A server restart still uses the self-signed certificate, there were no errors.
[code]2016-01-07 01:33:28,966:DEBUG:letsencrypt.cli:Root logging level set at 30
2016-01-07 01:33:28,967:INFO:letsencrypt.cli:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2016-01-07 01:33:28,967:DEBUG:letsencrypt.cli:letsencrypt version: 0.2.0.dev0
2016-01-07 01:33:28,967:DEBUG:letsencrypt.cli:Arguments:
2016-01-07 01:33:28,967:DEBUG:letsencrypt.cli:Discovered plugins: PluginsRegistry(PluginEntryPoint#nginx,PluginEntryPoint#standalone,PluginEntryPoint#manual,PluginEntryPoint#webroot,PluginEntryPoint#apache,PluginEntryPoint#null)
2016-01-07 01:33:28,973:DEBUG:letsencrypt.cli:Requested authenticator None and installer None
2016-01-07 01:33:29,394:DEBUG:letsencrypt.plugins.disco:No installation (PluginEntryPoint#nginx):
Traceback (most recent call last):
File "/root/letsencrypt/letsencrypt/plugins/disco.py", line 103, in prepare
self._initialized.prepare()
File "/root/letsencrypt/letsencrypt-nginx/letsencrypt_nginx/configurator.py", line 112, in prepare
raise errors.NoInstallationError
NoInstallationError
2016-01-07 01:33:29,395:DEBUG:letsencrypt.display.ops:Single candidate plugin: * apache
Description: Apache Web Server - Alpha
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = letsencrypt_apache.configurator:ApacheConfigurator
Initialized: <letsencrypt_apache.configurator.ApacheConfigurator object at 0x38fe910>
Prep: True
2016-01-07 01:33:29,396:DEBUG:letsencrypt.cli:Selected authenticator <letsencrypt_apache.configurator.ApacheConfigurator object at 0x38fe910> and installer <letsencrypt_apache.configurator.ApacheConfigurator object at 0x38fe910>
2016-01-07 01:33:30,689:DEBUG:letsencrypt.cli:Picked account: <Account(45ece8812be80b94e6ec492e01ee8071)>
2016-01-07 01:33:30,690:DEBUG:root:Sending GET request to https://acme-v01.api.letsencrypt.org/directory. args: (), kwargs: {}
2016-01-07 01:33:30,697:INFO:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
2016-01-07 01:33:31,268:DEBUG:requests.packages.urllib3.connectionpool:"GET /directory HTTP/1.1" 200 263
2016-01-07 01:33:31,271:DEBUG:root:Received <Response [200]>. Headers: {'Content-Length': '263', 'Expires': 'Thu, 07 Jan 2016 01:33:31 GMT', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Connection': 'keep-alive', 'Pragma': 'no-cache', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Date': 'Thu, 07 Jan 2016 01:33:31 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': '_5CwYOYcPJkJABmObaMrao6XEh-Tv19PHphXOQP27Nc'}. Content: '{"new-authz":"https://acme-v01.api.letsencrypt.org/acme/new-authz","new-cert":"https://acme-v01.api.letsencrypt.org/acme/new-cert","new-reg":"https://acme-v01.api.letsencrypt.org/acme/new-reg","revoke-cert":"https://acme-v01.api.letsencrypt.org/acme/revoke-cert"}'
2016-01-07 01:33:31,273:DEBUG:acme.client:Received response <Response [200]> (headers: {'Content-Length': '263', 'Expires': 'Thu, 07 Jan 2016 01:33:31 GMT', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Connection': 'keep-alive', 'Pragma': 'no-cache', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Date': 'Thu, 07 Jan 2016 01:33:31 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': '_5CwYOYcPJkJABmObaMrao6XEh-Tv19PHphXOQP27Nc'}): '{"new-authz":"https://acme-v01.api.letsencrypt.org/acme/new-authz","new-cert":"https://acme-v01.api.letsencrypt.org/acme/new-cert","new-reg":"https://acme-v01.api.letsencrypt.org/acme/new-reg","revoke-cert":"https://acme-v01.api.letsencrypt.org/acme/revoke-cert"}'
2016-01-07 01:33:32,293:INFO:letsencrypt_apache.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/files-le-ssl.conf
2016-01-07 01:33:32,293:DEBUG:letsencrypt_apache.configurator:Apache version is 2.2.22
2016-01-07 01:33:32,413:INFO:letsencrypt_apache.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/wsdb-le-ssl.conf
2016-01-07 01:33:32,413:DEBUG:letsencrypt_apache.configurator:Apache version is 2.2.22
2016-01-07 01:33:32,531:INFO:letsencrypt_apache.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/fgo-le-ssl.conf
2016-01-07 01:33:32,532:DEBUG:letsencrypt_apache.configurator:Apache version is 2.2.22
2016-01-07 01:33:32,649:INFO:letsencrypt_apache.configurator:Deploying Certificate to VirtualHost /etc/apache2/sites-available/arimil-le-ssl.conf
2016-01-07 01:33:32,650:DEBUG:letsencrypt_apache.configurator:Apache version is 2.2.22
2016-01-07 01:33:57,047:INFO:letsencrypt.reporter:Reporting to user: If you like Let's Encrypt, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: Donate - Let's Encrypt
Donating to EFF: https://eff.org/donate-le[/code]
Debian 7.9, Apache 2.2.22
I added wildcards to the virtualhost lines because apache ignores the files and redirects all the subdomains to arimil.com if they contain the domain like letsencrypt outputs them.
<VirtualHost *:443>
instead of
<VirtualHost arimil.com:443>
The latter is invalid and apache will output errors and it causes routing issues.