:<host>:<port>        groups=FD,SOCKET,RANGE,IP4,IP6,UDP
      udp-listen:<port> groups=FD,SOCKET,LISTEN,CHILD,RANGE,IP4,IP6,UDP
      udp-recv:<port>   groups=FD,SOCKET,RANGE,IP4,IP6,UDP
      udp-recvfrom:<port>       groups=FD,SOCKET,CHILD,RANGE,IP4,IP6,UDP
      udp-sendto:<host>:<port>  groups=FD,SOCKET,IP4,IP6,UDP
      udp4-connect:<host>:<port>        groups=FD,SOCKET,IP4,UDP
      udp4-datagram:<remote-address>:<port>     groups=FD,SOCKET,RANGE,IP4,UDP
      udp4-listen:<port>        groups=FD,SOCKET,LISTEN,CHILD,RANGE,IP4,UDP
      udp4-recv:<port>  groups=FD,SOCKET,RANGE,IP4,UDP
      udp4-recvfrom:<host>:<port>       groups=FD,SOCKET,CHILD,RANGE,IP4,UDP
      udp4-sendto:<host>:<port> groups=FD,SOCKET,IP4,UDP
      udp6-connect:<host>:<port>        groups=FD,SOCKET,IP6,UDP
      udp6-datagram:<host>:<port>       groups=FD,SOCKET,RANGE,IP6,UDP
      udp6-listen:<port>        groups=FD,SOCKET,LISTEN,CHILD,RANGE,IP6,UDP
      udp6-recv:<port>  groups=FD,SOCKET,RANGE,IP6,UDP
      udp6-recvfrom:<port>      groups=FD,SOCKET,CHILD,RANGE,IP6,UDP
      udp6-sendto:<host>:<port> groups=FD,SOCKET,IP6,UDP
      unix-client:<filename>    groups=FD,SOCKET,NAMED,RETRY,UNIX
      unix-connect:<filename>   groups=FD,SOCKET,NAMED,RETRY,UNIX
      unix-listen:<filename>    groups=FD,SOCKET,NAMED,LISTEN,CHILD,RETRY,UNIX
      unix-recv:<filename>      groups=FD,SOCKET,NAMED,RETRY,UNIX
      unix-recvfrom:<filename>  groups=FD,SOCKET,NAMED,CHILD,RETRY,UNIX
      unix-sendto:<filename>    groups=FD,SOCKET,NAMED,RETRY,UNIX

It’s still getting a timeout trying to make an HTTP request. What do I do now?