Thanks !!
Here:
sudo cat /var/log/letsencrypt/letsencrypt.log.1
2019-10-18 14:35:47,328:DEBUG:certbot.main:certbot version: 0.38.0
2019-10-18 14:35:47,328:DEBUG:certbot.main:Arguments: ['--apache', '-d', 'genelab-galaxy.usra.edu']
2019-10-18 14:35:47,328:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2019-10-18 14:35:47,350:DEBUG:certbot.log:Root logging level set at 20
2019-10-18 14:35:47,350:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2019-10-18 14:35:47,351:DEBUG:certbot.plugins.selection:Requested authenticator apache and installer apache
2019-10-18 14:35:47,505:DEBUG:certbot_apache.configurator:Apache version is 2.4.6
2019-10-18 14:35:48,110:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache
Description: Apache Web Server plugin
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = certbot_apache.entrypoint:ENTRYPOINT
Initialized: <certbot_apache.override_centos.CentOSConfigurator object at 0x7f1333467490>
Prep: True
2019-10-18 14:35:48,111:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_apache.override_centos.CentOSConfigurator object at 0x7f1333467490> and installer <certbot_apache.override_centos.CentOSConfigurator object at 0x7f1333467490>
2019-10-18 14:35:48,111:INFO:certbot.plugins.selection:Plugins selected: Authenticator apache, Installer apache
2019-10-18 14:35:48,139:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, terms_of_service_agreed=None, agreement=None, only_return_existing=None, contact=(), key=None, external_account_binding=None), uri=u'https://acme-v02.api.letsencrypt.org/acme/acct/69588500', new_authzr_uri=None, terms_of_service=None), d4d24dbb09eef8690556ff06398d3f42, Meta(creation_host=u'galaxy.usra.edu', creation_dt=datetime.datetime(2019, 10, 16, 20, 54, 51, tzinfo=<UTC>)))>
2019-10-18 14:35:48,149:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2019-10-18 14:35:48,154:INFO:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org
2019-10-18 14:35:48,329:DEBUG:requests.packages.urllib3.connectionpool:"GET /directory HTTP/1.1" 200 658
2019-10-18 14:35:48,330:DEBUG:acme.client:Received response:
HTTP 200
content-length: 658
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
cache-control: public, max-age=0, no-cache
date: Fri, 18 Oct 2019 19:35:48 GMT
x-frame-options: DENY
content-type: application/json
{
"0CbMTIC0wxo": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2019-10-18 14:35:48,332:INFO:certbot.main:Obtaining a new certificate
2019-10-18 14:35:48,547:DEBUG:certbot.crypto_util:Generating key (2048 bits): /etc/letsencrypt/keys/0017_key-certbot.pem
2019-10-18 14:35:48,550:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0017_csr-certbot.pem
2019-10-18 14:35:48,550:DEBUG:acme.client:Requesting fresh nonce
2019-10-18 14:35:48,551:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2019-10-18 14:35:48,592:DEBUG:requests.packages.urllib3.connectionpool:"HEAD /acme/new-nonce HTTP/1.1" 200 0
2019-10-18 14:35:48,593:DEBUG:acme.client:Received response:
HTTP 200
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
cache-control: public, max-age=0, no-cache
date: Fri, 18 Oct 2019 19:35:48 GMT
x-frame-options: DENY
replay-nonce: 0001NF-67-KkXYftX69lW7WNNmOX_R47h_m5RV3QXuDPcw4
2019-10-18 14:35:48,593:DEBUG:acme.client:Storing nonce: 0001NF-67-KkXYftX69lW7WNNmOX_R47h_m5RV3QXuDPcw4
2019-10-18 14:35:48,594:DEBUG:acme.client:JWS payload:
{
"identifiers": [
{
"type": "dns",
"value": "genelab-galaxy.usra.edu"
}
]
}
2019-10-18 14:35:48,597:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJub25jZSI6ICIwMDAxTkYtNjctS2tYWWZ0WDY5bFc3V05ObU9YX1I0N2hfbTVSVjNRWHVEUGN3NCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvbmV3LW9yZGVyIiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzY5NTg4NTAwIiwgImFsZyI6ICJSUzI1NiJ9",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwgCiAgICAgICJ2YWx1ZSI6ICJnZW5lbGFiLWdhbGF4eS51c3JhLmVkdSIKICAgIH0KICBdCn0",
"signature": "j35Yzo9Q1A59eSoW9O4r041woXx08szCTxyFvenXJ4cLxHLYjYQuwuWFOVc4G-0KG1nSPK2c9b3S-PrN6vYCl0_xnXYvgaX8tpJpq669nZ_4D5wfU-_Ky2LdZ8fGEIt2tgsaHaMwE0m21FQdqJfVPaP7Cq1mq3yP9oWQkuiSscRWnwXA-xkNv6frh1TiFYQl1I4AvOgfFQkA87Yd_ANHqlAUn6fi1awlOf8fLZ5-7Y74YTtiuSaAnHMK_FY--FzURGZrCxh-jz406Z17cBJLSkJ9mXD8QyU8jvcjleKihkvY6wQHNevZHRiv8ur9950F5DdOR_fQSb0C9moRVuPIbA"
}
2019-10-18 14:35:48,712:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/new-order HTTP/1.1" 201 352
2019-10-18 14:35:48,713:DEBUG:acme.client:Received response:
HTTP 201
content-length: 352
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
location: https://acme-v02.api.letsencrypt.org/acme/order/69588500/1313784331
boulder-requester: 69588500
date: Fri, 18 Oct 2019 19:35:48 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0002iZt4SurjYnldTFGrexLVNZ2KRykpIhyhxd8jqjiOtNI
{
"status": "pending",
"expires": "2019-10-25T19:35:48.683194759Z",
"identifiers": [
{
"type": "dns",
"value": "genelab-galaxy.usra.edu"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/837052177"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/69588500/1313784331"
}
2019-10-18 14:35:48,714:DEBUG:acme.client:Storing nonce: 0002iZt4SurjYnldTFGrexLVNZ2KRykpIhyhxd8jqjiOtNI
2019-10-18 14:35:48,714:DEBUG:acme.client:JWS payload:
2019-10-18 14:35:48,717:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/837052177:
{
"protected": "eyJub25jZSI6ICIwMDAyaVp0NFN1cmpZbmxkVEZHcmV4TFZOWjJLUnlrcEloeWh4ZDhqcWppT3ROSSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODM3MDUyMTc3IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzY5NTg4NTAwIiwgImFsZyI6ICJSUzI1NiJ9",
"payload": "",
"signature": "A3em935jklvBPuKwasPyOFLZoioSrccTbaV77jdkfiN9VCXYm9h2dzha649KwMJPa5C1WzjmGyhW6dR8rbJilu6xZKi-wU8Qx6wi5LZgQ7nP8F4Qz1qiNBgYJ9KYxEmUjT5qiz5O8ZW015AOIa2MiNO5HXhnizxHdAiyUsHGwyD1wC9cXtm8wPbEbmcsMUQvqhX4wqSuWP-fDw9n2OJ_j3k7L3yZnIh-MLy63veXc21fOhPgM2JRzO3sAayueXdnrebzCxcLjJQfDBzZkPz5MAiFXb-RbCNwv7mYg2rBbnmGSWExoPzDmKtg2OI1oorv2tuNwt3b8jtLUpshvPCQXg"
}
2019-10-18 14:35:48,764:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/837052177 HTTP/1.1" 200 798
2019-10-18 14:35:48,765:DEBUG:acme.client:Received response:
HTTP 200
content-length: 798
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
boulder-requester: 69588500
date: Fri, 18 Oct 2019 19:35:48 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0002Y7rHx_YxYiZTLAz_Cn9SvIw3jqr7XlG-tl_ye4bgF78
{
"identifier": {
"type": "dns",
"value": "genelab-galaxy.usra.edu"
},
"status": "pending",
"expires": "2019-10-25T19:35:48Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/2amD_g",
"token": "n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/zgjqFQ",
"token": "n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/wxoYKg",
"token": "n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak"
}
]
}
2019-10-18 14:35:48,765:DEBUG:acme.client:Storing nonce: 0002Y7rHx_YxYiZTLAz_Cn9SvIw3jqr7XlG-tl_ye4bgF78
2019-10-18 14:35:48,766:INFO:certbot.auth_handler:Performing the following challenges:
2019-10-18 14:35:48,767:INFO:certbot.auth_handler:http-01 challenge for genelab-galaxy.usra.edu
2019-10-18 14:35:48,831:DEBUG:certbot_apache.http_01:Adding a temporary challenge validation Include for name: None in: /etc/httpd/conf/httpd.conf
2019-10-18 14:35:48,832:DEBUG:certbot_apache.http_01:writing a pre config file with text:
RewriteEngine on
RewriteRule ^/\.well-known/acme-challenge/([A-Za-z0-9-_=]+)$ /var/lib/letsencrypt/http_challenges/$1 [END]
2019-10-18 14:35:48,832:DEBUG:certbot_apache.http_01:writing a post config file with text:
<Directory /var/lib/letsencrypt/http_challenges>
Require all granted
</Directory>
<Location /.well-known/acme-challenge>
Require all granted
</Location>
2019-10-18 14:35:48,930:DEBUG:certbot.reverter:Creating backup of /etc/httpd/conf/httpd.conf
2019-10-18 14:35:52,331:INFO:certbot.auth_handler:Waiting for verification...
2019-10-18 14:35:52,333:DEBUG:acme.client:JWS payload:
{
"type": "http-01",
"resource": "challenge"
}
2019-10-18 14:35:52,337:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/2amD_g:
{
"protected": "eyJub25jZSI6ICIwMDAyWTdySHhfWXhZaVpUTEF6X0NuOVN2SXczanFyN1hsRy10bF95ZTRiZ0Y3OCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvODM3MDUyMTc3LzJhbURfZyIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC82OTU4ODUwMCIsICJhbGciOiAiUlMyNTYifQ",
"payload": "ewogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
"signature": "vl0LLXgCp3F0Bq0rth8AOg-r_9nP1wDU2K3GDBjZjTZGm7Gs2MXB1ufknQWnDY6rjkDiqXKNpey9NpcgP0Nw-JXlqaVrssFGdRatp5zf85MzgiYSSFmLe9v-ewvQu3PKIwc2heSeXkxPvwHO8x4jm1cG1T_06eeFl5yMfvQ0zvt3k2LRZK8edz2q8VF2C-YOmvLkR25i8GeRgBs9ZDg47MxhH9rfL_f7x229MMBBCS1PTt6LJ38SDxSE4B-qwl5_NsQ0KaSwTy_Uc8ihFfVva7U2b50OjwMQ73vaU1epV28e1O7ddvicVFbc14IFRj-M3Yen2tDGqcF0uxcG2R7B2w"
}
2019-10-18 14:35:52,416:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/chall-v3/837052177/2amD_g HTTP/1.1" 200 184
2019-10-18 14:35:52,417:DEBUG:acme.client:Received response:
HTTP 200
content-length: 184
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/837052177>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/2amD_g
boulder-requester: 69588500
date: Fri, 18 Oct 2019 19:35:52 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0001RjWysEc1fbgiRTztQPNCOFxu6_6nvgCQrjE5fISRIjA
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/2amD_g",
"token": "n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak"
}
2019-10-18 14:35:52,418:DEBUG:acme.client:Storing nonce: 0001RjWysEc1fbgiRTztQPNCOFxu6_6nvgCQrjE5fISRIjA
2019-10-18 14:35:53,420:DEBUG:acme.client:JWS payload:
2019-10-18 14:35:53,423:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/837052177:
{
"protected": "eyJub25jZSI6ICIwMDAxUmpXeXNFYzFmYmdpUlR6dFFQTkNPRnh1Nl82bnZnQ1FyakU1ZklTUklqQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODM3MDUyMTc3IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzY5NTg4NTAwIiwgImFsZyI6ICJSUzI1NiJ9",
"payload": "",
"signature": "ziZtUdtKP4GAKQ2jDekdJPuyT6-yF-KvnZgGzjngLXG8oP9FSmFy8pvZBAOmQZuLvkccLeS_ATdjbQ-UHTDhM9VXZgFSQJ6mNCFImSFlnxD1i40NkNVJ3Z4guoz9YyHpdzAkrkmFkJed5hIdTU43g-JHtHXo1k1pvYfV2g_9NdjQVNclTNSa0ARGsCHrJLeDD0KMPi94kLb4sFP1fiz9jzLg5-8bIK11kjNqdHI-eqchNzDF-pQWBKsrl7-kMfReKR3KmtG9VCHD49ZFC3VtQE2PjJM3PET-OlNQck06maAOpWdPNG-wbLJ7gRTcqy8dv_BIIRxHsMYCpRCPhFwdCw"
}
2019-10-18 14:35:53,520:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/837052177 HTTP/1.1" 200 1678
2019-10-18 14:35:53,521:DEBUG:acme.client:Received response:
HTTP 200
content-length: 1678
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
boulder-requester: 69588500
date: Fri, 18 Oct 2019 19:35:53 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0002G1ujl68rFrP7J4kZgsViKBARGFdzw4WKsZ_ufQh63d8
{
"identifier": {
"type": "dns",
"value": "genelab-galaxy.usra.edu"
},
"status": "invalid",
"expires": "2019-10-25T19:35:48Z",
"challenges": [
{
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:ietf:params:acme:error:unauthorized",
"detail": "Invalid response from http://genelab-galaxy.usra.edu/.well-known/acme-challenge/n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak [63.96.143.215]: \"\u003c!DOCTYPE HTML PUBLIC \\\"-//IETF//DTD HTML 2.0//EN\\\"\u003e\\n\u003chtml\u003e\u003chead\u003e\\n\u003ctitle\u003e403 Forbidden\u003c/title\u003e\\n\u003c/head\u003e\u003cbody\u003e\\n\u003ch1\u003eForbidden\u003c/h1\u003e\\n\u003cp\"",
"status": 403
},
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/2amD_g",
"token": "n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak",
"validationRecord": [
{
"url": "http://genelab-galaxy.usra.edu/.well-known/acme-challenge/n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak",
"hostname": "genelab-galaxy.usra.edu",
"port": "80",
"addressesResolved": [
"63.96.143.215"
],
"addressUsed": "63.96.143.215"
}
]
},
{
"type": "dns-01",
"status": "invalid",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/zgjqFQ",
"token": "n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak"
},
{
"type": "tls-alpn-01",
"status": "invalid",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/837052177/wxoYKg",
"token": "n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak"
}
]
}
2019-10-18 14:35:53,521:DEBUG:acme.client:Storing nonce: 0002G1ujl68rFrP7J4kZgsViKBARGFdzw4WKsZ_ufQh63d8
2019-10-18 14:35:53,523:WARNING:certbot.auth_handler:Challenge failed for domain genelab-galaxy.usra.edu
2019-10-18 14:35:53,523:INFO:certbot.auth_handler:http-01 challenge for genelab-galaxy.usra.edu
2019-10-18 14:35:53,524:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
Domain: genelab-galaxy.usra.edu
Type: unauthorized
Detail: Invalid response from http://genelab-galaxy.usra.edu/.well-known/acme-challenge/n_ZazQ_28TB4Xhf4k_s01ff4exKZm07r2_QAhibaEak [63.96.143.215]: "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>403 Forbidden</title>\n</head><body>\n<h1>Forbidden</h1>\n<p"
To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
2019-10-18 14:35:53,524:DEBUG:certbot.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
AuthorizationError: Some challenges have failed.
2019-10-18 14:35:53,525:DEBUG:certbot.error_handler:Calling registered functions
2019-10-18 14:35:53,525:INFO:certbot.auth_handler:Cleaning up challenges
2019-10-18 14:35:54,058:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File "/bin/certbot", line 9, in <module>
load_entry_point('certbot==0.38.0', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/site-packages/certbot/main.py", line 1378, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/site-packages/certbot/main.py", line 1133, in run
certname, lineage)
File "/usr/lib/python2.7/site-packages/certbot/main.py", line 121, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
File "/usr/lib/python2.7/site-packages/certbot/client.py", line 405, in obtain_and_enroll_certificate
cert, chain, key, _ = self.obtain_certificate(domains)
File "/usr/lib/python2.7/site-packages/certbot/client.py", line 348, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/usr/lib/python2.7/site-packages/certbot/client.py", line 384, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
AuthorizationError: Some challenges have failed.