SSL RENEWL problem


#1

[root@HMFR-4 ~]# certbot renew

Performing the following challenges:
http-01 challenge for merchant.priceblaze.pk
Waiting for verification…
Cleaning up challenges
Attempting to renew cert (merchant.priceblaze.pk) from /etc/letsencrypt/renewal/merchant.priceblaze.pk.conf produced an unexpected error: Failed authorization procedure. merchant.priceblaze.pk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://merchant.priceblaze.pk/.well-known/acme-challenge/BhSMibCKgyAESjMdvjwJ34teJ2bld0b4Yfn9KzBZk2Q [38.108.7.164]: “\n\n<html lang=“en”>\n\n <meta http-equiv=“content-type” content=“text/html; charset=utf-8”>\n Page not”. Skipping.


Processing /etc/letsencrypt/renewal/admin.priceblaze.pk.conf


Cert not yet due for renewal


Processing /etc/letsencrypt/renewal/www.priceblaze.pk.conf


Cert not yet due for renewal
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/merchant.priceblaze.pk/fullchain.pem (failure)


The following certs are not due for renewal yet:
/etc/letsencrypt/live/admin.priceblaze.pk/fullchain.pem expires on 2019-05-09 (skipped)
/etc/letsencrypt/live/www.priceblaze.pk/fullchain.pem expires on 2019-06-06 (skipped)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/merchant.priceblaze.pk/fullchain.pem (failure)


1 renew failure(s), 0 parse failure(s)

IMPORTANT NOTES:

looking your response.


#2

Can you post the rest of Certbot’s output, and answer the other questions below?


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):


#3

My domain is:merchant.priceblaze.pk

My web server is (include version):

The operating system my web server runs on is (include version):centos 7

My hosting provider, if applicable, is: my self

I can login to a root shell on my machine (yes or no, or I don’t know): no

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): [root@HMFR-4 conf.d]# certbot --version
certbot 0.29.1
[root@HMFR-4 conf.d]#


#5

issue resolved. thanks


#6

Hi @fayaz

your certificate is ok, new, created today. But you have mixed content you should fix:

script
http://code.jquery.com/jquery-2.0.0b1.js
1
mixed
script
http://code.jquery.com/jquery-migrate-1.0.0.js
1
mixed

Change these links to https.

That’s active content, so FireFox blocks it. If your site uses code, that doesn’t work if the script isn’t loaded.