Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:auburnchurchofchrist.com
I ran this command:acme.sh --renew -d auburnchurchofchrist.com --log
It produced this output:
[~]$ --renew -d auburnchurchofchrist.com --log
[Sat Jun 1 07:58:12 MST 2024] Renew: 'auburnchurchofchrist.com'
[Sat Jun 1 07:58:17 MST 2024] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Sat Jun 1 07:58:17 MST 2024] Multi domain='DNS:auburnchurchofchrist.com,DNS:.auburnchurchofchrist.com'
[Sat Jun 1 07:58:19 MST 2024] Getting domain auth token for each domain
[Sat Jun 1 07:58:25 MST 2024] Getting webroot for domain='auburnchurchofchrist.com'
[Sat Jun 1 07:58:25 MST 2024] Getting webroot for domain='.auburnchurchofchrist.com'
[Sat Jun 1 07:58:25 MST 2024] Adding txt value: SwDNB-m19IkMKfQIFCTKZqdfBqnnpJ0_hC4hh2U9auw for domain: _acme-challenge.auburnchurchofchrist.com
[Sat Jun 1 07:58:26 MST 2024] Adding record
[Sat Jun 1 07:58:27 MST 2024] Added, sleeping 10 seconds
[Sat Jun 1 07:58:38 MST 2024] The txt record is added: Success.
[Sat Jun 1 07:58:38 MST 2024] Adding txt value: mIPiZKsSeEWaEX5jAjTDqYfMOmtWuU3OYnBiN2Ua6og for domain: _acme-challenge.auburnchurchofchrist.com
[Sat Jun 1 07:58:38 MST 2024] Adding record
[Sat Jun 1 07:58:38 MST 2024] Added, sleeping 10 seconds
[Sat Jun 1 07:58:49 MST 2024] The txt record is added: Success.
[Sat Jun 1 07:58:49 MST 2024] Let's check each DNS record now. Sleep 20 seconds first.
[Sat Jun 1 07:59:11 MST 2024] You can use '--dnssleep' to disable public dns checks.
[Sat Jun 1 07:59:11 MST 2024] See: dnscheck · acmesh-official/acme.sh Wiki · GitHub
[Sat Jun 1 07:59:11 MST 2024] Checking auburnchurchofchrist.com for _acme-challenge.auburnchurchofchrist.com
[Sat Jun 1 07:59:14 MST 2024] Not valid yet, let's wait 10 seconds and check next one.
~30 minutes later
[Sat Jun 1 08:25:14 MST 2024] You can use '--dnssleep' to disable public dns checks.
[Sat Jun 1 08:25:14 MST 2024] See: dnscheck · acmesh-official/acme.sh Wiki · GitHub
[Sat Jun 1 08:25:14 MST 2024] Checking auburnchurchofchrist.com for _acme-challenge.auburnchurchofchrist.com
[Sat Jun 1 08:25:16 MST 2024] Not valid yet, let's wait 10 seconds and check next one.
[Sat Jun 1 08:25:31 MST 2024] Checking auburnchurchofchrist.com for _acme-challenge.auburnchurchofchrist.com
[Sat Jun 1 08:25:35 MST 2024] Not valid yet, let's wait 10 seconds and check next one.
[Sat Jun 1 08:25:47 MST 2024] Let's wait 10 seconds and check again.
[Sat Jun 1 08:25:58 MST 2024] Timed out waiting for DNS.
[Sat Jun 1 08:25:58 MST 2024] check dns error.
[Sat Jun 1 08:25:58 MST 2024] Please check log file for more details: /home/nrqe0s3j8jbp/.acme.sh/acme.sh.log
[Sat Jun 1 08:25:58 MST 2024] Removing DNS records.
[Sat Jun 1 08:25:58 MST 2024] Removing txt: SwDNB-m19IkMKfQIFCTKZqdfBqnnpJ0_hC4hh2U9auw for domain: _acme-challenge.auburnchurchofchrist.com
[Sat Jun 1 08:25:59 MST 2024] The record does not exist, skip
[Sat Jun 1 08:25:59 MST 2024] Removed: Success
[Sat Jun 1 08:25:59 MST 2024] Removing txt: mIPiZKsSeEWaEX5jAjTDqYfMOmtWuU3OYnBiN2Ua6og for domain: _acme-challenge.auburnchurchofchrist.com
[Sat Jun 1 08:25:59 MST 2024] The record does not exist, skip
[Sat Jun 1 08:25:59 MST 2024] Removed: Success
My web server is (include version): cPanel 110.0.15
The operating system my web server runs on is (include version):Linux (unsure of version provided by host)
My hosting provider, if applicable, is:GoDaddy
I can login to a root shell on my machine (yes or no, or I don't know):with some work, I can. Normally just access through terminal within cPanel
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): using acme.sh only.
I have three websites/domains which I update SSLs on, I normally run acme.sh --renew-all --log, and go my merry way, but was receiving the 'not valid yet...' line. So broke down to trying just a single at a time. Figure if I can get the one working, I should be able to get the other two in line.
Backstory: been using letsencrypt for nearly 4 years and had zero issues with the auto renewal until earlier this year. For an operation needed every 8-12 weeks...I can do it manually. However...here I am now.