I have problem with installing certificate

My domain is: poster-bot.com

I ran this command: ./letsencrypt-auto certonly -a webroot --webroot-path=/var/www/vhosts/poster-bot.com -d poster-bot.com -d www.poster-bot.com

It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
An unexpected error occurred:
Traceback (most recent call last):
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/connection.py”, line 159, in _new_conn
(self._dns_host, self.port), self.timeout, **extra_kw)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/util/connection.py”, line 80, in create_connection
raise err
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/util/connection.py”, line 70, in create_connection
sock.connect(sa)
socket.timeout: timed out
uring handling of the above exception, another exception occurred:

Traceback (most recent call last):
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/connectionpool.py”, line 600, in urlopen
chunked=chunked)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/connectionpool.py”, line 343, in _make_request
self._validate_conn(conn)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/connectionpool.py”, line 839, in _validate_conn
conn.connect()
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/connection.py”, line 301, in connect
conn = self._new_conn()
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/connection.py”, line 164, in _new_conn
(self.host, self.timeout))
urllib3.exceptions.ConnectTimeoutError: (<urllib3.connection.VerifiedHTTPSConnection object at 0x7f16e6492400>, ‘Connection to acme-v02.api.letsencrypt.org timed out. (connect timeout=45)’)

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/requests/adapters.py”, line 449, in send
timeout=timeout
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/connectionpool.py”, line 638, in urlopen
_stacktrace=sys.exc_info()[2])
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/urllib3/util/retry.py”, line 399, in increment
raise MaxRetryError(_pool, url, error or ResponseError(cause))
urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host=‘acme-v02.api.letsencrypt.org’, port=443): Max retries exceeded with url: /directory (Caused by ConnectTimeoutError(<urllib3.connection.VerifiedHTTPSConnection object at 0x7f16e6492400>, ‘Connection to acme-v02.api.letsencrypt.org timed out. (connect timeout=45)’))

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
File “/opt/eff.org/certbot/venv/bin/letsencrypt”, line 11, in
load_entry_point(‘letsencrypt==0.7.0’, ‘console_scripts’, ‘letsencrypt’)()
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py”, line 1381, in main
return config.func(config, plugins)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py”, line 1248, in certonly
le_client = _init_le_client(config, auth, installer)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py”, line 613, in _init_le_client
return client.Client(config, acc, authenticator, installer, acme=acme)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/client.py”, line 262, in init
acme = acme_from_config_key(config, self.account.key, self.account.regr)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/client.py”, line 47, in acme_from_config_key
return acme_client.BackwardsCompatibleClientV2(net, key, config.server)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/acme/client.py”, line 813, in init
directory = messages.Directory.from_json(net.get(server).json())
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/acme/client.py”, line 1146, in get
self._send_request(‘GET’, url, **kwargs), content_type=content_type)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/acme/client.py”, line 1095, in _send_request
response = self.session.request(method, url, *args, **kwargs)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/requests/sessions.py”, line 533, in request
resp = self.send(prep, **send_kwargs)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/requests/sessions.py”, line 646, in send
r = adapter.send(request, **kwargs)
File “/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/requests/adapters.py”, line 504, in send
raise ConnectTimeout(e, request=request)
requests.exceptions.ConnectTimeout: HTTPSConnectionPool(host=‘acme-v02.api.letsencrypt.org’, port=443): Max retries exceeded with url: /directory (Caused by ConnectTimeoutError(<urllib3.connection.VerifiedHTTPSConnection object at 0x7f16e6492400>, ‘Connection to acme-v02.api.letsencrypt.org timed out. (connect timeout=45)’))
Please see the logfiles in /var/log/letsencrypt for more details.

My web server is (include version): nginx (v. 1.14.2)

The operating system my web server runs on is (include version): centos 6.10

My hosting provider, if applicable, is: uh.ua

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): letsencrypt-auto

Hi @dmitriiPopov

that

looks like your server can't connect Letsencrypt. Same there:

What says

curl https://acme-v02.api.letsencrypt.org/

from your console?

And what says

letsencrypt-auto --version

curl https://acme-v02.api.letsencrypt.org/

  <div class="col-xs-6 text-left">
    <h1>Boulder<br>
    <small>The Let's Encrypt CA</small></h1>
  </div>
</div>

<div class="row">
  <div class="col-xs-8 col-xs-offset-2 text-center">
    <h3>This is an <a href="https://github.com/letsencrypt/acme-spec/">ACME</a> Certificate Authority running <a href="https://github.com/letsencrypt/boulder">Boulder</a>.</h3>
    <p>This is a <em>programmatic</em> endpoint, an API for a computer to talk to. You should probably be using a specialized client to utilize the service, and not your web browser. See <a href="https://letsencrypt.org/"><tt>https://letsencrypt.org/</tt></a> for help.</p>
    <p>If you're trying to use this service, note that the starting point, <em>the directory</em>, is available at this URL: <a href="https://acme-v02.api.letsencrypt.org/directory"><tt>https://acme-v02.api.letsencrypt.org/directory</a></tt>.</p>
  </div>
</div>
<div class="row">
  <div class="col-xs-4 col-xs-offset-2 text-center">
    <p><a href="https://letsencrypt.status.io" title="Twitter">
      <i class="fa fa-area-chart"></i>
      Service Status (letsencrypt.status.io)
    </a></p>
  </div>
  <div class="col-xs-4 text-center">
    <p><a href="https://twitter.com/letsencrypt" title="Twitter">
      <i class="fa fa-twitter"></i>
      Check with us on Twitter
    </a></p>
  </div>
</div> <!-- row -->

curl https://acme-v02.api.letsencrypt.org/
look on screenshot http://joxi.ru/4AkLZjQTo9Badr

letsencrypt-auto --version
certbot 0.36.0

Mhm. That looks good. And your Certbot is new.

Oh: What's that?

You have one old certificate ( https://check-your-website.server-daten.de/?q=poster-bot.com ):

But that's expired, there is no newer certificate.

Are there different Certbot installations, so you use an older version?

maybe.
I’ve reinstalled it. Because I couldn’t renew my certificate with command: letsencrypt-auto renew

What should I do for renewing old or reinstalling new certificate?

Looks like you use your old version.

Use

sudo certbot

or install certbot-auto and use that.

Mixed versions are always terrible.

Thanks for your help.

I’ve resolved my problem with using certbot-auto tool instead of letsencrypt-auto.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.