How to issue certs for multiple domains with different webroots with acme.sh?

rampatra · November 7, 2021, 6:59pm

After seeing the positive response from my other acme.sh question, I plucked up the courage to ask another one here.

Is there a way to issue certs via acme.sh for multiple domains with different webroots like below:

acme.sh --issue -w /var/www/example.com -d www.example.com -d example.com -w /var/www/example.com/code -d code.example.com

I see an example in the docs where it issues certs for multiple domains but the webroot is the same. But in my case they are different. Hence, this question.

I was able to do this with certbot but it looks like acme.sh doesn't support it. Not sure. Also, what's the best way to set up acme.sh to auto-renew my certs? Is setting up a cron job the way to go?

sahsanu · November 7, 2021, 7:32pm

Hello @rampatra,

rampatra:

Is there a way to issue certs via acme.sh for multiple domains with different webroots like below:
acme.sh --issue -w /var/www/example.com -d www.example.com -d example.com -w /var/www/example.com/code -d code.example.com

Yes, you can but change the order, first the domains and then the webroot.

acme.sh --issue -d www.example.com -d example.com -w /var/www/example.com -d code.example.com -w /var/www/example.com/code

acme.sh creates a cron job when you install it so you should have one already there. Check it using crontab -l as root... or as the user you installed it for.

Cheers,
sahsanu

rampatra · November 8, 2021, 1:13pm

Thanks for the answer. It seems a bit weird as for me specifying the webroot first works when there is just one webroot so I thought the same would work when there are multiple webroots.

Anyway, I get the following error when trying with your suggested approach:

[Mon Nov  8 08:08:00 EST 2021] Processing, The CA is processing your order, please just wait. (29/30)
[Mon Nov  8 08:08:00 EST 2021] sleep 2 secs to verify again
[Mon Nov  8 08:08:02 EST 2021] checking
[Mon Nov  8 08:08:02 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/nN67bHdYJLFJKoQOjmXgLg'
[Mon Nov  8 08:08:02 EST 2021] payload
[Mon Nov  8 08:08:02 EST 2021] Retrying post
[Mon Nov  8 08:08:02 EST 2021] POST
[Mon Nov  8 08:08:02 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/nN67bHdYJLFJKoQOjmXgLg'
[Mon Nov  8 08:08:02 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:03 EST 2021] _ret='0'
[Mon Nov  8 08:08:03 EST 2021] _hcode='0'
[Mon Nov  8 08:08:03 EST 2021] code='200'
[Mon Nov  8 08:08:03 EST 2021] example.com:Timeout
[Mon Nov  8 08:08:03 EST 2021] Debugging, skip removing: /var/www/example.com/code/.well-known/acme-challenge/B3U9V7BgqBiiWSKTLq3Sxjt7IHr34Vu7ZzVBU-J84Bg
[Mon Nov  8 08:08:03 EST 2021] pid
[Mon Nov  8 08:08:03 EST 2021] No need to restore nginx, skip.
[Mon Nov  8 08:08:03 EST 2021] _clearupdns
[Mon Nov  8 08:08:03 EST 2021] dns_entries
[Mon Nov  8 08:08:03 EST 2021] skip dns.
[Mon Nov  8 08:08:03 EST 2021] _on_issue_err
[Mon Nov  8 08:08:03 EST 2021] Please add '--debug' or '--log' to check more details.
[Mon Nov  8 08:08:03 EST 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Mon Nov  8 08:08:03 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/nZFtoFgzFSJ-A9wV6qBwpg'
[Mon Nov  8 08:08:03 EST 2021] payload='{}'
[Mon Nov  8 08:08:03 EST 2021] Retrying post
[Mon Nov  8 08:08:03 EST 2021] POST
[Mon Nov  8 08:08:03 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/nZFtoFgzFSJ-A9wV6qBwpg'
[Mon Nov  8 08:08:03 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:03 EST 2021] _ret='0'
[Mon Nov  8 08:08:03 EST 2021] _hcode='0'
[Mon Nov  8 08:08:03 EST 2021] code='200'
[Mon Nov  8 08:08:03 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/nN67bHdYJLFJKoQOjmXgLg'
[Mon Nov  8 08:08:03 EST 2021] payload='{}'
[Mon Nov  8 08:08:03 EST 2021] Retrying post
[Mon Nov  8 08:08:03 EST 2021] POST
[Mon Nov  8 08:08:03 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/nN67bHdYJLFJKoQOjmXgLg'
[Mon Nov  8 08:08:03 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:04 EST 2021] _ret='0'
[Mon Nov  8 08:08:04 EST 2021] _hcode='0'
[Mon Nov  8 08:08:04 EST 2021] code='200'
[Mon Nov  8 08:08:04 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/g7-eDmrR2QWNzVCp7dShzA'
[Mon Nov  8 08:08:04 EST 2021] payload='{}'
[Mon Nov  8 08:08:04 EST 2021] Retrying post
[Mon Nov  8 08:08:04 EST 2021] POST
[Mon Nov  8 08:08:04 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/g7-eDmrR2QWNzVCp7dShzA'
[Mon Nov  8 08:08:04 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:05 EST 2021] _ret='0'
[Mon Nov  8 08:08:05 EST 2021] _hcode='0'
[Mon Nov  8 08:08:05 EST 2021] code='200'
[Mon Nov  8 08:08:05 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/KVBwaqboATnrSbm_eSQ4Ww'
[Mon Nov  8 08:08:05 EST 2021] payload='{}'
[Mon Nov  8 08:08:05 EST 2021] Retrying post
[Mon Nov  8 08:08:05 EST 2021] POST
[Mon Nov  8 08:08:05 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/KVBwaqboATnrSbm_eSQ4Ww'
[Mon Nov  8 08:08:05 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:05 EST 2021] _ret='0'
[Mon Nov  8 08:08:05 EST 2021] _hcode='0'
[Mon Nov  8 08:08:05 EST 2021] code='200'
[Mon Nov  8 08:08:05 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/5iPuttzba33486rxZYGwxA'
[Mon Nov  8 08:08:05 EST 2021] payload='{}'
[Mon Nov  8 08:08:05 EST 2021] Retrying post
[Mon Nov  8 08:08:05 EST 2021] POST
[Mon Nov  8 08:08:05 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/5iPuttzba33486rxZYGwxA'
[Mon Nov  8 08:08:05 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:06 EST 2021] _ret='0'
[Mon Nov  8 08:08:06 EST 2021] _hcode='0'
[Mon Nov  8 08:08:06 EST 2021] code='200'
[Mon Nov  8 08:08:06 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/1h00ru1efslLzcF6j4Q22g'
[Mon Nov  8 08:08:06 EST 2021] payload='{}'
[Mon Nov  8 08:08:06 EST 2021] Retrying post
[Mon Nov  8 08:08:06 EST 2021] POST
[Mon Nov  8 08:08:06 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/1h00ru1efslLzcF6j4Q22g'
[Mon Nov  8 08:08:06 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:06 EST 2021] _ret='0'
[Mon Nov  8 08:08:06 EST 2021] _hcode='0'
[Mon Nov  8 08:08:06 EST 2021] code='200'
[Mon Nov  8 08:08:06 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/tYD7Ijqn8S_hjvkKgpK9-w'
[Mon Nov  8 08:08:06 EST 2021] payload='{}'
[Mon Nov  8 08:08:06 EST 2021] Retrying post
[Mon Nov  8 08:08:06 EST 2021] POST
[Mon Nov  8 08:08:06 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/tYD7Ijqn8S_hjvkKgpK9-w'
[Mon Nov  8 08:08:06 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:07 EST 2021] _ret='0'
[Mon Nov  8 08:08:07 EST 2021] _hcode='0'
[Mon Nov  8 08:08:07 EST 2021] code='200'
[Mon Nov  8 08:08:07 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/iLiIHJdPmqjPsSM7XsAVww'
[Mon Nov  8 08:08:07 EST 2021] payload='{}'
[Mon Nov  8 08:08:07 EST 2021] Retrying post
[Mon Nov  8 08:08:07 EST 2021] POST
[Mon Nov  8 08:08:07 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/iLiIHJdPmqjPsSM7XsAVww'
[Mon Nov  8 08:08:07 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:08 EST 2021] _ret='0'
[Mon Nov  8 08:08:08 EST 2021] _hcode='0'
[Mon Nov  8 08:08:08 EST 2021] code='200'
[Mon Nov  8 08:08:08 EST 2021] url='https://acme.zerossl.com/v2/DV90/chall/W9k1iMIbRPcQL7kAkmbvbw'
[Mon Nov  8 08:08:08 EST 2021] payload='{}'
[Mon Nov  8 08:08:08 EST 2021] Retrying post
[Mon Nov  8 08:08:08 EST 2021] POST
[Mon Nov  8 08:08:08 EST 2021] _post_url='https://acme.zerossl.com/v2/DV90/chall/W9k1iMIbRPcQL7kAkmbvbw'
[Mon Nov  8 08:08:08 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Mon Nov  8 08:08:08 EST 2021] _ret='0'
[Mon Nov  8 08:08:08 EST 2021] _hcode='0'
[Mon Nov  8 08:08:08 EST 2021] code='200'
[Mon Nov  8 08:08:08 EST 2021] socat doesn't exist.
[Mon Nov  8 08:08:08 EST 2021] Diagnosis versions:
openssl:openssl
OpenSSL 1.0.1f 6 Jan 2014
apache:
apache doesn't exist.
nginx:
nginx doesn't exist.
socat:

Are there any limits on the number of domains in one request? Also, does everything fail if one domain (or sub-domain) is incorrectly configured?

MikeMcQ · November 8, 2021, 2:05pm

Hmmm. In your previous post you linked to you were trying to get certs from Lets Encrypt. But, the error messages in this post only show ZeroSSL.

Have you chosen to use them as your CA instead? The default CA was changed in acme.sh in early Aug this year. Sorry, I do not have the link to that announcement handy.

rampatra · November 8, 2021, 2:15pm

No, I haven't changed anything in acme.sh. Using it right out of the box. But I installed acme.sh when I made my earlier post, i.e., around the beginning of August 2021.

MikeMcQ · November 8, 2021, 2:17pm

Ah, you may think you are using Lets Encrypt but you are using ZeroSSL.

See:

Support questions for ZeroSSL are better handled at their github or their tech support. Details in the link I just posted

Neilpang · November 8, 2021, 2:32pm

you can use the hybird mode:

rampatra · November 8, 2021, 2:58pm

@MikeMcQ oh, I see. I added the server as letsencrypt like --server letsencrypt at the end of the acme.sh command but I get the below error:

[Mon Nov  8 09:48:04 EST 2021] Pending, The CA is processing your order, please just wait. (1/30)
[Mon Nov  8 09:48:07 EST 2021] example.com:Verify error:Invalid response from https://www.example.com/.well-known/acme-challenge/l1pFxPcRrZdyAXhyOrsClXS3nIdMf6qYmXB0zBZPw7g [178.62.94.48]:
[Mon Nov  8 09:48:07 EST 2021] Please add '--debug' or '--log' to check more details.
[Mon Nov  8 09:48:07 EST 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh

My acme-challenge folder looks like below:

	-grQ7pzc3qbWUkx0yyJLZRL7OtQ3ZBfGmutwnVPh-hw	2021-11-08 08:06	 
	QjSuqMNCmIwzCmVDc-3WX1Uo9_x4wqjwLA6HuasooR0	2021-11-08 09:47	 
	WP29qUyQCJzIzJAiGcpmqQCcnThQjXM9LsfGM5nF4dc	2021-11-08 08:14	 
	kl0RcbXLg7WfV-42zMY7wc4Yv1UWAjCExXPX8Ql2wZs	2021-08-07 14:09

Do I need to do something else to switch to letsencrypt like registering my acme.sh with letsencrypt or something?

MikeMcQ · November 8, 2021, 4:47pm

@rampatra To better diagnose problems it is helpful if you complete the questions in the form shown to you when submitting a Help post. Thanks

=============================

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

JimPas · November 8, 2021, 9:16pm

According to the IP address shown in your error message -

[Mon Nov  8 09:48:07 EST 2021] example.com:Verify error:Invalid response from https://www.example.com/.well-known/acme-challenge/l1pFxPcRrZdyAXhyOrsClXS3nIdMf6qYmXB0zBZPw7g [178.62.94.48]:

That IP address comes back as DigitalOcean being the DNS hosting provider, but there are no DNS records.

Best to fill out the help form as @MikeMcQ shows above or everyone will be using a .

rg305 · November 8, 2021, 9:29pm

My ball says...

Name:    cwg.openboxes.com
Address: 178.62.94.48

JimPas · November 8, 2021, 9:32pm

Okay. That's redirecting to an email login page.

https://cwg.openboxes.com/openboxes/auth/login

rg305 · November 8, 2021, 9:36pm

I'm just guessing.
We need to wait for the real reply to the form questions.

MikeMcQ · November 8, 2021, 9:42pm

@JimPas and @rg305 I pm'd them about that and was told the IP was made up.

They promised to publicly note their domain which is why I posted the form as a reminder of the other items we find helpful.

rg305 · November 8, 2021, 9:44pm

Go figure!

rampatra · November 10, 2021, 12:19pm

Thanks, everyone for chiming in and helping.

I ran this command:

acme.sh --issue -d www.compzets.com -d compzets.com -w /var/www/compzets.com -d plugins.compzets.com -w /var/www/compzets.com/plugins -d webapps.compzets.com -w /var/www/compzets.com/webapps -d game.compzets.com -w /var/www/compzets.com/game -d fbapps.compzets.com -w /var/www/compzets.com/fbapps -d shopmate.compzets.com -w /var/www/shopmate.com -d blog.compzets.com -w /var/www/compzets.com/blog --force --server letsencrypt --debug

It produced this output:

[Wed Nov 10 07:18:33 EST 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Wed Nov 10 07:18:33 EST 2021] Multi domain='DNS:www.compzets.com,DNS:compzets.com,DNS:plugins.compzets.com,DNS:webapps.compzets.com,DNS:game.compzets.com,DNS:fbapps.compzets.com,DNS:shopmate.compzets.com,DNS:blog.compzets.com'
[Wed Nov 10 07:18:33 EST 2021] Getting domain auth token for each domain
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='www.compzets.com'
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='compzets.com'
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='plugins.compzets.com'
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='webapps.compzets.com'
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='game.compzets.com'
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='fbapps.compzets.com'
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='shopmate.compzets.com'
[Wed Nov 10 07:18:40 EST 2021] Getting webroot for domain='blog.compzets.com'
[Wed Nov 10 07:18:40 EST 2021] www.compzets.com is already verified, skip http-01.
[Wed Nov 10 07:18:40 EST 2021] Verifying: compzets.com
[Wed Nov 10 07:18:41 EST 2021] Pending, The CA is processing your order, please just wait. (1/30)
[Wed Nov 10 07:18:43 EST 2021] Pending, The CA is processing your order, please just wait. (2/30)
[Wed Nov 10 07:18:46 EST 2021] compzets.com:Verify error:Invalid response from https://www.compzets.com/.well-known/acme-challenge/S832XoIBXKfQ2MSyy9lq3FAXzzn55DJkQYQcSWPDmzU [178.62.94.47]:
[Wed Nov 10 07:18:46 EST 2021] Please add '--debug' or '--log' to check more details.
[Wed Nov 10 07:18:46 EST 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
root@droplet1:~# acme.sh --issue -d www.compzets.com -d compzets.com -w /var/www/compzets.com -d plugins.compzets.com -w /var/www/compzets.com/plugins -d webapps.compzets.com -w /var/www/compzets.com/webapps -d game.compzets.com -w /var/www/compzets.com/game -d fbapps.compzets.com -w /var/www/compzets.com/fbapps -d shopmate.compzets.com -w /var/www/shopmate.com -d blog.compzets.com -w /var/www/compzets.com/blog --force --server letsencrypt --debug
[Wed Nov 10 07:19:33 EST 2021] Selected server: https://acme-v02.api.letsencrypt.org/directory
[Wed Nov 10 07:19:33 EST 2021] Lets find script dir.
[Wed Nov 10 07:19:33 EST 2021] _SCRIPT_='/root/.acme.sh/acme.sh'
[Wed Nov 10 07:19:33 EST 2021] _script='/root/.acme.sh/acme.sh'
[Wed Nov 10 07:19:33 EST 2021] _script_home='/root/.acme.sh'
[Wed Nov 10 07:19:33 EST 2021] Using config home:/root/.acme.sh
https://github.com/acmesh-official/acme.sh
v3.0.1
[Wed Nov 10 07:19:33 EST 2021] Using server: letsencrypt
[Wed Nov 10 07:19:33 EST 2021] Running cmd: issue
[Wed Nov 10 07:19:33 EST 2021] _main_domain='www.compzets.com'
[Wed Nov 10 07:19:33 EST 2021] _alt_domains='compzets.com,plugins.compzets.com,webapps.compzets.com,game.compzets.com,fbapps.compzets.com,shopmate.compzets.com,blog.compzets.com'
[Wed Nov 10 07:19:33 EST 2021] Using config home:/root/.acme.sh
[Wed Nov 10 07:19:33 EST 2021] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Wed Nov 10 07:19:33 EST 2021] DOMAIN_PATH='/root/.acme.sh/www.compzets.com'
[Wed Nov 10 07:19:33 EST 2021] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Wed Nov 10 07:19:33 EST 2021] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Wed Nov 10 07:19:33 EST 2021] Retrying GET
[Wed Nov 10 07:19:34 EST 2021] GET
[Wed Nov 10 07:19:34 EST 2021] url='https://acme-v02.api.letsencrypt.org/directory'
[Wed Nov 10 07:19:34 EST 2021] timeout=
[Wed Nov 10 07:19:34 EST 2021] displayError='1'
[Wed Nov 10 07:19:34 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:34 EST 2021] ret='0'
[Wed Nov 10 07:19:34 EST 2021] _hcode='0'
[Wed Nov 10 07:19:34 EST 2021] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Wed Nov 10 07:19:34 EST 2021] ACME_NEW_AUTHZ
[Wed Nov 10 07:19:34 EST 2021] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed Nov 10 07:19:34 EST 2021] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Wed Nov 10 07:19:34 EST 2021] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Wed Nov 10 07:19:34 EST 2021] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Wed Nov 10 07:19:34 EST 2021] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Wed Nov 10 07:19:34 EST 2021] Le_NextRenewTime='1640060079'
[Wed Nov 10 07:19:34 EST 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Wed Nov 10 07:19:34 EST 2021] _on_before_issue
[Wed Nov 10 07:19:34 EST 2021] _chk_main_domain='www.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _chk_alt_domains='compzets.com,plugins.compzets.com,webapps.compzets.com,game.compzets.com,fbapps.compzets.com,shopmate.compzets.com,blog.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Le_LocalAddress
[Wed Nov 10 07:19:34 EST 2021] d='www.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='www.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d='compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/compzets.com/plugins'
[Wed Nov 10 07:19:34 EST 2021] d='plugins.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='plugins.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/compzets.com/webapps'
[Wed Nov 10 07:19:34 EST 2021] d='webapps.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='webapps.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/compzets.com/game'
[Wed Nov 10 07:19:34 EST 2021] d='game.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='game.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/compzets.com/fbapps'
[Wed Nov 10 07:19:34 EST 2021] d='fbapps.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='fbapps.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/shopmate.com'
[Wed Nov 10 07:19:34 EST 2021] d='shopmate.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='shopmate.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/compzets.com/blog'
[Wed Nov 10 07:19:34 EST 2021] d='blog.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Check for domain='blog.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] _currentRoot='/var/www/compzets.com/blog'
[Wed Nov 10 07:19:34 EST 2021] d
[Wed Nov 10 07:19:34 EST 2021] _saved_account_key_hash is not changed, skip register account.
[Wed Nov 10 07:19:34 EST 2021] Read key length:
[Wed Nov 10 07:19:34 EST 2021] _createcsr
[Wed Nov 10 07:19:34 EST 2021] Multi domain='DNS:www.compzets.com,DNS:compzets.com,DNS:plugins.compzets.com,DNS:webapps.compzets.com,DNS:game.compzets.com,DNS:fbapps.compzets.com,DNS:shopmate.compzets.com,DNS:blog.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] Getting domain auth token for each domain
[Wed Nov 10 07:19:34 EST 2021] d='compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d='plugins.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d='webapps.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d='game.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d='fbapps.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d='shopmate.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d='blog.compzets.com'
[Wed Nov 10 07:19:34 EST 2021] d
[Wed Nov 10 07:19:34 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed Nov 10 07:19:34 EST 2021] payload='{"identifiers": [{"type":"dns","value":"www.compzets.com"},{"type":"dns","value":"compzets.com"},{"type":"dns","value":"plugins.compzets.com"},{"type":"dns","value":"webapps.compzets.com"},{"type":"dns","value":"game.compzets.com"},{"type":"dns","value":"fbapps.compzets.com"},{"type":"dns","value":"shopmate.compzets.com"},{"type":"dns","value":"blog.compzets.com"}]}'
[Wed Nov 10 07:19:34 EST 2021] RSA key
[Wed Nov 10 07:19:34 EST 2021] Retrying post
[Wed Nov 10 07:19:34 EST 2021] HEAD
[Wed Nov 10 07:19:34 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Wed Nov 10 07:19:34 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g  -I  '
[Wed Nov 10 07:19:35 EST 2021] _ret='0'
[Wed Nov 10 07:19:35 EST 2021] _hcode='0'
[Wed Nov 10 07:19:35 EST 2021] Retrying post
[Wed Nov 10 07:19:35 EST 2021] POST
[Wed Nov 10 07:19:35 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed Nov 10 07:19:35 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:36 EST 2021] _ret='0'
[Wed Nov 10 07:19:36 EST 2021] _hcode='0'
[Wed Nov 10 07:19:36 EST 2021] code='201'
[Wed Nov 10 07:19:36 EST 2021] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/272626690/38567528420'
[Wed Nov 10 07:19:36 EST 2021] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/272626690/38567528420'
[Wed Nov 10 07:19:36 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47366985660'
[Wed Nov 10 07:19:36 EST 2021] payload
[Wed Nov 10 07:19:36 EST 2021] Retrying post
[Wed Nov 10 07:19:36 EST 2021] POST
[Wed Nov 10 07:19:36 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47366985660'
[Wed Nov 10 07:19:36 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:37 EST 2021] _ret='0'
[Wed Nov 10 07:19:37 EST 2021] _hcode='0'
[Wed Nov 10 07:19:37 EST 2021] code='200'
[Wed Nov 10 07:19:37 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635820'
[Wed Nov 10 07:19:37 EST 2021] payload
[Wed Nov 10 07:19:37 EST 2021] Retrying post
[Wed Nov 10 07:19:37 EST 2021] POST
[Wed Nov 10 07:19:37 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635820'
[Wed Nov 10 07:19:37 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:37 EST 2021] _ret='0'
[Wed Nov 10 07:19:37 EST 2021] _hcode='0'
[Wed Nov 10 07:19:37 EST 2021] code='200'
[Wed Nov 10 07:19:37 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635830'
[Wed Nov 10 07:19:37 EST 2021] payload
[Wed Nov 10 07:19:37 EST 2021] Retrying post
[Wed Nov 10 07:19:37 EST 2021] POST
[Wed Nov 10 07:19:37 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635830'
[Wed Nov 10 07:19:37 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:38 EST 2021] _ret='0'
[Wed Nov 10 07:19:38 EST 2021] _hcode='0'
[Wed Nov 10 07:19:38 EST 2021] code='200'
[Wed Nov 10 07:19:38 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635840'
[Wed Nov 10 07:19:38 EST 2021] payload
[Wed Nov 10 07:19:38 EST 2021] Retrying post
[Wed Nov 10 07:19:38 EST 2021] POST
[Wed Nov 10 07:19:38 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635840'
[Wed Nov 10 07:19:38 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:38 EST 2021] _ret='0'
[Wed Nov 10 07:19:38 EST 2021] _hcode='0'
[Wed Nov 10 07:19:38 EST 2021] code='200'
[Wed Nov 10 07:19:38 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635850'
[Wed Nov 10 07:19:38 EST 2021] payload
[Wed Nov 10 07:19:38 EST 2021] Retrying post
[Wed Nov 10 07:19:38 EST 2021] POST
[Wed Nov 10 07:19:38 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635850'
[Wed Nov 10 07:19:38 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:39 EST 2021] _ret='0'
[Wed Nov 10 07:19:39 EST 2021] _hcode='0'
[Wed Nov 10 07:19:39 EST 2021] code='200'
[Wed Nov 10 07:19:39 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635860'
[Wed Nov 10 07:19:39 EST 2021] payload
[Wed Nov 10 07:19:39 EST 2021] Retrying post
[Wed Nov 10 07:19:39 EST 2021] POST
[Wed Nov 10 07:19:39 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635860'
[Wed Nov 10 07:19:39 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:40 EST 2021] _ret='0'
[Wed Nov 10 07:19:40 EST 2021] _hcode='0'
[Wed Nov 10 07:19:40 EST 2021] code='200'
[Wed Nov 10 07:19:40 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635870'
[Wed Nov 10 07:19:40 EST 2021] payload
[Wed Nov 10 07:19:40 EST 2021] Retrying post
[Wed Nov 10 07:19:40 EST 2021] POST
[Wed Nov 10 07:19:40 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635870'
[Wed Nov 10 07:19:40 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:40 EST 2021] _ret='0'
[Wed Nov 10 07:19:40 EST 2021] _hcode='0'
[Wed Nov 10 07:19:40 EST 2021] code='200'
[Wed Nov 10 07:19:40 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635880'
[Wed Nov 10 07:19:40 EST 2021] payload
[Wed Nov 10 07:19:40 EST 2021] Retrying post
[Wed Nov 10 07:19:40 EST 2021] POST
[Wed Nov 10 07:19:40 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/47946635880'
[Wed Nov 10 07:19:40 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:41 EST 2021] _ret='0'
[Wed Nov 10 07:19:41 EST 2021] _hcode='0'
[Wed Nov 10 07:19:41 EST 2021] code='200'
[Wed Nov 10 07:19:41 EST 2021] d='www.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='www.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w='/var/www/compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"valid","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47366985660/QWbpUg","token":"QjSuqMNCmIwzCmVDc-3WX1Uo9_x4wqjwLA6HuasooR0","validationRecord":[{"url":"http://www.compzets.com/.well-known/acme-challenge/QjSuqMNCmIwzCmVDc-3WX1Uo9_x4wqjwLA6HuasooR0","hostname":"www.compzets.com","port":"80","addressesResolved":["178.62.94.47"],"addressUsed":"178.62.94.47"'
[Wed Nov 10 07:19:41 EST 2021] token='QjSuqMNCmIwzCmVDc-3WX1Uo9_x4wqjwLA6HuasooR0'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47366985660/QWbpUg'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='QjSuqMNCmIwzCmVDc-3WX1Uo9_x4wqjwLA6HuasooR0.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] www.compzets.com is already verified.
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='verified_ok'
[Wed Nov 10 07:19:41 EST 2021] dvlist='www.compzets.com#verified_ok#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47366985660/QWbpUg#http-01#/var/www/compzets.com'
[Wed Nov 10 07:19:41 EST 2021] d='compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w='/var/www/compzets.com/plugins'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/plugins'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ","token":"JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc"'
[Wed Nov 10 07:19:41 EST 2021] token='JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] dvlist='compzets.com#JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ#http-01#/var/www/compzets.com/plugins'
[Wed Nov 10 07:19:41 EST 2021] d='plugins.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='plugins.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w='/var/www/compzets.com/webapps'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/webapps'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635860/BkfKLw","token":"rIvZfgtDsQ9mi1xOoGH-lqrnlPJUw0oNzFrb5ib00zM"'
[Wed Nov 10 07:19:41 EST 2021] token='rIvZfgtDsQ9mi1xOoGH-lqrnlPJUw0oNzFrb5ib00zM'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635860/BkfKLw'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='rIvZfgtDsQ9mi1xOoGH-lqrnlPJUw0oNzFrb5ib00zM.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] dvlist='plugins.compzets.com#rIvZfgtDsQ9mi1xOoGH-lqrnlPJUw0oNzFrb5ib00zM.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635860/BkfKLw#http-01#/var/www/compzets.com/webapps'
[Wed Nov 10 07:19:41 EST 2021] d='webapps.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='webapps.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w='/var/www/compzets.com/game'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/game'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635880/AtlGxQ","token":"nbVu3syOCiNH3lVti-Qwud-kQzPH8HUfc4it-bEDkjg"'
[Wed Nov 10 07:19:41 EST 2021] token='nbVu3syOCiNH3lVti-Qwud-kQzPH8HUfc4it-bEDkjg'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635880/AtlGxQ'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='nbVu3syOCiNH3lVti-Qwud-kQzPH8HUfc4it-bEDkjg.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] dvlist='webapps.compzets.com#nbVu3syOCiNH3lVti-Qwud-kQzPH8HUfc4it-bEDkjg.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635880/AtlGxQ#http-01#/var/www/compzets.com/game'
[Wed Nov 10 07:19:41 EST 2021] d='game.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='game.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w='/var/www/compzets.com/fbapps'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/fbapps'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635850/-8ApPg","token":"r31NSIu3bNai2qbGlhacjE4CbjEtQbGazlx6OxZLveA"'
[Wed Nov 10 07:19:41 EST 2021] token='r31NSIu3bNai2qbGlhacjE4CbjEtQbGazlx6OxZLveA'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635850/-8ApPg'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='r31NSIu3bNai2qbGlhacjE4CbjEtQbGazlx6OxZLveA.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] dvlist='game.compzets.com#r31NSIu3bNai2qbGlhacjE4CbjEtQbGazlx6OxZLveA.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635850/-8ApPg#http-01#/var/www/compzets.com/fbapps'
[Wed Nov 10 07:19:41 EST 2021] d='fbapps.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='fbapps.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w='/var/www/shopmate.com'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/shopmate.com'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635840/oxUYDw","token":"bkCIAx9-XUm0gboaknUPHVIRMZvHGkdvFUHIXwGKaHI"'
[Wed Nov 10 07:19:41 EST 2021] token='bkCIAx9-XUm0gboaknUPHVIRMZvHGkdvFUHIXwGKaHI'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635840/oxUYDw'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='bkCIAx9-XUm0gboaknUPHVIRMZvHGkdvFUHIXwGKaHI.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] dvlist='fbapps.compzets.com#bkCIAx9-XUm0gboaknUPHVIRMZvHGkdvFUHIXwGKaHI.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635840/oxUYDw#http-01#/var/www/shopmate.com'
[Wed Nov 10 07:19:41 EST 2021] d='shopmate.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='shopmate.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w='/var/www/compzets.com/blog'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/blog'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635870/t595mw","token":"3uiVDeq27uNyEQ6yNDVhuZN3ApZjTYvqpnxdrwBzJqs"'
[Wed Nov 10 07:19:41 EST 2021] token='3uiVDeq27uNyEQ6yNDVhuZN3ApZjTYvqpnxdrwBzJqs'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635870/t595mw'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='3uiVDeq27uNyEQ6yNDVhuZN3ApZjTYvqpnxdrwBzJqs.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] dvlist='shopmate.compzets.com#3uiVDeq27uNyEQ6yNDVhuZN3ApZjTYvqpnxdrwBzJqs.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635870/t595mw#http-01#/var/www/compzets.com/blog'
[Wed Nov 10 07:19:41 EST 2021] d='blog.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] Getting webroot for domain='blog.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] _w
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/blog'
[Wed Nov 10 07:19:41 EST 2021] entry='"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635820/EJNgHg","token":"dGgitKsvVc8c6eicYodPPHdTt5F6hWD2e9-WHsDF4C4"'
[Wed Nov 10 07:19:41 EST 2021] token='dGgitKsvVc8c6eicYodPPHdTt5F6hWD2e9-WHsDF4C4'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635820/EJNgHg'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='dGgitKsvVc8c6eicYodPPHdTt5F6hWD2e9-WHsDF4C4.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] dvlist='blog.compzets.com#dGgitKsvVc8c6eicYodPPHdTt5F6hWD2e9-WHsDF4C4.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635820/EJNgHg#http-01#/var/www/compzets.com/blog'
[Wed Nov 10 07:19:41 EST 2021] d
[Wed Nov 10 07:19:41 EST 2021] vlist='www.compzets.com#verified_ok#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47366985660/QWbpUg#http-01#/var/www/compzets.com,compzets.com#JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ#http-01#/var/www/compzets.com/plugins,plugins.compzets.com#rIvZfgtDsQ9mi1xOoGH-lqrnlPJUw0oNzFrb5ib00zM.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635860/BkfKLw#http-01#/var/www/compzets.com/webapps,webapps.compzets.com#nbVu3syOCiNH3lVti-Qwud-kQzPH8HUfc4it-bEDkjg.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635880/AtlGxQ#http-01#/var/www/compzets.com/game,game.compzets.com#r31NSIu3bNai2qbGlhacjE4CbjEtQbGazlx6OxZLveA.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635850/-8ApPg#http-01#/var/www/compzets.com/fbapps,fbapps.compzets.com#bkCIAx9-XUm0gboaknUPHVIRMZvHGkdvFUHIXwGKaHI.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635840/oxUYDw#http-01#/var/www/shopmate.com,shopmate.compzets.com#3uiVDeq27uNyEQ6yNDVhuZN3ApZjTYvqpnxdrwBzJqs.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635870/t595mw#http-01#/var/www/compzets.com/blog,blog.compzets.com#dGgitKsvVc8c6eicYodPPHdTt5F6hWD2e9-WHsDF4C4.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk#https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635820/EJNgHg#http-01#/var/www/compzets.com/blog,'
[Wed Nov 10 07:19:41 EST 2021] d='www.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] www.compzets.com is already verified, skip http-01.
[Wed Nov 10 07:19:41 EST 2021] d='compzets.com'
[Wed Nov 10 07:19:41 EST 2021] d='plugins.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] d='webapps.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] d='game.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] d='fbapps.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] d='shopmate.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] d='blog.compzets.com'
[Wed Nov 10 07:19:41 EST 2021] ok, let's start to verify
[Wed Nov 10 07:19:41 EST 2021] www.compzets.com is already verified, skip http-01.
[Wed Nov 10 07:19:41 EST 2021] Verifying: compzets.com
[Wed Nov 10 07:19:41 EST 2021] d='compzets.com'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/plugins'
[Wed Nov 10 07:19:41 EST 2021] wellknown_path='/var/www/compzets.com/plugins/.well-known/acme-challenge'
[Wed Nov 10 07:19:41 EST 2021] writing token:JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc to /var/www/compzets.com/plugins/.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc
[Wed Nov 10 07:19:42 EST 2021] Changing owner/group of .well-known to root:root
[Wed Nov 10 07:19:42 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:42 EST 2021] payload='{}'
[Wed Nov 10 07:19:42 EST 2021] Retrying post
[Wed Nov 10 07:19:42 EST 2021] POST
[Wed Nov 10 07:19:42 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:42 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:42 EST 2021] _ret='0'
[Wed Nov 10 07:19:42 EST 2021] _hcode='0'
[Wed Nov 10 07:19:42 EST 2021] code='200'
[Wed Nov 10 07:19:42 EST 2021] trigger validation code: 200
[Wed Nov 10 07:19:42 EST 2021] Pending, The CA is processing your order, please just wait. (1/30)
[Wed Nov 10 07:19:42 EST 2021] sleep 2 secs to verify again
[Wed Nov 10 07:19:44 EST 2021] checking
[Wed Nov 10 07:19:44 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:44 EST 2021] payload
[Wed Nov 10 07:19:44 EST 2021] Retrying post
[Wed Nov 10 07:19:44 EST 2021] POST
[Wed Nov 10 07:19:44 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:44 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:45 EST 2021] _ret='0'
[Wed Nov 10 07:19:45 EST 2021] _hcode='0'
[Wed Nov 10 07:19:45 EST 2021] code='200'
[Wed Nov 10 07:19:45 EST 2021] compzets.com:Verify error:Invalid response from https://www.compzets.com/.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc [178.62.94.47]:
[Wed Nov 10 07:19:45 EST 2021] Debug: get token url.
[Wed Nov 10 07:19:45 EST 2021] Retrying GET
[Wed Nov 10 07:19:45 EST 2021] GET
[Wed Nov 10 07:19:45 EST 2021] url='http://compzets.com/.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc'
[Wed Nov 10 07:19:45 EST 2021] timeout=1
[Wed Nov 10 07:19:45 EST 2021] displayError='1'
[Wed Nov 10 07:19:45 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g  --connect-timeout 1'
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc was not found on this server.</p>
<hr>
<address>Apache/2.4.7 (Ubuntu) Server at www.compzets.com Port 443</address>
</body></html>
[Wed Nov 10 07:19:46 EST 2021] ret='0'
[Wed Nov 10 07:19:46 EST 2021] _hcode='0'
[Wed Nov 10 07:19:46 EST 2021] Debugging, skip removing: /var/www/compzets.com/plugins/.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc
[Wed Nov 10 07:19:46 EST 2021] pid
[Wed Nov 10 07:19:46 EST 2021] No need to restore nginx, skip.
[Wed Nov 10 07:19:46 EST 2021] _clearupdns
[Wed Nov 10 07:19:46 EST 2021] dns_entries
[Wed Nov 10 07:19:46 EST 2021] skip dns.
[Wed Nov 10 07:19:46 EST 2021] _on_issue_err
[Wed Nov 10 07:19:46 EST 2021] Please add '--debug' or '--log' to check more details.
[Wed Nov 10 07:19:46 EST 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Wed Nov 10 07:19:46 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47366985660/QWbpUg'
[Wed Nov 10 07:19:46 EST 2021] payload='{}'
[Wed Nov 10 07:19:46 EST 2021] Retrying post
[Wed Nov 10 07:19:46 EST 2021] POST
[Wed Nov 10 07:19:46 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47366985660/QWbpUg'
[Wed Nov 10 07:19:46 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:46 EST 2021] _ret='0'
[Wed Nov 10 07:19:46 EST 2021] _hcode='0'
[Wed Nov 10 07:19:46 EST 2021] code='200'
[Wed Nov 10 07:19:46 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:46 EST 2021] payload='{}'
[Wed Nov 10 07:19:46 EST 2021] Retrying post
[Wed Nov 10 07:19:46 EST 2021] POST
[Wed Nov 10 07:19:46 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:46 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:47 EST 2021] _ret='0'
[Wed Nov 10 07:19:47 EST 2021] _hcode='0'
[Wed Nov 10 07:19:47 EST 2021] code='400'
[Wed Nov 10 07:19:47 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635860/BkfKLw'
[Wed Nov 10 07:19:47 EST 2021] payload='{}'
[Wed Nov 10 07:19:47 EST 2021] Retrying post
[Wed Nov 10 07:19:47 EST 2021] POST
[Wed Nov 10 07:19:47 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635860/BkfKLw'
[Wed Nov 10 07:19:47 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:47 EST 2021] _ret='0'
[Wed Nov 10 07:19:47 EST 2021] _hcode='0'
[Wed Nov 10 07:19:47 EST 2021] code='200'
[Wed Nov 10 07:19:47 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635880/AtlGxQ'
[Wed Nov 10 07:19:47 EST 2021] payload='{}'
[Wed Nov 10 07:19:48 EST 2021] Retrying post
[Wed Nov 10 07:19:48 EST 2021] POST
[Wed Nov 10 07:19:48 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635880/AtlGxQ'
[Wed Nov 10 07:19:48 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:48 EST 2021] _ret='0'
[Wed Nov 10 07:19:48 EST 2021] _hcode='0'
[Wed Nov 10 07:19:48 EST 2021] code='200'
[Wed Nov 10 07:19:48 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635850/-8ApPg'
[Wed Nov 10 07:19:48 EST 2021] payload='{}'
[Wed Nov 10 07:19:48 EST 2021] Retrying post
[Wed Nov 10 07:19:48 EST 2021] POST
[Wed Nov 10 07:19:48 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635850/-8ApPg'
[Wed Nov 10 07:19:48 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:49 EST 2021] _ret='0'
[Wed Nov 10 07:19:49 EST 2021] _hcode='0'
[Wed Nov 10 07:19:49 EST 2021] code='200'
[Wed Nov 10 07:19:49 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635840/oxUYDw'
[Wed Nov 10 07:19:49 EST 2021] payload='{}'
[Wed Nov 10 07:19:49 EST 2021] Retrying post
[Wed Nov 10 07:19:49 EST 2021] POST
[Wed Nov 10 07:19:49 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635840/oxUYDw'
[Wed Nov 10 07:19:49 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:49 EST 2021] _ret='0'
[Wed Nov 10 07:19:49 EST 2021] _hcode='0'
[Wed Nov 10 07:19:49 EST 2021] code='200'
[Wed Nov 10 07:19:49 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635870/t595mw'
[Wed Nov 10 07:19:49 EST 2021] payload='{}'
[Wed Nov 10 07:19:49 EST 2021] Retrying post
[Wed Nov 10 07:19:49 EST 2021] POST
[Wed Nov 10 07:19:49 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635870/t595mw'
[Wed Nov 10 07:19:49 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:50 EST 2021] _ret='0'
[Wed Nov 10 07:19:50 EST 2021] _hcode='0'
[Wed Nov 10 07:19:50 EST 2021] code='200'
[Wed Nov 10 07:19:50 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635820/EJNgHg'
[Wed Nov 10 07:19:50 EST 2021] payload='{}'
[Wed Nov 10 07:19:50 EST 2021] Retrying post
[Wed Nov 10 07:19:50 EST 2021] POST
[Wed Nov 10 07:19:50 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635820/EJNgHg'
[Wed Nov 10 07:19:50 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:51 EST 2021] _ret='0'
[Wed Nov 10 07:19:51 EST 2021] _hcode='0'
[Wed Nov 10 07:19:51 EST 2021] code='200'
[Wed Nov 10 07:19:51 EST 2021] socat doesn't exist.
[Wed Nov 10 07:19:51 EST 2021] Diagnosis versions:
openssl:openssl
OpenSSL 1.0.1f 6 Jan 2014
apache:
apache doesn't exist.
nginx:
nginx doesn't exist.
socat:

My web server is (include version): apache2

The operating system my web server runs on is (include version): Ubunutu 14.04.6 LTS

My hosting provider, if applicable, is: Digital Ocean

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

rg305 · November 10, 2021, 3:18pm

One (or more) of your webroots is likely incorrect.
You should review your Apache config, starting with:
sudo apachectl -t -D DUMP_VHOSTS

Also, I noticed that some of the failures are via HTTPS, which means that HTTP was heard and redirected. The ACME challenge requests are best handled in HTTP.

MikeMcQ · November 10, 2021, 3:22pm

rampatra:

[Wed Nov 10 07:19:41 EST 2021] ok, let's start to verify
[Wed Nov 10 07:19:41 EST 2021] www.compzets.com is already verified, skip http-01.
[Wed Nov 10 07:19:41 EST 2021] Verifying: compzets.com
[Wed Nov 10 07:19:41 EST 2021] d='compzets.com'
[Wed Nov 10 07:19:41 EST 2021] keyauthorization='JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc.K5J7phBFBf8gn3r-uHivQIEZ_OTc9uQLXqJpzmYSxDk'
[Wed Nov 10 07:19:41 EST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:41 EST 2021] _currentRoot='/var/www/compzets.com/plugins'
[Wed Nov 10 07:19:41 EST 2021] wellknown_path='/var/www/compzets.com/plugins/.well-known/acme-challenge'
[Wed Nov 10 07:19:41 EST 2021] writing token:JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc to /var/www/compzets.com/plugins/.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc
[Wed Nov 10 07:19:42 EST 2021] Changing owner/group of .well-known to root:root
[Wed Nov 10 07:19:42 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:42 EST 2021] payload='{}'
[Wed Nov 10 07:19:42 EST 2021] Retrying post
[Wed Nov 10 07:19:42 EST 2021] POST
[Wed Nov 10 07:19:42 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:42 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:42 EST 2021] _ret='0'
[Wed Nov 10 07:19:42 EST 2021] _hcode='0'
[Wed Nov 10 07:19:42 EST 2021] code='200'
[Wed Nov 10 07:19:42 EST 2021] trigger validation code: 200
[Wed Nov 10 07:19:42 EST 2021] Pending, The CA is processing your order, please just wait. (1/30)
[Wed Nov 10 07:19:42 EST 2021] sleep 2 secs to verify again
[Wed Nov 10 07:19:44 EST 2021] checking
[Wed Nov 10 07:19:44 EST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:44 EST 2021] payload
[Wed Nov 10 07:19:44 EST 2021] Retrying post
[Wed Nov 10 07:19:44 EST 2021] POST
[Wed Nov 10 07:19:44 EST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/47946635830/LNcIcQ'
[Wed Nov 10 07:19:44 EST 2021] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Wed Nov 10 07:19:45 EST 2021] _ret='0'
[Wed Nov 10 07:19:45 EST 2021] _hcode='0'
[Wed Nov 10 07:19:45 EST 2021] code='200'
[Wed Nov 10 07:19:45 EST 2021] compzets.com:Verify error:Invalid response from https://www.compzets.com/.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc [178.62.94.47]:
[Wed Nov 10 07:19:45 EST 2021] Debug: get token url.
[Wed Nov 10 07:19:45 EST 2021] Retrying GET
[Wed Nov 10 07:19:45 EST 2021] GET
[Wed Nov 10 07:19:45 EST 2021] url='http://compzets.com/.well-known/acme-challenge/JRJpzJmTbfO388WVIOTddDL1ue--dHoaCCpM2DER3kc'
[Wed Nov 10 07:19:45 EST 2021] timeout=1
[Wed Nov 10 07:19:45 EST 2021] displayError='1'

@rampatra Thanks for the detailed report. I largely agree with Rudy and I show a partial snip of your log. My first thought was this may be a problem with acme.sh even though your command format looks correct. But, Rudy has a good point that maybe your Apache conf has a problem.

In this log clip, note the start of verifying for compzets.com yet the _currentRoot just below it is your "plugins" document root. In your acme.sh command it is -w /var/www/compzets.com

rampatra · November 10, 2021, 4:15pm

I think I might know what's wrong with apache conf. When I switched from certbot to acme.sh, the cert/key location was different so I changed the paths in the apache conf files as per acme.sh. However, I issued certs one by domain as I couldn't issue a wildcard cert as ZeroSSL doesn't support it (in the free version). So, I think now as I am trying the wildcard certs again (after switching to letsencrypt CA), I think I need to change the paths again?

I am not sure but I think this may be it.

root@droplet1:/etc/apache2# sudo apachectl -t -D DUMP_HOSTS
AH00526: Syntax error on line 5 of /etc/apache2/sites-enabled/compzets.com-le-ssl.conf:
SSLCertificateFile: file '/root/.acme.sh/www.compzets.com/cert.pem' does not exist or is empty
Action '-t -D DUMP_HOSTS' failed.
The Apache error log may have more information.

But I don't know where can I get the correct cert/key location.

rg305 · November 10, 2021, 6:43pm

acme.sh doesn't create cert.pem file name.

Try finding them with:
find /root/.acme.sh/ | grep compzets | grep -E 'cer|key'

Topic		Replies	Views
Acme.sh, '.conf' files, & multiple domains under one cert Help	3	1890	October 17, 2020
I need the acme.sh cron job for renewals to create pem files Help	14	1380	March 20, 2024
How to deal with multiple domains using acme.sh and acme-dns Help	6	4702	April 2, 2021
How to add a domain to an existing set of certs using acme.sh? Help	125	6277	October 17, 2020
Acme.sh certificate renewal (cron) for multiple acme validation methods Help	14	3261	November 6, 2020

How to issue certs for multiple domains with different webroots with acme.sh?

Related topics