2023-05-22 15:56:22,448:DEBUG:certbot._internal.main:certbot version: 2.6.0 2023-05-22 15:56:22,448:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot 2023-05-22 15:56:22,448:DEBUG:certbot._internal.main:Arguments: ['--non-interactive'] 2023-05-22 15:56:22,448:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#certbot-route53:auth,PluginEntryPoint#cpanel,PluginEntryPoint#dns-acmedns,PluginEntryPoint#dns-aliyun,PluginEntryPoint#dns-azure,PluginEntryPoint#dns-cloudflare,PluginEntryPoint#dns-desec,PluginEntryPoint#dns-digitalocean,PluginEntryPoint#dns-directadmin,PluginEntryPoint#dns-dnsimple,PluginEntryPoint#dns-dnsmadeeasy,PluginEntryPoint#dns-dnspod,PluginEntryPoint#dns-do,PluginEntryPoint#dns-domeneshop,PluginEntryPoint#dns-duckdns,PluginEntryPoint#dns-dynu,PluginEntryPoint#dns-gandi,PluginEntryPoint#dns-gehirn,PluginEntryPoint#dns-godaddy,PluginEntryPoint#dns-google,PluginEntryPoint#dns-google-domains,PluginEntryPoint#dns-he,PluginEntryPoint#dns-hetzner,PluginEntryPoint#dns-infomaniak,PluginEntryPoint#dns-inwx,PluginEntryPoint#dns-ionos,PluginEntryPoint#dns-linode,PluginEntryPoint#dns-loopia,PluginEntryPoint#dns-luadns,PluginEntryPoint#dns-netcup,PluginEntryPoint#dns-njalla,PluginEntryPoint#dns-nsone,PluginEntryPoint#dns-ovh,PluginEntryPoint#dns-porkbun,PluginEntryPoint#dns-rfc2136,PluginEntryPoint#dns-route53,PluginEntryPoint#dns-sakuracloud,PluginEntryPoint#dns-standalone,PluginEntryPoint#dns-transip,PluginEntryPoint#dns-vultr,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-05-22 15:56:22,465:DEBUG:certbot._internal.log:Root logging level set at 30 2023-05-22 15:56:22,475:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/xxxxxx.conf 2023-05-22 15:56:22,622:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-05-22 15:56:22,780:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-05-21 23:59:59 UTC. 2023-05-22 15:56:22,780:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-05-22 15:56:22,780:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 222.53097107385847 seconds 2023-05-22 16:00:05,412:DEBUG:certbot._internal.plugins.selection:Requested authenticator dns-cloudflare and installer None 2023-05-22 16:00:05,415:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * dns-cloudflare Description: Obtain certificates using a DNS TXT record (if you are using Cloudflare for DNS). Interfaces: Authenticator, Plugin Entry point: dns-cloudflare = certbot_dns_cloudflare._internal.dns_cloudflare:Authenticator Initialized: Prep: True 2023-05-22 16:00:05,416:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-05-22 16:00:05,416:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator dns-cloudflare, Installer None 2023-05-22 16:00:05,870:DEBUG:certbot._internal.main:Picked account: ), creation_host='877451f14295', register_to_eff=None))> 2023-05-22 16:00:05,871:DEBUG:acme.client:Sending GET request to https://acme.zerossl.com/v2/DV90. 2023-05-22 16:00:05,984:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:05 GMT Content-Type: application/json Content-Length: 645 Connection: keep-alive Access-Control-Allow-Origin: * Strict-Transport-Security: max-age=15724800; includeSubDomains { "newNonce": "https://acme.zerossl.com/v2/DV90/newNonce", "newAccount": "https://acme.zerossl.com/v2/DV90/newAccount", "newOrder": "https://acme.zerossl.com/v2/DV90/newOrder", "revokeCert": "https://acme.zerossl.com/v2/DV90/revokeCert", "keyChange": "https://acme.zerossl.com/v2/DV90/keyChange", "meta": { "termsOfService": "https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf", "website": "https://zerossl.com", "caaIdentities": ["sectigo.com", "trust-provider.com", "usertrust.com", "comodoca.com", "comodo.com"], "externalAccountRequired": true } } 2023-05-22 16:00:05,985:INFO:certbot.compat.misc:Running pre-hook command: /etc/letsencrypt/renewal-hooks/pre/10-nginx 2023-05-22 16:00:06,001:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for *.xxxxxx and xxxxxx 2023-05-22 16:00:06,006:DEBUG:acme.client:Requesting fresh nonce 2023-05-22 16:00:06,006:DEBUG:acme.client:Sending HEAD request to https://acme.zerossl.com/v2/DV90/newNonce. 2023-05-22 16:00:06,812:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:06 GMT Content-Type: application/octet-stream Connection: keep-alive Replay-Nonce: TMR_aH-MpIfOQ39yeKmNNPUCQFC0wywa8rtJ7i2X0oQ Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Link: ;rel="index" Strict-Transport-Security: max-age=15724800; includeSubDomains 2023-05-22 16:00:06,813:DEBUG:acme.client:Storing nonce: TMR_aH-MpIfOQ39yeKmNNPUCQFC0wywa8rtJ7i2X0oQ 2023-05-22 16:00:06,813:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "*.xxxxxx"\n },\n {\n "type": "dns",\n "value": "xxxxxx"\n }\n ]\n}' 2023-05-22 16:00:06,829:DEBUG:acme.client:Sending POST request to https://acme.zerossl.com/v2/DV90/newOrder: { "protected": "xx", "signature": "AlJYvYHohr2hHh_KKtZzcaeX6piiYmdzfWO-1x1a9RJ1WHBsKL4c_ElKCFzosbUx-WREeuTc-hcNu02JrAKvzvjpP6rOV2K-2QZseCi9xRR6Dlkx1SL9oHM-cui3ps64C8xrc5bhE2Dq1noV8i2Qg4MvZIH9aFXAeHxzD-OGMPIPz2TPJfafujPd8BezapphwAp12i0Jbnxr0b82OOYnR4RUgoOsNE4KElRFqIfzc8g7RW9BNPlj2MVcg4fzy55dfkPJaJLvcP9wFkF9AyxzDoviWq8__lFcG95aar1XQoIq-ai4o_i5UA_osfT8Hmi1-ev4Ad4PABRE_rTzkKR0EQm2YFDC_UUeZs_KhIddCuJxgWpezzbfmhdLJN0dv7EFHYT-5rFEoToJWhxFhDuC5Qor2wvprk621QWAPdc6pDb5lhyN2gRokZozuMNb4L1vHwLamy8jf_fSjxwOIu1ARL8uq66S3eoyTPOa8fhni03WFAUod6caELvNwfZk-hjcHnJTewbGfPOvCIFM_vt9eBNkXblWZMSFvqegWuwv9WCz1J1EDDAVlPg3WuDkYATMOZsgwewT53GLYwlN2WfhxNSlMYxVZlQJXCzUaOnMDN6-ULMNfSsb08VgTUp2ORScQnUn-712WgRa5-Q1oZeaTWaoRAYikeYgkJ4iEtmGpgI", "payload": "xxx" } 2023-05-22 16:00:08,285:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Mon, 22 May 2023 15:00:08 GMT Content-Type: application/json Content-Length: 382 Connection: keep-alive Replay-Nonce: 0 Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Location: https://acme.zerossl.com/v2/DV90/order/ljCF9DYesvhlEDyu_qT-YQ Strict-Transport-Security: max-age=15724800; includeSubDomains {"status":"pending","expires":"2023-08-20T15:00:08Z","identifiers":[{"type":"dns","value":"*.xxxxxx"},{"type":"dns","value":"xxxxxx"}],"authorizations":["https://acme.zerossl.com/v2/DV90/authz/gz22jZ7kWjWbtUQxnlIW8w","https://acme.zerossl.com/v2/DV90/authz/xx"],"finalize":"https://acme.zerossl.com/v2/DV90/order/ljCF9DYesvhlEDyu_qT-YQ/finalize"} 2023-05-22 16:00:08,285:DEBUG:acme.client:Storing nonce: xx 2023-05-22 16:00:08,285:DEBUG:acme.client:JWS payload: b'' 2023-05-22 16:00:08,293:DEBUG:acme.client:Sending POST request to https://acme.zerossl.com/v2/DV90/authz/xx: { "protected": "0", "signature": "ze8zU0JvHTjoPtmkgmQDfXTixEuNRAl9-4XnXc7uvR_AzxfRDdN63VhiIcoJZ28LvOfJZAgG7bQsukyErXOXo5rMnFw1ys96wjgaVDTeID5I2Pv3etsQpmiPxpA9qOAX83kB3QF8R1uoVEFPEJDP-EbqR0ralmt4kX1P2Fv87eN3dJBtT0qRZOCsEjSYTiP0KOwhrm74L4sk-g3ua5y5MzC48UQxDMVvoavCuCacg4PwwFs3RNDmngn7urvsD6Arp65o7ENZbutU62rEqTSA5uvbWmNPWxo1eXUkVG_om29rcVZ6bmvnVMVADTWLqUa9n3cAjnaOgWaOlurkzaEo9I8pr2AlrvqDNkrdYc3tzThL8Vf5XmfoxYBotKKS0ARtDjFaV4llme04gV6t84bL0QazRcAFm36mVuCs3H0yRklZ7YF8aAGK0-YdJ-9wdP41-ecpLiTh0kkSjYWpsamN1k-Qi4PTZHo5g4Opo-yH2vY5Mww7210Z3hYBwzKSdbTESaUNrQcEORWjr9dTKQ3gSUBZ6BUzNtJpN07rwcM1O_-TNG8EmA7XTTsFm6-J1nmeo5ULPvwSE_YwrWKE7Uwjkzht7TjXNSjffe4U9VN3YqwTnsYxSr4AhNxqJRlunRoAWqUqjXrkMXo2PzFiGjktJ7N4YXmOIr_L6aA6EKWS4OM", "payload": "" } 2023-05-22 16:00:08,611:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:08 GMT Content-Type: application/json Content-Length: 298 Connection: keep-alive Replay-Nonce: c Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Link: ;rel="index" Retry-After: 5 Strict-Transport-Security: max-age=15724800; includeSubDomains {"identifier":{"type":"dns","value":"xxxxxx"},"status":"pending","expires":"2023-06-21T15:00:08Z","challenges":[{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/FCzWTub_99ubICqX3ZuU9Q","status":"pending","token":"aeLfdnKxs5841ALWHNb5yRTJJBMLxjsO6NT8b2pXL44"}],"wildcard":true} 2023-05-22 16:00:08,611:DEBUG:acme.client:Storing nonce: c 2023-05-22 16:00:08,611:DEBUG:acme.client:JWS payload: b'' 2023-05-22 16:00:08,622:DEBUG:acme.client:Sending POST request to https://acme.zerossl.com/v2/DV90/authz/lg66yPrO9YqiC8omLOtBCg: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvZFBWbmlndV9UcDdpZEhQcG5FMldsdyIsICJub25jZSI6ICJXYkFYakFSVkdvXzQ3WGE5b2dMNFJMZkVEVkJabjVRRlk1Tzd1cHh5dGxjIiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9hdXRoei9sZzY2eVByTzlZcWlDOG9tTE90QkNnIn0", "signature": "TqS_hEx894O4XI6gQWkGQJS-yCn_n0pxHMIFrO18qv-UQZW6T-aSb7IhuSn6aCHLMEnWlA8RxiHKLg8PChw9yyuxzEU5Msg9EENCFek_mUnFjVcWONmkglD0_MFvkpqgVV__A_g8THxpwBNohn9JxQOFwxa_y9-1E3gYrRrxqYL7alW2b0azZMNJGJHqgaiedxkCOwKjVmHhMPytKDWQxr17-xLIVXUROPmvANgoSQnvjLv9j2bYQUZH3CvUKLReJzlp6bB9anv3dquLSVY2tjOWaZGRQNPZZXo4R0KkvBO7hNhm40rBRInmD8LnrOZcy4F0lBQ8hXN0KsoCwCrBEz6CZb0OiJqrxPmv9HDuhqj3cMMiiwxK6BlxUg8RfMv6TPwGgCgmVYNXYF-BwBU3iQcCAAZCWBbOwzdvS4OjrzetTLOEkCNnHAW_CDPi1KcsBKEMz8Qq-1pQTSzMOktj0iHr3vvhc349aSNL1MacpPAIwBrAjD2JvIXGaD-HCFLueKd6FDcjMf0nJ2-MvMyHG-N37iecK-mN_OYs6VcqcxIXLwsUhsDmm6OM1QRBRyKMZvF0uWLOEx8dZM2gPfdbuT-umYG3v5bGoGW75Bt3h2kD--3bQiuRYsMpHizE7YLslHl1do50KbxzXlRj7Ftg_UGWS7Fjmm5MrekjMGX5Qeg", "payload": "" } 2023-05-22 16:00:08,993:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:08 GMT Content-Type: application/json Content-Length: 444 Connection: keep-alive Replay-Nonce: A Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Link: ;rel="index" Retry-After: 5 Strict-Transport-Security: max-age=15724800; includeSubDomains {"identifier":{"type":"dns","value":"xxxxxx"},"status":"pending","expires":"2023-06-21T15:00:08Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/vlpUH4uWM6j6no3Y-abtpQ","status":"pending","token":"6VA"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/KA","status":"pending","token":"4NyWw"}]} 2023-05-22 16:00:08,993:DEBUG:acme.client:Storing nonce: AmtJDao6jGLI_sXxxh54OI4QuFQ0r-0MNKJAcJ1BlDA 2023-05-22 16:00:08,994:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-05-22 16:00:08,994:INFO:certbot._internal.auth_handler:dns-01 challenge for xxxxxx 2023-05-22 16:00:08,994:INFO:certbot._internal.auth_handler:dns-01 challenge for xxxxxx 2023-05-22 16:00:08,994:WARNING:certbot.plugins.dns_common:Unsafe permissions on credentials configuration file: /config/dns-conf/cloudflare.ini 2023-05-22 16:00:10,158:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Found zone_id of a47548a161bfb72321bef98d1c848d6c for xxxxxx using name xxxxxx 2023-05-22 16:00:10,158:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Attempting to add record to zone a47548a161bfb72321bef98d1c848d6c: {'type': 'TXT', 'name': '_acme-challenge.xxxxxx', 'content': 'F_JFIViUmVdf2rkEMwTVRqyn5Jd9PXV_v5cfMgILpuw', 'ttl': 120} 2023-05-22 16:00:11,865:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Successfully added TXT record with record_id: fc979015700fda90940cbbafc6dd939c 2023-05-22 16:00:12,783:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Found zone_id of a47548a161bfb72321bef98d1c848d6c for xxxxxx using name xxxxxx 2023-05-22 16:00:12,783:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Attempting to add record to zone a47548a161bfb72321bef98d1c848d6c: {'type': 'TXT', 'name': '_acme-challenge.xxxxxx', 'content': 'm7lv2ckuYWICYVgmNteL3JEuuN5HMRW4mbwjDwtyaT4', 'ttl': 120} 2023-05-22 16:00:14,422:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Successfully added TXT record with record_id: 11d4ae2f0b255da3ba763eb5fd11e11e 2023-05-22 16:00:14,424:DEBUG:certbot._internal.display.obj:Notifying user: Waiting 10 seconds for DNS changes to propagate 2023-05-22 16:00:24,434:DEBUG:acme.client:JWS payload: b'{}' 2023-05-22 16:00:24,442:DEBUG:acme.client:Sending POST request to https://acme.zerossl.com/v2/DV90/chall/FCzWTub_99ubICqX3ZuU9Q: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvZFBWbmlndV9UcDdpZEhQcG5FMldsdyIsICJub25jZSI6ICJBbXRKRGFvNmpHTElfc1h4eGg1NE9JNFF1RlEwci0wTU5LSkFjSjFCbERBIiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9jaGFsbC9GQ3pXVHViXzk5dWJJQ3FYM1p1VTlRIn0", "signature": "In0C_ykNz4zjljiE_w7ZJ1xwYjuIZp8MlIFm46kgjp0_Njf2yd3tNTzy4s9ZiTfjVrg_Vto9HEpZSnXlu1EegTa3D6hb3jk8DH2uQv_pWUnwXeZO1QLavUgXbmrYSMvRPLl0-J9wZZh69NzfmLMP7q1mtXBPPY2uGpssOduq5ha6t3PQv4U9IaZ2EYRBfMRHWgLYzyUG99d-AlGMSvqrnp7ek4TC2HFEul3e4pD7jsY2l1mbMRbYI90AKGIyhv4_8_A2Hq7Qfe4F5lBmb66dfM3Sh0qs243rbsa3xl8uVU8SAFmr7Q1KNx10rptWVOjJSHb3OQMFRpuwcaDP-5_BT0QVwdcgkjJoVnDMDAC_K2vtjJ0SZ3xKNd6an61WqylJRC8YpNQZbnd2ji1kaJH3YpmA4ze1rSy-WsiPYyCS4hMsUt-nSU2J6XioPfEczqOeMC1pwQqG51sWPdDMInfeRt0-dQmyi6RX48r9eE9Fx9VmH9jJV6C0FQTkDVIVnjtVonLwo_-_mB_JgGsytAd2VL5hPN2PKfKBZwn02UgzWy5T03s7wHBtBFPELt-nk2Aigpm4i2daCPJBaLqv_27upLn_mSGpe-xAdAQrQNl_Dd-CA30i2oVReae_XgIskJaEHf1io9gcQWFdk-ZgIvBe8c-NGE6ajIEvCqiwgSEqwLk", "payload": "xxxx" } 2023-05-22 16:00:25,229:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:25 GMT Content-Type: application/json Content-Length: 163 Connection: keep-alive Replay-Nonce: mE Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Link: ;rel="up" Retry-After: 10 Strict-Transport-Security: max-age=15724800; includeSubDomains {"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/FCzWTub_99ubICqX3ZuU9Q","status":"processing","token":"4"} 2023-05-22 16:00:25,230:DEBUG:acme.client:Storing nonce: E 2023-05-22 16:00:25,230:DEBUG:acme.client:JWS payload: b'{}' 2023-05-22 16:00:25,251:DEBUG:acme.client:Sending POST request to https://acme.zerossl.com/v2/DV90/chall/VMgWUFD1n6aTq_rusP-AKA: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvZFBWbmlndV9UcDdpZEhQcG5FMldsdyIsICJub25jZSI6ICI5UG9TWGZzRktHTFkxSkZmdi1MOVdpdVVCX3FBdTd2YWZDT2pRcUcyaW1FIiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9jaGFsbC9WTWdXVUZEMW42YVRxX3J1c1AtQUtBIn0", "signature": "cJpEFmij9Vdff3cyiLXOIBCFSf-Y-DCiTtQRAm28kFKOhD6otSPCDU2ZhWollAOVhqTowITYpK45cTzWGVPmcRV1FMgqSZ5x888oTg8UIWMBJqmDR1GWpd8PpjH1Yig8N1U4cQu-NULfIlnZN84-uxdA_VFBnA_Ww5mRLvh8j8hK6DFnz-L9h33c32OIizkZ4bQ17Mx-eLY2aGkpCxxdhITQM1NCWraeDbQUqX2BqSpvRHsFJsf5grtliJlBw8EY0iPfpvn4YBHepx0cobhwk4-xgO8rLDYKBi5Y4ERjkiyLbmYXj3_hBZ_ySo_TWsGpHNgYw6jyKHFiKemYC4LHVwzjPOLR2mo3sNE4XvEnUCsIp680m8Bz_7hMWWjW4bnDQRjCfjA7Gi1ZqPv3gd51Zq7uABs2twm6nqYWY3MFz2eRFQS_A72XBTU_I7WZRPYLz26Iin9_b-9AiJefhpmk4R9o8amLHmU5d2LR4h8oaS6HJ9x0fv2YvW-ALE9yR1WotuqkD-fKGyW8844x5Jm_zuxToD8kkhZ-tgQcCKBeYwknj_z4Od0rvp4gy2A2uT6OqitNy3sY_aJzg4pfaSJ92-PTT_eTkA-30LGIyBbCu55CeB8cIl8Nw70BesOjDzSIxwDKdR7MJUoiBucZblvz2eAwGWMwjp9k3fqobh2tKz4", "payload": "0" } 2023-05-22 16:00:25,526:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:25 GMT Content-Type: application/json Content-Length: 163 Connection: keep-alive Replay-Nonce: jk Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Link: ;rel="up" Retry-After: 10 Strict-Transport-Security: max-age=15724800; includeSubDomains {"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/VMgWUFD1n6aTq_rusP-AKA","status":"processing","token":"1zw"} 2023-05-22 16:00:25,526:DEBUG:acme.client:Storing nonce: k 2023-05-22 16:00:25,527:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-05-22 16:00:26,527:DEBUG:acme.client:JWS payload: b'' 2023-05-22 16:00:26,535:DEBUG:acme.client:Sending POST request to https://acme.zerossl.com/v2/DV90/authz/gz22jZ7kWjWbtUQxnlIW8w: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvZFBWbmlndV9UcDdpZEhQcG5FMldsdyIsICJub25jZSI6ICIwYkdnY0MzT0t0NFJIY2hlR1FsV05mYXV5bXJnSFNXR05icTBXQXU5WmprIiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9hdXRoei9nejIyalo3a1dqV2J0VVF4bmxJVzh3In0", "signature": "N4g-y7Mlt-RudC4GqXk9tLMf3Zi-5nydRb6A-oJHcM66jldVJVufHgAodTW3KDn4AX77yZD8aEnfKZ3rjbez_m37KC21DhdQqHKgDg2epEV5i39Am8oFXaFxmfwzDH1bv1wU4-PUUxJ3C914jnL1hB5lSKEX9IZcrWqPquc90eetICnFWzmSz7X55x6D0SdH7B2CRsflkNQcWkxk4a5xG4ucblxyNGM97hyDHkpHKHaBN8nrnrjHJdkzfvZlRKQXiaHDs4pRNCmpsCM4UvvSVt-gnwioUfYwBDAzMV8MQQkyaH3nMIgUE1AJ-1c_8edXnSp3PVxaI2gxKfj72KEdMuSrR6LIeyclN6gHikCbIEl3hxSrUYbmURgstlPnVOhAHPdhSc4bptK4_lkXzW4OueEfacYYUm17O7c4zaPQn1vxTcwFH2R7QoTDBQWQFkCcHd_JQyAsywFcWC9EoYgzaHWNO_24pkhuUqkn-oyKtp-p0DUr55UowXEnILLz6EIYVT2nh67RxF1h8GfRW_0vibzz7HUWfF1Bn_h9s5qv09UtiEY1-06NO84orQzzPHVAQbRKJRkt-w-QL0pInYbS66slCsZPWJ5LFIeIaUJlltVQT48cigiXejQsBbUwtMW0j2mMwVtvd0B52mSObDjATdMoxDxW-ZYgLxCZax63BRc", "payload": "" } 2023-05-22 16:00:26,820:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:26 GMT Content-Type: application/json Content-Length: 329 Connection: keep-alive Replay-Nonce:K4 Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Link: ;rel="index" Retry-After: 300 Strict-Transport-Security: max-age=15724800; includeSubDomains {"identifier":{"type":"dns","value":"xxxxxx"},"status":"valid","expires":"2023-06-21T15:00:08Z","challenges":[{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/FCzWTub_99ubICqX3ZuU9Q","status":"valid","validated":"2023-05-22T15:00:26Z","token":"4"}],"wildcard":true} 2023-05-22 16:00:26,821:DEBUG:acme.client:Storing nonce: 4 2023-05-22 16:00:26,821:DEBUG:acme.client:JWS payload: b'' 2023-05-22 16:00:26,829:DEBUG:acme.client:Sending POST request to https://acme.zerossl.com/v2/DV90/authz/lg66yPrO9YqiC8omLOtBCg: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvZFBWbmlndV9UcDdpZEhQcG5FMldsdyIsICJub25jZSI6ICJsM1ROT3BqT3I2MnBuSkhCTU95U3dDRzBMYkV4aktNX0F2NS1paURDQ0s0IiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9hdXRoei9sZzY2eVByTzlZcWlDOG9tTE90QkNnIn0", "signature": "jnjy8yAIe0Y80q9jqpL41T0k1nWs5iApe7Hg2TNRm8Sd8P5HTMzZz-HfYzHikQL04CYqlpi67h9O9p65wAnvzNTz9uXk6lUVjH3h7TaGObG5plj4IHDRGVqwShoINOfn9q7wIyBjVK8iYUampiZvN02SfW-IdBUKEAhLvCqCl0PkBWJrN4o4AaSpnDDE_QmGA5Kj-C0scgbysDTNdmhQsm-wEcvNmV1g6niIHL8UKf1JvmtHknDFE7ZaOxJVdJ_pfCLAckpyE_E9Wrih3cgfN_-1JD10XWgL8mharXmCYr7sv7g36jsExoAqdDXLw-5DCbRfYzf43a86ZO1phEVajaq8FjToN6N5NErWa4FEABIx0UUjkRYiM8JdJ1YvyZGYdhX6eyFfsn7pPtbelaNGZRIlvHgFPo8JddoagncxwVQRTXA-QEGnC14y3Z6gYfKystghyspkOg1FWi_3qgNErrAAhFw4nAHUtGXnUdVZyepO-fqYF779Y9FX-0t0a7F6nX0xp-9qpUG_IHLWScn57NiZyPldsm22WxBB-mpBb9idk2acXIGXL0uSyAKBxzfTAWn1Ju-_ikQtPfinY4Xx_rEuB9sjTyc47laUdqDmihvk8mvFT6JLESTUeridYAqI9oFPz0DvgDnwO5d2WkyIld-ZsvfVapIYLvkGH1TJRn8", "payload": "" } 2023-05-22 16:00:26,956:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 22 May 2023 15:00:26 GMT Content-Type: application/json Content-Length: 293 Connection: keep-alive Replay-Nonce: kIwLff40-RzhZsj2utys6_F5zuMlO1P5Y4g-bW8Kwo0 Cache-Control: max-age=0, no-cache, no-store Access-Control-Allow-Origin: * Link: ;rel="index" Retry-After: 86400 Strict-Transport-Security: max-age=15724800; includeSubDomains {"identifier":{"type":"dns","value":"xxxxxx"},"status":"invalid","expires":"2023-06-21T15:00:08Z","challenges":[{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/VMgWUFD1n6aTq_rusP-AKA","status":"invalid","error":{},"token":"4NyW-JdqJg9NN1xb4ZkkiGmMcZiqsR5QM19naFAV1zw"}]} 2023-05-22 16:00:26,956:DEBUG:acme.client:Storing nonce: kIwLff40-RzhZsj2utys6_F5zuMlO1P5Y4g-bW8Kwo0 2023-05-22 16:00:26,956:INFO:certbot._internal.auth_handler:Challenge failed for domain xxxxxx 2023-05-22 16:00:26,956:INFO:certbot._internal.auth_handler:dns-01 challenge for xxxxxx 2023-05-22 16:00:26,956:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: dns-cloudflare). The Certificate Authority reported these problems: Domain: xxxxxx Type: about:blank Detail: None Hint: The Certificate Authority failed to verify the DNS TXT records created by --dns-cloudflare. Ensure the above domains are hosted by this DNS provider, or try increasing --dns-cloudflare-propagation-seconds (currently 10 seconds). 2023-05-22 16:00:26,958:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/usr/lib/python3.10/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/usr/lib/python3.10/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-05-22 16:00:26,958:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-05-22 16:00:26,959:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-05-22 16:00:27,936:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Found zone_id of a47548a161bfb72321bef98d1c848d6c for xxxxxx using name xxxxxx 2023-05-22 16:00:29,544:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Successfully deleted TXT record. 2023-05-22 16:00:30,474:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Found zone_id of a47548a161bfb72321bef98d1c848d6c for xxxxxx using name xxxxxx 2023-05-22 16:00:32,111:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Successfully deleted TXT record. 2023-05-22 16:00:32,114:ERROR:certbot._internal.renewal:Failed to renew certificate xxxxxx with error: Some challenges have failed. 2023-05-22 16:00:32,119:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/usr/lib/python3.10/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/usr/lib/python3.10/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/usr/lib/python3.10/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/usr/lib/python3.10/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/usr/lib/python3.10/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/usr/lib/python3.10/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/usr/lib/python3.10/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/usr/lib/python3.10/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-05-22 16:00:32,120:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-05-22 16:00:32,120:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-05-22 16:00:32,121:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/xxxxxx/fullchain.pem (failure) 2023-05-22 16:00:32,121:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-05-22 16:00:32,121:INFO:certbot.compat.misc:Running post-hook command: /etc/letsencrypt/renewal-hooks/post/10-nginx 2023-05-22 16:00:32,133:INFO:certbot.compat.misc:Running post-hook command: if ps aux | grep [n]ginx: > /dev/null; then s6-svc -h /var/run/s6/services/nginx; fi; cd /config/keys/letsencrypt && openssl pkcs12 -export -out privkey.pfx -inkey privkey.pem -in cert.pem -certfile chain.pem -passout pass: && sleep 1 && cat privkey.pem fullchain.pem > priv-fullchain-bundle.pem && chown -R abc:abc /config/etc/letsencrypt 2023-05-22 16:00:33,184:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/usr/bin/certbot", line 8, in sys.exit(main()) File "/usr/lib/python3.10/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/usr/lib/python3.10/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/usr/lib/python3.10/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/usr/lib/python3.10/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-05-22 16:00:33,184:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s)