Let encrypt renewal email got again

#21

It’s upgrading software, which you need to do on a daily basis…

Hopefully, everything will work about the same as before, but with hundreds of security issues and other bugs fixed.

2 Likes
#22

Hi @mnordhoff,

Now finished all. How can i continue?

Thanks.

#23

@mnordhoff,

Now certbot version is certbot 0.31.0. How can i continue?

Thanks.

#24

Now that Certbot is upgraded, the “Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.” issue should be fixed.

Try running Certbot again. It should either work, or fail with a different error message.

#25

Which command can i run. Please i don’t familiar with command. How to check.

#26

Earlier, you ran this command:

You could also try “sudo certbot renew” or “sudo certbot renew --dry-run”.

#27

@mnordhoff,

I trying to run. Thanks. I will let you know when done. Thanks.

#28

@mnordhoff , when i run below command.

I got this message " Saving debug log to /var/log/letsencrypt/letsencrypt.log

An unexpected error occurred:

UnicodeDecodeError: ‘ascii’ codec can’t decode byte 0xe2 in position 2355: ordinal not in range(128)

Please see the logfiles in /var/log/letsencrypt for more details"

Thanks. Please advice.

#29

Please paste the traceback from /var/log/letsencrypt/letsencrypt.log.

#30

@mnordhoff,

2019-04-08 07:51:35,299:DEBUG:acme.client:Storing nonce: 75V4lZLKDNH0od0wd0pyDvzeZzGPM_oV8Yb1Vdk42sU
2019-04-08 07:51:35,299:DEBUG:acme.challenges:tls-alpn-01 was not recognized, full message: {u’status’: u’pending’, u’token’: u’G65igNVCyVTNJyNnWdwiNBLqRFfJhe2XIcQYQNPgI_E’, u’type’: u’tls-alpn-01’, u’uri’: u’https://acme-staging.api.letsencrypt.org/acme/challenge/lvVRYfKjnOHGY6aEYa18cmN9F9P7wcHquXw6q97sERw/293349097’}
2019-04-08 07:51:35,300:DEBUG:acme.client:JWS payload:
{
“identifier”: {
“type”: “dns”,
“value”: “cdn2.straatosphere.com
},
“resource”: “new-authz”
}
2019-04-08 07:51:35,303:DEBUG:acme.client:Sending POST request to https://acme-staging.api.letsencrypt.org/acme/new-authz:
{
“protected”: “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”,
“payload”: “ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAiY2RuMi5zdHJhYXRvc3BoZXJlLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9”,
“signature”: “q_1Vgvg_SPkpyqA7Fdzsa5GfiLrEoiJ1yb0bC0cqAMKythcKe120M1vsBm5IUIWtGbmVD1atd-uKqFxxyttVNj8y4i8ewouXA2QyBhbG7C5vhsfkA0Miev3TAnQv-NFlI_Gw9kb5QddxJIzABgvYLPI2XPUT0DUg9h-yEJigimfsEjPfCT1KYDfyAyuSJt5IAge2w6OUeKVyFI-JnhbIdGjPWqpqnlZbYEY-KRqLsvAmref9O14v96m6Zg_YbuBhwb_bafTSSvbsceHi-d5GdEGcJiXFHQ-lZ5XPoFVIkAp0aSoPNNZrK6w1hQ-fP3AAGgi8e6QjUk1wPRG6wjfHQg”
}
2019-04-08 07:51:35,564:DEBUG:requests.packages.urllib3.connectionpool:“POST /acme/new-authz HTTP/1.1” 201 1010
2019-04-08 07:51:35,565:DEBUG:acme.client:Received response:
HTTP 201
Content-Length: 1010
Strict-Transport-Security: max-age=604800
Boulder-Requester: 8738945
Expires: Mon, 08 Apr 2019 07:51:35 GMT
Server: nginx
Connection: keep-alive
Link: https://acme-staging.api.letsencrypt.org/acme/new-cert;rel=“next”
Location: https://acme-staging.api.letsencrypt.org/acme/authz/_RzjJqbYnLxlcmUrMXgRVRY64SocUX4cnecjm9uu9qY
Pragma: no-cache
Cache-Control: max-age=0, no-cache, no-store
Date: Mon, 08 Apr 2019 07:51:35 GMT
X-Frame-Options: DENY
Content-Type: application/json
Replay-Nonce: t1lyuPCuoK3Nmm7MmNufDcg-1L0YpEHiigN-GHmL7Y0

{
“identifier”: {
“type”: “dns”,
“value”: “cdn2.straatosphere.com
},
“status”: “pending”,
“expires”: “2019-04-15T00:38:02Z”,
“challenges”: [
{
“type”: “dns-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/_RzjJqbYnLxlcmUrMXgRVRY64SocUX4cnecjm9uu9qY/293349098”,
“token”: “iliQmaj6FLN4mnWZis_9SrjNPbqMTA-M4zTxZPry_rU”
},
{
“type”: “tls-alpn-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/_RzjJqbYnLxlcmUrMXgRVRY64SocUX4cnecjm9uu9qY/293349099”,
“token”: “VFEvnHIJyS14_UfTYQzBhI0n16Am42ADKviQZwgs8vE”
},
{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/_RzjJqbYnLxlcmUrMXgRVRY64SocUX4cnecjm9uu9qY/293349100”,
“token”: “Bg0Wd53EmiHAbCNoseYei40-NzNGJgpn3L7HTiLDhYs”
}
],
“combinations”: [
[
1
],
[
2
],
[
0
]
]
}
2019-04-08 07:51:35,565:DEBUG:acme.client:Storing nonce: t1lyuPCuoK3Nmm7MmNufDcg-1L0YpEHiigN-GHmL7Y0
2019-04-08 07:51:35,566:DEBUG:acme.challenges:tls-alpn-01 was not recognized, full message: {u’status’: u’pending’, u’token’: u’VFEvnHIJyS14_UfTYQzBhI0n16Am42ADKviQZwgs8vE’, u’type’: u’tls-alpn-01’, u’uri’: u’https://acme-staging.api.letsencrypt.org/acme/challenge/_RzjJqbYnLxlcmUrMXgRVRY64SocUX4cnecjm9uu9qY/293349099’}
2019-04-08 07:51:35,566:DEBUG:acme.client:JWS payload:
{
“identifier”: {
“type”: “dns”,
“value”: “cdn3.straatosphere.com
},
“resource”: “new-authz”
}
2019-04-08 07:51:35,570:DEBUG:acme.client:Sending POST request to https://acme-staging.api.letsencrypt.org/acme/new-authz:
{
“protected”: “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”,
“payload”: “ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAiY2RuMy5zdHJhYXRvc3BoZXJlLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9”,
“signature”: “jAU8h_R4-kmnPcxBoIGJ3vX7iD60GVLZREHZ5CffmcwcksPGjxp6M-Q0qw2cCFTXX1dJuju7MshkTQmsgvCbmtApbbkT-dyWFzbOmdvaw03fEdESGfN9zjbdbjuILOzCF12iu4hbqG1N3zOXwncdX0smv_EzmOfCHabj53Zb29OpTHWLkehaK9drm1UXU0ofTtcbuW8S1Peqw8J9CW6H6Q8zA2nPqoD2–iT_mhB9t1XmbSLMHppOiVeOtC_fYG1GEVd6-HkEGpx8N-_ZKBv6gFLkiBymuZ_TJmVziNnlL1uK2qWzQL1glnPbulJIqIGi67pKie9IGS9R4Q7ibqMzA”
}
2019-04-08 07:51:35,802:DEBUG:requests.packages.urllib3.connectionpool:“POST /acme/new-authz HTTP/1.1” 201 1010
2019-04-08 07:51:35,803:DEBUG:acme.client:Received response:
HTTP 201
Content-Length: 1010
Strict-Transport-Security: max-age=604800
Boulder-Requester: 8738945
Expires: Mon, 08 Apr 2019 07:51:35 GMT
Server: nginx
Connection: keep-alive
Link: https://acme-staging.api.letsencrypt.org/acme/new-cert;rel=“next”
Location: https://acme-staging.api.letsencrypt.org/acme/authz/Go98FnDsWvUf6zAdsicbkagAtyaHCJ5ynIeiFFrDo6o
Pragma: no-cache
Cache-Control: max-age=0, no-cache, no-store
Date: Mon, 08 Apr 2019 07:51:35 GMT
X-Frame-Options: DENY
Content-Type: application/json
Replay-Nonce: msfegfUJQDXmUufE0Ki3_JS5bp4Sbexv5Shrvv_7Yjs

{
“identifier”: {
“type”: “dns”,
“value”: “cdn3.straatosphere.com
},
“status”: “pending”,
“expires”: “2019-04-15T00:38:02Z”,
“challenges”: [
{
“type”: “dns-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/Go98FnDsWvUf6zAdsicbkagAtyaHCJ5ynIeiFFrDo6o/293349107”,
“token”: “d_p1ugOY76RrOnyELlsw3YZPZ4isiEulLJ-IxxDPK28”
},
{
“type”: “tls-alpn-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/Go98FnDsWvUf6zAdsicbkagAtyaHCJ5ynIeiFFrDo6o/293349108”,
“token”: “VCLGJoJYrv1XRnMG-S6_TMzA-6DDggcAU764u7f-Ekg”
},
{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/Go98FnDsWvUf6zAdsicbkagAtyaHCJ5ynIeiFFrDo6o/293349109”,
“token”: “rNVRMriHoWevBmR33FMJ0Uxuezzoio54wosx2GoOfkU”
}
],
“combinations”: [
[
0
],
[
2
],
[
1
]
]
}
2019-04-08 07:51:35,803:DEBUG:acme.client:Storing nonce: msfegfUJQDXmUufE0Ki3_JS5bp4Sbexv5Shrvv_7Yjs
2019-04-08 07:51:35,803:DEBUG:acme.challenges:tls-alpn-01 was not recognized, full message: {u’status’: u’pending’, u’token’: u’VCLGJoJYrv1XRnMG-S6_TMzA-6DDggcAU764u7f-Ekg’, u’type’: u’tls-alpn-01’, u’uri’: u’https://acme-staging.api.letsencrypt.org/acme/challenge/Go98FnDsWvUf6zAdsicbkagAtyaHCJ5ynIeiFFrDo6o/293349108’}
2019-04-08 07:51:35,804:DEBUG:acme.client:JWS payload:
{
“identifier”: {
“type”: “dns”,
“value”: “cdn4.straatosphere.com
},
“resource”: “new-authz”
}
2019-04-08 07:51:35,808:DEBUG:acme.client:Sending POST request to https://acme-staging.api.letsencrypt.org/acme/new-authz:
{
“protected”: “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”,
“payload”: “ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAiY2RuNC5zdHJhYXRvc3BoZXJlLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9”,
“signature”: “X40og_RIzGs4LVQP6wT7RQ49G4U101r14PZ9TXWdogRGpwrAgK8A_v2f9Tt_H8Y-tSc9QKeatyrL0xqDubVfFnN_PZoZRqH2MAaLBNSqCvRa1svnGDywtf6e-yVYCld4tKvQEYLsN0QFskTXj2MRBiKQTvFZOE5ZLR-BziSQ0nPpysIUVWKPzCozvkZIFL-CVnU4mAFmXpeaqrrExZmW2qh9jSkJvNHYz2fuQaohaqGL0hLqo0zmCFBt8nLrT72aQY9PmtnOTe6fX3RTVawuobeElaJlaIKF2F3NYgGWnFnsDMTQeFEVpkNC6Qi0r6m48kJUcSE4VJIrWe3s6ggbiA”
}
2019-04-08 07:51:36,041:DEBUG:requests.packages.urllib3.connectionpool:“POST /acme/new-authz HTTP/1.1” 201 1010
2019-04-08 07:51:36,041:DEBUG:acme.client:Received response:
HTTP 201
Content-Length: 1010
Strict-Transport-Security: max-age=604800
Boulder-Requester: 8738945
Expires: Mon, 08 Apr 2019 07:51:36 GMT
Server: nginx
Connection: keep-alive
Link: https://acme-staging.api.letsencrypt.org/acme/new-cert;rel=“next”
Location: https://acme-staging.api.letsencrypt.org/acme/authz/25OO3rxt-QfL7lXyROQNmCLlcGUeG0YBmQok26fMjd4
Pragma: no-cache
Cache-Control: max-age=0, no-cache, no-store
Date: Mon, 08 Apr 2019 07:51:36 GMT
X-Frame-Options: DENY
Content-Type: application/json
Replay-Nonce: 37MMRYwMYzDTtR6JJdGlMcxsREA25wvj7u2osGbyrgU

{
“identifier”: {
“type”: “dns”,
“value”: “cdn4.straatosphere.com
},
“status”: “pending”,
“expires”: “2019-04-15T00:38:02Z”,
“challenges”: [
{
“type”: “dns-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/25OO3rxt-QfL7lXyROQNmCLlcGUeG0YBmQok26fMjd4/293349116”,
“token”: “s-uCbsfTnNa4uE17kEi9vhACov33IpSG4-1nh47ffFI”
},
{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/25OO3rxt-QfL7lXyROQNmCLlcGUeG0YBmQok26fMjd4/293349117”,
“token”: “WW0pqX2Eo1asd5Ac-pFuBpMjP0LZgjjM6fWY8zR79H4”
},
{
“type”: “tls-alpn-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/25OO3rxt-QfL7lXyROQNmCLlcGUeG0YBmQok26fMjd4/293349118”,
“token”: “UFvNPIN_s1lZ5IsooTmdQXarFl3Y7iEh1PIQsFf1GAo”
}
],
“combinations”: [
[
1
],
[
0
],
[
2
]
]
}
2019-04-08 07:51:36,042:DEBUG:acme.client:Storing nonce: 37MMRYwMYzDTtR6JJdGlMcxsREA25wvj7u2osGbyrgU
2019-04-08 07:51:36,042:DEBUG:acme.challenges:tls-alpn-01 was not recognized, full message: {u’status’: u’pending’, u’token’: u’UFvNPIN_s1lZ5IsooTmdQXarFl3Y7iEh1PIQsFf1GAo’, u’type’: u’tls-alpn-01’, u’uri’: u’https://acme-staging.api.letsencrypt.org/acme/challenge/25OO3rxt-QfL7lXyROQNmCLlcGUeG0YBmQok26fMjd4/293349118’}
2019-04-08 07:51:36,042:DEBUG:acme.client:JWS payload:
{
“identifier”: {
“type”: “dns”,
“value”: “www.straatosphere.com
},
“resource”: “new-authz”
}
2019-04-08 07:51:36,046:DEBUG:acme.client:Sending POST request to https://acme-staging.api.letsencrypt.org/acme/new-authz:
{
“protected”: “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”,
“payload”: “ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAid3d3LnN0cmFhdG9zcGhlcmUuY29tIgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0”,
“signature”: “IXT4hDJHawmW83pr4UK91_Wz9MXpkVPKUIE-86g3xPitZxzhoUnl7V5qLqGbd5jzEDoZR63mR2_7TMtGCHgMATSvx_7sZmKblgP3x8apotVRcCtPmHA6EjFiod-re1V-cFJUwyn9X2AjwAiV9-zyOtEYXMcDRt1iSjEkrSWcFa4MI87tX-QZQAphx4HAK6fXjNxmMC76Zduj-Z8gsPnbd5nxWFSqYX_Yw2UFCLrH-5oLu5uXaG0UvMR9QBX1CNNti4ILA5HOCeR-kjPCzmIjW5nskQkRSn9A5UQiojBMSR9adwUblZXDgoYuHSCk__y4PCLML7TFElvhLFmKR9Nlnw”
}
2019-04-08 07:51:36,295:DEBUG:requests.packages.urllib3.connectionpool:“POST /acme/new-authz HTTP/1.1” 201 1009
2019-04-08 07:51:36,296:DEBUG:acme.client:Received response:
HTTP 201
Content-Length: 1009
Strict-Transport-Security: max-age=604800
Boulder-Requester: 8738945
Expires: Mon, 08 Apr 2019 07:51:36 GMT
Server: nginx
Connection: keep-alive
Link: https://acme-staging.api.letsencrypt.org/acme/new-cert;rel=“next”
Location: https://acme-staging.api.letsencrypt.org/acme/authz/KJaqIsJo6rO90OxZU_SHpYiGD6xAS7FXjnSOnuTOEvM
Pragma: no-cache
Cache-Control: max-age=0, no-cache, no-store
Date: Mon, 08 Apr 2019 07:51:36 GMT
X-Frame-Options: DENY
Content-Type: application/json
Replay-Nonce: q_95vsh9F6yR7iuvay2SvQTaV48hL3UDZigZIgtnX7E

{
“identifier”: {
“type”: “dns”,
“value”: “www.straatosphere.com
},
“status”: “pending”,
“expires”: “2019-04-15T00:38:02Z”,
“challenges”: [
{
“type”: “dns-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/KJaqIsJo6rO90OxZU_SHpYiGD6xAS7FXjnSOnuTOEvM/293349128”,
“token”: “DyiaE8LGgBe1NUpwADPRorX4ersVY-YuHkmI3QP7D9o”
},
{
“type”: “tls-alpn-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/KJaqIsJo6rO90OxZU_SHpYiGD6xAS7FXjnSOnuTOEvM/293349129”,
“token”: “eIMkDqmaJnp3vZUMj5SYiaH3v9XYBh5j4CV2dZSbkf8”
},
{
“type”: “http-01”,
“status”: “pending”,
“uri”: “https://acme-staging.api.letsencrypt.org/acme/challenge/KJaqIsJo6rO90OxZU_SHpYiGD6xAS7FXjnSOnuTOEvM/293349130”,
“token”: “InclPj11_PJKz0AMunH8f_OhWvVmYHthAlLXJrVvMHo”
}
],
“combinations”: [
[
2
],
[
0
],
[
1
]
]
}
2019-04-08 07:51:36,296:DEBUG:acme.client:Storing nonce: q_95vsh9F6yR7iuvay2SvQTaV48hL3UDZigZIgtnX7E
2019-04-08 07:51:36,297:DEBUG:acme.challenges:tls-alpn-01 was not recognized, full message: {u’status’: u’pending’, u’token’: u’eIMkDqmaJnp3vZUMj5SYiaH3v9XYBh5j4CV2dZSbkf8’, u’type’: u’tls-alpn-01’, u’uri’: u’https://acme-staging.api.letsencrypt.org/acme/challenge/KJaqIsJo6rO90OxZU_SHpYiGD6xAS7FXjnSOnuTOEvM/293349129’}
2019-04-08 07:51:36,297:INFO:certbot.auth_handler:Performing the following challenges:
2019-04-08 07:51:36,297:CRITICAL:certbot.auth_handler:Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.
2019-04-08 07:51:36,299:WARNING:certbot.renewal:Attempting to renew cert (straatosphere.com) from /etc/letsencrypt/renewal/straatosphere.com.conf produced an unexpected error: Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA… Skipping.
2019-04-08 07:51:36,300:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File “/usr/lib/python2.7/dist-packages/certbot/renewal.py”, line 425, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File “/usr/lib/python2.7/dist-packages/certbot/main.py”, line 743, in renew_cert
_get_and_save_cert(le_client, config, lineage=lineage)
File “/usr/lib/python2.7/dist-packages/certbot/main.py”, line 80, in _get_and_save_cert
renewal.renew_cert(config, domains, le_client, lineage)
File “/usr/lib/python2.7/dist-packages/certbot/renewal.py”, line 297, in renew_cert
new_certr, new_chain, new_key, _ = le_client.obtain_certificate(domains)
File “/usr/lib/python2.7/dist-packages/certbot/client.py”, line 318, in obtain_certificate
self.config.allow_subset_of_names)
File “/usr/lib/python2.7/dist-packages/certbot/auth_handler.py”, line 68, in get_authorizations
self._choose_challenges(domains)
File “/usr/lib/python2.7/dist-packages/certbot/auth_handler.py”, line 103, in _choose_challenges
self.authzr[dom].body.combinations)
File “/usr/lib/python2.7/dist-packages/certbot/auth_handler.py”, line 374, in gen_challenge_path
return _find_smart_path(challbs, preferences, combinations)
File “/usr/lib/python2.7/dist-packages/certbot/auth_handler.py”, line 411, in _find_smart_path
_report_no_chall_path()
File “/usr/lib/python2.7/dist-packages/certbot/auth_handler.py”, line 442, in _report_no_chall_path
raise errors.AuthorizationError(msg)
AuthorizationError: Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.

2019-04-08 07:51:36,300:ERROR:certbot.renewal:All renewal attempts failed. The following certs could not be renewed:
2019-04-08 07:51:36,300:ERROR:certbot.renewal: /etc/letsencrypt/live/straatosphere.com-0001/fullchain.pem (failure)
/etc/letsencrypt/live/straatosphere.com/fullchain.pem (failure)
2019-04-08 07:51:36,302:INFO:certbot.hooks:Running post-hook command: service nginx start
2019-04-08 07:51:39,007:ERROR:certbot.hooks:Hook command “service nginx start” returned error code 1
2019-04-08 07:51:39,007:ERROR:certbot.hooks:Error output from service:
Job for nginx.service failed because the control process exited with error code. See “systemctl status nginx.service” and “journalctl -xe” for details.

2019-04-08 07:51:39,007:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File “/usr/bin/certbot”, line 11, in
load_entry_point(‘certbot==0.19.0’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python2.7/dist-packages/certbot/main.py”, line 861, in main
return config.func(config, plugins)
File “/usr/lib/python2.7/dist-packages/certbot/main.py”, line 797, in renew
renewal.handle_renewal_request(config)
File “/usr/lib/python2.7/dist-packages/certbot/renewal.py”, line 443, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 2 renew failure(s), 0 parse failure(s)
2019-04-08 08:15:25,418:DEBUG:certbot.main:certbot version: 0.31.0
2019-04-08 08:15:25,419:DEBUG:certbot.main:Arguments: [’–dry-run’]
2019-04-08 08:15:25,420:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2019-04-08 08:15:25,431:DEBUG:certbot.log:Root logging level set at 20
2019-04-08 08:15:25,432:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2019-04-08 08:15:25,443:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0x7f4d2b006160> and installer <certbot.cli._Default object at 0x7f4d2b006160>
2019-04-08 08:15:25,443:DEBUG:certbot.cli:Var dry_run=True (set by user).
2019-04-08 08:15:25,443:DEBUG:certbot.cli:Var server={‘dry_run’, ‘staging’} (set by user).
2019-04-08 08:15:25,444:DEBUG:certbot.cli:Var account={‘server’} (set by user).
2019-04-08 08:15:25,456:INFO:certbot.renewal:Cert not due for renewal, but simulating renewal for dry run
2019-04-08 08:15:25,456:DEBUG:certbot.plugins.selection:Requested authenticator standalone and installer nginx
2019-04-08 08:15:25,595:WARNING:certbot.renewal:Attempting to renew cert (straatosphere.com-0001) from /etc/letsencrypt/renewal/straatosphere.com-0001.conf produced an unexpected error: ‘ascii’ codec can’t decode byte 0xe2 in position 2355: ordinal not in range(128). Skipping.
2019-04-08 08:15:25,598:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File “/usr/lib/python3/dist-packages/certbot/renewal.py”, line 452, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1187, in renew_cert
installer, auth = plug_sel.choose_configurator_plugins(config, plugins, “certonly”)
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 228, in choose_configurator_plugins
installer = pick_installer(config, req_inst, plugins, installer_question)
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 32, in pick_installer
config, default, plugins, question, (interfaces.IInstaller,))
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 106, in pick_plugin
verified.prepare()
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 251, in prepare
return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 251, in
return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 132, in prepare
self._initialized.prepare()
File “/usr/lib/python3/dist-packages/certbot_nginx/configurator.py”, line 152, in prepare
self.parser = parser.NginxParser(self.conf(‘server-root’))
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 38, in init
self.load()
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 45, in load
self._parse_recursively(self.config_root)
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 66, in _parse_recursively
self._parse_recursively(subentry[1])
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 56, in _parse_recursively
trees = self._parse_files(filepath)
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 207, in _parse_files
parsed = nginxparser.load(_file)
File “/usr/lib/python3/dist-packages/certbot_nginx/nginxparser.py”, line 123, in load
return loads(_file.read())
File “/usr/lib/python3.5/encodings/ascii.py”, line 26, in decode
return codecs.ascii_decode(input, self.errors)[0]
UnicodeDecodeError: ‘ascii’ codec can’t decode byte 0xe2 in position 2355: ordinal not in range(128)

2019-04-08 08:15:25,600:DEBUG:certbot.cli:Var dry_run=True (set by user).
2019-04-08 08:15:25,600:DEBUG:certbot.cli:Var server={‘dry_run’, ‘staging’} (set by user).
2019-04-08 08:15:25,600:DEBUG:certbot.cli:Var account={‘server’} (set by user).
2019-04-08 08:15:25,605:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2019-04-17 11:37:42 UTC.
2019-04-08 08:15:25,605:INFO:certbot.renewal:Cert is due for renewal, auto-renewing…
2019-04-08 08:15:25,605:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
2019-04-08 08:15:25,745:WARNING:certbot.renewal:Attempting to renew cert (straatosphere.com) from /etc/letsencrypt/renewal/straatosphere.com.conf produced an unexpected error: ‘ascii’ codec can’t decode byte 0xe2 in position 2355: ordinal not in range(128). Skipping.
2019-04-08 08:15:25,746:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File “/usr/lib/python3/dist-packages/certbot/renewal.py”, line 452, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1187, in renew_cert
installer, auth = plug_sel.choose_configurator_plugins(config, plugins, “certonly”)
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 228, in choose_configurator_plugins
installer = pick_installer(config, req_inst, plugins, installer_question)
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 32, in pick_installer
config, default, plugins, question, (interfaces.IInstaller,))
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 106, in pick_plugin
verified.prepare()
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 251, in prepare
return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 251, in
return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 132, in prepare
self._initialized.prepare()
File “/usr/lib/python3/dist-packages/certbot_nginx/configurator.py”, line 152, in prepare
self.parser = parser.NginxParser(self.conf(‘server-root’))
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 38, in init
self.load()
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 45, in load
self._parse_recursively(self.config_root)
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 66, in _parse_recursively
self._parse_recursively(subentry[1])
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 56, in _parse_recursively
trees = self._parse_files(filepath)
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 207, in _parse_files
parsed = nginxparser.load(_file)
File “/usr/lib/python3/dist-packages/certbot_nginx/nginxparser.py”, line 123, in load
return loads(_file.read())
File “/usr/lib/python3.5/encodings/ascii.py”, line 26, in decode
return codecs.ascii_decode(input, self.errors)[0]
UnicodeDecodeError: ‘ascii’ codec can’t decode byte 0xe2 in position 2355: ordinal not in range(128)

2019-04-08 08:15:25,746:ERROR:certbot.renewal:All renewal attempts failed. The following certs could not be renewed:
2019-04-08 08:15:25,747:ERROR:certbot.renewal: /etc/letsencrypt/live/straatosphere.com-0001/fullchain.pem (failure)
/etc/letsencrypt/live/straatosphere.com/fullchain.pem (failure)
2019-04-08 08:15:25,747:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File “/usr/bin/certbot”, line 11, in
load_entry_point(‘certbot==0.31.0’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1365, in main
return config.func(config, plugins)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1272, in renew
renewal.handle_renewal_request(config)
File “/usr/lib/python3/dist-packages/certbot/renewal.py”, line 477, in handle_renewal_request
len(renew_failures), len(parse_failures)))
certbot.errors.Error: 2 renew failure(s), 0 parse failure(s)
2019-04-08 08:16:14,066:DEBUG:certbot.main:certbot version: 0.31.0
2019-04-08 08:16:14,067:DEBUG:certbot.main:Arguments: [’–nginx’, ‘-d’, ‘straatosphere.com’, ‘-d’, ‘www.straatosphere.com’, ‘-d’, ‘cdn.straatosphere.com’, ‘-d’, ‘cdn2.straatosphere.com’, ‘-d’, ‘cdn3.straatosphere.com’, ‘-d’, ‘cdn4.straatosphere.com’]
2019-04-08 08:16:14,068:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2019-04-08 08:16:14,080:DEBUG:certbot.log:Root logging level set at 20
2019-04-08 08:16:14,081:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2019-04-08 08:16:14,081:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
2019-04-08 08:16:14,227:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File “/usr/bin/certbot”, line 11, in
load_entry_point(‘certbot==0.31.0’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1365, in main
return config.func(config, plugins)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1229, in certonly
installer, auth = plug_sel.choose_configurator_plugins(config, plugins, “certonly”)
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 228, in choose_configurator_plugins
installer = pick_installer(config, req_inst, plugins, installer_question)
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 32, in pick_installer
config, default, plugins, question, (interfaces.IInstaller,))
File “/usr/lib/python3/dist-packages/certbot/plugins/selection.py”, line 106, in pick_plugin
verified.prepare()
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 251, in prepare
return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 251, in
return [plugin_ep.prepare() for plugin_ep in six.itervalues(self._plugins)]
File “/usr/lib/python3/dist-packages/certbot/plugins/disco.py”, line 132, in prepare
self._initialized.prepare()
File “/usr/lib/python3/dist-packages/certbot_nginx/configurator.py”, line 152, in prepare
self.parser = parser.NginxParser(self.conf(‘server-root’))
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 38, in init
self.load()
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 45, in load
self._parse_recursively(self.config_root)
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 66, in _parse_recursively
self._parse_recursively(subentry[1])
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 56, in _parse_recursively
trees = self._parse_files(filepath)
File “/usr/lib/python3/dist-packages/certbot_nginx/parser.py”, line 207, in _parse_files
parsed = nginxparser.load(_file)
File “/usr/lib/python3/dist-packages/certbot_nginx/nginxparser.py”, line 123, in load
return loads(_file.read())
File “/usr/lib/python3.5/encodings/ascii.py”, line 26, in decode
return codecs.ascii_decode(input, self.errors)[0]
UnicodeDecodeError: ‘ascii’ codec can’t decode byte 0xe2 in position 2355: ordinal not in range(128)
2019-04-08 08:16:14,229:ERROR:certbot.log:An unexpected error occurred:

#31

That’s a

â

Looks like a typo ^ a

#32

@JuergenAuer,

Where is it? Please let me know.
Thanks.

#33

I don’t know. Check your nginx config files and your letsencrypt renewal files.

#34

Hi @JuergenAuer

I cannot find anything.

#35

It’s some sort of non-ASCII Unicode character at position 2,355 in one of the Nginx configuration files.

Certbot unfortunately doesn’t fully support non-ASCII configuration files yet.

#36

@mnordhoff,

Where can i fixed this issue in config? Please advice me.

Thanks.

#37

@mnordhoff,

Can i use this one? “grep -nRP ‘[\x80-\xFF]’ /etc/nginx”.

Thanks.

#38

@mnordhoff and @JuergenAuer,

Please advice me this issue.

Thanks. :anguished::anguished:

#39

Yes. I’m sorry I haven’t fixed this problem yet! Certbot, even the newest versions, may fail when you have any non-ASCII character in your nginx configuration. (This could include a comment in a language other than English.)

#40

@schoen,

How can i do that for this? Please advice for this. I need very urgent. Please help me.

Thanks.