I have a single domain that is refusing to reissue. I am getting a “No such challenge” error.
I have tried it with a new keyset for the domain and also a new registration but I am getting the same response.
I have included the relevant challenge from the new authz request. I am using ACME version 1. I have also included the URL to the challenge being requested.
How can I troubleshoot this? This is the only domain giving me trouble all the others are working perfectly.
According to your log, your new-authz request is from October 2018. The resulting authz has long since expired (as indicated by the “expires” field in the response JSON). You should be checking expiration times and creating new authorizations if necessary.
Also note: If you’re developing a new client in 2019, you should be developing against the ACMEv2 API, not the ACMEv1 one.
Thanks for taking a look at this for me. The problem was the expired authorization. When I originally wrote my client I always got a new authorization and my last round of edits I started caching the answer but missed the expiration. Thanks again. I updated my code to go out for a fresh authorization if the last one has expired. I also added a “unbase64” payload in the log, makes it easier to see the actual payload.
Turns out the staging url was there as a vestige from my fiddling around. It has been corrected also.
Thanks for the heads up on ACME V2, I am actually in the process of finishing up my ACME V2 client, its about 95% ready. I just need to do some housekeeping to integrate it with my V1 client.