ReadTimeout: HTTPSConnectionPool(host='acme-v01.api.letsencrypt.org', port=443)

Help
1

Please fill out the fields below so we can help you better.

My domain is: flower-album.ru

I ran this command: certbot --apache

It produced this output:
HTTPSConnectionPool(host=‘acme-v01.api.letsencrypt.org’, port=443): Read timed out. (read timeout=45)

My operating system is (include version): Ubuntu 16.04.2 LTS (GNU/Linux 4.4.0-78-generic x86_64)

My web server is (include version):

My hosting provider, if applicable, is: Own server

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): ssh

LOG:
2017-05-19 07:11:15,844:DEBUG:certbot.main:Root logging level set at 20
2017-05-19 07:11:15,846:INFO:certbot.main:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2017-05-19 07:11:15,848:DEBUG:certbot.main:certbot version: 0.12.0
2017-05-19 07:11:15,848:DEBUG:certbot.main:Arguments: [’–apache’]
2017-05-19 07:11:15,850:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#webroot,PluginEntryPoint#null,PluginEntryPoint#manual,PluginEntryPoint#standalone)
2017-05-19 07:11:15,851:DEBUG:certbot.plugins.selection:Requested authenticator apache and installer apache
2017-05-19 07:11:20,353:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache
Description: Apache Web Server plugin - Beta
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = certbot_apache.configurator:ApacheConfigurator
Initialized: <certbot_apache.configurator.ApacheConfigurator object at 0x7f8fd2333fd0>
Prep: True
2017-05-19 07:11:20,356:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_apache.configurator.ApacheConfigurator object at 0x7f8fd2333fd0> and installer <certbot_apache.configurator.ApacheConfigurator object at 0x7f8fd2333fd0>
2017-05-19 07:11:20,365:DEBUG:certbot.main:Picked account: <Account(7d94b59050989c95b3227fe9622486cf)>
2017-05-19 07:11:20,368:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
2017-05-19 07:11:20,377:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
2017-05-19 07:12:06,103:DEBUG:certbot.main:Exiting abnormally:
Traceback (most recent call last):
File “/usr/bin/certbot”, line 11, in
load_entry_point(‘certbot==0.12.0’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python2.7/dist-packages/certbot/main.py”, line 896, in main
return config.func(config, plugins)
File “/usr/lib/python2.7/dist-packages/certbot/main.py”, line 599, in run
le_client = _init_le_client(config, authenticator, installer)
File “/usr/lib/python2.7/dist-packages/certbot/main.py”, line 399, in _init_le_client
return client.Client(config, acc, authenticator, installer, acme=acme)
File “/usr/lib/python2.7/dist-packages/certbot/client.py”, line 202, in init
acme = acme_from_config_key(config, self.account.key)
File “/usr/lib/python2.7/dist-packages/certbot/client.py”, line 42, in acme_from_config_key
return acme_client.Client(config.server, key=key, net=net)
File “/usr/lib/python2.7/dist-packages/acme/client.py”, line 69, in init
self.net.get(directory).json())
File “/usr/lib/python2.7/dist-packages/acme/client.py”, line 658, in get
self._send_request(‘GET’, url, **kwargs), content_type=content_type)
File “/usr/lib/python2.7/dist-packages/acme/client.py”, line 631, in _send_request
response = self.session.request(method, url, *args, **kwargs)
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line 488, in request
resp = self.send(prep, **send_kwargs)
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line 609, in send
r = adapter.send(request, **kwargs)
File “/usr/lib/python2.7/dist-packages/requests/adapters.py”, line 499, in send
raise ReadTimeout(e, request=request)
ReadTimeout: HTTPSConnectionPool(host=‘acme-v01.api.letsencrypt.org’, port=443): Read timed out. (read timeout=45)

3 Likes
2

Same problems

2017-05-19 09:04:13,579:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.webroot.Authenticator object at 0x7fb5af6e1fd0> and installer None
2017-05-19 09:04:13,719:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
2017-05-19 09:04:13,721:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
2017-05-19 09:04:58,892:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/local/bin/certbot", line 11, in <module>
    load_entry_point('certbot', 'console_scripts', 'certbot')()
  File "/opt/certbot/src/certbot/main.py", line 742, in main
    return config.func(config, plugins)
  File "/opt/certbot/src/certbot/main.py", line 666, in certonly
    le_client = _init_le_client(config, auth, installer)
  File "/opt/certbot/src/certbot/main.py", line 382, in _init_le_client
    acc, acme = _determine_account(config)
  File "/opt/certbot/src/certbot/main.py", line 367, in _determine_account
    config, account_storage, tos_cb=_tos_cb)
  File "/opt/certbot/src/certbot/client.py", line 158, in register
    acme = acme_from_config_key(config, key)
  File "/opt/certbot/src/certbot/client.py", line 44, in acme_from_config_key
    return acme_client.Client(config.server, key=key, net=net)
  File "/opt/certbot/src/acme/acme/client.py", line 71, in __init__
    self.net.get(directory).json())
  File "/opt/certbot/src/acme/acme/client.py", line 646, in get
    self._send_request('GET', url, **kwargs), content_type=content_type)
  File "/opt/certbot/src/acme/acme/client.py", line 619, in _send_request
    response = self.session.request(method, url, *args, **kwargs)
  File "/usr/local/lib/python2.7/site-packages/requests/sessions.py", line 518, in request
    resp = self.send(prep, **send_kwargs)
  File "/usr/local/lib/python2.7/site-packages/requests/sessions.py", line 639, in send
    r = adapter.send(request, **kwargs)
  File "/usr/local/lib/python2.7/site-packages/requests/adapters.py", line 514, in send
    raise ReadTimeout(e, request=request)
ReadTimeout: HTTPSConnectionPool(host='acme-v01.api.letsencrypt.org', port=443): Read timed out. (read timeout=45)
3 
# curl https://acme-v01.api.letsencrypt.org -I
HTTP/1.1 504 Gateway Time-out
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 176
Expires: Fri, 19 May 2017 08:57:30 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 19 May 2017 08:57:30 GMT
Connection: keep-alive
4

Same problem for many cert orders. (Hosting)

5

Commenting to report same problem, seems letsencrypt auth web service is down. Hosting is OVH in France.

Trying to get a cert for a new domain.

6

Cannot get cert for new domain.

7

The same for me, while trying to renew certs … for all domains, hosting is OVH in France too …

Attempting to renew cert from /etc/letsencrypt/renewal/www.assurances-premium-plaisance.fr.conf produced an unexpected error: HTTPSConnectionPool(host=‘acme-v01.api.letsencrypt.org’, port=443): Read timed out. (read timeout=45). Skipping.

8

same here

ReadTimeout: HTTPSConnectionPool(host=‘acme-v01.api.letsencrypt.org’, port=443): Read timed out. (read timeout=45)

2017-05-19 09:37:21,101:DEBUG:certbot.log:Exiting abnormally:

9

ReadTimeout: HTTPSConnectionPool(host=‘acme-v01.api.letsencrypt.org’, port=443): Read timed out. (read timeout=45)

having the same issue right now

10

some problems 504 getway timeout
this response:
An error occurred while processing your request.
Reference #97.57f01202.1495187422.22e57a2c

11

I am seeing the same issue. I see that there is an active incident being investigated at: http://letsencrypt.status.io/

1 Like
12

Can’t get certificates for my domains, acme-client: https://acme-v01.api.letsencrypt.org/directory: bad HTTP: 504
some domains are inaccessible now, due to certificates expire

1 Like
13

Same here

ReadTimeout: HTTPSConnectionPool(host=‘acme-v01.api.letsencrypt.org’, port=443): Read timed out. (read timeout=45)

acme-v01.api.letsencrypt.org is an alias for api.letsencrypt.org.edgekey.net.
api.letsencrypt.org.edgekey.net is an alias for e981.dscb.akamaiedge.net.
e981.dscb.akamaiedge.net has address 23.1.67.122
e981.dscb.akamaiedge.net has IPv6 address 2a02:26f0:4:199::3d5
e981.dscb.akamaiedge.net has IPv6 address 2a02:26f0:4:183::3d5

14

Same problem:

An unexpected error occurred:
ReadTimeout: HTTPSConnectionPool(host='acme-v01.api.letsencrypt.org', port=443): Read timed out. (read timeout=45)
16

In case you haven’t noticed, this is a FREE service made possible by sponsors. It’s not “unprofessional” because it’s not a “professional” service. You get what you pay for, and you have paid nothing.

The time frame is 3 months because that is required in order to reduce the scope for abuse of the FREE service.

If you want professional support, SLAs, long certificate time spans, use one of the many and varied commercial options.

7 Likes
17

Waiting till the cert has expired makes you unprofessional. LE sends an email 15 days prior to the cert expiring. There is no excuse for not renewing certs before expiration. Moreover, this should be an automated process. Not a manual one.

6 Likes
19

Great! Thank you for the information. Will keep checking for updates.http://letsencrypt.status.io/ says it´s pretty big,
“Service Disruption” on all but the website. :neutral_face:

20

Got the same here (a week to go). It seems from a netstat -l while certbot is running that it’s not listening on port 443 (or indeed any port) so it’s hardly surprising there’s no response.

(edit) Jumping in before full diagnostics. I can see what’s happening now and will wait patiently :slight_smile:

21

Same issue here. Cert expired today and can’t renew now.

22

I know it’s a free service. Thank you for confirming in different words that it’s not a reliable professional service.