Go lang client cannot obtain Let's Encrypt certificate

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

https://mst.benhi.cn

I ran this command:

go lang client

It produced this output:

2023/05/08 15:57:53 http: TLS handshake error from 3.112.193.254:15159: acme/autocert: unable to satisfy "https://acme-v02.api.letsencrypt.org/acme/authz-v3/225972996777" for domain "mst.benhi.cn": no viable challenge type found
2023/05/08 15:57:53 http: TLS handshake error from 3.112.193.254:26083: acme/autocert: missing certificate
2023/05/08 15:57:53 http: TLS handshake error from 3.112.193.254:23697: acme/autocert: missing certificate
2023/05/08 15:57:54 http: TLS handshake error from 3.112.193.254:3651: acme/autocert: missing certificate
2023/05/08 15:57:54 http: TLS handshake error from 3.112.193.254:24765: acme/autocert: missing certificate
2023/05/08 15:57:54 http: TLS handshake error from 3.112.193.254:20885: acme/autocert: missing certificate

https://acme-v02.api.letsencrypt.org/acme/authz-v3/225972996777

{
"identifier": {
"type": "dns",
"value": "mst.benhi.cn"
},
"status": "deactivated",
"expires": "2023-05-15T07:57:58Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/225972996777/lvFnEw",
"token": "0LwSjnpxvImVCVlU0UOxd9VqOMj4JLc7BBZgNUnpveI"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/225972996777/IBG9yA",
"token": "0LwSjnpxvImVCVlU0UOxd9VqOMj4JLc7BBZgNUnpveI"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/225972996777/CE9vSw",
"token": "0LwSjnpxvImVCVlU0UOxd9VqOMj4JLc7BBZgNUnpveI"
}
]
}

My web server is (include version):

Golang comes with web services

The operating system my web server runs on is (include version):

OS:CentOS 8.5

IP:36.134.17.221

36.134.17.0/255.255.255.0

36.134.137.0/255.255.255.0

Both IP address ranges cannot be used.

traceroute to acme-v02.api.letsencrypt.org

ECS-64982287-04 (192.168.1.20) 2023-05-08T16:20:31+0800
Keys: Help Display mode Restart statistics Order of fields quit
Packets Pings
Host Loss% Snt Last Avg Best Wrst StDev

  1. ???
  2. ???
  3. 10.172.4.74 12.5% 8 0.7 0.8 0.6 1.2 0.2
  4. 10.224.238.133 0.0% 8 0.8 0.9 0.7 2.0 0.4
  5. 10.224.238.166 0.0% 8 1.4 1.6 1.4 2.6 0.4
  6. 10.234.246.101 0.0% 8 3.3 2.0 1.6 3.3 0.6
  7. 10.174.255.202 12.5% 8 1.2 1.3 1.0 2.1 0.4
  8. 10.174.255.222 0.0% 8 0.8 2.1 0.8 10.5 3.4
  9. 10.213.254.210 0.0% 8 1.3 1.6 1.3 2.0 0.3
  10. 10.213.254.185 0.0% 8 1.6 1.7 1.5 2.2 0.2
  11. 112.4.25.241 0.0% 8 2.6 2.8 2.6 3.0 0.2
  12. 112.4.15.37 0.0% 8 7.5 7.5 7.3 7.8 0.2
  13. 86.66.207.183.static.js.chinamobile.com 42.9% 7 11.2 12.1 11.2 14.4 1.5
  14. 111.24.6.37 0.0% 7 11.2 11.8 11.2 14.2 1.1
  15. 111.24.3.37 0.0% 7 16.6 18.8 16.6 24.8 3.7
  16. 221.183.89.37 50.0% 7 22.8 16.8 13.8 22.8 5.2
  17. 221.183.89.70 42.9% 7 14.4 14.3 14.1 14.7 0.3
  18. 221.183.89.181 0.0% 7 15.6 15.6 15.5 16.0 0.2
  19. 223.120.12.149 0.0% 7 204.5 199.3 187.1 207.3 7.3
  20. 223.120.6.54 28.6% 7 204.7 197.6 189.6 204.7 7.3
  21. 223.119.66.106 0.0% 7 205.2 203.9 190.0 217.1 8.8
  22. 172.71.140.3 0.0% 7 209.9 201.9 191.1 209.9 6.8
  23. 172.65.32.248 0.0% 7 203.8 201.4 194.0 206.7 5.4

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

no

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

go lang autocert

You'll have to post your full Go code if you want help with this. autocert works okay, the problem is going to be how you are applying it.

4 Likes

thanks

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.