I ran this command:
Variants (see attached logs) of sudo certbot renew --agree-tos
It produced this output:
(see attached logs)
My web server is (include version):
apache2 2.4.29-1ubuntu4.14
The operating system my web server runs on is (include version):
Ubuntu 18.04.5 LTS
My hosting provider, if applicable, is:
Own machine
I can login to a root shell on my machine (yes or no, or I don't know): Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 0.31.0
Attached logs (anonymised):
Standard: Using apache authenticator and apache installer
2021-03-31 08:47:58,243:DEBUG:certbot.main:certbot version: 0.31.0
2021-03-31 08:47:58,249:DEBUG:certbot.main:Arguments: []
2021-03-31 08:47:58,253:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2021-03-31 08:47:58,308:DEBUG:certbot.log:Root logging level set at 20
2021-03-31 08:47:58,313:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2021-03-31 08:47:58,366:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0xb45728cc> and installer <certbot.cli._Default object at 0xb45728cc>
2021-03-31 08:47:58,429:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2021-04-18 04:25:55 UTC.
2021-03-31 08:47:58,429:INFO:certbot.renewal:Cert is due for renewal, auto-renewing...
2021-03-31 08:47:58,430:DEBUG:certbot.plugins.selection:Requested authenticator apache and installer apache
2021-03-31 08:47:58,983:DEBUG:certbot_apache.configurator:Apache version is 2.4.29
2021-03-31 08:48:05,666:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache
Description: Apache Web Server plugin
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = certbot_apache.entrypoint:ENTRYPOINT
Initialized: <certbot_apache.override_debian.DebianConfigurator object at 0xb45614cc>
Prep: True
2021-03-31 08:48:05,674:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache
Description: Apache Web Server plugin
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: apache = certbot_apache.entrypoint:ENTRYPOINT
Initialized: <certbot_apache.override_debian.DebianConfigurator object at 0xb45614cc>
Prep: True
2021-03-31 08:48:05,675:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_apache.override_debian.DebianConfigurator object at 0xb45614cc> and installer <certbot_apache.override_debian.DebianConfigurator object at 0xb45614cc>
2021-03-31 08:48:05,676:INFO:certbot.plugins.selection:Plugins selected: Authenticator apache, Installer apache
2021-03-31 08:48:05,699:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/71984299', new_authzr_uri=None, terms_of_service=None), 11588215928fdd8186b0af7bb68c03c2, Meta(creation_dt=datetime.datetime(2019, 11, 17, 23, 42, 15, tzinfo=<UTC>), creation_host='samsung'))>
2021-03-31 08:48:05,707:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2021-03-31 08:48:05,717:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org
2021-03-31 08:48:06,813:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
2021-03-31 08:48:06,817:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:06 GMT
Content-Type: application/json
Content-Length: 658
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"5ItX7Yecuyw": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2021-03-31 08:48:06,820:INFO:certbot.main:Renewing an existing certificate
2021-03-31 08:48:07,368:DEBUG:certbot.crypto_util:Generating key (2048 bits): /etc/letsencrypt/keys/0053_key-certbot.pem
2021-03-31 08:48:07,433:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0053_csr-certbot.pem
2021-03-31 08:48:07,436:DEBUG:acme.client:Requesting fresh nonce
2021-03-31 08:48:07,436:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2021-03-31 08:48:07,661:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2021-03-31 08:48:07,665:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:07 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0104F6gjSBh-iJU1GTHhHGBFt_ByECdY9qk-GtE1-hkCSZo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2021-03-31 08:48:07,667:DEBUG:acme.client:Storing nonce: 0104F6gjSBh-iJU1GTHhHGBFt_ByECdY9qk-GtE1-hkCSZo
2021-03-31 08:48:07,669:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "example.com"\n },\n {\n "type": "dns",\n "value": "www.example.com"\n }\n ]\n}'
2021-03-31 08:48:07,731:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNEY2Z2pTQmgtaUpVMUdUSGhIR0JGdF9CeUVDZFk5cWstR3RFMS1oa0NTWm8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
"signature": "mcR5mCpvMQ4gSJ0hCmuTm-c52b8fDp9cwBaBT7NObgidRkS14sHnp8oUdLTtqWj1lz9IM_g5wya0iorvqWOnFL3F-3LW9rdtVUTeG9lcEb0G6gWmMAwmhAejNeZoNuaCqwunWlDPbjFWYTt6Z9hoVYIubCgy_8rl7axc8ee6y0VCUgzmGyl0AOGCdDahvmY6DD2eVHrqDhBXknq8j_8HMt58da06iy38P8HajM1UIv_FEy8zp8Y4GLkWr5Ni-N1EiPN2WOe4vcJZZLp2mqP6GM5uFhME7lDq8Rhb3kEO9qaEIpQAK0KPfAQmcspgLFVgIq9pbvuHBTPcQuF6XrMDMA",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInNhbmRidXJuZXIubmV0IgogICAgfSwKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInd3dy5zYW5kYnVybmVyLm5ldCIKICAgIH0KICBdCn0"
}
2021-03-31 08:48:08,107:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 475
2021-03-31 08:48:08,111:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Tue, 30 Mar 2021 22:18:08 GMT
Content-Type: application/json
Content-Length: 475
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/71984299/8767903542
Replay-Nonce: 0104ZZo2GPIFWyLDoqh4MYlCiFgwI8dcpKvBQe9bjRQxl68
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"status": "pending",
"expires": "2021-04-06T22:18:07Z",
"identifiers": [
{
"type": "dns",
"value": "example.com"
},
{
"type": "dns",
"value": "www.example.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817928",
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817930"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/71984299/8767903542"
}
2021-03-31 08:48:08,112:DEBUG:acme.client:Storing nonce: 0104ZZo2GPIFWyLDoqh4MYlCiFgwI8dcpKvBQe9bjRQxl68
2021-03-31 08:48:08,115:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:08,170:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817928:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNFpabzJHUElGV3lMRG9xaDRNWWxDaUZnd0k4ZGNwS3ZCUWU5YmpSUXhsNjgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTI4In0",
"signature": "Ygm6TK4hkd_i5jvlWYoUcXFWvjAKJgOidFa0SdRL9zRJwygCgnF8fkgdybFIof4bgN-4D15cwmYj-u1o6gRNJUnP2ZxSA2hN3faDpYHnZHziL5CXXJXSvbHTZRBg1mrI09bRorfuN06Pz4b4kjItGKzCtCF2zOVKIGhnpG0p3XPdCxinHoOCDAqseDFd93TU0PTqamUtrhbFzpqjhyF1E2GglYGlPlSveVB0hxMm8_yZ1Ryfj7SCCJF9KJEP87CCqDRQR249Ga2AKAFiSIQk6zlp7oTzwQVZbl_gxumrvYguUmKAZ3yHJEOfXnSnOaWyLQtEh2MNEsa0B7FElMWQ3A",
"payload": ""
}
2021-03-31 08:48:08,423:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817928 HTTP/1.1" 200 795
2021-03-31 08:48:08,427:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:08 GMT
Content-Type: application/json
Content-Length: 795
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0103J2k8PsM_d_8lIz04mNOLg1ZNVA3Klfy59fLcjd2BxWA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "example.com"
},
"status": "pending",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/0UaIDA",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/W-wY6w",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/RKypZg",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
}
]
}
2021-03-31 08:48:08,428:DEBUG:acme.client:Storing nonce: 0103J2k8PsM_d_8lIz04mNOLg1ZNVA3Klfy59fLcjd2BxWA
2021-03-31 08:48:08,432:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:08,487:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817930:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwM0oyazhQc01fZF84bEl6MDRtTk9MZzFaTlZBM0tsZnk1OWZMY2pkMkJ4V0EiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTMwIn0",
"signature": "Gj52ZglD9ypwvJvfo6C4PliWYaVUT1h96LlCVtLOasURsvlBZ760P9RMUJkPBpmRh3HMd7cLBsUSyv7JCqPHm_IkgL03aiqyxIR9BIaV5q4aVaMJ-McC_R9bUk-fC9qVtsrgursOwXRJhG2cbgIvVHqseyxtxZZJ5rw7o-O6O5GxoK-dXvAsHfX79jYBKns9aavJdzFVBfIfGrWMVDkI1thI1DwMvhpmkiJwgyX6oCmH9zgxLE0xyCCGfdxt9GrzOQbKfCQ33TbxfY5g-Mjsa2cmOG1Y5lAE0s73XWilWPqcnm6eyJhpLNlv2gDuP34DULBhFFAXnl7ZnuuTeVFYOA",
"payload": ""
}
2021-03-31 08:48:08,743:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817930 HTTP/1.1" 200 799
2021-03-31 08:48:08,747:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:08 GMT
Content-Type: application/json
Content-Length: 799
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0104mvGsfIt3B81S7aaFau2fqIaDbysbqzLRWmoU_5vnz9I
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.example.com"
},
"status": "pending",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/w8kT-A",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/yKIU6Q",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/aRQkjQ",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
}
]
}
2021-03-31 08:48:08,748:DEBUG:acme.client:Storing nonce: 0104mvGsfIt3B81S7aaFau2fqIaDbysbqzLRWmoU_5vnz9I
2021-03-31 08:48:08,753:INFO:certbot.auth_handler:Performing the following challenges:
2021-03-31 08:48:08,754:INFO:certbot.auth_handler:http-01 challenge for example.com
2021-03-31 08:48:08,756:INFO:certbot.auth_handler:http-01 challenge for www.example.com
2021-03-31 08:48:09,744:DEBUG:certbot_apache.http_01:Adding a temporary challenge validation Include for name: example.com in: /etc/apache2/sites-enabled/example_80-le-ssl.conf
2021-03-31 08:48:09,745:DEBUG:certbot_apache.http_01:Adding a temporary challenge validation Include for name: None in: /etc/apache2/sites-enabled/example_80.conf
2021-03-31 08:48:09,747:DEBUG:certbot_apache.http_01:writing a pre config file with text:
RewriteEngine on
RewriteRule ^/\.well-known/acme-challenge/([A-Za-z0-9-_=]+)$ /var/lib/letsencrypt/http_challenges/$1 [END]
2021-03-31 08:48:09,748:DEBUG:certbot_apache.http_01:writing a post config file with text:
<Directory /var/lib/letsencrypt/http_challenges>
Require all granted
</Directory>
<Location /.well-known/acme-challenge>
Require all granted
</Location>
2021-03-31 08:48:09,919:DEBUG:certbot.reverter:Creating backup of /etc/apache2/sites-enabled/example_80-le-ssl.conf
2021-03-31 08:48:09,921:DEBUG:certbot.reverter:Creating backup of /etc/apache2/sites-enabled/example_80.conf
2021-03-31 08:48:14,431:INFO:certbot.auth_handler:Waiting for verification...
2021-03-31 08:48:14,435:DEBUG:acme.client:JWS payload:
b'{\n "resource": "challenge",\n "type": "http-01"\n}'
2021-03-31 08:48:14,493:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/0UaIDA:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNG12R3NmSXQzQjgxUzdhYUZhdTJmcUlhRGJ5c2JxekxSV21vVV81dm56OUkiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzExOTY0ODE3OTI4LzBVYUlEQSJ9",
"signature": "mumiM12mpm_zodzYI9bnv-pDdBe-UTs8K1M3dW8CzlxBtC4XEXT76YeSInF45gTZ8_Xml4gmGwH8_HTOOhfP4eGek8DOZ02phh2nm3addi91BOc_qXoXtcHF2APjQp3H4608ghXO-sfeQFwzuIqk0SanOEzs-AohmdVwA9SrcomXyJwswbsLS0v-GYQzcmNWgavm0r5pmQEUvsh-GleZcanSLY6DLvKWGb18HcmIB1PKCtRL6P7G5DERZawbXl2QUgc5H84SuiTQ0sEa95oAW14nrVO3HgV6ol7LUnO1eNUtl3hERyaiHVSqz7x523CdUFwmzsdnh1q63lLIifeUGw",
"payload": "ewogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJ0eXBlIjogImh0dHAtMDEiCn0"
}
2021-03-31 08:48:14,765:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/11964817928/0UaIDA HTTP/1.1" 200 186
2021-03-31 08:48:14,770:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:14 GMT
Content-Type: application/json
Content-Length: 186
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817928>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/0UaIDA
Replay-Nonce: 0104FnXGbZsawxp99FPHEYqTByAAmqgV2wO97A3P_Z_JE7g
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/0UaIDA",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
}
2021-03-31 08:48:14,771:DEBUG:acme.client:Storing nonce: 0104FnXGbZsawxp99FPHEYqTByAAmqgV2wO97A3P_Z_JE7g
2021-03-31 08:48:14,775:DEBUG:acme.client:JWS payload:
b'{\n "resource": "challenge",\n "type": "http-01"\n}'
2021-03-31 08:48:14,828:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/w8kT-A:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNEZuWEdiWnNhd3hwOTlGUEhFWXFUQnlBQW1xZ1Yyd085N0EzUF9aX0pFN2ciLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzExOTY0ODE3OTMwL3c4a1QtQSJ9",
"signature": "h4WZA0opABC3WjWgCwtVaGeTK-ZxRUpVj9ifUWznMfsJkNtnSsdipAd7iiyQsCif1hAsOFFlfvegt37sM2nscO5hc4AXmjwbiyqmPPimO52NGvuLMez8q8lA3m51rXRBoE3fMIsPO4E9widkrbRqelK6AuYmZHUiWfoWf1CGjMSd0PLmArwlYsvS-sjccHq6Ro43VMhPwj0SWCtFkf0VKUpwKXUtvxpB645mlBC-XADfTUYACLTZBPNn-lcXdSa6WiUEf35Wc15ze55CsVXpOzkqPOMQMz58wxbGy52RVvTG460DD9XIf2-ParkFQo8hvOkeFgPF4QFeAqAbnuu4JQ",
"payload": "ewogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJ0eXBlIjogImh0dHAtMDEiCn0"
}
2021-03-31 08:48:15,108:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/11964817930/w8kT-A HTTP/1.1" 200 186
2021-03-31 08:48:15,113:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:15 GMT
Content-Type: application/json
Content-Length: 186
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817930>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/w8kT-A
Replay-Nonce: 0104IDoKhn5Ak3YjOM2r7eb9ZfeX_y3YD_Z5mutjNciRULY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/w8kT-A",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
}
2021-03-31 08:48:15,114:DEBUG:acme.client:Storing nonce: 0104IDoKhn5Ak3YjOM2r7eb9ZfeX_y3YD_Z5mutjNciRULY
2021-03-31 08:48:18,119:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:18,178:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817928:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNElEb0tobjVBazNZak9NMnI3ZWI5WmZlWF95M1lEX1o1bXV0ak5jaVJVTFkiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTI4In0",
"signature": "OJzaGnDZIWdETvt2Wj94gOU_xQ05vADqaYmQcKwxExVl9aKSv8C1OV_hq24xCbU9PsfEfNO__vsrd5Ykur_CNnmvSOChnTfV607bJiohoq6TB6dcDJnyUI-b_enVYYGEs_Np1fO4J4xeNwPfJFNr0iAnuP3NgAgPxUblrljaJI5yrkcuho4EQqQJZVpQRLwJ72GSCOj8D0HZxQN255WoVLZD1igMIUFgcevfPJwgF-9NexTZi_Ku6c25feh2b0yLONdhhbrAGsNsiNU6C-b9McHLGfH3I_u3fm96eo1LkiX8QiyBQvwxghfPhGWZADxVtw2anx0K6QlXhcC7G4b5HA",
"payload": ""
}
2021-03-31 08:48:18,433:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817928 HTTP/1.1" 200 795
2021-03-31 08:48:18,437:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:18 GMT
Content-Type: application/json
Content-Length: 795
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0104XNLJsx3uvoG6y3SyfMvIGRklTHQyyw3PB25HHcoK5CA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "example.com"
},
"status": "pending",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/0UaIDA",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/W-wY6w",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/RKypZg",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
}
]
}
2021-03-31 08:48:18,439:DEBUG:acme.client:Storing nonce: 0104XNLJsx3uvoG6y3SyfMvIGRklTHQyyw3PB25HHcoK5CA
2021-03-31 08:48:18,442:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:18,497:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817930:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNFhOTEpzeDN1dm9HNnkzU3lmTXZJR1JrbFRIUXl5dzNQQjI1SEhjb0s1Q0EiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTMwIn0",
"signature": "HI92sY1O2IqkIAYKoATAdYirsBxvPz-rOkB35KvmP8oZmMRm2i4YTHsN-qn7VKQ2IwaNp7W00NFodmGkKFvJUBYrRqspOo8ghPN7szmVDoVaBDWmW9piePoJPPQ5FaIr6ks0TXi70TpURHpRgVfLi4rdgLbZCaes11HZiIpuNBN7Ok4KdyXAftfF_bZQbWsQugYe9s5di50EIKdH-5AcJ4Lx4e882v2XV0weJ6Mk_n4S4JInarl7eLT7osCcvV8ebPpxewDddWMCvmthD2_2G4LE2NHs8vw2yKSHgfq2S7tt_88qitj2b6LAlpugKo7Xp2PubO49JDl6hTE3CK_Vow",
"payload": ""
}
2021-03-31 08:48:18,749:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817930 HTTP/1.1" 200 799
2021-03-31 08:48:18,754:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:18 GMT
Content-Type: application/json
Content-Length: 799
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0103UdFBjfxH-BSslij_vW_zx0XL-4SPYrVlSxx3Pyuv21E
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.example.com"
},
"status": "pending",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/w8kT-A",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/yKIU6Q",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/aRQkjQ",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
}
]
}
2021-03-31 08:48:18,755:DEBUG:acme.client:Storing nonce: 0103UdFBjfxH-BSslij_vW_zx0XL-4SPYrVlSxx3Pyuv21E
2021-03-31 08:48:21,762:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:21,821:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817928:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwM1VkRkJqZnhILUJTc2xpal92V196eDBYTC00U1BZclZsU3h4M1B5dXYyMUUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTI4In0",
"signature": "Ks0Pr9iytmmzZAUD_3nQkZ4YDRFP3VQhj_XJ49hqSVlgf4r0nK445jxmVAxB9c0x0JZIg7_iG4_D2H5LjtcSotP0tbftV43YthrrJT_rG_Fzwu9BnZ4ckrjjodbjlsZAWWPSwJn2nu0wbnMCMoC3ud1EwT-HUtIz1w5UwcH6TAq_Gx2tT5Sfd0d4mq7QgROFtNrBPMhLyDFbiBI0hahjYU7clpuQm6dparqAq1HJ_cbgYj8vBj3zOIMT8hDeiFTNmbmX5ah93IOPWNzWILznUCGm2vjpbDhMJV2HAC7XjeCUlt5V6kNugF8txRVfC0nIQC-bT77ThncK4J9H-DBJ3Q",
"payload": ""
}
2021-03-31 08:48:22,077:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817928 HTTP/1.1" 200 795
2021-03-31 08:48:22,082:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:21 GMT
Content-Type: application/json
Content-Length: 795
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0104wI3jouedEcj0boQNWcsFZSjjJYcVceq0xXT5UvSJkfo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "example.com"
},
"status": "pending",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/0UaIDA",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/W-wY6w",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/RKypZg",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM"
}
]
}
2021-03-31 08:48:22,083:DEBUG:acme.client:Storing nonce: 0104wI3jouedEcj0boQNWcsFZSjjJYcVceq0xXT5UvSJkfo
2021-03-31 08:48:22,087:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:22,141:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817930:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNHdJM2pvdWVkRWNqMGJvUU5XY3NGWlNqakpZY1ZjZXEweFhUNVV2U0prZm8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTMwIn0",
"signature": "Gn0Y4758Xiq6gcnQ1RcOOWNuc1tVr85TK3DhC59ckw8wM0RZgBUK3OwsjXeu0o8oI26wE2QAWdx0WHxqb8fPk3v5oaLbYP5kTc72eUsCvNWRZckfg_ksf6aLR0vG9DFgM_JACs6NLVzefeASEC5lxzglqTNBPOTgwX-HTk-sDg_Lvqi7rQnDSi2SG4PXIT7WEkcG6_H5r1hwgNIAYOnu8AlyrtJDt_VOrK7vLXLF5BTGcna9g8uURxOz03KWeBczOPwKNsvWR2Fv7tsu9kk4O1NX5iNfkXLq8qrpNytzwlxYdpVFWedl0GnWWCt-qtkWvquIVfgJoWgF7hb0-nPDrQ",
"payload": ""
}
2021-03-31 08:48:22,398:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817930 HTTP/1.1" 200 799
2021-03-31 08:48:22,402:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:22 GMT
Content-Type: application/json
Content-Length: 799
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0103_COmpqpV-U9o6BgY0zYbrpw9kLK-bEAMr040KJ5VzU8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.example.com"
},
"status": "pending",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/w8kT-A",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/yKIU6Q",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/aRQkjQ",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec"
}
]
}
2021-03-31 08:48:22,404:DEBUG:acme.client:Storing nonce: 0103_COmpqpV-U9o6BgY0zYbrpw9kLK-bEAMr040KJ5VzU8
2021-03-31 08:48:25,410:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:25,483:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817928:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwM19DT21wcXBWLVU5bzZCZ1kwellicnB3OWtMSy1iRUFNcjA0MEtKNVZ6VTgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTI4In0",
"signature": "LAPyTR5A28Ti2r4JIaELkGQZN8J-u8K1ouu9goiHHcLx1_v3F-HjS83qSVzIUjoxS3V4Um-6H6DSn5kYqvfDM-uwE3SlzuCpET_jkVilh1j-O348xpBUFUTQ2jhW7CrSRn9DLPEF9QM1yOXw4Z7MDEcAsiuqwcbYtar8Nry6goFV7QDd4PLsJPLlRSEOQPyVvm9hI1xhkldpLlrykUi0SUWmlDpZJ1dRqCUXV_TFrUPVJXg0K5UBx2VJOVw4r2ZnoC1vu-6YZISpJRxhA6OC42jfkLhXhELaTdpkemVuMmpgU0LjJ0cM_vKxhaqgpfNauQFZGZWpf7OD4TtT72PTmQ",
"payload": ""
}
2021-03-31 08:48:25,741:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817928 HTTP/1.1" 200 1036
2021-03-31 08:48:25,745:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:25 GMT
Content-Type: application/json
Content-Length: 1036
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0104L03gU-IH2vCdenXDXiJEyLIuWUkj8JS2DaK6IFpUDWE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "example.com"
},
"status": "invalid",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:ietf:params:acme:error:connection",
"detail": "Fetching http://example.com/.well-known/acme-challenge/fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM: Timeout during connect (likely firewall problem)",
"status": 400
},
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817928/0UaIDA",
"token": "fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM",
"validationRecord": [
{
"url": "http://example.com/.well-known/acme-challenge/fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM",
"hostname": "example.com",
"port": "80",
"addressesResolved": [
"1.2.3.4"
],
"addressUsed": "1.2.3.4"
}
],
"validated": "2021-03-30T22:18:14Z"
}
]
}
2021-03-31 08:48:25,747:DEBUG:acme.client:Storing nonce: 0104L03gU-IH2vCdenXDXiJEyLIuWUkj8JS2DaK6IFpUDWE
2021-03-31 08:48:25,752:DEBUG:acme.client:JWS payload:
b''
2021-03-31 08:48:25,806:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/11964817930:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNzE5ODQyOTkiLCAibm9uY2UiOiAiMDEwNEwwM2dVLUlIMnZDZGVuWERYaUpFeUxJdVdVa2o4SlMyRGFLNklGcFVEV0UiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzExOTY0ODE3OTMwIn0",
"signature": "TwMTFsKzwdTDi7I4RuKz3TS8sN0yuKe2oHd_qO5Ie7dUo14-tqvMpIJdRHi0Lztf2uVClyJS2Rsp8QkC4Rkvyfg4V0Vw1ucHQMG7st4HkkdKBrfXcGIm6IaulH9qW3DSfmTNsJUvghzEaBIjc33_OsoPOwjjMsMAXICu9UlPun9oqftrwJqJ8Z2aLq4Ql3ywXOkCaYzj4Cum8lXSEK_g01XSPLRX0VCsOVbOSfR7mE5_vEO9VA95ZVu5a3QXQLH2rpg9sfGcFHfrWhtgMOV4T2e_vnV1zwjoIj0wT0TPsswmE3AVMj60DVTA6oZx6e20n0HnsyifXL2TAeieyfqmkg",
"payload": ""
}
2021-03-31 08:48:26,077:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/11964817930 HTTP/1.1" 200 1052
2021-03-31 08:48:26,081:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 30 Mar 2021 22:18:25 GMT
Content-Type: application/json
Content-Length: 1052
Connection: keep-alive
Boulder-Requester: 71984299
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0104jRaUXhFOyBZTxLYaXVE2bE6PNsPLHgaZUiWmqLXShPo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.example.com"
},
"status": "invalid",
"expires": "2021-04-06T22:18:07Z",
"challenges": [
{
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:ietf:params:acme:error:connection",
"detail": "Fetching http://www.example.com/.well-known/acme-challenge/Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec: Timeout during connect (likely firewall problem)",
"status": 400
},
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/11964817930/w8kT-A",
"token": "Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec",
"validationRecord": [
{
"url": "http://www.example.com/.well-known/acme-challenge/Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec",
"hostname": "www.example.com",
"port": "80",
"addressesResolved": [
"1.2.3.4"
],
"addressUsed": "1.2.3.4"
}
],
"validated": "2021-03-30T22:18:14Z"
}
]
}
2021-03-31 08:48:26,083:DEBUG:acme.client:Storing nonce: 0104jRaUXhFOyBZTxLYaXVE2bE6PNsPLHgaZUiWmqLXShPo
2021-03-31 08:48:26,089:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
Domain: example.com
Type: connection
Detail: Fetching http://example.com/.well-known/acme-challenge/fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM: Timeout during connect (likely firewall problem)
Domain: www.example.com
Type: connection
Detail: Fetching http://www.example.com/.well-known/acme-challenge/Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec: Timeout during connect (likely firewall problem)
To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
2021-03-31 08:48:26,092:DEBUG:certbot.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
self._respond(aauthzrs, resp, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 168, in _respond
self._poll_challenges(aauthzrs, chall_update, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 239, in _poll_challenges
raise errors.FailedChallenges(all_failed_achalls)
certbot.errors.FailedChallenges: Failed authorization procedure. example.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://example.com/.well-known/acme-challenge/fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM: Timeout during connect (likely firewall problem), www.example.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://www.example.com/.well-known/acme-challenge/Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec: Timeout during connect (likely firewall problem)
2021-03-31 08:48:26,092:DEBUG:certbot.error_handler:Calling registered functions
2021-03-31 08:48:26,093:INFO:certbot.auth_handler:Cleaning up challenges
2021-03-31 08:48:29,148:WARNING:certbot.renewal:Attempting to renew cert (example.com) from /etc/letsencrypt/renewal/example.com.conf produced an unexpected error: Failed authorization procedure. example.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://example.com/.well-known/acme-challenge/fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM: Timeout during connect (likely firewall problem), www.example.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://www.example.com/.well-known/acme-challenge/Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec: Timeout during connect (likely firewall problem). Skipping.
2021-03-31 08:48:29,155:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 465, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File "/usr/lib/python3/dist-packages/certbot/main.py", line 1193, in renew_cert
renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
File "/usr/lib/python3/dist-packages/certbot/main.py", line 116, in _get_and_save_cert
renewal.renew_cert(config, domains, le_client, lineage)
File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 323, in renew_cert
new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
File "/usr/lib/python3/dist-packages/certbot/client.py", line 353, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/usr/lib/python3/dist-packages/certbot/client.py", line 389, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
self._respond(aauthzrs, resp, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 168, in _respond
self._poll_challenges(aauthzrs, chall_update, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 239, in _poll_challenges
raise errors.FailedChallenges(all_failed_achalls)
certbot.errors.FailedChallenges: Failed authorization procedure. example.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://example.com/.well-known/acme-challenge/fpG99vQ5oqthf7Ude06v2isApdOkE1rUguSaD-PkcfM: Timeout during connect (likely firewall problem), www.example.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://www.example.com/.well-known/acme-challenge/Ft34TQmTqsA8IuZnt78vr_B8nnV79lEJKsl31QGHpec: Timeout during connect (likely firewall problem)
2021-03-31 08:48:29,164:ERROR:certbot.renewal:All renewal attempts failed. The following certs could not be renewed:
2021-03-31 08:48:29,166:ERROR:certbot.renewal: /etc/letsencrypt/live/example.com/fullchain.pem (failure)
2021-03-31 08:48:29,167:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 11, in <module>
load_entry_point('certbot==0.31.0', 'console_scripts', 'certbot')()
File "/usr/lib/python3/dist-packages/certbot/main.py", line 1365, in main
return config.func(config, plugins)
File "/usr/lib/python3/dist-packages/certbot/main.py", line 1272, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 490, in handle_renewal_request
len(renew_failures), len(parse_failures)))
certbot.errors.Error: 1 renew failure(s), 0 parse failure(s)
...continued in next post because of size limit...
