My domain is: shortgrass.ca
I ran this command: certbot run -v
It produced this output:
root@ModX:/var/log/letsencrypt# certbot run -v
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Which names would you like to activate HTTPS for?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: shortgdev.ca
2: alcoma.shortgdev.ca
3: bassano.shortgdev.ca
4: bowisland.shortgdev.ca
5: brooks.shortgdev.ca
6: duchess.shortgdev.ca
7: foremost.shortgdev.ca
8: gem.shortgdev.ca
9: graham.shortgdev.ca
10: irvine.shortgdev.ca
11: mhpl.shortgdev.ca
12: redcliff.shortgdev.ca
13: rollinghills.shortgdev.ca
14: rosemary.shortgdev.ca
15: tilley.shortgdev.ca
16: www.shortgdev.ca
17: shortgrass.ca
18: alcoma.shortgrass.ca
19: bassano.shortgrass.ca
20: bowisland.shortgrass.ca
21: brooks.shortgrass.ca
22: duchess.shortgrass.ca
23: foremost.shortgrass.ca
24: gem.shortgrass.ca
25: graham.shortgrass.ca
26: irvine.shortgrass.ca
27: mhpl.shortgrass.ca
28: redcliff.shortgrass.ca
29: rollinghills.shortgrass.ca
30: rosemary.shortgrass.ca
31: tilley.shortgrass.ca
32: www.shortgrass.ca
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel):
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
You have an existing certificate that contains a portion of the domains you
requested (ref: /etc/letsencrypt/renewal/shortgrass.ca.conf)
It contains these names: shortgrass.ca, alcoma.shortgrass.ca,
bassano.shortgrass.ca, bowisland.shortgrass.ca, brooks.shortgrass.ca,
duchess.shortgrass.ca, foremost.shortgrass.ca, gem.shortgrass.ca,
graham.shortgrass.ca, irvine.shortgrass.ca, mhpl.shortgrass.ca,
redcliff.shortgrass.ca, rollinghills.shortgrass.ca, rosemary.shortgrass.ca,
tilley.shortgrass.ca, www.shortgrass.ca
You requested these names for the new certificate: shortgdev.ca,
alcoma.shortgdev.ca, bassano.shortgdev.ca, bowisland.shortgdev.ca,
brooks.shortgdev.ca, duchess.shortgdev.ca, foremost.shortgdev.ca,
gem.shortgdev.ca, graham.shortgdev.ca, irvine.shortgdev.ca, mhpl.shortgdev.ca,
redcliff.shortgdev.ca, rollinghills.shortgdev.ca, rosemary.shortgdev.ca,
tilley.shortgdev.ca, www.shortgdev.ca, shortgrass.ca, alcoma.shortgrass.ca,
bassano.shortgrass.ca, bowisland.shortgrass.ca, brooks.shortgrass.ca,
duchess.shortgrass.ca, foremost.shortgrass.ca, gem.shortgrass.ca,
graham.shortgrass.ca, irvine.shortgrass.ca, mhpl.shortgrass.ca,
redcliff.shortgrass.ca, rollinghills.shortgrass.ca, rosemary.shortgrass.ca,
tilley.shortgrass.ca, www.shortgrass.ca.
Do you want to expand and replace this existing certificate with the new
certificate?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(E)xpand/(C)ancel: E
Renewing an existing certificate for shortgdev.ca and 31 more domains
Performing the following challenges:
http-01 challenge for alcoma.shortgdev.ca
http-01 challenge for bassano.shortgdev.ca
http-01 challenge for bassano.shortgrass.ca
http-01 challenge for bowisland.shortgdev.ca
http-01 challenge for brooks.shortgdev.ca
http-01 challenge for duchess.shortgdev.ca
http-01 challenge for duchess.shortgrass.ca
http-01 challenge for foremost.shortgdev.ca
http-01 challenge for gem.shortgdev.ca
http-01 challenge for graham.shortgdev.ca
http-01 challenge for irvine.shortgdev.ca
http-01 challenge for mhpl.shortgdev.ca
http-01 challenge for redcliff.shortgdev.ca
http-01 challenge for rollinghills.shortgdev.ca
http-01 challenge for rosemary.shortgdev.ca
http-01 challenge for shortgdev.ca
http-01 challenge for shortgrass.ca
http-01 challenge for tilley.shortgdev.ca
http-01 challenge for www.shortgdev.ca
Waiting for verification...
Challenge failed for domain alcoma.shortgdev.ca
Challenge failed for domain bassano.shortgdev.ca
Challenge failed for domain bowisland.shortgdev.ca
Challenge failed for domain brooks.shortgdev.ca
Challenge failed for domain duchess.shortgdev.ca
Challenge failed for domain foremost.shortgdev.ca
Challenge failed for domain gem.shortgdev.ca
Challenge failed for domain graham.shortgdev.ca
Challenge failed for domain irvine.shortgdev.ca
Challenge failed for domain mhpl.shortgdev.ca
Challenge failed for domain redcliff.shortgdev.ca
Challenge failed for domain rollinghills.shortgdev.ca
Challenge failed for domain rosemary.shortgdev.ca
Challenge failed for domain shortgdev.ca
Challenge failed for domain tilley.shortgdev.ca
Challenge failed for domain www.shortgdev.ca
Challenge failed for domain bassano.shortgrass.ca
Challenge failed for domain duchess.shortgrass.ca
Challenge failed for domain shortgrass.ca
http-01 challenge for alcoma.shortgdev.ca
http-01 challenge for bassano.shortgdev.ca
http-01 challenge for bowisland.shortgdev.ca
http-01 challenge for brooks.shortgdev.ca
http-01 challenge for duchess.shortgdev.ca
http-01 challenge for foremost.shortgdev.ca
http-01 challenge for gem.shortgdev.ca
http-01 challenge for graham.shortgdev.ca
http-01 challenge for irvine.shortgdev.ca
http-01 challenge for mhpl.shortgdev.ca
http-01 challenge for redcliff.shortgdev.ca
http-01 challenge for rollinghills.shortgdev.ca
http-01 challenge for rosemary.shortgdev.ca
http-01 challenge for shortgdev.ca
http-01 challenge for tilley.shortgdev.ca
http-01 challenge for www.shortgdev.ca
http-01 challenge for bassano.shortgrass.ca
http-01 challenge for duchess.shortgrass.ca
http-01 challenge for shortgrass.ca
Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: bassano.shortgrass.ca
Type: connection
Detail: During secondary validation: Fetching http://bassano.shortgrass.ca/.well-known/acme-challenge/o3PeHWUVj85_6avnQix6ABHfCPrmIypcIapS9brDUcI: Connection reset by peer
Domain: duchess.shortgrass.ca
Type: connection
Detail: Fetching http://duchess.shortgrass.ca/.well-known/acme-challenge/hcfgStBEOJHihKh-P2biXkuyULv_46xvwA589l3XZcc: Connection reset by peer
Domain: shortgrass.ca
Type: connection
Detail: During secondary validation: Fetching http://shortgrass.ca/.well-known/acme-challenge/U6ASk-GSINi_kMHnEzjbOzVnZAGQbGJwS0a2UJOZBLg: Connection reset by peer
Domain: alcoma.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for alcoma.shortgdev.ca - check that a DNS record exists for this domain
Domain: bassano.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for bassano.shortgdev.ca - check that a DNS record exists for this domain
Domain: bowisland.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for bowisland.shortgdev.ca - check that a DNS record exists for this domain
Domain: brooks.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for brooks.shortgdev.ca - check that a DNS record exists for this domain
Domain: duchess.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for duchess.shortgdev.ca - check that a DNS record exists for this domain
Domain: foremost.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for foremost.shortgdev.ca - check that a DNS record exists for this domain
Domain: gem.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for gem.shortgdev.ca - check that a DNS record exists for this domain
Domain: graham.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for graham.shortgdev.ca - check that a DNS record exists for this domain
Domain: irvine.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for irvine.shortgdev.ca - check that a DNS record exists for this domain
Domain: mhpl.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for mhpl.shortgdev.ca - check that a DNS record exists for this domain
Domain: redcliff.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for redcliff.shortgdev.ca - check that a DNS record exists for this domain
Domain: rollinghills.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for rollinghills.shortgdev.ca - check that a DNS record exists for this domain
Domain: rosemary.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for rosemary.shortgdev.ca - check that a DNS record exists for this domain
Domain: shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for shortgdev.ca - check that a DNS record exists for this domain
Domain: tilley.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for tilley.shortgdev.ca - check that a DNS record exists for this domain
Domain: www.shortgdev.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for www.shortgdev.ca - check that a DNS record exists for this domain
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.
Cleaning up challenges
Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
My web server is (include version): Apache2
The operating system my web server runs on is (include version): Ubuntu 16.04.7 LTS (GNU/Linux 4.4.0-62-generic x86_64)
I can login to a root shell on my machine (yes or no, or I don't know): Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 1.20.0