Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Cert not yet due for renewal
You have an existing certificate that has exactly the same domains or certificate name you requested and isnât close to expiry.
(ref: /etc/letsencrypt/renewal/www.example.com.conf)
What would you like to do?
1: Keep the existing certificate for now
2: Renew & replace the cert (limit ~5 per 7 days)
Select the appropriate number [1-2] then [enter] (press âcâ to cancel):
2
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for example.com
http-01 challenge for www.example.com
Waiting for verificationâŚ
Cleaning up challenges
IMPORTANT NOTES:
Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/www.example.com/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/www.example.com/privkey.pem
Your cert will expire on 2018-12-28. To obtain a new or tweaked
version of this certificate in the future, simply run certbot
again. To non-interactively renew all of your certificates, run
âcertbot renewâ
If you like Certbot, please consider supporting our work by:
DocumentRoot â/var/www/htmlâ
<Directory â/var/wwwâ>
AllowOverride none
Require all granted
<Directory â/var/www/htmlâ>
Options Indexes FollowSymLinks
AllowOverride None
Require all granted
DirectoryIndex index.html
<Files â.ht*â>
Require all denied
ErrorLog âlogs/error_logâ
LogLevel: Control the number of messages logged to the error_log.
Possible values include: debug, info, notice, warn, error, crit,
alert, emerg.
LogLevel warn
#
# The following directives define some format nicknames for use with
# a CustomLog directive (see below).
#
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t \"%r\" %>s %b" common
<IfModule logio_module>
# You need to enable mod_logio.c to use %I and %O
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
</IfModule>
CustomLog "logs/access_log" combined
There is an additional ssl-configuration file, there are the definitions.
But: You can create 5 certificates per week with the same domain name set, so you should try one time without âcertonlyâ. Perhaps the installation works - and you donât need to change your configuration manual.
Could you please try this command? apachectl -S (this would print all configuration files in use by Apache) (you might need to replace apachectl to apache2ctl if thereâs a not found message)
It should not load with no outputâŚ
I could see that your web server is Apache /2.4.34 which should have some meaningful output when executing apachectl -SâŚ
The website example.com serves the correct certificate, could you also please try to locate the virtual host / configuration file for that site?