Update the domain

Hi all! Please help me, I need to update the domain!
Old domain is groupgiftzdev.tk
My domain is: ggiftzdev.club

All certificates and stuff are left from it.

  1. How do I clean everything from the old domain groupgiftzdev.tk?
  2. How do I connect the new domain ggiftzdev.club?

Or how do I do it, I'm a beginner! Thank you very much in advance for your help !!!!


I ran this command: certbot certificates

It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Renewal configuration file /etc/letsencrypt/renewal/groupgiftzdev.tk.conf produced an unexpected error: expected /etc/letsencrypt/live/groupgiftzdev.tk/cert.pem to be a symlink. Skipping.


Found the following certs:
Certificate Name: groupgiftzdev.tk-0001
Domains: groupgiftzdev.tk
Expiry Date: 2021-10-13 05:41:51+00:00 (INVALID: EXPIRED)
Certificate Path: /etc/letsencrypt/live/groupgiftzdev.tk-0001/fullchain.pem
Private Key Path: /etc/letsencrypt/live/groupgiftzdev.tk-0001/privkey.pem

The following renewal configurations were invalid:
/etc/letsencrypt/renewal/groupgiftzdev.tk.conf


As you can see these are all certificates for the old domain.
Do they need to be deleted or replaced?
Thank you all for your help!

4 Likes

Welcome to the Let's Encrypt Community, Oleg :slightly_smiling_face:

It looks like there's some corruption in your certbot data.

What is the output of:

sudo ls -lRa /etc/letsencrypt

Please put 3 backticks above and below the output, like this:

```
output
```

4 Likes

Hi @dramarec and welcome to the LE community forum :slight_smile:

For anyone helping:

Name:      ggiftzdev.club
Addresses: 2606:4700:3035::ac43:8765
           2606:4700:3031::6815:1a32
           104.21.26.50
           172.67.135.101

I see CLOUDFLARE.
[and I see you too @griffin LOL]

5 Likes

Hey hey! :upside_down_face:

Cloudflare is a good observation.

@dramarec

You might consider using a Cloudflare Origin CA certificate instead of a Let's Encrypt certificate.

https://developers.cloudflare.com/ssl/origin-configuration/origin-ca

5 Likes

Yes, the old domain had letsencrypt on it.
Then they told me to connect a new one and gave me the Cloudflare instructions.
I'm totally confused.
What should I do with the old Encrypt certificate?
Or can I just plug in the Cloudflare Origin CA certificate at the link you gave me?

2 Likes

Forgive my lack of understanding.
What do you mean?
Please put three backticks above and below the output, like this:

output
2 Likes

I think I understand.

root@ubuntu-s-1vcpu-1gb-intel-nyc1-01:~# sudo ls -lRa /etc/letsencrypt
/etc/letsencrypt:
total 76
drwx------  10 root root  4096 Nov  2 19:43 .
drwxr-xr-x 102 root root  4096 Oct 29 06:07 ..
-rw-r--r--   1 root root    64 Jun 29 07:57 .updated-options-ssl-nginx-conf-digest.txt
-rw-r--r--   1 root root    64 Jun 29 07:57 .updated-ssl-dhparams-pem-digest.txt
drwxr-xr-x   3 root root  4096 Jun 29 07:53 accounts
drwxr-xr-x   2 root root  4096 Jun 29 08:29 api.groupgiftz.com
drwx------   4 root root  4096 Jul 15 06:41 archive
-rw-r--r--   1 root root   121 Feb 11  2019 cli.ini
drwxr-xr-x   2 root root 12288 Nov  2 19:43 csr
drwx------   2 root root 12288 Nov  2 19:43 keys
drwxr-xr-x   5 root root  4096 Jul 15 06:41 live
-rw-r--r--   1 root root   742 Jun 29 07:57 options-ssl-nginx.conf
drwxr-xr-x   2 root root  4096 Jul 15 06:41 renewal
drwxr-xr-x   5 root root  4096 Jun 29 07:53 renewal-hooks
-rw-r--r--   1 root root   424 Jun 29 07:57 ssl-dhparams.pem

/etc/letsencrypt/accounts:
total 12
drwxr-xr-x  3 root root 4096 Jun 29 07:53 .
drwx------ 10 root root 4096 Nov  2 19:43 ..
drwxr-xr-x  3 root root 4096 Jun 29 07:53 acme-v02.api.letsencrypt.org

/etc/letsencrypt/accounts/acme-v02.api.letsencrypt.org:
total 12
drwxr-xr-x 3 root root 4096 Jun 29 07:53 .
drwxr-xr-x 3 root root 4096 Jun 29 07:53 ..
drwx------ 3 root root 4096 Jun 29 07:53 directory

/etc/letsencrypt/accounts/acme-v02.api.letsencrypt.org/directory:
total 12
drwx------ 3 root root 4096 Jun 29 07:53 .
drwxr-xr-x 3 root root 4096 Jun 29 07:53 ..
drwx------ 2 root root 4096 Jun 29 07:53 737fc58aa11a47fa3c31fcaa7f91717d

/etc/letsencrypt/accounts/acme-v02.api.letsencrypt.org/directory/737fc58aa11a47fa3c31fcaa7f91717d:
total 20
drwx------ 2 root root 4096 Jun 29 07:53 .
drwx------ 3 root root 4096 Jun 29 07:53 ..
-rw-r--r-- 1 root root   92 Jun 29 07:53 meta.json
-r-------- 1 root root 1632 Jun 29 07:53 private_key.json
-rw-r--r-- 1 root root   79 Jun 29 07:53 regr.json

/etc/letsencrypt/api.groupgiftz.com:
total 12
drwxr-xr-x  2 root root 4096 Jun 29 08:29 .
drwx------ 10 root root 4096 Nov  2 19:43 ..
-rw-r--r--  1 root root 3414 Jun 29 08:29 privkey.pem

/etc/letsencrypt/archive:
total 16
drwx------  4 root root 4096 Jul 15 06:41 .
drwx------ 10 root root 4096 Nov  2 19:43 ..
drwxr-xr-x  2 root root 4096 Jul 15 06:40 groupgiftzdev.tk
drwxr-xr-x  2 root root 4096 Jul 15 06:41 groupgiftzdev.tk-0001

/etc/letsencrypt/archive/groupgiftzdev.tk:
total 88
drwxr-xr-x 2 root root 4096 Jul 15 06:40 .
drwx------ 4 root root 4096 Jul 15 06:41 ..
-rw-r--r-- 1 root root 1846 Jul  1 11:03 cert1.pem
-rw-r--r-- 1 root root 1850 Jul  1 16:36 cert2.pem
-rw-r--r-- 1 root root 1846 Jul  1 18:41 cert3.pem
-rw-r--r-- 1 root root 1846 Jul 15 06:40 cert4.pem
-rw-r--r-- 1 root root 3750 Jul  1 11:03 chain1.pem
-rw-r--r-- 1 root root 3750 Jul  1 16:36 chain2.pem
-rw-r--r-- 1 root root 3750 Jul  1 18:41 chain3.pem
-rw-r--r-- 1 root root 3750 Jul 15 06:40 chain4.pem
-rw-r--r-- 1 root root 5596 Jul  1 11:03 fullchain1.pem
-rw-r--r-- 1 root root 5600 Jul  1 16:36 fullchain2.pem
-rw-r--r-- 1 root root 5596 Jul  1 18:41 fullchain3.pem
-rw-r--r-- 1 root root 5596 Jul 15 06:40 fullchain4.pem
-rw------- 1 root root 1704 Jul  1 11:03 privkey1.pem
-rw------- 1 root root 1704 Jul  1 16:36 privkey2.pem
-rw------- 1 root root 1704 Jul  1 18:41 privkey3.pem
-rw------- 1 root root 1704 Jul 15 06:40 privkey4.pem

/etc/letsencrypt/archive/groupgiftzdev.tk-0001:
total 28
drwxr-xr-x 2 root root 4096 Jul 15 06:41 .
drwx------ 4 root root 4096 Jul 15 06:41 ..
-rw-r--r-- 1 root root 1846 Jul 15 06:41 cert1.pem
-rw-r--r-- 1 root root 3750 Jul 15 06:41 chain1.pem
-rw-r--r-- 1 root root 5596 Jul 15 06:41 fullchain1.pem
-rw------- 1 root root 1704 Jul 15 06:41 privkey1.pem

/etc/letsencrypt/csr:
total 928
drwxr-xr-x  2 root root 12288 Nov  2 19:43 .
drwx------ 10 root root  4096 Nov  2 19:43 ..
-rw-r--r--  1 root root   928 Jun 29 07:54 0000_csr-certbot.pem
-rw-r--r--  1 root root   924 Jun 29 07:55 0001_csr-certbot.pem
-rw-r--r--  1 root root   928 Jun 29 07:57 0002_csr-certbot.pem
-rw-r--r--  1 root root   936 Jun 29 07:57 0003_csr-certbot.pem
-rw-r--r--  1 root root   924 Jun 29 08:22 0004_csr-certbot.pem
-rw-r--r--  1 root root   920 Jul  1 06:52 0005_csr-certbot.pem
-rw-r--r--  1 root root   936 Jul  1 06:54 0006_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 10:41 0007_csr-certbot.pem
-rw-r--r--  1 root root   944 Jul  1 10:42 0008_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 10:43 0009_csr-certbot.pem
-rw-r--r--  1 root root   944 Jul  1 10:49 0010_csr-certbot.pem
-rw-r--r--  1 root root   952 Jul  1 10:50 0011_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 10:52 0012_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 10:56 0013_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 11:02 0014_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 11:03 0015_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 16:35 0016_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  1 18:41 0017_csr-certbot.pem
-rw-r--r--  1 root root   952 Jul  2 07:08 0018_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul  2 14:56 0019_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul 15 06:40 0020_csr-certbot.pem
-rw-r--r--  1 root root   928 Jul 15 06:41 0021_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 13 10:09 0022_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 13 18:00 0023_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 13 23:50 0024_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 14 08:35 0025_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 14 10:13 0026_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 14 20:41 0027_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 14 23:49 0028_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 15 06:33 0029_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 15 10:10 0030_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 15 14:50 0031_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 15 23:46 0032_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 16 05:53 0033_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 16 10:11 0034_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 16 17:22 0035_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 16 23:48 0036_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 17 08:44 0037_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 17 10:14 0038_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 17 21:08 0039_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 17 23:51 0040_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 18 08:20 0041_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 18 10:14 0042_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 18 14:23 0043_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 18 23:51 0044_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 19 01:43 0045_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 19 10:14 0046_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 19 14:25 0047_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 19 23:50 0048_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 20 07:49 0049_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 20 10:10 0050_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 20 12:33 0051_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 20 23:51 0052_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 21 04:47 0053_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 21 10:11 0054_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 21 14:06 0055_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 21 23:49 0056_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 22 10:08 0057_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 22 10:35 0058_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 22 21:50 0059_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 22 22:44 0060_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 23 01:58 0061_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 23 11:22 0062_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 23 15:47 0063_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 23 16:40 0064_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 24 04:04 0065_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 24 11:21 0066_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 24 16:36 0067_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 24 18:49 0068_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 25 06:35 0069_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 25 11:16 0070_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 25 16:11 0071_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 25 16:38 0072_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 26 05:16 0073_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 26 11:21 0074_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 26 16:41 0075_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 26 19:36 0076_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 27 07:52 0077_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 27 11:23 0078_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 27 13:49 0079_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 27 16:37 0080_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 28 06:30 0081_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 28 11:18 0082_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 28 16:34 0083_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 28 19:24 0084_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 29 11:16 0085_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 29 11:53 0086_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 29 14:00 0087_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 29 16:34 0088_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 30 02:16 0089_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 30 11:20 0090_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 30 16:35 0091_csr-certbot.pem
-rw-r--r--  1 root root   928 Sep 30 19:22 0092_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  1 02:01 0093_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  1 11:17 0094_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  1 16:35 0095_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  1 16:52 0096_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  2 00:37 0097_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  2 11:21 0098_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  2 16:39 0099_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  2 17:15 0100_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  3 03:47 0101_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  3 11:16 0102_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  3 16:35 0103_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  3 22:32 0104_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  4 06:19 0105_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  4 11:17 0106_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  4 16:39 0107_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  4 19:24 0108_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  5 04:33 0109_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  5 11:20 0110_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  5 12:25 0111_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  5 16:40 0112_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  5 21:36 0113_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  6 02:32 0114_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  6 05:17 0115_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  6 16:37 0116_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  6 21:36 0117_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  7 05:12 0118_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  7 05:15 0119_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  7 18:18 0120_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  7 21:39 0121_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  8 05:18 0122_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  8 07:10 0123_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  8 13:56 0124_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  8 21:39 0125_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  9 03:39 0126_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  9 05:18 0127_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  9 21:34 0128_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct  9 23:53 0129_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 10 04:09 0130_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 10 05:18 0131_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 10 17:10 0132_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 10 21:38 0133_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 11 01:53 0134_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 11 05:20 0135_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 11 16:47 0136_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 11 21:37 0137_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 12 05:13 0138_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 12 10:55 0139_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 12 12:17 0140_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 12 21:39 0141_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 13 05:16 0142_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 13 05:49 0143_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 13 15:14 0144_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 13 21:33 0145_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 14 04:21 0146_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 14 05:19 0147_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 14 21:39 0148_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 14 22:33 0149_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 15 05:16 0150_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 15 07:17 0151_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 15 07:43 0152_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 15 13:01 0153_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 15 14:40 0154_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 16 01:45 0155_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 16 07:29 0156_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 16 13:01 0157_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 16 16:35 0158_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 17 07:26 0159_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 17 10:21 0160_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 17 13:05 0161_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 17 15:39 0162_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 18 07:27 0163_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 18 09:21 0164_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 18 13:01 0165_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 18 23:14 0166_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 19 02:39 0167_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 19 07:29 0168_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 19 13:05 0169_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 19 20:05 0170_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 20 02:55 0171_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 20 07:24 0172_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 20 13:04 0173_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 20 20:58 0174_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 21 07:29 0175_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 21 08:46 0176_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 21 12:59 0177_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 21 18:00 0178_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 21 19:37 0179_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 22 03:12 0180_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 22 09:17 0181_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 22 18:03 0182_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 22 21:40 0183_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 23 03:24 0184_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 23 09:15 0185_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 23 12:27 0186_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 23 17:59 0187_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 24 06:11 0188_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 24 09:16 0189_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 24 18:00 0190_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 24 20:45 0191_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 25 09:12 0192_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 25 10:09 0193_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 25 18:01 0194_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 25 20:34 0195_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 26 06:06 0196_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 26 09:18 0197_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 26 14:01 0198_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 26 18:03 0199_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 27 00:56 0200_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 27 09:17 0201_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 27 17:29 0202_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 27 17:58 0203_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 28 09:12 0204_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 28 17:56 0205_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 28 22:06 0206_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 29 05:48 0207_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 29 09:15 0208_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 29 16:48 0209_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 29 17:59 0210_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 30 07:30 0211_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 30 09:17 0212_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 30 18:03 0213_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 30 19:00 0214_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 31 00:51 0215_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 31 09:15 0216_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 31 13:40 0217_csr-certbot.pem
-rw-r--r--  1 root root   928 Oct 31 18:02 0218_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  1 09:13 0219_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  1 09:45 0220_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  1 18:03 0221_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  1 20:19 0222_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  2 07:12 0223_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  2 09:13 0224_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  2 18:00 0225_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  2 18:34 0226_csr-certbot.pem
-rw-r--r--  1 root root   928 Nov  2 19:43 0227_csr-certbot.pem

/etc/letsencrypt/keys:
total 928
drwx------  2 root root 12288 Nov  2 19:43 .
drwx------ 10 root root  4096 Nov  2 19:43 ..
-rw-------  1 root root  1704 Jun 29 07:54 0000_key-certbot.pem
-rw-------  1 root root  1704 Jun 29 07:55 0001_key-certbot.pem
-rw-------  1 root root  1708 Jun 29 07:57 0002_key-certbot.pem
-rw-------  1 root root  1704 Jun 29 07:57 0003_key-certbot.pem
-rw-------  1 root root  1704 Jun 29 08:22 0004_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 06:52 0005_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 06:54 0006_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 10:41 0007_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 10:42 0008_key-certbot.pem
-rw-------  1 root root  1708 Jul  1 10:43 0009_key-certbot.pem
-rw-------  1 root root  1708 Jul  1 10:49 0010_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 10:50 0011_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 10:52 0012_key-certbot.pem
-rw-------  1 root root  1708 Jul  1 10:56 0013_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 11:02 0014_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 11:03 0015_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 16:35 0016_key-certbot.pem
-rw-------  1 root root  1704 Jul  1 18:41 0017_key-certbot.pem
-rw-------  1 root root  1708 Jul  2 07:08 0018_key-certbot.pem
-rw-------  1 root root  1708 Jul  2 14:56 0019_key-certbot.pem
-rw-------  1 root root  1704 Jul 15 06:40 0020_key-certbot.pem
-rw-------  1 root root  1704 Jul 15 06:41 0021_key-certbot.pem
-rw-------  1 root root  1704 Sep 13 10:09 0022_key-certbot.pem
-rw-------  1 root root  1704 Sep 13 18:00 0023_key-certbot.pem
-rw-------  1 root root  1708 Sep 13 23:50 0024_key-certbot.pem
-rw-------  1 root root  1704 Sep 14 08:35 0025_key-certbot.pem
-rw-------  1 root root  1704 Sep 14 10:13 0026_key-certbot.pem
-rw-------  1 root root  1704 Sep 14 20:41 0027_key-certbot.pem
-rw-------  1 root root  1704 Sep 14 23:49 0028_key-certbot.pem
-rw-------  1 root root  1704 Sep 15 06:33 0029_key-certbot.pem
-rw-------  1 root root  1704 Sep 15 10:10 0030_key-certbot.pem
-rw-------  1 root root  1704 Sep 15 14:50 0031_key-certbot.pem
-rw-------  1 root root  1704 Sep 15 23:46 0032_key-certbot.pem
-rw-------  1 root root  1704 Sep 16 05:53 0033_key-certbot.pem
-rw-------  1 root root  1704 Sep 16 10:11 0034_key-certbot.pem
-rw-------  1 root root  1704 Sep 16 17:22 0035_key-certbot.pem
-rw-------  1 root root  1704 Sep 16 23:48 0036_key-certbot.pem
-rw-------  1 root root  1708 Sep 17 08:44 0037_key-certbot.pem
-rw-------  1 root root  1704 Sep 17 10:14 0038_key-certbot.pem
-rw-------  1 root root  1704 Sep 17 21:08 0039_key-certbot.pem
-rw-------  1 root root  1704 Sep 17 23:51 0040_key-certbot.pem
-rw-------  1 root root  1704 Sep 18 08:20 0041_key-certbot.pem
-rw-------  1 root root  1704 Sep 18 10:14 0042_key-certbot.pem
-rw-------  1 root root  1704 Sep 18 14:23 0043_key-certbot.pem
-rw-------  1 root root  1708 Sep 18 23:51 0044_key-certbot.pem
-rw-------  1 root root  1708 Sep 19 01:43 0045_key-certbot.pem
-rw-------  1 root root  1704 Sep 19 10:14 0046_key-certbot.pem
-rw-------  1 root root  1704 Sep 19 14:25 0047_key-certbot.pem
-rw-------  1 root root  1704 Sep 19 23:50 0048_key-certbot.pem
-rw-------  1 root root  1704 Sep 20 07:49 0049_key-certbot.pem
-rw-------  1 root root  1704 Sep 20 10:10 0050_key-certbot.pem
-rw-------  1 root root  1704 Sep 20 12:33 0051_key-certbot.pem
-rw-------  1 root root  1708 Sep 20 23:51 0052_key-certbot.pem
-rw-------  1 root root  1704 Sep 21 04:47 0053_key-certbot.pem
-rw-------  1 root root  1704 Sep 21 10:11 0054_key-certbot.pem
-rw-------  1 root root  1704 Sep 21 14:06 0055_key-certbot.pem
-rw-------  1 root root  1704 Sep 21 23:49 0056_key-certbot.pem
-rw-------  1 root root  1704 Sep 22 10:08 0057_key-certbot.pem
-rw-------  1 root root  1704 Sep 22 10:35 0058_key-certbot.pem
-rw-------  1 root root  1700 Sep 22 21:50 0059_key-certbot.pem
-rw-------  1 root root  1704 Sep 22 22:44 0060_key-certbot.pem
-rw-------  1 root root  1704 Sep 23 01:58 0061_key-certbot.pem
-rw-------  1 root root  1704 Sep 23 11:22 0062_key-certbot.pem
-rw-------  1 root root  1704 Sep 23 15:47 0063_key-certbot.pem
-rw-------  1 root root  1708 Sep 23 16:40 0064_key-certbot.pem
-rw-------  1 root root  1704 Sep 24 04:04 0065_key-certbot.pem
-rw-------  1 root root  1704 Sep 24 11:21 0066_key-certbot.pem
-rw-------  1 root root  1704 Sep 24 16:36 0067_key-certbot.pem
-rw-------  1 root root  1704 Sep 24 18:49 0068_key-certbot.pem
-rw-------  1 root root  1704 Sep 25 06:35 0069_key-certbot.pem
-rw-------  1 root root  1704 Sep 25 11:16 0070_key-certbot.pem
-rw-------  1 root root  1704 Sep 25 16:11 0071_key-certbot.pem
-rw-------  1 root root  1704 Sep 25 16:38 0072_key-certbot.pem
-rw-------  1 root root  1704 Sep 26 05:16 0073_key-certbot.pem
-rw-------  1 root root  1704 Sep 26 11:21 0074_key-certbot.pem
-rw-------  1 root root  1708 Sep 26 16:41 0075_key-certbot.pem
-rw-------  1 root root  1704 Sep 26 19:36 0076_key-certbot.pem
-rw-------  1 root root  1704 Sep 27 07:52 0077_key-certbot.pem
-rw-------  1 root root  1704 Sep 27 11:23 0078_key-certbot.pem
-rw-------  1 root root  1704 Sep 27 13:49 0079_key-certbot.pem
-rw-------  1 root root  1704 Sep 27 16:37 0080_key-certbot.pem
-rw-------  1 root root  1708 Sep 28 06:30 0081_key-certbot.pem
-rw-------  1 root root  1704 Sep 28 11:18 0082_key-certbot.pem
-rw-------  1 root root  1708 Sep 28 16:34 0083_key-certbot.pem
-rw-------  1 root root  1704 Sep 28 19:24 0084_key-certbot.pem
-rw-------  1 root root  1704 Sep 29 11:16 0085_key-certbot.pem
-rw-------  1 root root  1704 Sep 29 11:53 0086_key-certbot.pem
-rw-------  1 root root  1708 Sep 29 14:00 0087_key-certbot.pem
-rw-------  1 root root  1708 Sep 29 16:34 0088_key-certbot.pem
-rw-------  1 root root  1708 Sep 30 02:16 0089_key-certbot.pem
-rw-------  1 root root  1708 Sep 30 11:20 0090_key-certbot.pem
-rw-------  1 root root  1704 Sep 30 16:35 0091_key-certbot.pem
-rw-------  1 root root  1704 Sep 30 19:22 0092_key-certbot.pem
-rw-------  1 root root  1704 Oct  1 02:01 0093_key-certbot.pem
-rw-------  1 root root  1704 Oct  1 11:17 0094_key-certbot.pem
-rw-------  1 root root  1708 Oct  1 16:35 0095_key-certbot.pem
-rw-------  1 root root  1704 Oct  1 16:52 0096_key-certbot.pem
-rw-------  1 root root  1704 Oct  2 00:37 0097_key-certbot.pem
-rw-------  1 root root  1704 Oct  2 11:21 0098_key-certbot.pem
-rw-------  1 root root  1704 Oct  2 16:39 0099_key-certbot.pem
-rw-------  1 root root  1708 Oct  2 17:15 0100_key-certbot.pem
-rw-------  1 root root  1708 Oct  3 03:47 0101_key-certbot.pem
-rw-------  1 root root  1708 Oct  3 11:16 0102_key-certbot.pem
-rw-------  1 root root  1704 Oct  3 16:35 0103_key-certbot.pem
-rw-------  1 root root  1704 Oct  3 22:32 0104_key-certbot.pem
-rw-------  1 root root  1704 Oct  4 06:19 0105_key-certbot.pem
-rw-------  1 root root  1704 Oct  4 11:17 0106_key-certbot.pem
-rw-------  1 root root  1708 Oct  4 16:39 0107_key-certbot.pem
-rw-------  1 root root  1704 Oct  4 19:24 0108_key-certbot.pem
-rw-------  1 root root  1708 Oct  5 04:33 0109_key-certbot.pem
-rw-------  1 root root  1704 Oct  5 11:20 0110_key-certbot.pem
-rw-------  1 root root  1704 Oct  5 12:25 0111_key-certbot.pem
-rw-------  1 root root  1704 Oct  5 16:40 0112_key-certbot.pem
-rw-------  1 root root  1704 Oct  5 21:36 0113_key-certbot.pem
-rw-------  1 root root  1704 Oct  6 02:32 0114_key-certbot.pem
-rw-------  1 root root  1704 Oct  6 05:17 0115_key-certbot.pem
-rw-------  1 root root  1704 Oct  6 16:37 0116_key-certbot.pem
-rw-------  1 root root  1704 Oct  6 21:36 0117_key-certbot.pem
-rw-------  1 root root  1708 Oct  7 05:12 0118_key-certbot.pem
-rw-------  1 root root  1704 Oct  7 05:15 0119_key-certbot.pem
-rw-------  1 root root  1704 Oct  7 18:18 0120_key-certbot.pem
-rw-------  1 root root  1704 Oct  7 21:39 0121_key-certbot.pem
-rw-------  1 root root  1704 Oct  8 05:18 0122_key-certbot.pem
-rw-------  1 root root  1704 Oct  8 07:10 0123_key-certbot.pem
-rw-------  1 root root  1708 Oct  8 13:56 0124_key-certbot.pem
-rw-------  1 root root  1704 Oct  8 21:39 0125_key-certbot.pem
-rw-------  1 root root  1704 Oct  9 03:39 0126_key-certbot.pem
-rw-------  1 root root  1704 Oct  9 05:18 0127_key-certbot.pem
-rw-------  1 root root  1704 Oct  9 21:34 0128_key-certbot.pem
-rw-------  1 root root  1704 Oct  9 23:53 0129_key-certbot.pem
-rw-------  1 root root  1704 Oct 10 04:09 0130_key-certbot.pem
-rw-------  1 root root  1704 Oct 10 05:18 0131_key-certbot.pem
-rw-------  1 root root  1704 Oct 10 17:10 0132_key-certbot.pem
-rw-------  1 root root  1708 Oct 10 21:38 0133_key-certbot.pem
-rw-------  1 root root  1704 Oct 11 01:53 0134_key-certbot.pem
-rw-------  1 root root  1708 Oct 11 05:20 0135_key-certbot.pem
-rw-------  1 root root  1708 Oct 11 16:47 0136_key-certbot.pem
-rw-------  1 root root  1704 Oct 11 21:37 0137_key-certbot.pem
-rw-------  1 root root  1704 Oct 12 05:13 0138_key-certbot.pem
-rw-------  1 root root  1704 Oct 12 10:55 0139_key-certbot.pem
-rw-------  1 root root  1704 Oct 12 12:17 0140_key-certbot.pem
-rw-------  1 root root  1708 Oct 12 21:39 0141_key-certbot.pem
-rw-------  1 root root  1704 Oct 13 05:16 0142_key-certbot.pem
-rw-------  1 root root  1704 Oct 13 05:49 0143_key-certbot.pem
-rw-------  1 root root  1704 Oct 13 15:14 0144_key-certbot.pem
-rw-------  1 root root  1704 Oct 13 21:33 0145_key-certbot.pem
-rw-------  1 root root  1704 Oct 14 04:21 0146_key-certbot.pem
-rw-------  1 root root  1704 Oct 14 05:19 0147_key-certbot.pem
-rw-------  1 root root  1704 Oct 14 21:39 0148_key-certbot.pem
-rw-------  1 root root  1708 Oct 14 22:33 0149_key-certbot.pem
-rw-------  1 root root  1704 Oct 15 05:16 0150_key-certbot.pem
-rw-------  1 root root  1704 Oct 15 07:17 0151_key-certbot.pem
-rw-------  1 root root  1704 Oct 15 07:43 0152_key-certbot.pem
-rw-------  1 root root  1704 Oct 15 13:01 0153_key-certbot.pem
-rw-------  1 root root  1704 Oct 15 14:40 0154_key-certbot.pem
-rw-------  1 root root  1704 Oct 16 01:45 0155_key-certbot.pem
-rw-------  1 root root  1704 Oct 16 07:29 0156_key-certbot.pem
-rw-------  1 root root  1704 Oct 16 13:01 0157_key-certbot.pem
-rw-------  1 root root  1704 Oct 16 16:35 0158_key-certbot.pem
-rw-------  1 root root  1708 Oct 17 07:26 0159_key-certbot.pem
-rw-------  1 root root  1704 Oct 17 10:21 0160_key-certbot.pem
-rw-------  1 root root  1704 Oct 17 13:05 0161_key-certbot.pem
-rw-------  1 root root  1704 Oct 17 15:39 0162_key-certbot.pem
-rw-------  1 root root  1708 Oct 18 07:27 0163_key-certbot.pem
-rw-------  1 root root  1704 Oct 18 09:21 0164_key-certbot.pem
-rw-------  1 root root  1704 Oct 18 13:01 0165_key-certbot.pem
-rw-------  1 root root  1704 Oct 18 23:14 0166_key-certbot.pem
-rw-------  1 root root  1704 Oct 19 02:39 0167_key-certbot.pem
-rw-------  1 root root  1704 Oct 19 07:29 0168_key-certbot.pem
-rw-------  1 root root  1704 Oct 19 13:05 0169_key-certbot.pem
-rw-------  1 root root  1704 Oct 19 20:05 0170_key-certbot.pem
-rw-------  1 root root  1704 Oct 20 02:55 0171_key-certbot.pem
-rw-------  1 root root  1704 Oct 20 07:24 0172_key-certbot.pem
-rw-------  1 root root  1704 Oct 20 13:04 0173_key-certbot.pem
-rw-------  1 root root  1704 Oct 20 20:58 0174_key-certbot.pem
-rw-------  1 root root  1704 Oct 21 07:29 0175_key-certbot.pem
-rw-------  1 root root  1704 Oct 21 08:46 0176_key-certbot.pem
-rw-------  1 root root  1704 Oct 21 12:59 0177_key-certbot.pem
-rw-------  1 root root  1704 Oct 21 18:00 0178_key-certbot.pem
-rw-------  1 root root  1708 Oct 21 19:37 0179_key-certbot.pem
-rw-------  1 root root  1704 Oct 22 03:12 0180_key-certbot.pem
-rw-------  1 root root  1704 Oct 22 09:17 0181_key-certbot.pem
-rw-------  1 root root  1704 Oct 22 18:03 0182_key-certbot.pem
-rw-------  1 root root  1704 Oct 22 21:40 0183_key-certbot.pem
-rw-------  1 root root  1704 Oct 23 03:24 0184_key-certbot.pem
-rw-------  1 root root  1704 Oct 23 09:15 0185_key-certbot.pem
-rw-------  1 root root  1704 Oct 23 12:27 0186_key-certbot.pem
-rw-------  1 root root  1704 Oct 23 17:59 0187_key-certbot.pem
-rw-------  1 root root  1704 Oct 24 06:11 0188_key-certbot.pem
-rw-------  1 root root  1704 Oct 24 09:16 0189_key-certbot.pem
-rw-------  1 root root  1704 Oct 24 18:00 0190_key-certbot.pem
-rw-------  1 root root  1704 Oct 24 20:45 0191_key-certbot.pem
-rw-------  1 root root  1704 Oct 25 09:12 0192_key-certbot.pem
-rw-------  1 root root  1708 Oct 25 10:09 0193_key-certbot.pem
-rw-------  1 root root  1704 Oct 25 18:01 0194_key-certbot.pem
-rw-------  1 root root  1704 Oct 25 20:34 0195_key-certbot.pem
-rw-------  1 root root  1704 Oct 26 06:06 0196_key-certbot.pem
-rw-------  1 root root  1704 Oct 26 09:18 0197_key-certbot.pem
-rw-------  1 root root  1704 Oct 26 14:01 0198_key-certbot.pem
-rw-------  1 root root  1704 Oct 26 18:03 0199_key-certbot.pem
-rw-------  1 root root  1704 Oct 27 00:56 0200_key-certbot.pem
-rw-------  1 root root  1708 Oct 27 09:17 0201_key-certbot.pem
-rw-------  1 root root  1704 Oct 27 17:29 0202_key-certbot.pem
-rw-------  1 root root  1704 Oct 27 17:58 0203_key-certbot.pem
-rw-------  1 root root  1704 Oct 28 09:12 0204_key-certbot.pem
-rw-------  1 root root  1704 Oct 28 17:56 0205_key-certbot.pem
-rw-------  1 root root  1704 Oct 28 22:06 0206_key-certbot.pem
-rw-------  1 root root  1704 Oct 29 05:48 0207_key-certbot.pem
-rw-------  1 root root  1704 Oct 29 09:15 0208_key-certbot.pem
-rw-------  1 root root  1708 Oct 29 16:48 0209_key-certbot.pem
-rw-------  1 root root  1704 Oct 29 17:59 0210_key-certbot.pem
-rw-------  1 root root  1704 Oct 30 07:30 0211_key-certbot.pem
-rw-------  1 root root  1704 Oct 30 09:17 0212_key-certbot.pem
-rw-------  1 root root  1704 Oct 30 18:03 0213_key-certbot.pem
-rw-------  1 root root  1704 Oct 30 19:00 0214_key-certbot.pem
-rw-------  1 root root  1704 Oct 31 00:51 0215_key-certbot.pem
-rw-------  1 root root  1704 Oct 31 09:15 0216_key-certbot.pem
-rw-------  1 root root  1704 Oct 31 13:40 0217_key-certbot.pem
-rw-------  1 root root  1704 Oct 31 18:02 0218_key-certbot.pem
-rw-------  1 root root  1704 Nov  1 09:13 0219_key-certbot.pem
-rw-------  1 root root  1704 Nov  1 09:45 0220_key-certbot.pem
-rw-------  1 root root  1704 Nov  1 18:03 0221_key-certbot.pem
-rw-------  1 root root  1708 Nov  1 20:19 0222_key-certbot.pem
-rw-------  1 root root  1704 Nov  2 07:12 0223_key-certbot.pem
-rw-------  1 root root  1704 Nov  2 09:13 0224_key-certbot.pem
-rw-------  1 root root  1704 Nov  2 18:00 0225_key-certbot.pem
-rw-------  1 root root  1704 Nov  2 18:34 0226_key-certbot.pem
-rw-------  1 root root  1704 Nov  2 19:43 0227_key-certbot.pem

/etc/letsencrypt/live:
total 28
drwxr-xr-x  5 root root 4096 Jul 15 06:41 .
drwx------ 10 root root 4096 Nov  2 19:43 ..
-rw-r--r--  1 root root  740 Jul  1 11:03 README
drwxr-xr-x  2 root root 4096 Jun 29 08:26 api.groupgiftz.com
drwxr-xr-x  2 root root 4096 Jul 15 06:41 groupgiftzdev.tk
drwxr-xr-x  2 root root 4096 Jul 15 06:41 groupgiftzdev.tk-0001
-rw-r--r--  1 root root 3414 Jun 29 08:26 privkey.pem

/etc/letsencrypt/live/api.groupgiftz.com:
total 8
drwxr-xr-x 2 root root 4096 Jun 29 08:26 .
drwxr-xr-x 5 root root 4096 Jul 15 06:41 ..

/etc/letsencrypt/live/groupgiftzdev.tk:
total 12
drwxr-xr-x 2 root root 4096 Jul 15 06:41 .
drwxr-xr-x 5 root root 4096 Jul 15 06:41 ..
-rw-r--r-- 1 root root  692 Jul  1 11:03 README

/etc/letsencrypt/live/groupgiftzdev.tk-0001:
total 12
drwxr-xr-x 2 root root 4096 Jul 15 06:41 .
drwxr-xr-x 5 root root 4096 Jul 15 06:41 ..
-rw-r--r-- 1 root root  692 Jul 15 06:41 README
lrwxrwxrwx 1 root root   45 Jul 15 06:41 cert.pem -> ../../archive/groupgiftzdev.tk-0001/cert1.pem
lrwxrwxrwx 1 root root   46 Jul 15 06:41 chain.pem -> ../../archive/groupgiftzdev.tk-0001/chain1.pem
lrwxrwxrwx 1 root root   50 Jul 15 06:41 fullchain.pem -> ../../archive/groupgiftzdev.tk-0001/fullchain1.pem
lrwxrwxrwx 1 root root   48 Jul 15 06:41 privkey.pem -> ../../archive/groupgiftzdev.tk-0001/privkey1.pem

/etc/letsencrypt/renewal:
total 16
drwxr-xr-x  2 root root 4096 Jul 15 06:41 .
drwx------ 10 root root 4096 Nov  2 19:43 ..
-rw-r--r--  1 root root  549 Jul 15 06:41 groupgiftzdev.tk-0001.conf
-rw-r--r--  1 root root  524 Jul 15 06:40 groupgiftzdev.tk.conf

/etc/letsencrypt/renewal-hooks:
total 20
drwxr-xr-x  5 root root 4096 Jun 29 07:53 .
drwx------ 10 root root 4096 Nov  2 19:43 ..
drwxr-xr-x  2 root root 4096 Jun 29 07:53 deploy
drwxr-xr-x  2 root root 4096 Jun 29 07:53 post
drwxr-xr-x  2 root root 4096 Jun 29 07:53 pre

/etc/letsencrypt/renewal-hooks/deploy:
total 8
drwxr-xr-x 2 root root 4096 Jun 29 07:53 .
drwxr-xr-x 5 root root 4096 Jun 29 07:53 ..

/etc/letsencrypt/renewal-hooks/post:
total 8
drwxr-xr-x 2 root root 4096 Jun 29 07:53 .
drwxr-xr-x 5 root root 4096 Jun 29 07:53 ..

/etc/letsencrypt/renewal-hooks/pre:
total 8
drwxr-xr-x 2 root root 4096 Jun 29 07:53 .
drwxr-xr-x 5 root root 4096 Jun 29 07:53 ..
2 Likes

You did great. :slightly_smiling_face:

So... certainly some things we want to clean up.

Run these commands in this order:

sudo rm -Rf /etc/letsencrypt/api.groupgiftz.com
sudo rm -Rf /etc/letsencrypt/archive/groupgiftzdev.tk
sudo rm -f /etc/letsencrypt/csr/*
sudo rm -f /etc/letsencrypt/keys/*
sudo rm -Rf /etc/letsencrypt/live/api.groupgiftz.com
sudo rm -Rf /etc/letsencrypt/live/groupgiftzdev.tk
sudo rm -f /etc/letsencrypt/live/privkey.pem
sudo rm -f /etc/letsencrypt/renewal/groupgiftzdev.tk.conf
sudo certbot delete --cert-name groupgiftzdev.tk-0001

As for ggiftzdev.club, once you have fixed the Cloudflare 521 error, try this command:

sudo certbot --nginx -d "ggiftzdev.club,www.ggiftzdev.club"

4 Likes

Thank you so much! I'm going to try it now!

3 Likes

If you run into any trouble...

run this:

sudo nginx -s reload

then show the output of this (using the backticks as mentioned before):

sudo nginx -T

4 Likes

Here's what I got for this command

root@ubuntu-s-1vcpu-1gb-intel-nyc1-01:~# sudo certbot --nginx -d "ggiftzdev.club,www.ggiftzdev.club"
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for ggiftzdev.club
http-01 challenge for www.ggiftzdev.club
Waiting for verification...
Challenge failed for domain www.ggiftzdev.club
http-01 challenge for www.ggiftzdev.club
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: www.ggiftzdev.club
   Type:   connection
   Detail: Fetching
   https://www.ggiftzdev.club/.well-known/acme-challenge/OwLh5uui5w-k_m56DmUwQ1jfVrvERyow2mwoQOAxcBc:
   Redirect loop detected

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address. Additionally, please check that
   your computer has a publicly routable IP address and that no
   firewalls are preventing the server from communicating with the
   client. If you're using the webroot plugin, you should also verify
   that you are serving files from the webroot path you provided.
2 Likes

And on this command

root@ubuntu-s-1vcpu-1gb-intel-nyc1-01:~# sudo nginx -T

nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
# configuration file /etc/nginx/nginx.conf:
user www-data;
worker_processes auto;
pid /run/nginx.pid;
include /etc/nginx/modules-enabled/*.conf;

events {
	worker_connections 768;
	# multi_accept on;
}

http {

	##
	# Basic Settings
	##

	sendfile on;
	tcp_nopush on;
	tcp_nodelay on;
	keepalive_timeout 65;
	types_hash_max_size 2048;
	# server_tokens off;

	# server_names_hash_bucket_size 64;
	# server_name_in_redirect off;

	include /etc/nginx/mime.types;
	default_type application/octet-stream;

	##
	# SSL Settings
	##

	ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE
	ssl_prefer_server_ciphers on;

	##
	# Logging Settings
	##

	access_log /var/log/nginx/access.log;
	error_log /var/log/nginx/error.log;

	##
	# Gzip Settings
	##

	gzip on;

	# gzip_vary on;
	# gzip_proxied any;
	# gzip_comp_level 6;
	# gzip_buffers 16 8k;
	# gzip_http_version 1.1;
	# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;

	##
	# Virtual Host Configs
	##

	include /etc/nginx/conf.d/*.conf;
	include /etc/nginx/sites-enabled/*;
}


#mail {
#	# See sample authentication script at:
#	# http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
#
#	# auth_http localhost/auth.php;
#	# pop3_capabilities "TOP" "USER";
#	# imap_capabilities "IMAP4rev1" "UIDPLUS";
#
#	server {
#		listen     localhost:110;
#		protocol   pop3;
#		proxy      on;
#	}
#
#	server {
#		listen     localhost:143;
#		protocol   imap;
#		proxy      on;
#	}
#}

# configuration file /etc/nginx/modules-enabled/50-mod-http-image-filter.conf:
load_module modules/ngx_http_image_filter_module.so;

# configuration file /etc/nginx/modules-enabled/50-mod-http-xslt-filter.conf:
load_module modules/ngx_http_xslt_filter_module.so;

# configuration file /etc/nginx/modules-enabled/50-mod-mail.conf:
load_module modules/ngx_mail_module.so;

# configuration file /etc/nginx/modules-enabled/50-mod-stream.conf:
load_module modules/ngx_stream_module.so;

# configuration file /etc/nginx/mime.types:

types {
    text/html                             html htm shtml;
    text/css                              css;
    text/xml                              xml;
    image/gif                             gif;
    image/jpeg                            jpeg jpg;
    application/javascript                js;
    application/atom+xml                  atom;
    application/rss+xml                   rss;

    text/mathml                           mml;
    text/plain                            txt;
    text/vnd.sun.j2me.app-descriptor      jad;
    text/vnd.wap.wml                      wml;
    text/x-component                      htc;

    image/png                             png;
    image/tiff                            tif tiff;
    image/vnd.wap.wbmp                    wbmp;
    image/x-icon                          ico;
    image/x-jng                           jng;
    image/x-ms-bmp                        bmp;
    image/svg+xml                         svg svgz;
    image/webp                            webp;

    application/font-woff                 woff;
    application/java-archive              jar war ear;
    application/json                      json;
    application/mac-binhex40              hqx;
    application/msword                    doc;
    application/pdf                       pdf;
    application/postscript                ps eps ai;
    application/rtf                       rtf;
    application/vnd.apple.mpegurl         m3u8;
    application/vnd.ms-excel              xls;
    application/vnd.ms-fontobject         eot;
    application/vnd.ms-powerpoint         ppt;
    application/vnd.wap.wmlc              wmlc;
    application/vnd.google-earth.kml+xml  kml;
    application/vnd.google-earth.kmz      kmz;
    application/x-7z-compressed           7z;
    application/x-cocoa                   cco;
    application/x-java-archive-diff       jardiff;
    application/x-java-jnlp-file          jnlp;
    application/x-makeself                run;
    application/x-perl                    pl pm;
    application/x-pilot                   prc pdb;
    application/x-rar-compressed          rar;
    application/x-redhat-package-manager  rpm;
    application/x-sea                     sea;
    application/x-shockwave-flash         swf;
    application/x-stuffit                 sit;
    application/x-tcl                     tcl tk;
    application/x-x509-ca-cert            der pem crt;
    application/x-xpinstall               xpi;
    application/xhtml+xml                 xhtml;
    application/xspf+xml                  xspf;
    application/zip                       zip;

    application/octet-stream              bin exe dll;
    application/octet-stream              deb;
    application/octet-stream              dmg;
    application/octet-stream              iso img;
    application/octet-stream              msi msp msm;

    application/vnd.openxmlformats-officedocument.wordprocessingml.document    docx;
    application/vnd.openxmlformats-officedocument.spreadsheetml.sheet          xlsx;
    application/vnd.openxmlformats-officedocument.presentationml.presentation  pptx;

    audio/midi                            mid midi kar;
    audio/mpeg                            mp3;
    audio/ogg                             ogg;
    audio/x-m4a                           m4a;
    audio/x-realaudio                     ra;

    video/3gpp                            3gpp 3gp;
    video/mp2t                            ts;
    video/mp4                             mp4;
    video/mpeg                            mpeg mpg;
    video/quicktime                       mov;
    video/webm                            webm;
    video/x-flv                           flv;
    video/x-m4v                           m4v;
    video/x-mng                           mng;
    video/x-ms-asf                        asx asf;
    video/x-ms-wmv                        wmv;
    video/x-msvideo                       avi;
}

# configuration file /etc/nginx/sites-enabled/default:
##
# You should look at the following URL's in order to grasp a solid understanding
# of Nginx configuration files in order to fully unleash the power of Nginx.
# https://www.nginx.com/resources/wiki/start/
# https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/
# https://wiki.debian.org/Nginx/DirectoryStructure
#
# In most cases, administrators will remove this file from sites-enabled/ and
# leave it as reference inside of sites-available where it will continue to be
# updated by the nginx packaging team.
#
# This file will automatically load configuration files provided by other
# applications, such as Drupal or Wordpress. These applications will be made
# available underneath a path with that package name, such as /drupal8.
#
# Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples.
##

# Default server configuration
#
server {
	# SSL configuration
	#

	listen 80 default_server;
	listen [::]:80 default_server ipv6only=on;

	# listen 443 ssl default_server;
	# listen [::]:443 ssl default_server;

	#
	# Note: You should disable gzip for SSL traffic.
	# See: https://bugs.debian.org/773332
	#
	# Read up on ssl_ciphers to ensure a secure configuration.
	# See: https://bugs.debian.org/765782
	#
	# Self signed certs generated by the ssl-cert package
	# Don't use them in a production server!
	#
	# include snippets/snakeoil.conf;

	root /var/www/html;

	# Add index.php to the list if you are using PHP
	index index.html index.htm index.nginx-debian.html;

	server_name ggiftzdev.club;

	location / {
		# First attempt to serve request as file, then
		# as directory, then fall back to displaying a 404.
		try_files $uri $uri/ =404;
	}

	# pass PHP scripts to FastCGI server
	#
	#location ~ \.php$ {
	#	include snippets/fastcgi-php.conf;
	#
	#	# With php-fpm (or other unix sockets):
	#	fastcgi_pass unix:/var/run/php/php7.4-fpm.sock;
	#	# With php-cgi (or other tcp sockets):
	#	fastcgi_pass 127.0.0.1:9000;
	#}

	# deny access to .htaccess files, if Apache's document root
	# concurs with nginx's one
	#
	#location ~ /\.ht {
	#	deny all;
	#}

#    listen [::]:443 ssl ipv6only=on; # managed by Certbot
#    listen 443 ssl; # managed by Certbot
#    ssl_certificate /etc/letsencrypt/live/groupgiftzdev.tk/fullchain.pem; # managed by Certbot
#    ssl_certificate_key /etc/letsencrypt/live/groupgiftzdev.tk/privkey.pem; # managed by Certbot
#    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
#    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

}


# Virtual Host configuration for example.com
#
# You can move that to a different file under sites-available/ and symlink that
# to sites-enabled/ to enable it.
#
#server {
#	listen 80;
#	listen [::]:80;
#
#	server_name example.com;
#
#	root /var/www/example.com;
#	index index.html;
#
#	location / {
#		try_files $uri $uri/ =404;
#	}
#}


# server {
#    if ($host = ggiftzdev.club) {
#        return 301 https://$host$request_uri;
#    } # managed by Certbot


#	listen 80 default_server;
#	listen [::]:80 default_server;

#	server_name ggiftzdev.club;
#   return 404; # managed by Certbot


# }

I think it's very dirty.

2 Likes

We've seen much worse. :slightly_smiling_face:

Make certain that your Cloudflare SSL encryption mode is set to Off.

In your nginx configuration, change this

to this:

then run this:

sudo nginx -s reload

then post the output of this:

sudo certbot certonly --nginx -d "ggiftzdev.club,www.ggiftzdev.club" --dry-run

4 Likes

www.ggiftzdev.club domain dont works.

root@ubuntu-s-1vcpu-1gb-intel-nyc1-01:~# sudo certbot certonly --nginx -d "ggiftzdev.club,www.ggiftzdev.club" --dry-run
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for www.ggiftzdev.club
http-01 challenge for ggiftzdev.club
Waiting for verification...
Challenge failed for domain www.ggiftzdev.club
http-01 challenge for www.ggiftzdev.club
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: www.ggiftzdev.club
   Type:   unauthorized
   Detail: Invalid response from
   http://www.ggiftzdev.club/.well-known/acme-challenge/8-Tc8nFBJZSxbpYBJFliqDS6V2HaY7uOWiccSij54-Y
   [2606:4700:3031::6815:1a32]: "<!DOCTYPE html>\n<!--[if lt IE 7]>
   <html class=\"no-js ie6 oldie\" lang=\"en-US\">
   <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js "

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.

Can I keep one ggiftzdev.club? It will be enough for me.

root@ubuntu-s-1vcpu-1gb-intel-nyc1-01:~# sudo certbot certonly --nginx -d "ggiftzdev.club" --dry-run
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for ggiftzdev.club
Waiting for verification...
Cleaning up challenges

IMPORTANT NOTES:
 - The dry run was successful.

That's probably not all of them? Is there anything else that needs to be done?
Thank you, I am so happy that you are helping me.

3 Likes

Is everything okay in this file?
/etc/nginx/sites-available/default

##
# You should look at the following URL's in order to grasp a solid understanding
# of Nginx configuration files in order to fully unleash the power of Nginx.
# https://www.nginx.com/resources/wiki/start/
# https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/
# https://wiki.debian.org/Nginx/DirectoryStructure
#
# In most cases, administrators will remove this file from sites-enabled/ and
# leave it as reference inside of sites-available where it will continue to be
# updated by the nginx packaging team.
#
# This file will automatically load configuration files provided by other
# applications, such as Drupal or Wordpress. These applications will be made
# available underneath a path with that package name, such as /drupal8.
#
# Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples.
##

# Default server configuration
#
server {
	# SSL configuration
	#

	listen 80 default_server;
	listen [::]:80 default_server ipv6only=on;

	# listen 443 ssl default_server;
	# listen [::]:443 ssl default_server;

	#
	# Note: You should disable gzip for SSL traffic.
	# See: https://bugs.debian.org/773332
	#
	# Read up on ssl_ciphers to ensure a secure configuration.
	# See: https://bugs.debian.org/765782
	#
	# Self signed certs generated by the ssl-cert package
	# Don't use them in a production server!
	#
	# include snippets/snakeoil.conf;

	root /var/www/html;

	# Add index.php to the list if you are using PHP
	index index.html index.htm index.nginx-debian.html;

	server_name ggiftzdev.club;

	location / {
		# First attempt to serve request as file, then
		# as directory, then fall back to displaying a 404.
		try_files $uri $uri/ =404;
	}

	# pass PHP scripts to FastCGI server
	#
	#location ~ \.php$ {
	#	include snippets/fastcgi-php.conf;
	#
	#	# With php-fpm (or other unix sockets):
	#	fastcgi_pass unix:/var/run/php/php7.4-fpm.sock;
	#	# With php-cgi (or other tcp sockets):
	#	fastcgi_pass 127.0.0.1:9000;
	#}

	# deny access to .htaccess files, if Apache's document root
	# concurs with nginx's one
	#
	#location ~ /\.ht {
	#	deny all;
	#}

#    listen [::]:443 ssl ipv6only=on; # managed by Certbot
#    listen 443 ssl; # managed by Certbot
#    ssl_certificate /etc/letsencrypt/live/groupgiftzdev.tk/fullchain.pem; # managed by Certbot
#    ssl_certificate_key /etc/letsencrypt/live/groupgiftzdev.tk/privkey.pem; # managed by Certbot
#    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
#    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

}


# Virtual Host configuration for example.com
#
# You can move that to a different file under sites-available/ and symlink that
# to sites-enabled/ to enable it.
#
#server {
#	listen 80;
#	listen [::]:80;
#
#	server_name example.com;
#
#	root /var/www/example.com;
#	index index.html;
#
#	location / {
#		try_files $uri $uri/ =404;
#	}
#}


# server {
#    if ($host = ggiftzdev.club) {
#        return 301 https://$host$request_uri;
#    } # managed by Certbot


#	listen 80 default_server;
#	listen [::]:80 default_server;

#	server_name ggiftzdev.club www.ggiftzdev.club;
#   return 404; # managed by Certbot


# }

No. You did not make the changes shown by @griffin in post #13

Also, something is wrong in your Cloudflare setup for www.ggiftzdev.club
You can see the full error by using a browser and trying http://www.ggiftzdev.club
The title of that error page is:
DNS points to prohibited IP | www.ggiftzdev.club | Cloudflare

Also, your ggiftzdev.club is again returning an http error status 521. See Griffin's earlier post about that

5 Likes

Thank you for your reply.
I still can not solve the problem with 521 error
Maybe you have some information on how to do it?

3 Likes

Should I have www.ggiftzdev.club?
Or can I use one ggiftzdev.club?

1 Like

For the 521 error you should look at Cloudflare page (from Griffin) or go to their community

Both domain names are not required. If it is a public website it should have both. People will use either one and search engines prefer both.

If the website is just for you, then one name is fine.

I also think you should setup your site using the Cloudflare Origin CA certificate (see Griffin post #4). You setup the Cloudflare edge certificate to handle https between the client and Cloudflare. Then, the Origin CA certificate is used for https between the edge and your server. With this setup you do not need to use Certbot at all and simplifies the configuration. This is well documented by Cloudflare and help is available in its community.

5 Likes

Have you made that change?

4 Likes