2023-04-09 03:17:33,399:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-09 03:17:33,667:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-09 03:17:33,667:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-09 03:17:33,667:DEBUG:certbot._internal.main:Arguments: ['-q', '--preconfigured-renewal'] 2023-04-09 03:17:33,667:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-09 03:17:33,675:DEBUG:certbot._internal.log:Root logging level set at 40 2023-04-09 03:17:33,676:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-09 03:17:33,693:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-09 03:17:33,711:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80 2023-04-09 03:17:33,860:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503 2023-04-09 03:17:33,861:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is signed by the certificate's issuer. 2023-04-09 03:17:33,863:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is: OCSPCertStatus.GOOD 2023-04-09 03:17:33,866:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-09 03:17:33,867:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-09 03:17:33,867:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 144.703709271169 seconds 2023-04-09 03:19:58,599:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-09 03:19:58,604:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-09 03:19:58,605:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-09 03:19:58,605:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-09 03:19:58,654:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-09 03:19:58,655:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2023-04-09 03:19:58,656:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2023-04-09 03:19:58,880:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 756 2023-04-09 03:19:58,881:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:19:58 GMT Content-Type: application/json Content-Length: 756 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "LnlwZF1caOQ": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-09 03:19:58,883:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for devops.z3cyber.org 2023-04-09 03:19:59,352:DEBUG:acme.client:Requesting fresh nonce 2023-04-09 03:19:59,352:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-09 03:19:59,425:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-09 03:19:59,426:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:19:59 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: F977GF977i7uqqF42A_UqoxZzOAnxMHZAZsONK32IWCw37I X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-09 03:19:59,426:DEBUG:acme.client:Storing nonce: F977GF977i7uqqF42A_UqoxZzOAnxMHZAZsONK32IWCw37I 2023-04-09 03:19:59,427:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-09 03:19:59,432:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkY5NzdHRjk3N2k3dXFxRjQyQV9VcW94WnpPQW54TUhaQVpzT05LMzJJV0N3MzdJIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "T2MIFL1KQibCjBnQSDkSPo5A0XpwVFYHZpyKRvfSsv_1SEN4rH_AW3aNue4x7zX9TjO8GVfI_15l-6BTPlvIBrpcz_XolY1S04HZq1fnsDI0E5YilhlrZrabfA79p5CbPIioEeVB4mqxd_ejXyq5YF_SqaL7WpGYzFCszCixLfWGuh9d2t_pBzfr3PsUORPr-Nt6LDf-EWBqjQPkdy9kZUAhIWNB18bLNwznLaBEqbqrHqNwe-ueX3xAWVC16CMjyvDyvTb1wYs8H-5MMV6n6SUKS9sz4wnB6mdXAZfvfcKQvc1E40oVMyb04AxCuAFMAQmg1BsZaWieSdbGK6n2bA", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-09 03:19:59,545:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 343 2023-04-09 03:19:59,546:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Sun, 09 Apr 2023 03:19:59 GMT Content-Type: application/json Content-Length: 343 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/909853347/175058113817 Replay-Nonce: C400i7cWMMfLlF3U7C9lCEZtsglIjgprg1UT1rwIfueAM3c X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-16T03:19:59Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/217888276707" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/909853347/175058113817" } 2023-04-09 03:19:59,546:DEBUG:acme.client:Storing nonce: C400i7cWMMfLlF3U7C9lCEZtsglIjgprg1UT1rwIfueAM3c 2023-04-09 03:19:59,546:DEBUG:acme.client:JWS payload: b'' 2023-04-09 03:19:59,548:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/217888276707: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM0MDBpN2NXTU1mTGxGM1U3QzlsQ0VadHNnbElqZ3ByZzFVVDFyd0lmdWVBTTNjIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTc4ODgyNzY3MDcifQ", "signature": "bh7gTmCvsispueCiS-uIt2ojfo1kRZ2fKqxGw2Ek6YLGCZselidIO5w4cGjwt9L18Erz4jp6VPkSioqeGw8_jzbuwe2Y0mTVsZ7FTszw-btoifJHRULCtkh11nzz3O997xlH6Cp7sEpd52ed5EbWwB52MkdHqf_wzwlqmv7ltg5JtlJUQ2iF9KRmnuuFU5TQzHKRlSZusrhV-sOmlJ7KNYUpmXe21umr9JSME1KNZSl_cAq846vWnNF6YOzlfowKX_XG1xnmN_ajRvLV3xPSEdKNyRfY0Doweu5MN0ncrnxhY0wPpTN3rkp-Ev_rUwOSXgkP-ddKmeTg9QrXYI6H3g", "payload": "" } 2023-04-09 03:19:59,623:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/217888276707 HTTP/1.1" 200 802 2023-04-09 03:19:59,624:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:19:59 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FED0PVo6C8QY7y8tupUygYbvkYij3VYOVEzjI2nVHSkVI X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T03:19:59Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/aZzW5w", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/HMRtHQ", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" } ] } 2023-04-09 03:19:59,624:DEBUG:acme.client:Storing nonce: A5FED0PVo6C8QY7y8tupUygYbvkYij3VYOVEzjI2nVHSkVI 2023-04-09 03:19:59,625:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-09 03:19:59,625:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-09 03:19:59,625:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-09 03:19:59,625:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-09 03:19:59,627:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk 2023-04-09 03:19:59,628:DEBUG:acme.client:JWS payload: b'{}' 2023-04-09 03:19:59,630:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVEMFBWbzZDOFFZN3k4dHVwVXlnWWJ2a1lpajNWWU9WRXpqSTJuVkhTa1ZJIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yMTc4ODgyNzY3MDcvX191WWdBIn0", "signature": "jRzGWfBUJLuLZ42_QsJOLIxjgtgvoMg6M5wXvOl2zMX_LhNsDyT0WlTKt1TGkzJ0YtGtOOY8BxngzHIuKOkD--c9VyK2Gb3YwRGDX9OumqwbzjAvhpFemqJx7ICgLnvJKuS9EyYAeVC6qd6jQdky03dyWUU89TNXBIBdhQOFz1QdkS0IstnHAscvjpWhWichGTegE_E3kIQuJ3CzgdoC0ZVFNO1p8glaGV9rrWSl_5gKQc_eorOsEE-jqng8R5iT1EJ_J5EB3qZElmW37B843shOlcdJP2HXDXhIC1ERH2qKyT2AQ3cIeFKscO6b8HDfBGA2c3QFoir5rJC1AsRnsQ", "payload": "e30" } 2023-04-09 03:19:59,707:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/217888276707/__uYgA HTTP/1.1" 200 187 2023-04-09 03:19:59,707:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:19:59 GMT Content-Type: application/json Content-Length: 187 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA Replay-Nonce: C400SQmwFmR1hI6TvR0h5Uzjffjgtg9-HRDYS-Aft8xkgBs X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" } 2023-04-09 03:19:59,708:DEBUG:acme.client:Storing nonce: C400SQmwFmR1hI6TvR0h5Uzjffjgtg9-HRDYS-Aft8xkgBs 2023-04-09 03:19:59,708:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-09 03:20:00,710:DEBUG:acme.client:JWS payload: b'' 2023-04-09 03:20:00,712:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/217888276707: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM0MDBTUW13Rm1SMWhJNlR2UjBoNVV6amZmamd0ZzktSFJEWVMtQWZ0OHhrZ0JzIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTc4ODgyNzY3MDcifQ", "signature": "NfGqL7BPY0jw4QV61H64ohf-2Ll4dCLeWDtxJM34KvTkqEJo9UFZPWVt6Rydm-8Y9kbueG1M6KW9aHCEFp3xz9sf8UVlO9lY8fitUtjSifl9FqRzV0ow3r6c63NnaeY6PfsS3WFgaaL6FtdXldqpCykwrUO0c_-Tw7ZJ_Tq_wwgLB9ttnnuW9AQdXhSMHxu-FP5MPw7MSuZUpXutGXudAbt81FwFfXwSfN2D5u0THTBkHjogc5IIy-Ffg9t_1ZVxL0QbtdiUHdeV-Y8KQOTA78QSmv3URwv8hSA1DG81buby5g5Pi9DnwretKw0n0Lx1WzlxiVyqcVSlrzYGSmTGbQ", "payload": "" } 2023-04-09 03:20:00,787:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/217888276707 HTTP/1.1" 200 802 2023-04-09 03:20:00,788:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:20:00 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4397Js3AP9rhMZOHczpg6uINb73yJvuLDhvndmrXrCRTnHE X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T03:19:59Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/aZzW5w", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/HMRtHQ", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" } ] } 2023-04-09 03:20:00,788:DEBUG:acme.client:Storing nonce: 4397Js3AP9rhMZOHczpg6uINb73yJvuLDhvndmrXrCRTnHE 2023-04-09 03:20:03,792:DEBUG:acme.client:JWS payload: b'' 2023-04-09 03:20:03,794:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/217888276707: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTdKczNBUDlyaE1aT0hjenBnNnVJTmI3M3lKdnVMRGh2bmRtclhyQ1JUbkhFIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTc4ODgyNzY3MDcifQ", "signature": "I5v6h0r5Sslp6Sdj8ixVJ7k2LnDs88s4uRQzm4soMvws3lC1J7eePx_DHhP7CxWsWFQn7lMdh47ZQ-Y3VXNat9XZZMuL3RhI_fJr0bZBE8bnOIeWf9LdrHwIMkJg9PLPV_OeoJdnk5X5VDhPDK7J9t1vxLNQd_TdMKXCaS09YMo8eHJNzxfjd9ycmnC4_lsknJAAxwuwVOXnOhwSopbzxqD4Zujd__9Wi-0KX-_UnzigL36eONwmUQAXFEBrfQa9P5JhZcYh67PYDaKTlqzfr0l_WTrwPy09jXmIhC9oqnli6TpSiSy4rre-6xDayAKSU3uGkcZ9TaCqN5nE3m0qYw", "payload": "" } 2023-04-09 03:20:03,872:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/217888276707 HTTP/1.1" 200 802 2023-04-09 03:20:03,873:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:20:03 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4397ysDWZgd-mkgpFDvHqzWEeJxwvJB55gLr8d9fMn6TUAc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T03:19:59Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/aZzW5w", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/HMRtHQ", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" } ] } 2023-04-09 03:20:03,873:DEBUG:acme.client:Storing nonce: 4397ysDWZgd-mkgpFDvHqzWEeJxwvJB55gLr8d9fMn6TUAc 2023-04-09 03:20:06,877:DEBUG:acme.client:JWS payload: b'' 2023-04-09 03:20:06,880:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/217888276707: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTd5c0RXWmdkLW1rZ3BGRHZIcXpXRWVKeHd2SkI1NWdMcjhkOWZNbjZUVUFjIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTc4ODgyNzY3MDcifQ", "signature": "fvdeek6qjxYSALmPXZYxInSDuME57ADC_o6PhB0sk-_xF3meJZLAJiMbgIonAfAIzpnsg77Tm8yoyvZVIrGVnNAAyuVU22YuMMisEctm_3aKwFINkAWewgOZaH2lNN94vWb_LknHDjGoUpU_rmTKFRVywEa-jBp_vINihs6h-bzMRL5juBbfVvsVa1dgiQb4OPFb00wu_C0f8k-3wTSPGBy2nCrqGxd9NKvt6PJVU5Pn_inRdMeY9Zoso7Xxfc2p3WEt8IW-WvpROQmerdXT_cAM3PuS2CPGey0xviZko4ih5GY0TWkAYxnSh1ArPcXP7p58RHRRooSUgsiQgokINg", "payload": "" } 2023-04-09 03:20:06,996:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/217888276707 HTTP/1.1" 200 802 2023-04-09 03:20:06,997:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:20:06 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FEHmWZ6-pPvLMDorb72sMujmouDbwdBKGmz83dUbRnOPM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T03:19:59Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/aZzW5w", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/HMRtHQ", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk" } ] } 2023-04-09 03:20:06,997:DEBUG:acme.client:Storing nonce: A5FEHmWZ6-pPvLMDorb72sMujmouDbwdBKGmz83dUbRnOPM 2023-04-09 03:20:10,001:DEBUG:acme.client:JWS payload: b'' 2023-04-09 03:20:10,004:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/217888276707: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVIbVdaNi1wUHZMTURvcmI3MnNNdWptb3VEYndkQktHbXo4M2RVYlJuT1BNIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTc4ODgyNzY3MDcifQ", "signature": "b-q6jxWGe2BcqKQmHHZ-CPLC3SpYzGQZ2Z8ia5p0WW5jWrsTyIUdwuSavRzpYtBmDtm_emrVx9BccVyd8MrJD5BMaDn5AbXk9RwDWzP8WGLl3Puehmc15vqoZzEvBK4Z_Phz3wvsMvGYk-t2R_FHCZP-b19uKoBBEja-GCsREKtcegwCdArvmj0gmusi3TUoQ3U0yQTQdQi0QnItJbMmtQ0W_e3P_VSHYjOqIgzsJzlwxPYnurCN6tYH9Nng8bA-luO9rhSF0HqhptiDrfIY84eGqZdfRQDLE4IrVrSbKk9cHzdwq4zhKp8_XvLJh8H2tVZRE_mvUHjaTeXkk56kYQ", "payload": "" } 2023-04-09 03:20:10,080:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/217888276707 HTTP/1.1" 200 1073 2023-04-09 03:20:10,080:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 03:20:10 GMT Content-Type: application/json Content-Length: 1073 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: F977EyT1sIspdr4kGw0dzrHl_gDECdiGNe9nh9rVARcOay8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-16T03:19:59Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/217888276707/__uYgA", "token": "4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-09T03:19:59Z" } ] } 2023-04-09 03:20:10,081:DEBUG:acme.client:Storing nonce: F977EyT1sIspdr4kGw0dzrHl_gDECdiGNe9nh9rVARcOay8 2023-04-09 03:20:10,081:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-09 03:20:10,081:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-09 03:20:10,082:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-09 03:20:10,082:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-09 03:20:10,082:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-09 03:20:10,082:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-09 03:20:10,083:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/4lwakU4rXLdOmGIUTJcYPCN1fjftxoWz2ZfwY7OhACk 2023-04-09 03:20:10,084:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-09 03:20:10,084:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-09 03:20:10,087:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-09 03:20:10,089:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-09 03:20:10,090:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-04-09 03:20:10,090:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-09 03:20:10,090:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-09 03:20:10,090:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-09 03:20:10,090:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-09 21:00:03,674:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-09 21:00:03,953:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-09 21:00:03,953:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-09 21:00:03,953:DEBUG:certbot._internal.main:Arguments: ['-q', '--preconfigured-renewal'] 2023-04-09 21:00:03,953:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-09 21:00:03,963:DEBUG:certbot._internal.log:Root logging level set at 40 2023-04-09 21:00:03,965:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-09 21:00:03,985:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-09 21:00:04,015:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80 2023-04-09 21:00:04,101:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503 2023-04-09 21:00:04,102:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is signed by the certificate's issuer. 2023-04-09 21:00:04,103:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is: OCSPCertStatus.GOOD 2023-04-09 21:00:04,107:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-09 21:00:04,107:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-09 21:00:04,107:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 141.44407288865114 seconds 2023-04-09 21:02:25,599:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-09 21:02:25,603:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-09 21:02:25,604:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-09 21:02:25,604:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-09 21:02:25,654:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-09 21:02:25,655:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2023-04-09 21:02:25,656:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2023-04-09 21:02:25,922:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 756 2023-04-09 21:02:25,923:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:25 GMT Content-Type: application/json Content-Length: 756 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "8P-y_Ue8zP4": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-09 21:02:25,925:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for devops.z3cyber.org 2023-04-09 21:02:26,170:DEBUG:acme.client:Requesting fresh nonce 2023-04-09 21:02:26,170:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-09 21:02:26,218:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-09 21:02:26,219:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:26 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 371CtNCymcRSGfyk1rehBI2phXYv1PVSSXFU9adjmkR5cPk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-09 21:02:26,219:DEBUG:acme.client:Storing nonce: 371CtNCymcRSGfyk1rehBI2phXYv1PVSSXFU9adjmkR5cPk 2023-04-09 21:02:26,220:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-09 21:02:26,224:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjM3MUN0TkN5bWNSU0dmeWsxcmVoQkkycGhYWXYxUFZTU1hGVTlhZGpta1I1Y1BrIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "hUFYJSPTbviGzCeEz_d_2meyfcbrJ1SH6opul6xF6Vie8CuJhWUvr3CvRMveb6_nIaOmslw2hp0ghB_aVLlCgWADOFILtvxLlaJL0KrZGrmzgIo3EMy3y0bryksK2oNknYVvBweBmgK8MysqlMAWlOZ532KZ17mSFIYlhPCfQdGBfofV6eoy8LJhPlQzJr36M6W7Qp7M85aHwNO8uc7gf8_qCruonKn0Sg6jdJ39hUYkBKXMy3O694q9g-36HfF_Fb7op8xXmblzPulAAGaNbXrgaKRXp5JVwYgXwHvhAC1RdusQK09eggNhHssEEJypd4g-_VK2_BxnNrxUekLT0w", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-09 21:02:26,480:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 343 2023-04-09 21:02:26,481:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Sun, 09 Apr 2023 21:02:26 GMT Content-Type: application/json Content-Length: 343 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/909853347/175197214607 Replay-Nonce: 1DFAXD6tFA2IxHT2QhxjcMonL8D63vpQkTnZlRwp42aaOHk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-16T21:02:26Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/218079651317" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/909853347/175197214607" } 2023-04-09 21:02:26,481:DEBUG:acme.client:Storing nonce: 1DFAXD6tFA2IxHT2QhxjcMonL8D63vpQkTnZlRwp42aaOHk 2023-04-09 21:02:26,481:DEBUG:acme.client:JWS payload: b'' 2023-04-09 21:02:26,484:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218079651317: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjFERkFYRDZ0RkEySXhIVDJRaHhqY01vbkw4RDYzdnBRa1RuWmxSd3A0MmFhT0hrIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgwNzk2NTEzMTcifQ", "signature": "BN5M6oZEcs6vy0kdR-l_mMsz58HxXM1dultxugTTRsPnx2BKCcKYsPzLgN-MAUBPOZZc7XRaZr-8AB5li8RH_jIdNl2fnNVAhaWpUhGO7XOIWE8g0O__tuHmxkyGsXXnv5aJ9C6jbzXIaJszmZz-4cvsOhriCW4DwqUleXS2a8gaVjQvDJ-WsqM8YAfkESJESbc-j-LR_OKZ2usBFobkRuCV6EmePAXbz6IQnuRyKNkyXpfZGFyETPylckEshP-XM6iu_VAxNEpgyZpn7tPJmPL2mwrHZdX9ZALclBV5tEpytItSRWL0yX5nol7-jwqDHbhmZTmWff-nEiaD0PP6Qg", "payload": "" } 2023-04-09 21:02:26,537:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218079651317 HTTP/1.1" 200 802 2023-04-09 21:02:26,538:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:26 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 371C7g7N_Z2a4DTBXQdEgyqpMZ24vsL8pUHwtnG8AwX3vF4 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T21:02:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/ElqLKw", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/o9JfHQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" } ] } 2023-04-09 21:02:26,538:DEBUG:acme.client:Storing nonce: 371C7g7N_Z2a4DTBXQdEgyqpMZ24vsL8pUHwtnG8AwX3vF4 2023-04-09 21:02:26,539:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-09 21:02:26,539:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-09 21:02:26,539:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-09 21:02:26,540:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-09 21:02:26,542:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I 2023-04-09 21:02:26,542:DEBUG:acme.client:JWS payload: b'{}' 2023-04-09 21:02:26,543:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjM3MUM3ZzdOX1oyYTREVEJYUWRFZ3lxcE1aMjR2c0w4cFVId3RuRzhBd1gzdkY0IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yMTgwNzk2NTEzMTcvWE9xR3JRIn0", "signature": "Bp47y8GI0511X6gLyby10VSgFf8cbZma30KwPPnqQxtq_CxSZmfd3hQzwrnNKBreYLFsdwfM1mZQDYRQPHTpcL3OamW1I3fBBqKxPyu6WsQzGnaNTMZ97uovmYThBStWbJSennuYgB0oZhT18sgwM9P5XHTi8CjzFf7zQLspQXxNJ_cf_ptKteRgkqvVoWW8glOM07mc6XNELmSZ7s5vLsJFO3Rr_7oLaChVTWoe-xvZPXnjT7_YG1XIIWX0GhqRR9DMa3zHDhVd7Phs14DmfKXWOiVccFQd_2_qu2DArT2u038nddjECbd21HGtdTRW9mej68Kd_4ePViyzuwenLA", "payload": "e30" } 2023-04-09 21:02:26,596:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/218079651317/XOqGrQ HTTP/1.1" 200 187 2023-04-09 21:02:26,597:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:26 GMT Content-Type: application/json Content-Length: 187 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ Replay-Nonce: C878D_dByDE-JbdGxNHr4iLUIlZzEtjVSzeeW1uuG3y7DZU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" } 2023-04-09 21:02:26,597:DEBUG:acme.client:Storing nonce: C878D_dByDE-JbdGxNHr4iLUIlZzEtjVSzeeW1uuG3y7DZU 2023-04-09 21:02:26,598:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-09 21:02:27,599:DEBUG:acme.client:JWS payload: b'' 2023-04-09 21:02:27,602:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218079651317: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM4NzhEX2RCeURFLUpiZEd4TkhyNGlMVUlsWnpFdGpWU3plZVcxdXVHM3k3RFpVIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgwNzk2NTEzMTcifQ", "signature": "go7yaJvsbZ_an5LpLt9ChbH_L-QEmNWXsqAI_9zbQFSOfBCGhDAwt1VtTJFWqBWo9FuCZz6f13Fo53JRP37-Ruh3jkvfQZqXCEYl4OKAWPamKqTR39s8ZD4K7zZ62AbI09HiYg_1kBYZWdrMBu1W7twLBmMVAJdyw_Gtums9kUD_DE4aFOzGr0DA6UDda7DqBGeDKmpoJSZaaZ6Hlso0SQt4BXzpaLgeXw-qBNJUfkp555emdzcVoDmk6AYVtJCq5XEWETlnylvjAwfXie2Qp5JAbje3AZT0mrw9DTa8Er2iubensmmz9_MYdezJLinRem9BsVKDBw2HNeDcoURCWQ", "payload": "" } 2023-04-09 21:02:27,653:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218079651317 HTTP/1.1" 200 802 2023-04-09 21:02:27,654:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:27 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 371CV4cKWXLCNZLtJa4GftdyGaSkN89tDASTFD3PessCpI8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T21:02:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/ElqLKw", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/o9JfHQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" } ] } 2023-04-09 21:02:27,655:DEBUG:acme.client:Storing nonce: 371CV4cKWXLCNZLtJa4GftdyGaSkN89tDASTFD3PessCpI8 2023-04-09 21:02:30,658:DEBUG:acme.client:JWS payload: b'' 2023-04-09 21:02:30,661:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218079651317: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjM3MUNWNGNLV1hMQ05aTHRKYTRHZnRkeUdhU2tOODl0REFTVEZEM1Blc3NDcEk4IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgwNzk2NTEzMTcifQ", "signature": "Lnv7moFkC74-99q7DrB9dMk3XcH3UvbPuR4PKjzzlRlOzfJYbHxnEYOEnzNZvdNUbRXgUsvP__ISCZxP7OUYcS3mZn4ItxF7uAunyBJYg1Ps5PQzfwsg9W4h7sA1BRhvJOQy-9xSNXaVunXgiahd_qHY5P166Uv2y96sT5zKZBQToNPmz_iC-6IegDNonkHpuBJJ3yQn9gknOxAUqo-fUXZ1iT--fak2gsyTObF_wPv7ZmIhkQO5tlyNqARZ10kGWCntRHXT8FM7fVUWKOgYLYYZ-dlEOjW-Ruz5eLtVlhVGHThpjbhUM_A2FLubQOVy4zMDljF2UESAO9Jnr7Y_tg", "payload": "" } 2023-04-09 21:02:30,738:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218079651317 HTTP/1.1" 200 802 2023-04-09 21:02:30,739:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:30 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 371CHTQTePBNuSiBgmibXVCI9N3QYh8RnGCL37CAxic5-w4 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T21:02:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/ElqLKw", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/o9JfHQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" } ] } 2023-04-09 21:02:30,740:DEBUG:acme.client:Storing nonce: 371CHTQTePBNuSiBgmibXVCI9N3QYh8RnGCL37CAxic5-w4 2023-04-09 21:02:33,743:DEBUG:acme.client:JWS payload: b'' 2023-04-09 21:02:33,746:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218079651317: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjM3MUNIVFFUZVBCTnVTaUJnbWliWFZDSTlOM1FZaDhSbkdDTDM3Q0F4aWM1LXc0IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgwNzk2NTEzMTcifQ", "signature": "Mka7MqXjoVohYuMu6w0dr-QuuTRx9bSmlmqJA_Juj3_v81fjDfs6bMlzyKNo8olukSh-UOAdLekmFzfHm4oK_dMr-GzNWn-Zf2rvSsXQ1jz3IjyspVXa7Fo3gZt_H5H83v9HaR-BnpbDnNeuTKUc4NeDvvl_lmBPOpYZ8NAZXIdGYepeN5iszIQEOz4uehvhY8KDrvAjCi4b6exyfhaD0J0RqCw3oOgRz36O5ZpQocaV48L6wXwZpwiJazOB7lQjF2xudPPYGchywmtiHQloQob9-_zZWapKJyh1OainjcGFpTyyR50uCe91J94qCSQqH4XSSfJE5jAXFXKrPsFBRA", "payload": "" } 2023-04-09 21:02:33,826:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218079651317 HTTP/1.1" 200 802 2023-04-09 21:02:33,826:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:33 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 5CA2Ct9c-9B40PXBHM8Pk0l4EGYpwBdgiSu_XL9oHuWdciI X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-16T21:02:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/ElqLKw", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/o9JfHQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I" } ] } 2023-04-09 21:02:33,827:DEBUG:acme.client:Storing nonce: 5CA2Ct9c-9B40PXBHM8Pk0l4EGYpwBdgiSu_XL9oHuWdciI 2023-04-09 21:02:36,831:DEBUG:acme.client:JWS payload: b'' 2023-04-09 21:02:36,832:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218079651317: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjVDQTJDdDljLTlCNDBQWEJITThQazBsNEVHWXB3QmRnaVN1X1hMOW9IdVdkY2lJIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgwNzk2NTEzMTcifQ", "signature": "eNhWMRKgq3c6NckJMrO6cse6Pq3QXi-JliswBDMzMv7RfXO8OKnYEvTDlP7Y-uIAMUedr65TjMec77LQ0B3Fv2y6qoVOzC7HUg-qFcEA3NDFwY8mrsuaCorwhw6CFzi7Z2yQ7xnqDjQnbJNMU-MYJS4fKiG5pJtoZLmhFxRq14YTzaj-23Hs9duIVh8DkmqkjXIDIBFhp8dCU4PqG8Lrs2xJCNU5r05FgyOtdxd1Af50-0gNhBYKR2CMSY7hx0Qpxut69wJWUjmvaimfVO5CQk64gUI32uxrD4K4muZ99j31vfpA0OgLD-Gc9ZCTVsE3RQnW-ZgaSLIcUyo_WuAj_A", "payload": "" } 2023-04-09 21:02:36,885:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218079651317 HTTP/1.1" 200 1073 2023-04-09 21:02:36,885:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Sun, 09 Apr 2023 21:02:36 GMT Content-Type: application/json Content-Length: 1073 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 1DFAgVVTunV2nqIImIk2YY75AqAua24Z6zn0W9dYzd9n8dE X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-16T21:02:26Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218079651317/XOqGrQ", "token": "2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-09T21:02:26Z" } ] } 2023-04-09 21:02:36,886:DEBUG:acme.client:Storing nonce: 1DFAgVVTunV2nqIImIk2YY75AqAua24Z6zn0W9dYzd9n8dE 2023-04-09 21:02:36,886:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-09 21:02:36,886:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-09 21:02:36,886:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-09 21:02:36,887:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-09 21:02:36,887:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-09 21:02:36,887:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-09 21:02:36,887:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/2kj9-QzZ9s09zrv0GUGZSORw9T2yd_jeJzDkaD0uN_I 2023-04-09 21:02:36,887:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-09 21:02:36,888:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-09 21:02:36,889:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-09 21:02:36,891:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-09 21:02:36,891:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-04-09 21:02:36,891:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-09 21:02:36,891:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-09 21:02:36,891:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-09 21:02:36,892:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-10 03:17:01,734:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-10 03:17:01,992:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-10 03:17:01,992:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-10 03:17:01,992:DEBUG:certbot._internal.main:Arguments: ['-q', '--preconfigured-renewal'] 2023-04-10 03:17:01,992:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-10 03:17:02,001:DEBUG:certbot._internal.log:Root logging level set at 40 2023-04-10 03:17:02,003:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-10 03:17:02,022:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-10 03:17:02,042:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80 2023-04-10 03:17:02,108:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503 2023-04-10 03:17:02,109:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is signed by the certificate's issuer. 2023-04-10 03:17:02,111:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is: OCSPCertStatus.GOOD 2023-04-10 03:17:02,114:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-10 03:17:02,114:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-10 03:17:02,114:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 478.9647041116851 seconds 2023-04-10 03:25:01,171:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-10 03:25:01,174:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-10 03:25:01,174:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-10 03:25:01,174:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-10 03:25:01,224:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-10 03:25:01,224:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2023-04-10 03:25:01,226:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2023-04-10 03:25:01,453:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 756 2023-04-10 03:25:01,454:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:01 GMT Content-Type: application/json Content-Length: 756 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "Fzu52BM4tT8": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-10 03:25:01,456:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for devops.z3cyber.org 2023-04-10 03:25:01,584:DEBUG:acme.client:Requesting fresh nonce 2023-04-10 03:25:01,584:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-10 03:25:01,657:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-10 03:25:01,658:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:01 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4397BPxXBaIdGo1n8dHQrj750pvw0eTpzrf-EF9YsHoI4Xo X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-10 03:25:01,658:DEBUG:acme.client:Storing nonce: 4397BPxXBaIdGo1n8dHQrj750pvw0eTpzrf-EF9YsHoI4Xo 2023-04-10 03:25:01,658:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-10 03:25:01,663:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTdCUHhYQmFJZEdvMW44ZEhRcmo3NTBwdncwZVRwenJmLUVGOVlzSG9JNFhvIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "NDfE7cT5Ys8mBlNgdo-0B_H1Y-hGM96suAHhFFnFxCLfL-wZ71Op7WhwA4C0fW9lnFx_rtsUNTQhz_xGmHXPt81ZI94wTWfGT5CcmbS8dHWU1sGzDgSmXcQsvLloc9vh1K_mxtjWORchVrkZ0rvD9PSHn55o3Yf1ntKkAPFbrZ5ttLpWWukwZDhFrrw-XiNMNCRxgQiDIc27Z_E5TqXQa4Ye7cg4lADVCUflq6ln5k83QLSnTofHMxh-IGVPccBHghj6bv23ScU4_N28PzCnrV68Zmcv3tHGG3xsk_iqb5oWQRuDIRqwortBmCccifOWPJHXbNw42GF_y3ne4HaLUg", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-10 03:25:01,778:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 343 2023-04-10 03:25:01,779:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Mon, 10 Apr 2023 03:25:01 GMT Content-Type: application/json Content-Length: 343 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/909853347/175253805937 Replay-Nonce: F977Ucgxl5c0C1_fOrl8Jxh4phYUz22VC965I3A-YXS0uyM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-17T03:25:01Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/218159977217" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/909853347/175253805937" } 2023-04-10 03:25:01,780:DEBUG:acme.client:Storing nonce: F977Ucgxl5c0C1_fOrl8Jxh4phYUz22VC965I3A-YXS0uyM 2023-04-10 03:25:01,780:DEBUG:acme.client:JWS payload: b'' 2023-04-10 03:25:01,782:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218159977217: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkY5NzdVY2d4bDVjMEMxX2ZPcmw4SnhoNHBoWVV6MjJWQzk2NUkzQS1ZWFMwdXlNIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgxNTk5NzcyMTcifQ", "signature": "ZUhibV_ZgawiJ2OTVZQE5IJTfvNADu51u3G0ZEO-fSfGb-AHgFPFMvhIfAwRmU9C3Dd3eeSFjsXpHTXlHbZqXoD5GYECZXC7ErsLmu4Ddfmc4lXw6O9N0JAIrfJf-S_u3zpDkoUmcTqohs_WqS7awQnWNyrthFMxfvIP1TY4wPkY6GJDEda6PGp37HNbK18i7aU6zr5BRxkoxOICC9AzW2tHXVWp8iEspNAwMhRsqr0Wo4unMBQs8Yqs4-nBzNd9hZBEEjl7rZS9VKpiu4wQT6g39FcbWsS94WhVsY90QI7GgAdMq8WNJUtBcCFIBeIqkHXs_Z6vesuqwD3hXXBWeg", "payload": "" } 2023-04-10 03:25:01,860:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218159977217 HTTP/1.1" 200 802 2023-04-10 03:25:01,860:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:01 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FEl7Ac0ZgGL001nOciuDZutS0QnPIliqQEdq6jhI2JVIQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T03:25:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/-vdqEw", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/bNOtCg", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" } ] } 2023-04-10 03:25:01,861:DEBUG:acme.client:Storing nonce: A5FEl7Ac0ZgGL001nOciuDZutS0QnPIliqQEdq6jhI2JVIQ 2023-04-10 03:25:01,861:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-10 03:25:01,861:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-10 03:25:01,862:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-10 03:25:01,862:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-10 03:25:01,863:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o 2023-04-10 03:25:01,863:DEBUG:acme.client:JWS payload: b'{}' 2023-04-10 03:25:01,865:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVsN0FjMFpnR0wwMDFuT2NpdURadXRTMFFuUElsaXFRRWRxNmpoSTJKVklRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yMTgxNTk5NzcyMTcvNkZvQm1RIn0", "signature": "Vn1PDC9R6vi51aD1zWwspgOvX_1cfUxPvBDaFlkJ0zJ7LZ5pozESjFzR1tl4AmhpunkQeOIPrXmerIX-1_2xsIcCd4bkHtsF8Ay0BoU0FYlxztMDpmGFL408JwylVqWwvurqjfhq5ZOL9KU9lWLh03CVjHIqfri75tgQzVClvSaXmVGfKNzs2NE55pDbe7bd5ttKebQj1OLbgYr4G2R0vyAz-VPIuWsYWSw81dEOsxVfCoOiFKPTegoO0PzB0bLMWbHnFEr9CBS55fVLFAd8LZVanuswRonZT3lQn5kg5jc83iNYS2zzLizEyQTanbNl5keid6JS5H91AU6P9-uhJg", "payload": "e30" } 2023-04-10 03:25:01,941:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/218159977217/6FoBmQ HTTP/1.1" 200 187 2023-04-10 03:25:01,942:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:01 GMT Content-Type: application/json Content-Length: 187 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ Replay-Nonce: 4397EZmWc1wKUlfe0RPzCjxxX-l6Xkwo3nJrWgsq1DjEh8A X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" } 2023-04-10 03:25:01,942:DEBUG:acme.client:Storing nonce: 4397EZmWc1wKUlfe0RPzCjxxX-l6Xkwo3nJrWgsq1DjEh8A 2023-04-10 03:25:01,943:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-10 03:25:02,943:DEBUG:acme.client:JWS payload: b'' 2023-04-10 03:25:02,946:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218159977217: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTdFWm1XYzF3S1VsZmUwUlB6Q2p4eFgtbDZYa3dvM25Kcldnc3ExRGpFaDhBIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgxNTk5NzcyMTcifQ", "signature": "ZdWeRwS4Wkyx0xiZPvC6kJHnY5rZiM_Oz4g5FwTxfu8r_4KkCmUgaq_oES06FgiKP9DkeyidRh-g0DacJnKVMKcUC6aV_gPtdSAPPO8VgxGqMBFjNcgG8p3rs5tj75IhVmugoyL807dHKx4DWBgsnWkeaIh4J0H4yy2TZJIr2yztc8pvFs6y-WcEEkdWgvcXrX3GOzoiiriHY0OR76KWA_ilAJY4kiUB6gY8zmkf2jyezyYbeHSX_NExwlkNqjT415Ql2IQ0Uu7mBrrrjA-0I_pwuKIwKjoR0lYFeKxHOMxYi2tdOEtkjpP3r4SF1h_ztL37mj-Q5RUc2TpXTojJhQ", "payload": "" } 2023-04-10 03:25:03,022:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218159977217 HTTP/1.1" 200 802 2023-04-10 03:25:03,023:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:02 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: F9771yk7ZmEcxJW-Q0exobBiAllvBMGvDmpaCh4jDqWAjaI X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T03:25:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/-vdqEw", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/bNOtCg", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" } ] } 2023-04-10 03:25:03,023:DEBUG:acme.client:Storing nonce: F9771yk7ZmEcxJW-Q0exobBiAllvBMGvDmpaCh4jDqWAjaI 2023-04-10 03:25:06,027:DEBUG:acme.client:JWS payload: b'' 2023-04-10 03:25:06,029:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218159977217: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkY5NzcxeWs3Wm1FY3hKVy1RMGV4b2JCaUFsbHZCTUd2RG1wYUNoNGpEcVdBamFJIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgxNTk5NzcyMTcifQ", "signature": "Lr_VJqBkii9j9T0Mo56OCsHzux1WhPFTHegL5GkFqjSPBNiK_gNtuDEDrhZ1iooj2Z5Vxl2SRKbxKG4Ke_dDgTRUhRRUmU_IzMGmSkx5dsgaiqENkiRSzKPG7evRVUMtzKRtOHfbhGSb7-8gVMsoZGezKMond926xmjXJ4qaemUM5h63j07007PxC_nfqv39LfecKa1lDXnA9TM_iRkWK5-6YJhp0m9FVFAUdBG58lct5ay3njJyNertwytcqSkZTshjtmOy2UBC4SKSJsQDH2mpBTohSqnGWZ4LgYmVVJ63yFF2CeBHtjjDajsYt0IXgrmFX0SnmUBu50ZUb-DAZw", "payload": "" } 2023-04-10 03:25:06,105:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218159977217 HTTP/1.1" 200 802 2023-04-10 03:25:06,106:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:06 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4397xf-QyPJJ_1uAg7a4wRuOoSMlJTCYJVKgj1jVZC7UttQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T03:25:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/-vdqEw", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/bNOtCg", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" } ] } 2023-04-10 03:25:06,106:DEBUG:acme.client:Storing nonce: 4397xf-QyPJJ_1uAg7a4wRuOoSMlJTCYJVKgj1jVZC7UttQ 2023-04-10 03:25:09,110:DEBUG:acme.client:JWS payload: b'' 2023-04-10 03:25:09,113:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218159977217: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTd4Zi1ReVBKSl8xdUFnN2E0d1J1T29TTWxKVENZSlZLZ2oxalZaQzdVdHRRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgxNTk5NzcyMTcifQ", "signature": "RXJuDzlIA0CsNTAsD-Wq3orm8lw9nalCP_KXw3B1780n2oQawDiFI5pYk3hXz736W2yieBzWNEy0pzYsoc77NtMCwx4PRAeaYMiQ6pF1u4w8QJ7uJGTX1t6qczgIuAhLuwIjcYw_KaxxWMsMQlAj3Os6YnwMSaB7JKYZtkqvGxmNLoDD5EEqtuxu9cn6JOmC-lFOybRpSJWx_rSB-F1Uv21BFIUEa89hvGNFb21_PZ0a2xCBHzlmIPP0QXcvQrqYsMQE8T7M2FDyJh8_HCveDWNCESeLOnJn6K7jybqyzW-66mXh590WkHJw2bgobqudyWE_BFqaapaB0FRXbTy40w", "payload": "" } 2023-04-10 03:25:09,189:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218159977217 HTTP/1.1" 200 802 2023-04-10 03:25:09,190:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:09 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4397jkda1vKSyWv2kut5LmuarOu-nC9vSlPL65O8T6Sqh9I X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T03:25:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/-vdqEw", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/bNOtCg", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o" } ] } 2023-04-10 03:25:09,190:DEBUG:acme.client:Storing nonce: 4397jkda1vKSyWv2kut5LmuarOu-nC9vSlPL65O8T6Sqh9I 2023-04-10 03:25:12,194:DEBUG:acme.client:JWS payload: b'' 2023-04-10 03:25:12,197:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218159977217: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTdqa2RhMXZLU3lXdjJrdXQ1TG11YXJPdS1uQzl2U2xQTDY1TzhUNlNxaDlJIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgxNTk5NzcyMTcifQ", "signature": "k4bNw79HCSsFJV6gcFyeLtM-kI-gLBdH7mYAZTCeqiFceSsDZIkE1Z76TLO3q1McLVbToZW9LWKxhVGPLvBtUSGTXE1VLRZF5gxMTC9rsapDRgrDMq9smYie3VDoFy-Sq-5vsgDGrsYrx3eEuoj3xC7UVcUeSTMBwSeb5ElmPoB-8xcXX7u22fzwGImNEllhohwbLwqskpGVfr1IEKUSEupvzNUXsGPVT57VTThp-U_6EFRcqsUUZk1Kak-c8nemGcmQyDmi3c0k72HkuzMRI2oRp12gInii_MlVJB7M8yHlZfXnyU7fIPF0UdQWluXEGQKrLm3wczJR3rs1goYI7A", "payload": "" } 2023-04-10 03:25:12,272:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218159977217 HTTP/1.1" 200 1073 2023-04-10 03:25:12,273:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 03:25:12 GMT Content-Type: application/json Content-Length: 1073 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FEZVVY7g2VWjrX3t1bLiWVbwawuc7pV6NIJgyQXWeyBaU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-17T03:25:01Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218159977217/6FoBmQ", "token": "5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-10T03:25:01Z" } ] } 2023-04-10 03:25:12,273:DEBUG:acme.client:Storing nonce: A5FEZVVY7g2VWjrX3t1bLiWVbwawuc7pV6NIJgyQXWeyBaU 2023-04-10 03:25:12,273:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-10 03:25:12,274:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-10 03:25:12,274:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-10 03:25:12,274:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-10 03:25:12,275:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-10 03:25:12,275:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-10 03:25:12,275:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/5KNzrZZZMCRMgOuNPZAxywRzXcfyDNBP9aBtjUVcc8o 2023-04-10 03:25:12,275:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-10 03:25:12,276:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-10 03:25:12,277:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-10 03:25:12,278:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-10 03:25:12,279:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-04-10 03:25:12,279:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-10 03:25:12,279:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-10 03:25:12,279:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-10 03:25:12,280:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-10 21:00:04,630:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-10 21:00:05,083:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-10 21:00:05,084:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-10 21:00:05,084:DEBUG:certbot._internal.main:Arguments: ['-q', '--preconfigured-renewal'] 2023-04-10 21:00:05,084:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-10 21:00:05,096:DEBUG:certbot._internal.log:Root logging level set at 40 2023-04-10 21:00:05,098:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-10 21:00:05,119:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-10 21:00:05,147:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80 2023-04-10 21:00:05,225:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503 2023-04-10 21:00:05,227:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is signed by the certificate's issuer. 2023-04-10 21:00:05,228:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is: OCSPCertStatus.GOOD 2023-04-10 21:00:05,233:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-10 21:00:05,233:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-10 21:00:05,233:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 381.1347661893154 seconds 2023-04-10 21:06:26,384:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-10 21:06:26,389:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-10 21:06:26,390:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-10 21:06:26,390:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-10 21:06:26,447:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-10 21:06:26,447:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2023-04-10 21:06:26,449:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2023-04-10 21:06:26,681:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 756 2023-04-10 21:06:26,682:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:26 GMT Content-Type: application/json Content-Length: 756 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "I6n9vbByafc": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-10 21:06:26,685:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for devops.z3cyber.org 2023-04-10 21:06:26,853:DEBUG:acme.client:Requesting fresh nonce 2023-04-10 21:06:26,853:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-10 21:06:26,926:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-10 21:06:26,927:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:26 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: C400GLMDvZzb44kwDT7tJABolUX0UNWqm4Cg9LlixVyFfys X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-10 21:06:26,928:DEBUG:acme.client:Storing nonce: C400GLMDvZzb44kwDT7tJABolUX0UNWqm4Cg9LlixVyFfys 2023-04-10 21:06:26,928:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-10 21:06:26,933:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM0MDBHTE1Edlp6YjQ0a3dEVDd0SkFCb2xVWDBVTldxbTRDZzlMbGl4VnlGZnlzIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "kbeShyQS5vQ4krpLI5Y07MG4NfQCzYnBiH_lSSOCZfpLOBSrcE2U-HYQfy7QMvu74w2qCZVlDUTdfOdwRJ618r9TwW-nElxmazJrVYSeGwL7un5SOcfFgWwaeZjA6BKmf0OfIabFaAIAz5F1a6F14BWrxkHmlw-I78xQ6UDCCRvuX2Z5BsY5QchVqTqzz7C7XPkxU40d0DMO2ETzWyyBaa5gIjAP5acmz9KAgeUKSG4EmXMyHiKpk7djB1xNF4IbybpxgDOl3IzLS8XL1OuI45aXkFuSaHLrAS24brzYL5CHnponPJxcfhaOEes5lrYca5j6yQ90juUHdRhQyxeRlw", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-10 21:06:27,044:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 343 2023-04-10 21:06:27,045:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Mon, 10 Apr 2023 21:06:26 GMT Content-Type: application/json Content-Length: 343 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/909853347/175396623917 Replay-Nonce: 4397u2x_qyn9q86tz9JiRotcjCkcYN3oxCkliMP9gz9gfz4 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-17T21:06:26Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/218358782477" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/909853347/175396623917" } 2023-04-10 21:06:27,045:DEBUG:acme.client:Storing nonce: 4397u2x_qyn9q86tz9JiRotcjCkcYN3oxCkliMP9gz9gfz4 2023-04-10 21:06:27,045:DEBUG:acme.client:JWS payload: b'' 2023-04-10 21:06:27,047:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218358782477: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTd1MnhfcXluOXE4NnR6OUppUm90Y2pDa2NZTjNveENrbGlNUDlnejlnZno0IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgzNTg3ODI0NzcifQ", "signature": "lWJYnmz_3IVA8m565IMh-RdSI5AOsZT-d8d4sGFyBRxyeFBdD7JOPjrbn5OHiVoEQtAm2cn7EMH9fwoA4Ah5Xt5O8soSFMGzzAD-KD-VZTynWEXwIFdV4aXz-Mk2XzUGXxIPiD5ek-rIqP9nRRM8_OXSphBLZfHVdOueoEPfy0mTiI50ykfQoBqW5YhMo1GsNwuqNmAM-aNPq3Fw6FrXIfNcAw8sEpig0SjTvx8UJp4yvTZT7mij9lbae2xTxC_PvXxB_qWCXjvGrVRFD-21rSkWhPfMydueqFr_HBWajKYdrTRTOGdwSQj_oINL-b5GcYLZyXGm8Pitmuk-rcyvhA", "payload": "" } 2023-04-10 21:06:27,123:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218358782477 HTTP/1.1" 200 802 2023-04-10 21:06:27,124:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:27 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FEMnrkmY5FETr6rlGzfLlscIRjLU28291lOWP0_1-d9OA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T21:06:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/HDcWRQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/1QCPoQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" } ] } 2023-04-10 21:06:27,124:DEBUG:acme.client:Storing nonce: A5FEMnrkmY5FETr6rlGzfLlscIRjLU28291lOWP0_1-d9OA 2023-04-10 21:06:27,125:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-10 21:06:27,125:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-10 21:06:27,126:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-10 21:06:27,126:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-10 21:06:27,128:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc 2023-04-10 21:06:27,128:DEBUG:acme.client:JWS payload: b'{}' 2023-04-10 21:06:27,130:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVNbnJrbVk1RkVUcjZybEd6Zkxsc2NJUmpMVTI4MjkxbE9XUDBfMS1kOU9BIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yMTgzNTg3ODI0NzcvemVacTZBIn0", "signature": "iDCYH3yP_aFhumEbpn7mXWQRbTL5lGY7wAxy8RZiWQY1_D_PCPZHnTyiDc1ulGvaQItCr4fu83AtqXcnZzQTeyabq5IiknCWhcUHhxx_q-JWQL1jypiO8GWnyJFJTzTrT5hgGa78j0bQOj-iTOyU82YYWlBNhkwGnio-uENg8BY8JVBpQ_JxxxEsqzDirlWUn1wqIYUPCYQ9gsuRldStAxwWnL4D-lwtOM9fx2pCztIbNufvlw64o2LCNTXkbeHVGMMG4rrSqMdT6w48b91Md0TXp1Qp5r3I7wlzJMQsXs7J2CBW0LQGbndas8oftR6l2_eieR3CefbVIgb9eikGfQ", "payload": "e30" } 2023-04-10 21:06:27,207:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/218358782477/zeZq6A HTTP/1.1" 200 187 2023-04-10 21:06:27,208:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:27 GMT Content-Type: application/json Content-Length: 187 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A Replay-Nonce: A5FE7VeeDoK5uBO_b-9SR0uWCCwcqUV2kH_TwxGyt0LZFz4 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" } 2023-04-10 21:06:27,209:DEBUG:acme.client:Storing nonce: A5FE7VeeDoK5uBO_b-9SR0uWCCwcqUV2kH_TwxGyt0LZFz4 2023-04-10 21:06:27,209:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-10 21:06:28,210:DEBUG:acme.client:JWS payload: b'' 2023-04-10 21:06:28,213:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218358782477: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkU3VmVlRG9LNXVCT19iLTlTUjB1V0NDd2NxVVYya0hfVHd4R3l0MExaRno0IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgzNTg3ODI0NzcifQ", "signature": "ag7oIzLCeZq_KLSVM4FgllQVQ7mb8zxueVHeqwa8gu8B9D3ZSezNxVE4qM7Rexer5i7Yg6XNQoBRbaf8pHlfzXAR7IphWH1wKTpPC7HHtLSojr6HLXr5E-YE2DXJL66GREzWygxtmEi9ew7lm5vxS19Rhb69o4AziOheeDWFxVwzdplork1I5xHd9HnKJsNypfTQ6BluooIBRZQRdBSFclK7O_fqDRKPlJNN6e5IJC2w-vAeW8ENkR3Gor_czHSbG6JNa53btZ8k4zkV4VSbCOZGxGcr3IayKT0k8BTNAnCkmu87FqgWuw_7ypv0pxkBNo1dJ1eiOeikmdy9i-wN7w", "payload": "" } 2023-04-10 21:06:28,289:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218358782477 HTTP/1.1" 200 802 2023-04-10 21:06:28,290:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:28 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FECB6bz7quRBQ1GC0Iano_odRWWDncyrzzA2hsI7AiaPk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T21:06:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/HDcWRQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/1QCPoQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" } ] } 2023-04-10 21:06:28,290:DEBUG:acme.client:Storing nonce: A5FECB6bz7quRBQ1GC0Iano_odRWWDncyrzzA2hsI7AiaPk 2023-04-10 21:06:31,291:DEBUG:acme.client:JWS payload: b'' 2023-04-10 21:06:31,294:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218358782477: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVDQjZiejdxdVJCUTFHQzBJYW5vX29kUldXRG5jeXJ6ekEyaHNJN0FpYVBrIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgzNTg3ODI0NzcifQ", "signature": "HDpe-T6S4GYLmq0o-SQRWkrn5zqbYuLwiKZYKHaz_Pr6eV2FbyMuAnT1nRa_Z4G_1UdHcwOnh6ups0g8a2sPS-KwcBZxt6GRZf-_EFVYyO600VXERrILWWGV-rie0Y_PDQaPCoL1aLljp0lbIVJsBdLbDT0UaQ5TIPmzwASiY9EqT_OuXrYYkiETsGHERSstr7ExmcrLGf2QECmyJAuQ56jYPxbwY4pOJvGAm-mKl7cju1Qo2zh6gAzZQCelyRAQ7lRnvTmnxy8U1j_osOUifaHxhaBjtthZMkjDzo7byU5yXMio9b6MdLfUuJb_72_xLMOkIIJ4qrJsV5gGlbnOgQ", "payload": "" } 2023-04-10 21:06:31,371:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218358782477 HTTP/1.1" 200 802 2023-04-10 21:06:31,372:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:31 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: F977nV2LTkE36KQoyT1jsxiluOJ32vZm7DMrhMVz_h6q-cY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T21:06:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/HDcWRQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/1QCPoQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" } ] } 2023-04-10 21:06:31,372:DEBUG:acme.client:Storing nonce: F977nV2LTkE36KQoyT1jsxiluOJ32vZm7DMrhMVz_h6q-cY 2023-04-10 21:06:34,376:DEBUG:acme.client:JWS payload: b'' 2023-04-10 21:06:34,378:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218358782477: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkY5NzduVjJMVGtFMzZLUW95VDFqc3hpbHVPSjMydlptN0RNcmhNVnpfaDZxLWNZIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgzNTg3ODI0NzcifQ", "signature": "imtVd36Wf589c1sI9tOMyUuQXqDjccT1ULqH3q9nIqZ6NbhoxhjmA6SfGLqWBhP2Bq1x3BYUEMR5yNnGXCC3jvNhujrrTlx_VsWgkE12j2PIxm0PPlmEtgTs5JysTwhHF-ucKJ1_A8gZXqOUIutQ5yKxsKNXem-hTuf3HJwytifqie_xlWgvB580BA3Od5AnrtNCafgJS0F1WD6Rqaapx5aJy5EE1GPSfFTUMFG6j2w0snwTKDQK696ZjRxXujwWtkJCkof6hlzgwYJQJ5pMl53npNGolmLLSBk5gjUFTfuiRJVvvrHF9bL21M5qQ7sWulYAVxAtycrsjoR0822udA", "payload": "" } 2023-04-10 21:06:34,468:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218358782477 HTTP/1.1" 200 802 2023-04-10 21:06:34,469:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:34 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FEO61m4IRGOvsD0xNb-sLUg3QtxldYX_a1YAulXCQqEho X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-17T21:06:26Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/HDcWRQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/1QCPoQ", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc" } ] } 2023-04-10 21:06:34,469:DEBUG:acme.client:Storing nonce: A5FEO61m4IRGOvsD0xNb-sLUg3QtxldYX_a1YAulXCQqEho 2023-04-10 21:06:37,471:DEBUG:acme.client:JWS payload: b'' 2023-04-10 21:06:37,474:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218358782477: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVPNjFtNElSR092c0QweE5iLXNMVWczUXR4bGRZWF9hMVlBdWxYQ1FxRWhvIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTgzNTg3ODI0NzcifQ", "signature": "BW-InFK1hKp8pTuRRji3ZHS6Spwgb4J1d5-ZsUkIXhRJtGxP_b1eLZwvM35Eztb9C9PpXNq7751GO5UkJqvHBTiZ_x9TXkR05NSFgCzuLanX8Xg7sfGeBjKkSTTnVJlFEAQ7xSt3LsuxXk5w4EDJjIyoLmRwBBy_QZ3d9fwkDbgqg17a_QOpSuAJyI0yXLz8cBJlv3LSNZblDQwVYYve-lOmB_x0QglojhlUVhQ41efQHE7HZXGFDf1XWmVoGXqcqX687ZmdQBeUA2UVDLR28UcJXS70wFh0kx8EArpnqU1zOBtx7o2e4Zm3WoWNZS3VADl6j-ALBjMroCe2XTcyPw", "payload": "" } 2023-04-10 21:06:37,551:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218358782477 HTTP/1.1" 200 1073 2023-04-10 21:06:37,552:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 10 Apr 2023 21:06:37 GMT Content-Type: application/json Content-Length: 1073 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: F977aVqxaAXg_wMJJPlSWlnQvZ7IjADrDnzlmFkhrtSWkps X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-17T21:06:26Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218358782477/zeZq6A", "token": "43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-10T21:06:27Z" } ] } 2023-04-10 21:06:37,552:DEBUG:acme.client:Storing nonce: F977aVqxaAXg_wMJJPlSWlnQvZ7IjADrDnzlmFkhrtSWkps 2023-04-10 21:06:37,553:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-10 21:06:37,553:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-10 21:06:37,553:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-10 21:06:37,556:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-10 21:06:37,556:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-10 21:06:37,556:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-10 21:06:37,556:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/43GL0cNwhc2xJyw4OVCiU8wP8z83t2j1e8m2kbdZNUc 2023-04-10 21:06:37,557:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-10 21:06:37,558:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-10 21:06:37,565:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-10 21:06:37,566:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-10 21:06:37,567:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-04-10 21:06:37,567:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-10 21:06:37,567:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-10 21:06:37,567:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-10 21:06:37,567:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-11 03:17:24,564:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-11 03:17:24,813:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-11 03:17:24,813:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-11 03:17:24,813:DEBUG:certbot._internal.main:Arguments: ['-q', '--preconfigured-renewal'] 2023-04-11 03:17:24,814:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-11 03:17:24,823:DEBUG:certbot._internal.log:Root logging level set at 40 2023-04-11 03:17:24,824:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-11 03:17:24,842:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-11 03:17:24,877:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80 2023-04-11 03:17:24,960:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503 2023-04-11 03:17:24,961:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is signed by the certificate's issuer. 2023-04-11 03:17:24,967:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/devops.z3cyber.org/cert1.pem is: OCSPCertStatus.GOOD 2023-04-11 03:17:24,970:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-11 03:17:24,970:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-11 03:17:24,970:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 148.95875468832648 seconds 2023-04-11 03:19:53,982:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-11 03:19:53,986:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-11 03:19:53,986:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-11 03:19:53,987:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-11 03:19:54,039:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-11 03:19:54,039:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2023-04-11 03:19:54,041:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2023-04-11 03:19:54,268:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 756 2023-04-11 03:19:54,269:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:19:54 GMT Content-Type: application/json Content-Length: 756 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert", "wdLVxFl8X4o": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417" } 2023-04-11 03:19:54,272:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for devops.z3cyber.org 2023-04-11 03:19:54,459:DEBUG:acme.client:Requesting fresh nonce 2023-04-11 03:19:54,459:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-11 03:19:54,533:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-11 03:19:54,534:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:19:54 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4397S2H5ZhedfcMyq3b_Ye58vB8MbKNMYXFwT3UixS2yoW8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-11 03:19:54,534:DEBUG:acme.client:Storing nonce: 4397S2H5ZhedfcMyq3b_Ye58vB8MbKNMYXFwT3UixS2yoW8 2023-04-11 03:19:54,535:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-11 03:19:54,539:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjQzOTdTMkg1WmhlZGZjTXlxM2JfWWU1OHZCOE1iS05NWVhGd1QzVWl4UzJ5b1c4IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "Q4zNjlXZeQuF_FGVHzkNAFhX_g90zAsVmoqHuo4PaP3clUV-S528_NwDbnCAJG7YltLSz1MT92_ml4XaCTifd9Kgvu-7NtYotZsv_N8uaU5SRhPMR5NY6eXl4hQXAw8Guo5GKBq5TuKQf619E1iS-IDYff16XZz9Eryi1IgQbB1encpX5mjqZ6EOv6Eq2o2Yu4Ge09j3uQ5Tdfjz5UfKndzfvu6NcgjF4oDon07c48NZ-ASXEsTd3v1RK9DByZUpPxZWGhDeHvsMOV4CbGUzW-ITX48_rtjJZfx_8sOCANCy_xzoIeQJkEhDIiuOBDg34-NSmaeWDL8838t8HCJfWA", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-11 03:19:54,641:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 343 2023-04-11 03:19:54,642:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Tue, 11 Apr 2023 03:19:54 GMT Content-Type: application/json Content-Length: 343 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/909853347/175452335517 Replay-Nonce: C400sx1fHHH7MO4_KdwF9b5CP281QpCQMpk_MCxLjemqHgQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-18T03:19:54Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/218436299057" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/909853347/175452335517" } 2023-04-11 03:19:54,642:DEBUG:acme.client:Storing nonce: C400sx1fHHH7MO4_KdwF9b5CP281QpCQMpk_MCxLjemqHgQ 2023-04-11 03:19:54,642:DEBUG:acme.client:JWS payload: b'' 2023-04-11 03:19:54,644:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218436299057: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM0MDBzeDFmSEhIN01PNF9LZHdGOWI1Q1AyODFRcENRTXBrX01DeExqZW1xSGdRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg0MzYyOTkwNTcifQ", "signature": "L3SjHM1SPq19k6i5lwckq53Ae3QDtbjS-OUfaDFtlWAujxZxmHYm-cp5-WsSe5ojtiGbcAezOAI4kTMHAsFK-OwQGJ4OWu7Sqs-5bAV9VDr0gq1DrHf8W8iromaT7Plpj7cptfVQGzZZHRs04Aqlv_7CUskpb2RhgSo7D5LEjiJ6cayWOxBXSx4GKIKwZoZzaXjVOWBsKWwjkiReA8nFxb5_ok69eT2e4cNeJA35rkiSqHuf6iI2-FH8IzFFijfQFmWwpWCKlKs5CE9YS2E-ftT6jjrFwe6LSi3AjVA5Ow5A7DliIA41xLhxJDpps7JAtGjqbvKYY85Yzjt-GbALVw", "payload": "" } 2023-04-11 03:19:54,720:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218436299057 HTTP/1.1" 200 802 2023-04-11 03:19:54,721:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:19:54 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FEnreI_wInmQcR949SushJnHRqVDsz1wGXxMAxm8UD3ng X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T03:19:54Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/CzBwMA", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/QjXBWg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" } ] } 2023-04-11 03:19:54,721:DEBUG:acme.client:Storing nonce: A5FEnreI_wInmQcR949SushJnHRqVDsz1wGXxMAxm8UD3ng 2023-04-11 03:19:54,722:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-11 03:19:54,722:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-11 03:19:54,722:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-11 03:19:54,722:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-11 03:19:54,723:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A 2023-04-11 03:19:54,724:DEBUG:acme.client:JWS payload: b'{}' 2023-04-11 03:19:54,725:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVucmVJX3dJbm1RY1I5NDlTdXNoSm5IUnFWRHN6MXdHWHhNQXhtOFVEM25nIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yMTg0MzYyOTkwNTcveGx6aXhnIn0", "signature": "bSPAJZtLNCNAbJPecFTT_oHU4Lt8JsJ1qma-706rS0oMdcCMEJO2VE6qk3Ny2VIvKKKmzNtF4AZWLXSfmdrQw4wN61axSbBWctbJTVV1MjcPByQtxFHSdl0fKso-Go5XubsizHFcXTBqI4sHdH6Osz6wQ6OletoiS6sg2R_JdgBKQINF6ordKwwfGDp8_mjvZ8d73_kgX-9p0-KF0ImwffPrNh7IfQ0IP8ub08uSklDJ9iwgUU-Y3GQSBPC5TBRwm6IxZbsMDEBVO08IgofKEzKDFXytYyPyHxwWAZXmZnJr7_xuidYlASTde0XPMlELbghcqMmVSEhrTP5VnrL0fQ", "payload": "e30" } 2023-04-11 03:19:54,802:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/218436299057/xlzixg HTTP/1.1" 200 187 2023-04-11 03:19:54,803:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:19:54 GMT Content-Type: application/json Content-Length: 187 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg Replay-Nonce: A5FEZudGErLSdQt6JWP2xyiGl-uwkbcuV0-lksuh9eJAijM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" } 2023-04-11 03:19:54,803:DEBUG:acme.client:Storing nonce: A5FEZudGErLSdQt6JWP2xyiGl-uwkbcuV0-lksuh9eJAijM 2023-04-11 03:19:54,803:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-11 03:19:55,805:DEBUG:acme.client:JWS payload: b'' 2023-04-11 03:19:55,807:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218436299057: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkE1RkVadWRHRXJMU2RRdDZKV1AyeHlpR2wtdXdrYmN1VjAtbGtzdWg5ZUpBaWpNIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg0MzYyOTkwNTcifQ", "signature": "E4Jjz67HwPOKZXkTh1X9WSGgNwq7BnfxC_1BP1EBtMBxx6jw0kLtAu0p0TYs4fDDulSAdVERIj1763jodJSVNDezVnXKlsTstwteVukxIMHBaOL_h4a3OKW4a_oGh2rUBUHwAYy8bh3qvIwUGaU1MGr8l6s-YsjH0hvbO2FQiCyRCBDm-3u5Y5M9YFUQhD48Xo6e17rJZWVNZBu1L2nQZdrvBbfkvpQAONOMcnSkcpcdv1HLps3QLl4Zn7gkfLkgcAM4zh0xevpNNeW6asGUx6KWeYvfG986m48rx4fvsvFbc96eV2XyvcAqp-B5Ex7gmFUNwHWa6kzrcGU6dCLB5A", "payload": "" } 2023-04-11 03:19:55,884:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218436299057 HTTP/1.1" 200 802 2023-04-11 03:19:55,885:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:19:55 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: C400uWigxzWUc180-oBh_XS1-eHdu13TwVGeOYC_edODEN8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T03:19:54Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/CzBwMA", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/QjXBWg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" } ] } 2023-04-11 03:19:55,886:DEBUG:acme.client:Storing nonce: C400uWigxzWUc180-oBh_XS1-eHdu13TwVGeOYC_edODEN8 2023-04-11 03:19:58,889:DEBUG:acme.client:JWS payload: b'' 2023-04-11 03:19:58,892:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218436299057: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM0MDB1V2lneHpXVWMxODAtb0JoX1hTMS1lSGR1MTNUd1ZHZU9ZQ19lZE9ERU44IiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg0MzYyOTkwNTcifQ", "signature": "C-8L2da-Uk3YgQt9rusVHTr8WUu1aZzeCHPfF-IW2FnBTsWBwUtnpAskLCT_HZOkW0ZQ_co3wvXQEwX6vKff_FkDStukYnxD64AwPKIjCRWsZAmifdk87CRCZ7jyEAt4A7Lf7-VRhKqbARKwVA9e2gKoKiDJuWRyhCLtyH6w8ai48WG5oqbt1b7j12p-qCY9ZLZBBt-F8vjslWnJmpNywSsRHughBvJoYBbkzKJWRtPLc7igHv5T5z0Q5IxLdZvck-yGLBrgKzQFsNXE-imMwayLyIUzdkRielJ9GGCNCj_MBe3OxqOHtunBZPRdf3IRGSBUdCfPCq4o3-Z-wuy-yg", "payload": "" } 2023-04-11 03:19:58,970:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218436299057 HTTP/1.1" 200 802 2023-04-11 03:19:58,971:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:19:58 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: C400bVTcMa7VwAiaW51vaf5kncGrVqxx63TB1JWtSQKOYPA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T03:19:54Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/CzBwMA", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/QjXBWg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" } ] } 2023-04-11 03:19:58,971:DEBUG:acme.client:Storing nonce: C400bVTcMa7VwAiaW51vaf5kncGrVqxx63TB1JWtSQKOYPA 2023-04-11 03:20:01,975:DEBUG:acme.client:JWS payload: b'' 2023-04-11 03:20:01,977:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218436299057: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM0MDBiVlRjTWE3VndBaWFXNTF2YWY1a25jR3JWcXh4NjNUQjFKV3RTUUtPWVBBIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg0MzYyOTkwNTcifQ", "signature": "X5T_0V7eDmNCxVD78CNKAAAndX7vzaNedUkUvvZjs6oIeQ-XPPYUakD2I0wPr7ZbI_XEX9UhKBgUlC8dRCLwnbYDB8SJZVakg2QS6V7BjrO4YmvYrlzYIHESsdic3Tsq6do0O9jC_1H1m0GIOB5xuss26fMxxP68OLbesiVqmm6Rc1t8mWwlRsE8scx11cWpp54tlqkRSQ_u7WR4N-MqvVDkOcqow3PaeRNjjNNa7nmis25wucz9O5D3XSMz2fuTazIAvUQnusl1EM37tQZWU-75Q2fIkn9FKoXAgIq-HvY99DrlIjl9U3Zx-vdjcfkecIaEYRRN_HkfldHyxFpgxw", "payload": "" } 2023-04-11 03:20:02,052:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218436299057 HTTP/1.1" 200 802 2023-04-11 03:20:02,053:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:20:02 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: F97724jeQAZmw_tFwVnm20yfx1jc-kW8cK7xMgb_XO_fbHg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T03:19:54Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/CzBwMA", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/QjXBWg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A" } ] } 2023-04-11 03:20:02,054:DEBUG:acme.client:Storing nonce: F97724jeQAZmw_tFwVnm20yfx1jc-kW8cK7xMgb_XO_fbHg 2023-04-11 03:20:05,057:DEBUG:acme.client:JWS payload: b'' 2023-04-11 03:20:05,059:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218436299057: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkY5NzcyNGplUUFabXdfdEZ3Vm5tMjB5ZngxamMta1c4Y0s3eE1nYl9YT19mYkhnIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg0MzYyOTkwNTcifQ", "signature": "VG8Qgg4extLwKqI-cyfqcEA6FeqNjowQwewib5Co2D9ho5NU_W7f9w4GWhlytQw9aaQYB9jiUQS6VD2ExDt8GoaZSdR3QnAVOkpbrIyoWitIZcjqFR5B7_X5FjJErTBkMUGSzMPSVmkV0KH-mq8XZxwv5fCzpvtuAxf7kC6dZp0t4pBjIQltUsKt_Kej6oe4CO3Cb7BoVrlt9KUSHo9Uq2ZQ0KZDHVaHO4-hquei6HjrVkPKs39bZeByFIPBCQZMAryvLRE_MIo5ngVWQAg6D6z-sAYBjAFi1jEEx75IiqVaZSkLD_YDIPReCC622Ap3X15OUFM5kOKvwwiVu9DT5Q", "payload": "" } 2023-04-11 03:20:05,135:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218436299057 HTTP/1.1" 200 1073 2023-04-11 03:20:05,136:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 03:20:05 GMT Content-Type: application/json Content-Length: 1073 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A5FE6T7ZPRb6TPsouGAqgHCwyDqSaqUeLyxqGi5YLfL88AE X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-18T03:19:54Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218436299057/xlzixg", "token": "Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-11T03:19:54Z" } ] } 2023-04-11 03:20:05,136:DEBUG:acme.client:Storing nonce: A5FE6T7ZPRb6TPsouGAqgHCwyDqSaqUeLyxqGi5YLfL88AE 2023-04-11 03:20:05,137:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-11 03:20:05,137:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-11 03:20:05,137:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-11 03:20:05,137:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-11 03:20:05,137:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-11 03:20:05,137:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-11 03:20:05,137:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/Rnmu8RgQGQ2CKqfEv8KE77BcI6aGXHhZOfg9E5mBi1A 2023-04-11 03:20:05,138:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-11 03:20:05,138:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-11 03:20:05,142:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-11 03:20:05,144:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-11 03:20:05,144:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-04-11 03:20:05,144:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-11 03:20:05,144:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-11 03:20:05,144:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-11 03:20:05,145:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-11 21:00:01,662:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-11 21:00:01,980:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-11 21:00:01,980:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-11 21:00:01,980:DEBUG:certbot._internal.main:Arguments: ['-q', '--preconfigured-renewal'] 2023-04-11 21:00:01,980:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-11 21:00:01,991:DEBUG:certbot._internal.log:Root logging level set at 40 2023-04-11 21:00:01,992:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-11 21:00:02,011:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-11 21:00:02,032:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-11 21:00:02,032:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-11 21:00:02,032:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 386.83215107891664 seconds 2023-04-11 21:06:28,964:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-11 21:06:28,969:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-11 21:06:28,970:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-11 21:06:28,970:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-11 21:06:29,023:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-11 21:06:29,024:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2023-04-11 21:06:29,026:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2023-04-11 21:06:30,226:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 756 2023-04-11 21:06:30,227:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:30 GMT Content-Type: application/json Content-Length: 756 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "jO19nSyx3XE": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-11 21:06:30,228:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for devops.z3cyber.org 2023-04-11 21:06:30,737:DEBUG:acme.client:Requesting fresh nonce 2023-04-11 21:06:30,737:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-11 21:06:30,786:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-11 21:06:30,786:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:30 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: C878klBwzKzUKsDHEDBYkkbi-iYKdwopedN0xzqyi3-kRE0 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-11 21:06:30,787:DEBUG:acme.client:Storing nonce: C878klBwzKzUKsDHEDBYkkbi-iYKdwopedN0xzqyi3-kRE0 2023-04-11 21:06:30,787:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-11 21:06:30,791:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM4NzhrbEJ3ekt6VUtzREhFREJZa2tiaS1pWUtkd29wZWROMHh6cXlpMy1rUkUwIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "bz4svAlYB2f6LatoEQqsQQk5tFEpaesTFvYkG_WDDV8eKz3A3qyViVBy561-gvjmtxjlp_FJ0wra43IFw4zkX1UQ4O1-JTEcIV2uc0ZWOQeN-T3wHP9TPKFll-7_y6gGUcU1VpwX8GPXqq2zlEL-in7crYedq8KyvoxfOnrwKuf4QaGnNQYK6748XCs6uiYmbHJeSpiGNIcbcF98JEJ5Olsjxf5VqJguhJj2WhcLWzPTinsbahT8dcIsxm_KVuZ6pEiG_P60SOwkHWz884JR-bdGQkyY_zDcPEFRwsY_ErmjeV9j-0XZDabjY0P_AW2rj4qKR7diQO55_LDECLUXAw", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-11 21:06:30,994:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 343 2023-04-11 21:06:30,995:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Tue, 11 Apr 2023 21:06:30 GMT Content-Type: application/json Content-Length: 343 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/909853347/175597538027 Replay-Nonce: C878pt5mv1h9IdVe7huSsDSUtVa7M3VCCAkamFwKbN2Ocrg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-18T21:06:30Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/218635738077" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/909853347/175597538027" } 2023-04-11 21:06:30,995:DEBUG:acme.client:Storing nonce: C878pt5mv1h9IdVe7huSsDSUtVa7M3VCCAkamFwKbN2Ocrg 2023-04-11 21:06:30,995:DEBUG:acme.client:JWS payload: b'' 2023-04-11 21:06:30,996:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218635738077: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM4NzhwdDVtdjFoOUlkVmU3aHVTc0RTVXRWYTdNM1ZDQ0FrYW1Gd0tiTjJPY3JnIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg2MzU3MzgwNzcifQ", "signature": "aNbqlir_Jm5t8ftxD-h1M1GVg7uvpssLP4HN3BmOTWCABmV57naozzBVl1epK10LRpI93BLPjMk6vrynQAx8l9pAUZO8oVWPFWoIq_zV-DM2_lPlcv6ky3lqlVUYdA1QTFlM2Nbb4LohClONnZaxXMI-a7gR4uWqBiRJ8h8qB1HaCsLJu3C3aujF0zNFI0_x-aPAuA7UDe_khlSqTewzjBApNfaY3gk61KUHhJ7nCfmd9VfvjQY636HrwHU8SOM0s62fcwB-boMyLvZTEjL4XcNNIAVb2i8AcxXgPolmJQmrQvQcQP6gh-mtzEzfbNcHAQFsYTNTaB3VH5tvl3esZQ", "payload": "" } 2023-04-11 21:06:31,047:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218635738077 HTTP/1.1" 200 802 2023-04-11 21:06:31,048:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:31 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 5CA2K7lgxDxR27PPngeKpWVnoOINw0fXZL8m9Z_LIrwIP3Q X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T21:06:30Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/bNSrHA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/OYzEJA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" } ] } 2023-04-11 21:06:31,048:DEBUG:acme.client:Storing nonce: 5CA2K7lgxDxR27PPngeKpWVnoOINw0fXZL8m9Z_LIrwIP3Q 2023-04-11 21:06:31,049:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-11 21:06:31,049:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-11 21:06:31,050:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-11 21:06:31,050:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-11 21:06:31,051:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys 2023-04-11 21:06:31,052:DEBUG:acme.client:JWS payload: b'{}' 2023-04-11 21:06:31,053:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjVDQTJLN2xneER4UjI3UFBuZ2VLcFdWbm9PSU53MGZYWkw4bTlaX0xJcndJUDNRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yMTg2MzU3MzgwNzcvb2ZUNWdnIn0", "signature": "haM2f3n4P-c99AK28m0KcoKvVJuuI9Iku9AlENvPUC9RR-wd6JE7TaOsNTRduiQH85eCM-gGOokJFlQMaSbsXYSANhtrJKp0cvbVm7x_dv-KPf8NJxL3Hq-p4VUmEyIn73rEDW8YKEkkpZl206wx-cYGX4gqZcenoJKsW-rIKzraiC4SkLzXiDLiq2dS1V1T67mJAcRHeVUexc3cS1xdImGqvbdN4A-USzVFssNtEM8XR6D52_xCdR1Dwy_OIwZ6kxViS8wlJn4FHYdjHVAa0v_ZPhP6M7VjjVX16sWn_qI2G2HZ7jOvzflK2kmHjnrJUW8HJbROW-oF0wXxrWeZ5A", "payload": "e30" } 2023-04-11 21:06:31,110:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/218635738077/ofT5gg HTTP/1.1" 200 187 2023-04-11 21:06:31,111:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:31 GMT Content-Type: application/json Content-Length: 187 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg Replay-Nonce: C878p4WdFgi1eDtsgHd0UTgH_XRJCDEJ0Xs-i5wRdh4-6lU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" } 2023-04-11 21:06:31,111:DEBUG:acme.client:Storing nonce: C878p4WdFgi1eDtsgHd0UTgH_XRJCDEJ0Xs-i5wRdh4-6lU 2023-04-11 21:06:31,111:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-11 21:06:32,113:DEBUG:acme.client:JWS payload: b'' 2023-04-11 21:06:32,116:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218635738077: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM4NzhwNFdkRmdpMWVEdHNnSGQwVVRnSF9YUkpDREVKMFhzLWk1d1JkaDQtNmxVIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg2MzU3MzgwNzcifQ", "signature": "A1XPM37gIrx8afDk_pSvQ09M_tNXBmW7iNSCvm--BpGUoUQy_33nDpj7ggC6YCou7lfkdM0oNC57M9YtFbY0MbvP8bGGryL08Bp4PZlgXnsM7_Ge4dVIo80a0ekfXFv0Lt3FNPHXFCbtd7ox47mVv5TFCFnivO4_9obf5yZmhD16-TAcl38XM2yezK9MSDlMLwHNXBSHOIWCQeAfiR0D1QJN90H7K392mPlq5I6sZykE-2s966qqxdKr20lefE-jO9aAHMs5CtDxaaivgCf52JLgFATCOQisk-2ecn1roWyv0B5BxA09q08cJfoo2tQVyCIW5JV2Bp_f0ozWnfSjAg", "payload": "" } 2023-04-11 21:06:32,166:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218635738077 HTTP/1.1" 200 802 2023-04-11 21:06:32,167:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:32 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 371COuPGkJ0LZLWtesPjiAllnMkLgZndRq_G41QCwwrpN1c X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T21:06:30Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/bNSrHA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/OYzEJA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" } ] } 2023-04-11 21:06:32,167:DEBUG:acme.client:Storing nonce: 371COuPGkJ0LZLWtesPjiAllnMkLgZndRq_G41QCwwrpN1c 2023-04-11 21:06:35,171:DEBUG:acme.client:JWS payload: b'' 2023-04-11 21:06:35,173:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218635738077: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjM3MUNPdVBHa0owTFpMV3Rlc1BqaUFsbG5Na0xnWm5kUnFfRzQxUUN3d3JwTjFjIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg2MzU3MzgwNzcifQ", "signature": "Q63fWj_G4EfBIz2-2x3jwZvhrGQQcKgHODEvCQ4tw3w_3_j-5O-Rs_AD-BIdnZdYLCybMbaqudP8-o3dtkeeXXoueAbSiOzSXWrsTn4MoVApT4kvNQjao68A5PUEtf-KAm0DN9ByXQvVjHcnegdZeSWDdIQh62hxcTXYIcf_mCHXuEQv6Fu3r08fDvfzLZKJgVodQgd0_i697fxjIB0HG_DHjqApStk9eDO9q6CRpo5WW55Ky0S_vhB2zIsGZlh8hCGkew0kMpZRJrYH3XiXqk5Hg_KaiZNKODpigILdJgQeMKqHhRaiM_MaRopU_7eE88r-8f7nGoGxKzxAdZ1DkQ", "payload": "" } 2023-04-11 21:06:35,223:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218635738077 HTTP/1.1" 200 802 2023-04-11 21:06:35,224:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:35 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 371CQT-7zcm7xIDvVf6B8pS6KHC7UOiUaWhQDDimcP1omEg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T21:06:30Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/bNSrHA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/OYzEJA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" } ] } 2023-04-11 21:06:35,224:DEBUG:acme.client:Storing nonce: 371CQT-7zcm7xIDvVf6B8pS6KHC7UOiUaWhQDDimcP1omEg 2023-04-11 21:06:38,228:DEBUG:acme.client:JWS payload: b'' 2023-04-11 21:06:38,231:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218635738077: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjM3MUNRVC03emNtN3hJRHZWZjZCOHBTNktIQzdVT2lVYVdoUUREaW1jUDFvbUVnIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg2MzU3MzgwNzcifQ", "signature": "QE5FwtsFxcp81zqav4JErMsMKU_62AAK7duOgimx66gmls4RA0Du-GZoDJfteyyEmf86EEWbew6hwSXz4dqxl7ITjCEeXngAGPAuDZBL5VScX6sgStIYSIbGKtHDhpu0Xs7ckaJJDYeug8j5_XX45adoRy0sf_1L05bw7WSpvP3x2OhzcJykJBFVcXR31yrfvLfyzCicXbgCbL1OH8dojRwZtOudxfeu27z__ZZuoWhykh-sIkfa9r-2wYnAxpiphIyg36cpxUhMfO9z8EDbRXYvh0nRpgPoeOf8rBJxWvRpSkCfx49k39Jm3yRLDecB8gc4Xa_ATSfb4c5OdKjuJQ", "payload": "" } 2023-04-11 21:06:38,286:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218635738077 HTTP/1.1" 200 802 2023-04-11 21:06:38,287:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:38 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 5CA2q9L557QYLMR_pONzLWbL2XX1PevK3nIfmLAz7g-tLlE X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-18T21:06:30Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/bNSrHA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/OYzEJA", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys" } ] } 2023-04-11 21:06:38,287:DEBUG:acme.client:Storing nonce: 5CA2q9L557QYLMR_pONzLWbL2XX1PevK3nIfmLAz7g-tLlE 2023-04-11 21:06:41,291:DEBUG:acme.client:JWS payload: b'' 2023-04-11 21:06:41,294:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218635738077: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjVDQTJxOUw1NTdRWUxNUl9wT056TFdiTDJYWDFQZXZLM25JZm1MQXo3Zy10TGxFIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg2MzU3MzgwNzcifQ", "signature": "MOlaCqRy_kQ2O0GVBgHV6C7xBzRV9BVHhal0rstNloRfwUgdfcgUSGS-erwqtWVQ6zckXcuN15ioRx0Slxb-r7GyhFbDP3unyGbb8NBQ9jjPLfvOFfEMEBqGpj6lJMKcRoSZcHEhgQwGzj49qs1OZ716UV81v-W6ZJrA9OWYrEPXN_CZdSUCM4r5AYD_Woa1c6W_erbOwiJYgtLWtt2k_7tIurie-qicx529rYFC_wmJJY3oSfNsfB_ZXPL1tq7W7UPrRZH6idR8cy1BjrFODEH9PV6-x8gKJRXlTFD4QetqnQTwa1QoCAom7gWUJDh-tvgp0wqIr-9Sm6h71BAWaA", "payload": "" } 2023-04-11 21:06:41,345:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218635738077 HTTP/1.1" 200 1073 2023-04-11 21:06:41,346:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Tue, 11 Apr 2023 21:06:41 GMT Content-Type: application/json Content-Length: 1073 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 1DFAp-hq19Z1a5o88aJl48zrcqp3gpipZKDEnU9r9v4Z_sU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-18T21:06:30Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218635738077/ofT5gg", "token": "aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-11T21:06:31Z" } ] } 2023-04-11 21:06:41,346:DEBUG:acme.client:Storing nonce: 1DFAp-hq19Z1a5o88aJl48zrcqp3gpipZKDEnU9r9v4Z_sU 2023-04-11 21:06:41,347:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-11 21:06:41,347:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-11 21:06:41,347:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-11 21:06:41,348:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-11 21:06:41,348:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-11 21:06:41,348:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-11 21:06:41,348:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/aEFVT2v_aSRI68geR_kQA6zKVVB8jFU3EzOnhiEX8ys 2023-04-11 21:06:41,349:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-11 21:06:41,349:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-11 21:06:41,356:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-11 21:06:41,357:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-11 21:06:41,358:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-04-11 21:06:41,358:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-11 21:06:41,358:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-11 21:06:41,358:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-11 21:06:41,358:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-12 03:17:14,208:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 03:17:14,452:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 03:17:14,452:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 03:17:14,452:DEBUG:certbot._internal.main:Arguments: ['-q', '--preconfigured-renewal'] 2023-04-12 03:17:14,452:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 03:17:14,460:DEBUG:certbot._internal.log:Root logging level set at 40 2023-04-12 03:17:14,461:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-12 03:17:14,479:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-12 03:17:14,498:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-12 03:17:14,498:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-12 03:17:14,498:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 25.887917223446628 seconds 2023-04-12 03:17:40,412:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 03:17:40,417:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 03:17:40,417:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 03:17:40,417:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 03:17:40,466:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 03:17:40,467:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2023-04-12 03:17:40,469:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2023-04-12 03:17:40,610:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 756 2023-04-12 03:17:40,611:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:40 GMT Content-Type: application/json Content-Length: 756 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert", "u-nW7RK5TwQ": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417" } 2023-04-12 03:17:40,613:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for devops.z3cyber.org 2023-04-12 03:17:40,870:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 03:17:40,870:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 03:17:40,914:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 03:17:40,915:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:40 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 5CA2twBxpGC57CsENSYjOr433OX0iLESwtPv4hK95K1hlqk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 03:17:40,915:DEBUG:acme.client:Storing nonce: 5CA2twBxpGC57CsENSYjOr433OX0iLESwtPv4hK95K1hlqk 2023-04-12 03:17:40,916:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 03:17:40,918:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjVDQTJ0d0J4cEdDNTdDc0VOU1lqT3I0MzNPWDBpTEVTd3RQdjRoSzk1SzFobHFrIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "h3byWO_VizF6OHRt7VwjxME--lWBtqRfKfP6Y9bszh1Uxi4qdl3QXfW6b2-rU0PahuYiq9LRQgYGYhetkTcsgYZLqW2PfEYatLkmiuQdesHwDmozangu6QNwexMuX6QNg6AI9D6BvFsH4JTmcu2CrSZzulA57qLWMMGpavLxv84e3wTTXGr12hugblFAbK9uNEzMB9cuVunJ3nyTEMtOqfW3AdyurLsmNch_LSSPk1AdKKURQtSydrloah0oXoYEKenCcdYP9VWYpI0YhefQnfsxy_NYSod-GwL0fBKZ5jYh_wWpnf1QcqoLpLxL5NFMDZbVDA_SXpDwJ9KDh4BSOQ", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 03:17:41,290:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 343 2023-04-12 03:17:41,290:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 03:17:41 GMT Content-Type: application/json Content-Length: 343 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/909853347/175651660707 Replay-Nonce: 371C8JUZezDGbS5fbYSJEm8_cRP-BOWdlyZqrhPMeBwYVdQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T03:17:41Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/218710812067" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/909853347/175651660707" } 2023-04-12 03:17:41,290:DEBUG:acme.client:Storing nonce: 371C8JUZezDGbS5fbYSJEm8_cRP-BOWdlyZqrhPMeBwYVdQ 2023-04-12 03:17:41,291:DEBUG:acme.client:JWS payload: b'' 2023-04-12 03:17:41,293:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218710812067: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjM3MUM4SlVaZXpER2JTNWZiWVNKRW04X2NSUC1CT1dkbHlacXJoUE1lQndZVmRRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg3MTA4MTIwNjcifQ", "signature": "Ooo_12Lx1sqHWWRIhv6Q4xfaTyia-wT538qJYYhDOHSPtl55EoVVXCb3JIXnSw-rZhxLUAgn8zqGXP23xL4HTemNx171u_l3kF2Wj94JiF39FRUNkio69xB9lxzA2Mks0QMlj4DHZLHS6qS425jI-U5ULgbA3lI4u4jMuX2FWYpDkrKiu2hTRsgxsSPT7xjwA7RrhKDUBkZoCunQ1Vl1YOFM2Y0AweORKhbx4NCAoGJu0s04GbKC8VTGr1rO7a0YfsS5c863IopHxDzqrXgDH_60a5x9HK4Itf8ifT5DOQ0UhCsVOLtc5CMej2TiCRhSo78_gpczrTbc6jh6NkVyWA", "payload": "" } 2023-04-12 03:17:41,365:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218710812067 HTTP/1.1" 200 802 2023-04-12 03:17:41,366:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:41 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: C878FHbJOZyEA3oIU2yHXZKd9VKc80KmnwGJaVpSaLh2S0c X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T03:17:41Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/1pOatA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/fXOUkA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" } ] } 2023-04-12 03:17:41,366:DEBUG:acme.client:Storing nonce: C878FHbJOZyEA3oIU2yHXZKd9VKc80KmnwGJaVpSaLh2S0c 2023-04-12 03:17:41,367:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 03:17:41,367:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 03:17:41,368:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 03:17:41,368:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 03:17:41,370:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA 2023-04-12 03:17:41,371:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 03:17:41,373:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM4NzhGSGJKT1p5RUEzb0lVMnlIWFpLZDlWS2M4MEttbndHSmFWcFNhTGgyUzBjIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yMTg3MTA4MTIwNjcvS1NCN2JBIn0", "signature": "G2esYQ1MtUpCxBYnYF9ORPjqwdqIp_-PWNeNjjakqdMGzEg6P7CBx23pNzghb7gNnizNaMN2x5h2AlkiHaQYvdU2240hIVT78whWs-GWdIoOUt7KQqkvQwCCGBxAchXRRb-9JT2EVWKIYwE5ewjqZ1veR262mNYLplQZgXV1nGBm7bVnuL-X6PEwcuJBqRvOWKVNY03zAFBkFLxTB-76EuLJa4f3AyfxM9mYhLB5ezrI5n72WPSTEkHi2wZwIAppHOcl4cQXLa8rDqCq3fwQV2Z_pUQQ7DGOafNtVs6OGp5CPeKKu5hSvAuoiVN_TS1pae7TKE-AEdB_N2ahu6GOJA", "payload": "e30" } 2023-04-12 03:17:41,422:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/218710812067/KSB7bA HTTP/1.1" 200 187 2023-04-12 03:17:41,422:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:41 GMT Content-Type: application/json Content-Length: 187 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA Replay-Nonce: 5CA2t1oLJ_G0AnxsuNIzeQ8IAwbmJXIg2kYtiqzDHp3j9Hk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" } 2023-04-12 03:17:41,423:DEBUG:acme.client:Storing nonce: 5CA2t1oLJ_G0AnxsuNIzeQ8IAwbmJXIg2kYtiqzDHp3j9Hk 2023-04-12 03:17:41,423:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 03:17:42,424:DEBUG:acme.client:JWS payload: b'' 2023-04-12 03:17:42,426:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218710812067: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjVDQTJ0MW9MSl9HMEFueHN1Tkl6ZVE4SUF3Ym1KWElnMmtZdGlxekRIcDNqOUhrIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg3MTA4MTIwNjcifQ", "signature": "KE5tHYYMiC4YoLFvXjwjcEc24cTagthrBIMqyXWO-O5ByZkmCljmKgl58GTKiRXfrCaoJKFkUH-DDkG2uQsjmn2yN5eTKS3Z8OEmTLfQK77dP-imEgSGFTsNrBYuYVB0yL9eUWmfPCslm6XgSRvgBxHO4rz_tJHLLA7CZqUhfI8OQuBxeD1zKe558_T7r6J6xGPBf5x073S4dl-J_VYaMgTYAcusDXD1t_2zv-b8RF04iodkqlB8OPS8K1aylIyzkaUoKo0AfDR3ndAQcZpKTgcqIS4_nOJb_C0matBiHZX6BSmmyzSDGQHS4kmKF5NXL2jw8JwUUH4vlA9ux0bRrA", "payload": "" } 2023-04-12 03:17:42,479:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218710812067 HTTP/1.1" 200 802 2023-04-12 03:17:42,479:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:42 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 1DFAv_RHvhgrtTKDrCA5L41c_Bq2-JvM0cHZkFUICJ60LDI X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T03:17:41Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/1pOatA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/fXOUkA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" } ] } 2023-04-12 03:17:42,480:DEBUG:acme.client:Storing nonce: 1DFAv_RHvhgrtTKDrCA5L41c_Bq2-JvM0cHZkFUICJ60LDI 2023-04-12 03:17:45,483:DEBUG:acme.client:JWS payload: b'' 2023-04-12 03:17:45,486:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218710812067: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjFERkF2X1JIdmhncnRUS0RyQ0E1TDQxY19CcTItSnZNMGNIWmtGVUlDSjYwTERJIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg3MTA4MTIwNjcifQ", "signature": "OjRT-j9ZTBusbsP5moPLiR8BC72NjPrzh25ifTgR9Ul9s_LDc-FDH4fwyE_T82aotO0zm1NKKhE6WxB0iQaKzZ9bHWRGffqOsn8gNArf3fqNgdWpCOQ54xA3W9vih7wwg_UfizRl6OlKp-y1UHy7ffbKfDUCa6ceL3ckbDW5RBiNYUddpZ8n6EIQSV8cSt87xRkhUuFQoEPxvI2tvawwbboRC-3OR3y0xYgW4-O4ZjZTo7mpIXHbFYzLDqUNRpUH8d0wSbOO6lWvKf1ChLwYuZTJV1GbDYfHLlEmY7PefmqNZpf7NJVa0wJtpfaPsqlQ9f797X2QWrhRlP71CVI72A", "payload": "" } 2023-04-12 03:17:45,534:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218710812067 HTTP/1.1" 200 802 2023-04-12 03:17:45,535:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:45 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: C878zhqUmeCsr_JakiOSKGrhBsZBZ4BHn-sdtcs0-_F-Xhg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T03:17:41Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/1pOatA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/fXOUkA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" } ] } 2023-04-12 03:17:45,535:DEBUG:acme.client:Storing nonce: C878zhqUmeCsr_JakiOSKGrhBsZBZ4BHn-sdtcs0-_F-Xhg 2023-04-12 03:17:48,539:DEBUG:acme.client:JWS payload: b'' 2023-04-12 03:17:48,542:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218710812067: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIkM4Nzh6aHFVbWVDc3JfSmFraU9TS0dyaEJzWkJaNEJIbi1zZHRjczAtX0YtWGhnIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg3MTA4MTIwNjcifQ", "signature": "NcP-_aQx47CHjt6hQaQ6eC8DF1w-aouXYvptRruGeGwSwkmXePAH3Xqs4rawEg_OLvuAm2eX34MgF9IKPBpMQgXke0I2qbFQTbVpmgWf9FLT3h1EHUf8-D-Y4aaC4n8yUgqc49Z7SzTaEdCFGe_AKmXwq8iMTC2zb3-pxU4ej-gvNlxIZi8BHLLZGV0pg0NZ7yZ2EYwhvNzyh5vU-S78dlkL7i-EXRDk0r_n7FXcV7oO1DZLBH1VJN2PqgK74X4j6fQAA1LZexO1JluKAO1Pt7oyuvVYkHo-pQx_MHlYb3gPxO35pTvSqvF21uyUtCgAjm1kN_WworXiDFqU3PxVrg", "payload": "" } 2023-04-12 03:17:48,627:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218710812067 HTTP/1.1" 200 802 2023-04-12 03:17:48,628:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:48 GMT Content-Type: application/json Content-Length: 802 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 1DFAX-YHDKqUOb1doAotEav73ilG7l5M4zOJ2RheThQwJSs X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T03:17:41Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/1pOatA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/fXOUkA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA" } ] } 2023-04-12 03:17:48,628:DEBUG:acme.client:Storing nonce: 1DFAX-YHDKqUOb1doAotEav73ilG7l5M4zOJ2RheThQwJSs 2023-04-12 03:17:51,632:DEBUG:acme.client:JWS payload: b'' 2023-04-12 03:17:51,634:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/218710812067: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvOTA5ODUzMzQ3IiwgIm5vbmNlIjogIjFERkFYLVlIREtxVU9iMWRvQW90RWF2NzNpbEc3bDVNNHpPSjJSaGVUaFF3SlNzIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yMTg3MTA4MTIwNjcifQ", "signature": "Yg9Szf_1WKIk8HdHSGrYSY2bql8x0MGf12ldyBMbOB8ju-VTD_l-FFkBgO8HPb9stXJr18E7thUwMjx1Tj2x5mADnbAWHSKInC5a6aXbjl209vKWWKRHg2y8bupYsXSZ3X5GoIeXSrKY0PyzSLv_UVhgX3C3_QvFVhzZBehqHr1wT8jWYZiH7fqbuqTFb8P--t0-rWVAfARfFUevIZVKYby9r7OoRtrGT5SWhc7P9QMLqrnzGf-y4PL_862qvEgt0wlthnchEUE7Fuig-vouOkEYHlLlV69E3WKnPbvKexUrDk3rm0ipVpAI3YLd1nArr34e413d9PBkPxks923QXg", "payload": "" } 2023-04-12 03:17:51,684:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/218710812067 HTTP/1.1" 200 1073 2023-04-12 03:17:51,684:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 03:17:51 GMT Content-Type: application/json Content-Length: 1073 Connection: keep-alive Boulder-Requester: 909853347 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 5CA2LiZURXYuwHY8nAscxGJzhV2-HQXYCkVAibay74t2Kxc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T03:17:41Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/218710812067/KSB7bA", "token": "tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T03:17:41Z" } ] } 2023-04-12 03:17:51,684:DEBUG:acme.client:Storing nonce: 5CA2LiZURXYuwHY8nAscxGJzhV2-HQXYCkVAibay74t2Kxc 2023-04-12 03:17:51,685:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 03:17:51,685:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 03:17:51,685:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 03:17:51,685:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 03:17:51,685:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 03:17:51,685:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 03:17:51,686:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/tNwXa5xO-i4_yk8zsWkLi60QIDHJcZfab7BAwne9DwA 2023-04-12 03:17:51,686:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 03:17:51,686:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-12 03:17:51,688:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 03:17:51,689:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-12 03:17:51,690:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2023-04-12 03:17:51,690:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-12 03:17:51,690:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-12 03:17:51,690:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-12 03:17:51,691:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-12 04:48:36,045:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 04:48:36,296:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 04:48:36,296:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 04:48:36,296:DEBUG:certbot._internal.main:Arguments: ['--dry-run', '--preconfigured-renewal'] 2023-04-12 04:48:36,296:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 04:48:36,305:DEBUG:certbot._internal.log:Root logging level set at 30 2023-04-12 04:48:36,306:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-12 04:48:36,325:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-12 04:48:36,325:DEBUG:certbot._internal.cli:Var dry_run=True (set by user). 2023-04-12 04:48:36,325:DEBUG:certbot._internal.cli:Var server={'staging', 'dry_run'} (set by user). 2023-04-12 04:48:36,325:DEBUG:certbot._internal.cli:Var dry_run=True (set by user). 2023-04-12 04:48:36,325:DEBUG:certbot._internal.cli:Var server={'staging', 'dry_run'} (set by user). 2023-04-12 04:48:36,325:DEBUG:certbot._internal.cli:Var account={'server'} (set by user). 2023-04-12 04:48:36,344:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-12 04:48:36,344:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-12 04:48:36,344:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 04:48:36,346:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 04:48:36,346:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 04:48:36,346:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 04:48:36,485:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2023-04-12 04:48:36,486:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2023-04-12 04:48:36,716:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 830 2023-04-12 04:48:36,717:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:36 GMT Content-Type: application/json Content-Length: 830 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "XaK17zcKkoU": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-12 04:48:36,717:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 04:48:36,717:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 04:48:36,791:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 04:48:36,792:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:36 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37CR3L3q78YtAnlKJI94MXoWyzZscLFBm08JvR4NxaU3fg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 04:48:36,792:DEBUG:acme.client:Storing nonce: B37CR3L3q78YtAnlKJI94MXoWyzZscLFBm08JvR4NxaU3fg 2023-04-12 04:48:36,793:DEBUG:acme.client:JWS payload: b'{\n "termsOfServiceAgreed": true\n}' 2023-04-12 04:48:36,798:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-acct: { "protected": "eyJhbGciOiAiUlMyNTYiLCAiandrIjogeyJuIjogImlsb1BRVEl0b1hycHBBNk1hMjV4TFFfQklHMmdQbVVJdzkwZlRpR3FHTlpDRHFKV0lfSnZEM1Y5Q21iV1FaZ2NodHJPVk9RUkh6RHh5eUE3UWVTcldyenRFMjc3ZGxVOW0xTTZZMHpvQ3J5N3JJV1o1RU9UWDN3ME1oYjhzRE1fMVV2am1Vd0dncTAzU0hpWDBkNTQ0TkhzalhuZm54U0RTanB6dnI2akh0Rkp4NUlsU29YMGctUG5iRkhEeEU3Z3cxTjlBQ083cjJzNE1zOC1CS05RNWkyV3hZTFI0Z0dlYlQyRHBnVkI5QnAyazl0eFBPQnMtWExGYWx6Y1ZaWUFvdXFTLTBJb3FkZmtobnJIaVNXZl84YmRTR25LcVY3UEx6aGVOcDFzQzRpYTVwZXBjZmxzdEMtNmN1SURyaWdQRjhOVS1RRzE2TGFqeUFvSXZpMEsydyIsICJlIjogIkFRQUIiLCAia3R5IjogIlJTQSJ9LCAibm9uY2UiOiAiQjM3Q1IzTDNxNzhZdEFubEtKSTk0TVhvV3l6WnNjTEZCbTA4SnZSNE54YVUzZmciLCAidXJsIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvbmV3LWFjY3QifQ", "signature": "ZWeH0QG7prJ5LCuRZIM2Q09GQmXdYtJcrcJbRZc42mCAuoCUQx91Jw8TIYTdVyY68vMWZGYGnUJD2YrRE4OBPFpbC85QzRDRmyHpeaIilk60gY6_Lz3hptODnBXLLxlTo3KXEx2OaZzL3Jtf1Uo5pG_boKbm5x7DWzJ5UIJE63Mz0Y5WMMWBTJrVfNoyL6l_AmGC6_2NkEm-E9YphX0QgsklPesd59r7Jj94Epj0viSKUYgWa4pjmyqL554gHVqBwq96x36bDm5dA8s8ZgosLB2McGJOZlp1R3u51zJ0mEb_AEkVcwq6ARPvrmWYS2MWHAO4DEIw9p7ER8c4yyK2qw", "payload": "ewogICJ0ZXJtc09mU2VydmljZUFncmVlZCI6IHRydWUKfQ" } 2023-04-12 04:48:36,885:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-acct HTTP/1.1" 201 510 2023-04-12 04:48:36,886:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 04:48:36 GMT Content-Type: application/json Content-Length: 510 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="terms-of-service" Location: https://acme-staging-v02.api.letsencrypt.org/acme/acct/97761144 Replay-Nonce: A272D77kJMwUAUksYyQTwxOHVC2WmC_1gHKL6YBhUw_hbmA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "key": { "kty": "RSA", "n": "iloPQTItoXrppA6Ma25xLQ_BIG2gPmUIw90fTiGqGNZCDqJWI_JvD3V9CmbWQZgchtrOVOQRHzDxyyA7QeSrWrztE277dlU9m1M6Y0zoCry7rIWZ5EOTX3w0Mhb8sDM_1UvjmUwGgq03SHiX0d544NHsjXnfnxSDSjpzvr6jHtFJx5IlSoX0g-PnbFHDxE7gw1N9ACO7r2s4Ms8-BKNQ5i2WxYLR4gGebT2DpgVB9Bp2k9txPOBs-XLFalzcVZYAouqS-0IoqdfkhnrHiSWf_8bdSGnKqV7PLzheNp1sC4ia5pepcflstC-6cuIDrigPF8NU-QG16LajyAoIvi0K2w", "e": "AQAB" }, "initialIp": "20.169.134.196", "createdAt": "2023-04-12T04:48:36.837171355Z", "status": "valid" } 2023-04-12 04:48:36,886:DEBUG:acme.client:Storing nonce: A272D77kJMwUAUksYyQTwxOHVC2WmC_1gHKL6YBhUw_hbmA 2023-04-12 04:48:36,898:DEBUG:certbot._internal.display.obj:Notifying user: Account registered. 2023-04-12 04:48:36,899:DEBUG:certbot._internal.main:Picked account: )>), contact=(), agreement=None, status='valid', terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-staging-v02.api.letsencrypt.org/acme/acct/97761144', new_authzr_uri=None, terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf'), 32e3746b9a23c291435f48a37fe0b4e2, Meta(creation_dt=datetime.datetime(2023, 4, 12, 4, 48, 36, tzinfo=), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 04:48:36,900:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for devops.z3cyber.org 2023-04-12 04:48:37,291:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 04:48:37,292:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyRDc3a0pNd1VBVWtzWXlRVHd4T0hWQzJXbUNfMWdIS0w2WUJoVXdfaGJtQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "AJ2xZ6DVTzpgQg2Mirng2R87pyK7mRMCzhP-2_KSK1pxM3kbXNzcH0sMzwWK5Qr4X2oV_9J7MdlaOMcDQCfENBnE9QR3fhG-we1W4P0XFlkWq4SHQoVflfb9nc4kSJJcMl86itTsUb3zqTFVmPwl128gWzZujViTLj2T0-Py5wWLk2MATcwWBari_8RQYjC3WzZQCv-9rJwt4u0TD98kElQMsAjlO8Gi8xsJ6cq0-aJdg0GnHrNI_lTp85sZbTQ97P-5u0gQw3YpSVihVRH3Vb_C9Vw7-lp1BiRBEDZckeew9TqtpC5CLAP7_ZUr54vLSXoJt2nzy5ZEsu2nVQcO8g", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 04:48:37,424:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354 2023-04-12 04:48:37,425:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 04:48:37 GMT Content-Type: application/json Content-Length: 354 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/97761144/8226272344 Replay-Nonce: A272nAWtGOhg-nLg215TX9bTVm-RBTps-ehfdHIeEl8c4Gg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T04:48:37Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6088669804" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/97761144/8226272344" } 2023-04-12 04:48:37,425:DEBUG:acme.client:Storing nonce: A272nAWtGOhg-nLg215TX9bTVm-RBTps-ehfdHIeEl8c4Gg 2023-04-12 04:48:37,425:DEBUG:acme.client:JWS payload: b'' 2023-04-12 04:48:37,428:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6088669804: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcybkFXdEdPaGctbkxnMjE1VFg5YlRWbS1SQlRwcy1laGZkSEllRWw4YzRHZyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDg4NjY5ODA0In0", "signature": "Ee_fBZ4F8Pn2ydr9Z7oZZQ7jqrPBDMXPQZC352o2nn-8NZG2KVurJaAbb988aEi2F6L-nQqwINgdY9cb7gMLJwFGxBIrCxST6PKvG7QdjQ6Q8I5b34He-CAiG67msudu3wf-uogi-nnVMoSQC0LTF4_ohRWg6RitHzRikZvVTzUgWc1p507CPdR1G6hF3CYRkk9Fy7qDYStacb9heUW8kHY8XJqNSQdSdxiX3hD8wNGJ2d41bCNsnkSuxOacGHPaXMCORQhYmj2d5dRq9fXyxtqu3aUbbXL44J7DAOvMMIN8kV8ubJjvFf-hivz1TuORcalHhXhvHNXmFwqUm5yKfw", "payload": "" } 2023-04-12 04:48:37,505:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6088669804 HTTP/1.1" 200 820 2023-04-12 04:48:37,505:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:37 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A272GyjYg02NQEuvsfz_C9891YjPZ8NSqC3ewuOiKeMsieA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T04:48:37Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/vJllnw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/CWx6ng", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" } ] } 2023-04-12 04:48:37,505:DEBUG:acme.client:Storing nonce: A272GyjYg02NQEuvsfz_C9891YjPZ8NSqC3ewuOiKeMsieA 2023-04-12 04:48:37,506:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 04:48:37,506:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 04:48:37,507:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 04:48:37,507:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 04:48:37,509:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM 2023-04-12 04:48:37,509:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 04:48:37,511:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyR3lqWWcwMk5RRXV2c2Z6X0M5ODkxWWpQWjhOU3FDM2V3dU9pS2VNc2llQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My82MDg4NjY5ODA0L08wbElIdyJ9", "signature": "HzaJdjM2cBzIedAAFxrpLRplcDTacuDb_aeUTQJLwktSGlS0e7EjojMa_g3EnkJgKQzNk3_o01KWUkMJDv1ZQkyrnOaHSbLkb8OsevbHxuExJaBRAv3sYZLWDe4CDjlOE8FBUL7PGYQLkMaVe9ZIUStnJ_avFjV-MpiPXSObfPpk_4MNMBg9fvAaZObOTRrxMUJzPG6iZ84hoqEdIEQJYjqUlJ3hRs0t0neRuD5Nsv369YHtKDYtpyKRYCm_seMW38LtnNgb7vx7hGJLYbZ4CWaVFlDPzS9Z6UTrwOH5MaRcCJNqprD-_mwGFgoATrSgY3iVD1wLfRLtDW5f6LbyXA", "payload": "e30" } 2023-04-12 04:48:37,588:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/6088669804/O0lIHw HTTP/1.1" 200 193 2023-04-12 04:48:37,589:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:37 GMT Content-Type: application/json Content-Length: 193 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw Replay-Nonce: A272s9VmtZ-aBUpx3Mxr3mLMWablOO2y4BhcTJ9tww9vceM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" } 2023-04-12 04:48:37,589:DEBUG:acme.client:Storing nonce: A272s9VmtZ-aBUpx3Mxr3mLMWablOO2y4BhcTJ9tww9vceM 2023-04-12 04:48:37,590:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 04:48:38,591:DEBUG:acme.client:JWS payload: b'' 2023-04-12 04:48:38,594:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6088669804: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyczlWbXRaLWFCVXB4M014cjNtTE1XYWJsT08yeTRCaGNUSjl0d3c5dmNlTSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDg4NjY5ODA0In0", "signature": "TnkjN9HMM7bigq4Ycfk2MwZFhPJYLqy-6uMN30dmyRYjKtJNKvm_MIPRTg0uVJDOxVloqkW4cduEaeL05b1kE4W9Y1MRe8iFMDHZ8K7zeHdtNLQgU9k83qyXiO5gaVzVxyZTsulQjiM7ECBH2r96saE_Riu-tbFkYa6RHH2CkBu0g1yHiwGgslm5fpg2NPlAyGcUN8IzCBDvlKo72HIg1GiCPASJ9pqrq7SFmjCfChXJquhau2_gsmXXEW340ibuxVr9KSkgFF6vHjghDqt46XioAWfNQ3D_TiT17MN2b54tBqk9VmRYIToFXbGUVhZVUH-nhe-BnnrFORwSX5gIig", "payload": "" } 2023-04-12 04:48:38,671:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6088669804 HTTP/1.1" 200 820 2023-04-12 04:48:38,672:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:38 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37Cg_fsYB2aPwqZEDqWC9vPudPKvuJRUvN65hN3DpFspFU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T04:48:37Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/vJllnw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/CWx6ng", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" } ] } 2023-04-12 04:48:38,672:DEBUG:acme.client:Storing nonce: B37Cg_fsYB2aPwqZEDqWC9vPudPKvuJRUvN65hN3DpFspFU 2023-04-12 04:48:41,675:DEBUG:acme.client:JWS payload: b'' 2023-04-12 04:48:41,678:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6088669804: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDZ19mc1lCMmFQd3FaRURxV0M5dlB1ZFBLdnVKUlV2TjY1aE4zRHBGc3BGVSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDg4NjY5ODA0In0", "signature": "JjgV3CMplO-omL2maMu0QwIPEjB1Rv-7EqdIwOQmlAImD19GXWverSs761pFLzAjE79shVHtdRXxjb1qlFpfrP0glbN4HgPpKgM493viHW8v0R3f8-Av034bvFMRfr4yzoO5UkzhJQButEduD3_zCnmzALuweJUHhxR6Lbgmu_niXga3R7PeJJh3SSUPB5YoAWgPyw5O7MGxNXFn0kiZo9kxE4GDPIgiZdrcKCUiB34B1EdVorlK-h-Odh88nDY5IDq4f7GbLEBoAZN_0kcxuy01dRorQFjdWA09PYFlGBcaCwtIGWO8wpx5o96t0PTQOMQxSwxBxdGfJkV-HPhCbg", "payload": "" } 2023-04-12 04:48:41,759:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6088669804 HTTP/1.1" 200 820 2023-04-12 04:48:41,759:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:41 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37CuaoNHlTSImYPckniXCELPpbaZPaw9WQsZO5A3y_C5Cs X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T04:48:37Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/vJllnw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/CWx6ng", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" } ] } 2023-04-12 04:48:41,759:DEBUG:acme.client:Storing nonce: B37CuaoNHlTSImYPckniXCELPpbaZPaw9WQsZO5A3y_C5Cs 2023-04-12 04:48:44,763:DEBUG:acme.client:JWS payload: b'' 2023-04-12 04:48:44,765:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6088669804: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDdWFvTkhsVFNJbVlQY2tuaVhDRUxQcGJhWlBhdzlXUXNaTzVBM3lfQzVDcyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDg4NjY5ODA0In0", "signature": "eYZs5X70mxHsXCOtNhkjkE3qU0N6aPeNnYnqUE4rGpkeMLH0fqYGG2NIrYb4YZcXJYMy8dEtAfpyp-fqY8G-g0OVJ4vr0Moq6Iz5R2tBXPZkhTuDbUzdDQcAy0tk1lN6AWqMvz2hMxfq6hXhQCYuslIUmbvl9djJ7kyIBqcSJOejEirreM03bt-1ZueyIwP8H8Fpa9FFMmOJeTjex7k7mFXdxbcI5OE7T84rbIJHxny6meRR-wTjLSDwpkwIoW8hCbgwoOmTNhNxWsbiQDcWvrRmIySvwTSAL-tcyOZ7ponOLM_-QryW94nDNbJm7q7qfT7CwYD1su_qj22xxVsQ5A", "payload": "" } 2023-04-12 04:48:44,843:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6088669804 HTTP/1.1" 200 820 2023-04-12 04:48:44,843:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:44 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A272CbCzNEFvkFevgMHQJdg5ToeFdsvG1AP37y09cWfULcs X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T04:48:37Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/vJllnw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/CWx6ng", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM" } ] } 2023-04-12 04:48:44,844:DEBUG:acme.client:Storing nonce: A272CbCzNEFvkFevgMHQJdg5ToeFdsvG1AP37y09cWfULcs 2023-04-12 04:48:47,848:DEBUG:acme.client:JWS payload: b'' 2023-04-12 04:48:47,850:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6088669804: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyQ2JDek5FRnZrRmV2Z01IUUpkZzVUb2VGZHN2RzFBUDM3eTA5Y1dmVUxjcyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDg4NjY5ODA0In0", "signature": "bMvPlWShwsYmPbgjnRJK9gDGu9LcOiFq9BWT6vTaPjVTJJ0HO4Cchpd3uZ1ERL3CE7aZSpQBFlH8Qi__63eUMtlw3lIA7UyiqoeoYUsg7h361tCSbcT7Am2xpADP27TXZ7btAL9O6G32dJ7uOfeFjczGkXTbHAK8n3Bx1qTJut6glmZNfxJkNFGUaQnSrvulmtQ3-0axZ6iKhiJaJpkd9qi9RN0nWZkDV7B6xSmhCvDiSrZxmc5pxGJwvErSIj-zAfUwN5-uu3n5pbNzd5muHgt3Qgs7uUA0lzlPif0FB0k-stBaAYZTT7sVDnUzgTJNMsEXw6zINYxrrZynOXcA-w", "payload": "" } 2023-04-12 04:48:47,930:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6088669804 HTTP/1.1" 200 1079 2023-04-12 04:48:47,930:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 04:48:47 GMT Content-Type: application/json Content-Length: 1079 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A272jQwxHhYubxqK0Vt6TFZOR6d6aK9zf7ewr98m1knHIYI X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T04:48:37Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6088669804/O0lIHw", "token": "EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T04:48:37Z" } ] } 2023-04-12 04:48:47,931:DEBUG:acme.client:Storing nonce: A272jQwxHhYubxqK0Vt6TFZOR6d6aK9zf7ewr98m1knHIYI 2023-04-12 04:48:47,931:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 04:48:47,931:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 04:48:47,932:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 04:48:47,932:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 04:48:47,933:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 04:48:47,933:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 04:48:47,933:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/EYfUowWqPvFzEGRYRAkYcj9szmW5NuQtRC44NSU7AmM 2023-04-12 04:48:47,934:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 04:48:47,934:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-12 04:48:47,936:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 04:48:47,937:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-12 04:48:47,937:ERROR:certbot._internal.renewal:All simulated renewals failed. The following certificates could not be renewed: 2023-04-12 04:48:47,938:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-12 04:48:47,938:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-12 04:48:47,938:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-12 04:48:47,938:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-12 07:33:22,166:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 07:33:22,481:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 07:33:22,482:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 07:33:22,482:DEBUG:certbot._internal.main:Arguments: ['--config', '/etc/letsencrypt/configs/devops.conf', '-v', '--dry-run', '--preconfigured-renewal'] 2023-04-12 07:33:22,482:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 07:33:22,492:DEBUG:certbot._internal.log:Root logging level set at 20 2023-04-12 07:33:22,493:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 07:33:22,496:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 07:33:22,496:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 07:33:22,496:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 07:33:22,547:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 07:33:22,548:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2023-04-12 07:33:22,549:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2023-04-12 07:33:22,782:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 830 2023-04-12 07:33:22,783:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:33:22 GMT Content-Type: application/json Content-Length: 830 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "TSs3ifA-1s8": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-12 07:33:22,857:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer 2023-04-12 07:33:53,708:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for devops.z3cyber.org 2023-04-12 07:33:53,742:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 07:33:53,742:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 07:33:53,815:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 07:33:53,815:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:33:53 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A272HcyKmbREGzAGuzszna0bya4IWOfquXL4Gpx5HxGATFg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 07:33:53,816:DEBUG:acme.client:Storing nonce: A272HcyKmbREGzAGuzszna0bya4IWOfquXL4Gpx5HxGATFg 2023-04-12 07:33:53,816:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 07:33:53,819:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcySGN5S21iUkVHekFHdXpzem5hMGJ5YTRJV09mcXVYTDRHcHg1SHhHQVRGZyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "KQkpdOhJ5dEpwi_goaOkc2Ad9HKAQYI1_68Iz0XgEQR3dEDOiQA15lGGkicsde-xy6Br9Y1Yl2m8uDjuBaQy6HXHbtoZEsW8s4ollgA9xsh2yCHP8vNcCWngjiPeYdonPuhAl4CmXVViAFfpCpk6CCn1d3TYFFokCqEih7r18f_oTVi_QCWRrFJLYcRzsVVCq8BAkQBCdaGpid-a6evcBNBxcIc4cxqeqQLEaQsT_IFjG1iv1pEZdjnZn_nVl2xL5GxOWF88tMIOE0ztHouoFfIGBfM27hZnWacopBVOcD361kmlax_ZUAnunIGpO-Oks_yL3O0II39irHvW57OazA", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 07:33:53,930:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354 2023-04-12 07:33:53,931:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 07:33:53 GMT Content-Type: application/json Content-Length: 354 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/97761144/8228097484 Replay-Nonce: B37C0wg6bzgz_NGazpePhbIpd1kWoiqKMjQS76m33L8MNu4 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T07:33:53Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090026664" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/97761144/8228097484" } 2023-04-12 07:33:53,931:DEBUG:acme.client:Storing nonce: B37C0wg6bzgz_NGazpePhbIpd1kWoiqKMjQS76m33L8MNu4 2023-04-12 07:33:53,931:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:33:53,934:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090026664: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDMHdnNmJ6Z3pfTkdhenBlUGhiSXBkMWtXb2lxS01qUVM3Nm0zM0w4TU51NCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMDI2NjY0In0", "signature": "CZtLUZ-Yh5rJZUn59IDq15dxIsT0kg-lGX54ILJwIGKCDAe5VuHiysDDlTaoz8NppVTUd5PqHHQ-P6gZMz2XVpEo6kze4isygOg3p0kta6NrZ46UPI1QYfbEmT4Po_QOdNLha65XFpvDQFNcodSBL4drpTn07KsQpizcfcrTfTKaPU2-bY92cliA_nXnGiwO15ugv2tebJ4WBVs2l-0JttOH1pJseyFxD9JeK-gqx90OWRJQTJm4Q3DG9bbRq9NvNPr4B2jH1wbG4QfAlAnUQ2cGMkW0o4vedrV2K4tg2U0VSyEAVkqPcV7hl60ObUEJFeeVCFqvdbayQpthldE6Jg", "payload": "" } 2023-04-12 07:33:54,011:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090026664 HTTP/1.1" 200 820 2023-04-12 07:33:54,012:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:33:53 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05PbGK7sGfjcR_1hX03C4bqrWVeucFPTP1gmaalZ2K6K8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:33:53Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/2vAK8Q", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/5jI2Og", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" } ] } 2023-04-12 07:33:54,012:DEBUG:acme.client:Storing nonce: 8F05PbGK7sGfjcR_1hX03C4bqrWVeucFPTP1gmaalZ2K6K8 2023-04-12 07:33:54,013:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 07:33:54,013:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 07:33:54,014:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 07:33:54,014:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 07:33:54,016:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY 2023-04-12 07:33:54,017:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 07:33:54,019:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1UGJHSzdzR2ZqY1JfMWhYMDNDNGJxcldWZXVjRlBUUDFnbWFhbFoySzZLOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My82MDkwMDI2NjY0LzhzcEw5dyJ9", "signature": "fi7PdGB2LmkONRLEZCvvAfCLC-WHXNlJsYOaWXxWDUTJ3L0sIB1JEf5j-VeF96bX0vuYi_IHJvnETmnw6oOq6CY2azPwo3nbrqMZ8CfxL5hw7GpIGp8cBZ9x9lGKGJYNaulJu42q-tMn3gd4KuMLluL_HvD2ETy0RtTSR9gGk3WoySYk10iFHXPNvkPrE5VHFuE6V7pCYAiZ6wtafEk9wZrVp28XAlrc1vgEMGdvFYk8Dt9e4KwTpvTEzhthrZ37TNbyOHv0KSnp-CKcdqhH0RlQkSS0ZTPDAmve5ko765tsBvwj4Q61XD_kom6_WY2IR0MyZGMIvg7OtTnPiEA_lA", "payload": "e30" } 2023-04-12 07:33:54,096:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/6090026664/8spL9w HTTP/1.1" 200 193 2023-04-12 07:33:54,097:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:33:54 GMT Content-Type: application/json Content-Length: 193 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w Replay-Nonce: 8F05pQZRfeC4yTyYNGOk-7CMgz1e5BjxUitSyjdLnot6CkY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" } 2023-04-12 07:33:54,097:DEBUG:acme.client:Storing nonce: 8F05pQZRfeC4yTyYNGOk-7CMgz1e5BjxUitSyjdLnot6CkY 2023-04-12 07:33:54,097:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 07:33:55,099:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:33:55,101:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090026664: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1cFFaUmZlQzR5VHlZTkdPay03Q01nejFlNUJqeFVpdFN5amRMbm90NkNrWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMDI2NjY0In0", "signature": "Kj2zCJgpv1vpQFaB3e7vsanNbqFnYApfULwvZttHNxu8fiM5lkFZ9HQB1pyGtZLn7Mi0jxYFDuIdLrfAgNJCGxdBv-fVOmMNi0249gjSnAlIPpjRCTNZzfg6ljxVQWwyDp1KyoCW0SSgkVi6EHrhgpdEDdSlu8Urn73FVfUZljtojYSSkRlo-zb0Xalw50foETCfkHkIbH00ms2E1SVCnZX2a9YFWqrBtGmiONwjGVZdc45mv-R_BYqoL7T5wmtfdSxUArZDzr15s62-zoFjCuw1r8eFt7L2m5XVxaxuFIWUIUZlbTQEFXk9qROB7aK-Cuh_qL5vmK5sC-mGtwfgXA", "payload": "" } 2023-04-12 07:33:55,180:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090026664 HTTP/1.1" 200 820 2023-04-12 07:33:55,181:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:33:55 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05OC-wyJGOfOkDaMay0_3IKy5pOJ7yMWd0l6-_B7oWd0M X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:33:53Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/2vAK8Q", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/5jI2Og", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" } ] } 2023-04-12 07:33:55,181:DEBUG:acme.client:Storing nonce: 8F05OC-wyJGOfOkDaMay0_3IKy5pOJ7yMWd0l6-_B7oWd0M 2023-04-12 07:33:58,185:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:33:58,187:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090026664: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1T0Mtd3lKR09mT2tEYU1heTBfM0lLeTVwT0o3eU1XZDBsNi1fQjdvV2QwTSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMDI2NjY0In0", "signature": "YcpdkiaJ6mwt-IKlRR9DzKbLnjaNsbe5BT9M9fYFT_UBsEEpWLfOEj71BYuJx9vE3nArJxUU5zbnvOC3PsCt7sZjd3fdtRTH-1h47t3hy_g2Adano08YBv_w3579oveBXoLFGtZ5jYkmvwdXjBrHZen3fVGEtpyMjqVyoXdEtwAgaah5yYWMslnrdhzCHe_LD9e3Q8e-u34qDN0x07TRsFAQlxlyXIc1BT7MOX6j31bXNkBhE3pPyA1ADvTTJfCY_Ygs-3rqxD9hmeNfvRk-u4DgDSiUooGNoIPHDVjIQQ7x353SqG9qcn7FJgbGlyOSgcJZ4_-QSvVDP6AWc2tpBw", "payload": "" } 2023-04-12 07:33:58,264:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090026664 HTTP/1.1" 200 820 2023-04-12 07:33:58,264:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:33:58 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994fP6h0U2AwPqavyCDs1ag7IvUKG4HbQysjDOIW4d6zyk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:33:53Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/2vAK8Q", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/5jI2Og", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" } ] } 2023-04-12 07:33:58,265:DEBUG:acme.client:Storing nonce: 4994fP6h0U2AwPqavyCDs1ag7IvUKG4HbQysjDOIW4d6zyk 2023-04-12 07:34:01,269:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:34:01,271:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090026664: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0ZlA2aDBVMkF3UHFhdnlDRHMxYWc3SXZVS0c0SGJReXNqRE9JVzRkNnp5ayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMDI2NjY0In0", "signature": "aic_ym9h0IICBMznEgj2luOlNgymqRLGAkpUneAlscrW4vKSMZQWEcVU4bLRERsviVb3IYDob8lrooX6ZjRDpf7VF7SZDzM3caz9rDtKAPVGTg_p6253tPO9NSlFEEOYGKz2Kndr_-7U3rtUeD6Z4glG3WHeoDwB1WV8B40uh1Hiak3TuVcazLkhmNy-bf6JH6GxqGUDqfqaSsZjZKg-rizmnpkNXQ0qfl19Ij1DIdLF_tcJLALt_svqdge6lmkV9J1XF3K8A3DeKJdAAHGQnAiA0Us_f9uFLSaGktC0iDUsdAoez9uVEyLkT_BJ3S9_g9ybKeehZmd1vMAHa1AaVQ", "payload": "" } 2023-04-12 07:34:01,348:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090026664 HTTP/1.1" 200 820 2023-04-12 07:34:01,348:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:34:01 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05cfAtmyX776tu0s6OeGLxznQtRtkEVyuj7h-iq8Vvm-0 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:33:53Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/2vAK8Q", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/5jI2Og", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY" } ] } 2023-04-12 07:34:01,349:DEBUG:acme.client:Storing nonce: 8F05cfAtmyX776tu0s6OeGLxznQtRtkEVyuj7h-iq8Vvm-0 2023-04-12 07:34:04,352:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:34:04,355:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090026664: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1Y2ZBdG15WDc3NnR1MHM2T2VHTHh6blF0UnRrRVZ5dWo3aC1pcThWdm0tMCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMDI2NjY0In0", "signature": "D-gaHyPec2tOyiLc7ZOQ0rIUPp7kDqxnMICwt6n3pkQRixiOtOZQKQvJCMwVa1cG8i9sZODpFQLwUM0-ZoVSdFaXTC_ASDiKbohIZaNdX1VXHj9bsRkrHpPsvuBNrO6FiiIiUMRtlHnI712tPPjCAmiFW6ECcLY9S5VV66WzX7wsLD_fWT_K5umF5G29dYWaLE09tF0qJogGfNcI1xEYSaWuOPlqV5LIUUnpZnIA2rI4AicVX1_hjjQasOqe0gn4KQkw0IC2sXn0zJ_IHbEe6m6qVuQisUuwo_yHqWodoMc6Q0r6tatHCvzmuVuCUSnYvZDhhu-1LGBWzQed69V2rw", "payload": "" } 2023-04-12 07:34:04,434:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090026664 HTTP/1.1" 200 1079 2023-04-12 07:34:04,435:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:34:04 GMT Content-Type: application/json Content-Length: 1079 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A27280pa6NLeeJVcfqF2r4p5dB1sv2D2QRdmrkj5rG7bgHQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T07:33:53Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090026664/8spL9w", "token": "iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T07:33:54Z" } ] } 2023-04-12 07:34:04,435:DEBUG:acme.client:Storing nonce: A27280pa6NLeeJVcfqF2r4p5dB1sv2D2QRdmrkj5rG7bgHQ 2023-04-12 07:34:04,436:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 07:34:04,436:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 07:34:04,436:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 07:34:04,437:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 07:34:04,437:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 07:34:04,437:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 07:34:04,438:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/iPa-1zJv3PcpDo9Tk4cGzU215K579hmWWc_ilG-boUY 2023-04-12 07:34:04,438:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 07:34:04,439:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1597, in certonly lineage = _get_and_save_cert(le_client, config, domains, certname, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 07:34:04,445:ERROR:certbot._internal.log:Some challenges have failed. 2023-04-12 07:48:57,993:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 07:48:58,299:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 07:48:58,300:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 07:48:58,300:DEBUG:certbot._internal.main:Arguments: ['--config', '/etc/letsencrypt/configs/devops.conf', '-v', '--dry-run', '--preconfigured-renewal'] 2023-04-12 07:48:58,300:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 07:48:58,308:DEBUG:certbot._internal.log:Root logging level set at 20 2023-04-12 07:48:58,309:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 07:48:58,311:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 07:48:58,311:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 07:48:58,311:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 07:48:58,360:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 07:48:58,361:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2023-04-12 07:48:58,362:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2023-04-12 07:48:58,594:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 830 2023-04-12 07:48:58,595:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:48:58 GMT Content-Type: application/json Content-Length: 830 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "bzbaVVeFX2o": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-12 07:48:58,664:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer 2023-04-12 07:49:13,602:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-12 07:49:13,602:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-12 07:49:13,602:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for devops.z3cyber.org 2023-04-12 07:49:13,814:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 07:49:13,814:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 07:49:13,887:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 07:49:13,888:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:49:13 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05V4sxOxNWc5MsZv7ut5W8cQgXihUvcL4V0o32F3CK_JE X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 07:49:13,888:DEBUG:acme.client:Storing nonce: 8F05V4sxOxNWc5MsZv7ut5W8cQgXihUvcL4V0o32F3CK_JE 2023-04-12 07:49:13,888:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 07:49:13,893:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1VjRzeE94TldjNU1zWnY3dXQ1VzhjUWdYaWhVdmNMNFYwbzMyRjNDS19KRSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "d9dTT2xxpsd6Dx7UQzNtZ20df6rvvESBFK7qofVZZLPUvAkm_lsgKo2SGu1YpTNwLh9EnAhJp7q5FeGV84Yqo0eaxWjLx9kN_zxxMIgMjaaMcfmY7IAm9WPmSyMiMYcnvmuGG_YEFh5TTudgknWgFHerO06F9rTWSWFDY1D7U4qiAVToFhovZ8o5BJw5NOxs4yCObqmnLjlWyoOIquLz2a182dYldRT_wUWNM8IFuRzd11NXGGzlbBy46C-onhu3zsr49V2te1IYg9e9ZYs0f5wUMznmN_uF29AvSQOu6_WnPhV4bC0lu-yB43Be94ZyatWysWHmcVwWNLLhelFrZg", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 07:49:14,019:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354 2023-04-12 07:49:14,019:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 07:49:13 GMT Content-Type: application/json Content-Length: 354 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/97761144/8228291484 Replay-Nonce: A272fVyOrXe57k62Ko3iSMmwsU0Y2mhkXxj6DCBwyyj8Qb8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T07:49:13Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090175954" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/97761144/8228291484" } 2023-04-12 07:49:14,020:DEBUG:acme.client:Storing nonce: A272fVyOrXe57k62Ko3iSMmwsU0Y2mhkXxj6DCBwyyj8Qb8 2023-04-12 07:49:14,020:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:49:14,022:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090175954: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyZlZ5T3JYZTU3azYyS28zaVNNbXdzVTBZMm1oa1h4ajZEQ0J3eXlqOFFiOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMTc1OTU0In0", "signature": "V2vgrsCTIwwQIM43tfxMO6_UYnAehQitd0edxbLsZH0TcOM32ny1ImthUeGlUQde0QkOOrqL67VZVqDS0-m4K559sL6Fct_hdDj7anFfDFyzxCPhHkBRZZ57gq6Am_4J3rC_Jgb4ZYC3Jzcs-ypZfFBEh-QQaUsXk5ZAhv1AIDRWeBeSlrDkOUTJ2CFdIWS8Ou9l2XlnsP3zvPEbxUxVVQ4JxhMYXk9pcMb7f_sNFUUBPOpWGEVSWJawpjb_uIB7lQ0n9BKx-bpEBVXHfWBYRTvSs6tQ32ym7yfjCo1BXcFKVing0TjmzZh8fzoikmPD48MrIzbKWZ-fpGgjiouw1w", "payload": "" } 2023-04-12 07:49:14,098:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090175954 HTTP/1.1" 200 820 2023-04-12 07:49:14,099:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:49:14 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A272v7fOBSgxT13tG8IScHULen-DuIF12CZKB0YkgSxd88I X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:49:13Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/6-053w", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/SS2BgA", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" } ] } 2023-04-12 07:49:14,100:DEBUG:acme.client:Storing nonce: A272v7fOBSgxT13tG8IScHULen-DuIF12CZKB0YkgSxd88I 2023-04-12 07:49:14,100:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 07:49:14,101:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 07:49:14,101:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 07:49:14,101:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 07:49:14,103:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU 2023-04-12 07:49:14,104:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 07:49:14,106:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcydjdmT0JTZ3hUMTN0RzhJU2NIVUxlbi1EdUlGMTJDWktCMFlrZ1N4ZDg4SSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My82MDkwMTc1OTU0L3NZVGh2USJ9", "signature": "IkrJ0edwCCJrr0_mUIQpCHexIbnc4mM5mZHTIcjtbTMa3WK6RvuvuHPQ2NZDfDBYE3w-0eu4tX4tX0tz80Crl0pRiB8WEpm2qXBJus1FNvDvhHwCF9nFh0SxSDaV6CPHUAyDCeLXcnsvqOfEtNxTDW2XGnSJK-1EcKR74x9t3qGjNPbCCi2JUJtAWs-gZxt_82_Q9xsUe19w-IRJB2W-heQpTAeR8xAfONA6N7fkvY7ihMxD2zyJC--s_opo86PLNrGmIUM5TU48RidG8s_iLh--W2A6d6TnQFoFoH_jeVRZPTt-pOsaSI7XthYlTzQvtYLRJo4fWzcBxfcOm7GGig", "payload": "e30" } 2023-04-12 07:49:14,185:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/6090175954/sYThvQ HTTP/1.1" 200 193 2023-04-12 07:49:14,186:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:49:14 GMT Content-Type: application/json Content-Length: 193 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ Replay-Nonce: 4994SEw15VYTtW0hzQ9dC7S8Qw5iGNuQIn7DwM4TAv-4vLs X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" } 2023-04-12 07:49:14,186:DEBUG:acme.client:Storing nonce: 4994SEw15VYTtW0hzQ9dC7S8Qw5iGNuQIn7DwM4TAv-4vLs 2023-04-12 07:49:14,187:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 07:49:15,187:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:49:15,189:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090175954: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0U0V3MTVWWVR0VzBoelE5ZEM3UzhRdzVpR051UUluN0R3TTRUQXYtNHZMcyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMTc1OTU0In0", "signature": "Qsx4G7xSDTNNGX9XOPCdIbDzivaad6IpLMg4p01MTYVdoHaPIpNWalvnuHkfJ1jgtbQLg3FUr63SpKjpvmsW1R3Fjjq6BclYVS264m_-Nxhdwoq6Zacaa0Taz-wDWqoT_S7-hPEEezWndTn5P5ptcpTVf26L7T56_lixuZ0Il0mDdHmybj58H5i1zmLK51uqIC5MZRQxiFT5qb1Yt3zAZw-Z-rA6Pw7YNkr6f9rbffw3In6sy6QCdt5q1YdLqtfDITG3JpkLBWPAqJ-qte1C_SxB4EDmtGW73XiU0zdD7qICfnYCW5IuNpAsiPWTyFQYajfaoweaRUX7iOe2hkgUug", "payload": "" } 2023-04-12 07:49:15,265:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090175954 HTTP/1.1" 200 820 2023-04-12 07:49:15,266:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:49:15 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994rY6qlxNq8rxHoNdIbErSKVPxcY9-1_mYnyG9Q5QWy94 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:49:13Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/6-053w", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/SS2BgA", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" } ] } 2023-04-12 07:49:15,266:DEBUG:acme.client:Storing nonce: 4994rY6qlxNq8rxHoNdIbErSKVPxcY9-1_mYnyG9Q5QWy94 2023-04-12 07:49:18,270:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:49:18,273:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090175954: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0clk2cWx4TnE4cnhIb05kSWJFclNLVlB4Y1k5LTFfbVlueUc5UTVRV3k5NCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMTc1OTU0In0", "signature": "FWJZ2DuDiRtJHbVfPEZBwIB3lt4vy2UlNPAUDayNOPpUGLdsOqu5dK6TYPpwfWceLhHiZyE4N2HejCcFU-mF8TtFzGCoU-7KxQNqmdPsg4rpehcwAIyhEDfL_4xFiCkYiytd9DtOzvRWL7P0vmsUgTpQaKVuhC6h9FK4X_olLsMF197Xf94z9-EwNoHmGMbQblUueRsuiMzHCpdScqvqA6cLeShL5CjWiG7HkPA4Rn_2aLzoD6jIu4RxjcWQCk9nMsYnAQTnTmhp2-8Qa1BrFnvLELK3TgP09xvtoislTr712RhXQ4NUXTYaBxg3joVdwCPmDzpmTwvADPf0MUV0lw", "payload": "" } 2023-04-12 07:49:18,349:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090175954 HTTP/1.1" 200 820 2023-04-12 07:49:18,350:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:49:18 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994bBzjdPvTr9RTepdJNoZaQ_ITc7MyPMBrrOEnE0YC7q4 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:49:13Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/6-053w", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/SS2BgA", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" } ] } 2023-04-12 07:49:18,350:DEBUG:acme.client:Storing nonce: 4994bBzjdPvTr9RTepdJNoZaQ_ITc7MyPMBrrOEnE0YC7q4 2023-04-12 07:49:21,354:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:49:21,357:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090175954: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0YkJ6amRQdlRyOVJUZXBkSk5vWmFRX0lUYzdNeVBNQnJyT0VuRTBZQzdxNCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMTc1OTU0In0", "signature": "LXt9GaQfnk9Gj9SvWRE4lpAWsv-F_9cePGXlKEGGuGmmmTT7rKpQOOhgACqhPwnecsSG8Kxhn4GT8-p1jWCgRClo_AixE65ZSqxo_gZ9wUxJg--6M0j91WtWgWDkIA9iwswdEZ8oFDUquipC2Yqh_F_LSq57GOLdqOCjddmgvVVLdqSR17eA88POXjaLJKiA6iSnbE-d2z6Xrp5kb58ugDJy6JTS2uDAESgJI32YGrON4vPSksk_-G00Plxp5M26HRO2gQATmml836s1g0lURGvtN6TznS9RFwfCl3Z1wXO5oxwfjNbHmPRQ2cAiRuJKxSQNo3VvTYT85loMxWfs3g", "payload": "" } 2023-04-12 07:49:21,433:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090175954 HTTP/1.1" 200 820 2023-04-12 07:49:21,434:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:49:21 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37CnCp4kU07mpsoiRgrGt7WDinlZ761cN2rWVD05UM0Plc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T07:49:13Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/6-053w", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/SS2BgA", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU" } ] } 2023-04-12 07:49:21,434:DEBUG:acme.client:Storing nonce: B37CnCp4kU07mpsoiRgrGt7WDinlZ761cN2rWVD05UM0Plc 2023-04-12 07:49:24,438:DEBUG:acme.client:JWS payload: b'' 2023-04-12 07:49:24,441:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090175954: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDbkNwNGtVMDdtcHNvaVJnckd0N1dEaW5sWjc2MWNOMnJXVkQwNVVNMFBsYyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMTc1OTU0In0", "signature": "fO_hoc0WUIPL-5lxf4gQ5isEh1DWSEwA76T6Dx-6sf2yvVD1OfRLVQ0RMw3phZmJX1zBepW77q3OaP7AM6hyGTKvhr2wfN06f2UnvUyRdzbs9P2037yqbOsTrwh9BfG91yKlJhPCd4YSFJ48fzocbqQndCwQSXlIaL8Uoa6YZiSBbdv8HLcZokwjGSHzkfp6SfyrGIDLye3K6gOY1ziPfsVfUoUy-v4FAzVi6EAkEedpgN-fS3FlBlmR0-Q1tkWbqhPLCuUy38gpBwzKsWgZef03S80iDuehRBrz5Av6CqcfH03MGqbuTZz8Ua2ufr0pQuLOpIUkGa2PPmgLRJThpg", "payload": "" } 2023-04-12 07:49:24,518:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090175954 HTTP/1.1" 200 1079 2023-04-12 07:49:24,519:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 07:49:24 GMT Content-Type: application/json Content-Length: 1079 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994-3Y0Oz1RZ3NAICGZrUQpgtaeRzl8HtQc-4FrhhUPZjY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T07:49:13Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090175954/sYThvQ", "token": "PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T07:49:14Z" } ] } 2023-04-12 07:49:24,519:DEBUG:acme.client:Storing nonce: 4994-3Y0Oz1RZ3NAICGZrUQpgtaeRzl8HtQc-4FrhhUPZjY 2023-04-12 07:49:24,520:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 07:49:24,520:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 07:49:24,520:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 07:49:24,521:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 07:49:24,521:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 07:49:24,521:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 07:49:24,521:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/PBw4BG8LrPXA0ZHMKIqHS0xZKMv_q2aa7xaHuRsXhYU 2023-04-12 07:49:24,522:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 07:49:24,523:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1597, in certonly lineage = _get_and_save_cert(le_client, config, domains, certname, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 07:49:24,527:ERROR:certbot._internal.log:Some challenges have failed. 2023-04-12 08:11:54,621:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 08:11:54,872:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 08:11:54,872:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 08:11:54,872:DEBUG:certbot._internal.main:Arguments: ['--config', '/etc/letsencrypt/configs/devops.conf', '-v', '--dry-run', '--preconfigured-renewal'] 2023-04-12 08:11:54,872:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 08:11:54,881:DEBUG:certbot._internal.log:Root logging level set at 20 2023-04-12 08:11:54,882:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 08:11:54,884:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 08:11:54,885:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 08:11:54,885:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 08:11:54,933:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 08:11:54,934:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2023-04-12 08:11:54,935:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2023-04-12 08:11:55,161:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 830 2023-04-12 08:11:55,162:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:11:55 GMT Content-Type: application/json Content-Length: 830 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "3_axwhGEreA": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-12 08:11:55,235:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer 2023-04-12 08:12:01,018:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-12 08:12:01,019:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-12 08:12:01,019:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for devops.z3cyber.org 2023-04-12 08:12:01,258:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 08:12:01,258:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 08:12:01,332:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 08:12:01,332:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:12:01 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994A-8k5036nNOFpAcJeM4QYYnxI2F3d2oGv6jh3iyUs5s X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 08:12:01,332:DEBUG:acme.client:Storing nonce: 4994A-8k5036nNOFpAcJeM4QYYnxI2F3d2oGv6jh3iyUs5s 2023-04-12 08:12:01,333:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 08:12:01,335:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0QS04azUwMzZuTk9GcEFjSmVNNFFZWW54STJGM2Qyb0d2NmpoM2l5VXM1cyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "KayhAeJfbXKLmjbxFc23cH4vmowKohzZkXMX3OyFd0IuovQkF8Y6mtQ3g5tvcvskqtbW4EYI90_4QVlRZayf2pHJVe1rVNpOdH3Gp-ftg9nHp8HUtb4kubyy2hnoGVBR2HHsqRzAIRz8SVLD19fOgPlRWy2ai8epfvH_Ohv-CMCFQqR9AH9sW8ZG8Iw9vpiKkytr-6t024q9CQJjjyivO0UiXoNkC1p6eoKJ_Vcrqv04SrkuYVMEeq86SOVVNiABYKSc8Lsyo6rlFV553FRVg9Q-SDTcnNz6KNqbQ7uisbXI-AyIUaPwZPwqWEw9UdclZ6mFInGH-5atSu3sYvyO2Q", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 08:12:01,437:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354 2023-04-12 08:12:01,438:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 08:12:01 GMT Content-Type: application/json Content-Length: 354 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/97761144/8228555224 Replay-Nonce: A2721d6ekvuENlwrdQyT8q_tH7usjWHTKvlP5tCGgNRpLxg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T08:12:01Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090370844" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/97761144/8228555224" } 2023-04-12 08:12:01,438:DEBUG:acme.client:Storing nonce: A2721d6ekvuENlwrdQyT8q_tH7usjWHTKvlP5tCGgNRpLxg 2023-04-12 08:12:01,439:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:12:01,441:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090370844: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyMWQ2ZWt2dUVObHdyZFF5VDhxX3RIN3VzaldIVEt2bFA1dENHZ05ScEx4ZyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMzcwODQ0In0", "signature": "VlRXGFQ8r0gvW06ZrHrB_C_OtUO8mdKw8lvWDhSBpTeBrtXqD4eep7tVrkZazkGRZ9QlEBuu1VmWnlyPN54IZ-GPT5ApkPONasCtm9-wBrfiubcCH85D7BFtdWASF0pmgqXPo_b26hzQXI4QIHLjVcMlaNZpJSn7PAhhsO6qAPmZEaA2JC6YLIXNQx0xdAEer1-wOXkFyxgRpXDAz2IUYcHfhoGA3I0BswLAp9sAdxhfB3YNkuar35usJMxCF6ySOLr2Ka3lYiTVS1aqYs2DJ3qv7Ge8lYAh5Bz11k9crc_OUgxnUzaJcRa6b3utEboF_08fNwdb9FWovxFDP1T14w", "payload": "" } 2023-04-12 08:12:01,521:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090370844 HTTP/1.1" 200 820 2023-04-12 08:12:01,522:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:12:01 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A272D9bMzsQczsAZQzc-s9LvNnfy9hsPo0SJu3WgCebUcdc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:12:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/pwuA-w", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/iRuniQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" } ] } 2023-04-12 08:12:01,522:DEBUG:acme.client:Storing nonce: A272D9bMzsQczsAZQzc-s9LvNnfy9hsPo0SJu3WgCebUcdc 2023-04-12 08:12:01,523:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 08:12:01,523:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 08:12:01,523:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 08:12:01,523:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 08:12:01,524:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk 2023-04-12 08:12:01,525:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 08:12:01,526:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyRDliTXpzUWN6c0FaUXpjLXM5THZObmZ5OWhzUG8wU0p1M1dnQ2ViVWNkYyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My82MDkwMzcwODQ0L2FQTzNaUSJ9", "signature": "AtrWxIJH8wH0uuJzSXFPOxHv5mruqHKhwEw2zeDVgcL1iZKdMlUM89a0hcF0GkVXHXZBkgJcEWTXMh1vbM47YERgU7_SX0R9YNsR2tfXDOLsZVWYU-ER9ZrINYH69_eNU-SSBQAu_MAEYYUXwBLaR3VfrSkt5r17w3qLDc9bovrlDrpSaJLeM3O6zpbpeNhNaY7-h_ukTcog3yAysXhsmFEoY7AE-B-QxtVf2oSXsfDjGs_EoVw07cR29rWy0Ke6bqzR1fZlF3eUWjVS3VlhhbguLEGhf8-Q4ZxBBLox9zORcSKA5ZuaNhLN4alk8kpfUelx4NdPhblTxSAoLSymgw", "payload": "e30" } 2023-04-12 08:12:01,604:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/6090370844/aPO3ZQ HTTP/1.1" 200 193 2023-04-12 08:12:01,605:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:12:01 GMT Content-Type: application/json Content-Length: 193 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ Replay-Nonce: B37CzNSsyiZkpHHab2sjOGi1NCPgy9uVF2RZBWDzc3-E4dA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" } 2023-04-12 08:12:01,605:DEBUG:acme.client:Storing nonce: B37CzNSsyiZkpHHab2sjOGi1NCPgy9uVF2RZBWDzc3-E4dA 2023-04-12 08:12:01,606:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 08:12:02,607:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:12:02,610:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090370844: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDek5Tc3lpWmtwSEhhYjJzak9HaTFOQ1BneTl1VkYyUlpCV0R6YzMtRTRkQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMzcwODQ0In0", "signature": "PVaWdLVbxSJjBL3jRl-zlMkINfyk3MDmsusq17SEt-oreC3ziN3hURZqGkjzhmfySjpVix0VrC35VfWb7Rkd33tyLPg7I-lfi-12-9WpJ_FbeVgJk83Xt5A6QrGX0ojeIhk6UyZwhL9bAJKLq8kECCdUfXwyyNjTXX-DXqyzQs-ooFmCy0xRwLqifeT-LXeJSZYnk80pM2VQoCbYDt2J5GWYCwKGvTbMy92ikWH-oNIbJ1GiNPWpWGoZwYtX37zGkzPXuUVEByevIX3wHRcovJyO98nvrrklhxDnk1kUNXJvBHEhpLxpQvmk4cciDAhlVjKRTDq1aLC0QxqLszGy5Q", "payload": "" } 2023-04-12 08:12:02,687:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090370844 HTTP/1.1" 200 820 2023-04-12 08:12:02,688:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:12:02 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05_qb5_bUozUbAQBq06BOrphPphgRtjK6MF_2nEbCG9HY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:12:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/pwuA-w", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/iRuniQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" } ] } 2023-04-12 08:12:02,688:DEBUG:acme.client:Storing nonce: 8F05_qb5_bUozUbAQBq06BOrphPphgRtjK6MF_2nEbCG9HY 2023-04-12 08:12:05,692:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:12:05,694:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090370844: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1X3FiNV9iVW96VWJBUUJxMDZCT3JwaFBwaGdSdGpLNk1GXzJuRWJDRzlIWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMzcwODQ0In0", "signature": "iFubRbZKc_IpJRJ8osy46xfhrPAGJ28n7eUfU3o4c7fV8R_1OquDv3hscX_iI8_BPoUXNWeEtL9XM_00_pwuCdDb7ZCelvg7nW8OEeqbA6-EYTaY2ThgmG2838DQig221V7J8PyxFlgjFqqizjp4GumuF9pdENyVyVY1wOPxQm3rD-ifzxs7DvrE2f8FxBRaXtvW78E7aJUaW9f1i61fIjH0KkpMzZdFyH-V4nP9NH9Y4kMDnfznFkEYt1Z6vRj8iT4vNtBVx7e6yWUk_Nr97id7GVVy_zKiy1m3zQ660yc3kDzWTYvUi52ZE8n7Jtx78vNaawCUALlb-GuAnJFi5A", "payload": "" } 2023-04-12 08:12:05,769:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090370844 HTTP/1.1" 200 820 2023-04-12 08:12:05,770:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:12:05 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05Fet745GuRscB5nSN77a3vDjT2FEdVgJ-VMtVUWu303Y X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:12:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/pwuA-w", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/iRuniQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" } ] } 2023-04-12 08:12:05,770:DEBUG:acme.client:Storing nonce: 8F05Fet745GuRscB5nSN77a3vDjT2FEdVgJ-VMtVUWu303Y 2023-04-12 08:12:08,774:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:12:08,777:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090370844: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1RmV0NzQ1R3VSc2NCNW5TTjc3YTN2RGpUMkZFZFZnSi1WTXRWVVd1MzAzWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMzcwODQ0In0", "signature": "aNUXLCP-e-3Ysqp-ukQRIcj8angfrvS52gmSl21h9evmFAIdcZ0O110TIigQebKncQNZUVAeIZ3B921dFQPeE3LBS514OE8JeAmyVDERCxN6TK_nBPeaZqxICO_HlwIpKp_ul1XFswg4l4inmrp4N4nTrxRuFex9SJJkOIaOut33zA91eNcShMdibBVRsNFeMnktk1SxnwY2Vot5rpU0p584oBBQW-VptcYWDkEz_b1tTU8UwOeBRFpzFCjCyovLVvdCcOBKFVAeXSE2vfSK5hSDsmyd5Teyp35kDSWIygVi-ewpItw67FX7x8tiaSlSufuS-dslUrDyOZyMEXjCXg", "payload": "" } 2023-04-12 08:12:08,857:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090370844 HTTP/1.1" 200 820 2023-04-12 08:12:08,857:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:12:08 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994ekbZJXInLYqT-CkbkgoONyX5JY_CUKfe3fKJ7F9ziPY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:12:01Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/pwuA-w", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/iRuniQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk" } ] } 2023-04-12 08:12:08,857:DEBUG:acme.client:Storing nonce: 4994ekbZJXInLYqT-CkbkgoONyX5JY_CUKfe3fKJ7F9ziPY 2023-04-12 08:12:11,861:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:12:11,864:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090370844: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0ZWtiWkpYSW5MWXFULUNrYmtnb09OeVg1SllfQ1VLZmUzZktKN0Y5emlQWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwMzcwODQ0In0", "signature": "fVJCXGtSfbZvtMcjG_qq_44K4RAXCS7jOxKvnDEbQXgo38mjFfXSDvK2HPKPJmREX9hgPwuJs74uD_-w9qJsyX2jpBkYYT06JfzDann9OkRAfd-U9fWRXehAVD0u9FJIQztHICruYGyqBJkG0RIbPcTf4u-UvLfUyXVLd0b9aex6eqvI-2QYD35UFNa_AARIAzlbPmg4LhXVX0Mw7vT0aNQsYXP9FRZuU7TiJFlS3hAIl-bHcEQ_zTR1505Ssml3AaAcOcF1NwpcPnv3CqWf-R2vWifRe3_w5lajNKroySkG2li5fckhYe3KZadpL8LAMpqkQVse1YbXUH-E2dpjDQ", "payload": "" } 2023-04-12 08:12:11,942:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090370844 HTTP/1.1" 200 1079 2023-04-12 08:12:11,942:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:12:11 GMT Content-Type: application/json Content-Length: 1079 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37CSXmU1Cw2gnForw8o8gv4WpCpGfuQcE8g9cGc94o2a4k X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T08:12:01Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090370844/aPO3ZQ", "token": "Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T08:12:01Z" } ] } 2023-04-12 08:12:11,943:DEBUG:acme.client:Storing nonce: B37CSXmU1Cw2gnForw8o8gv4WpCpGfuQcE8g9cGc94o2a4k 2023-04-12 08:12:11,943:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 08:12:11,943:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 08:12:11,944:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 08:12:11,944:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 08:12:11,944:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 08:12:11,944:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 08:12:11,945:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/Bn_J4hWgKf05vBR4bmzXOr9wkKIwGNf4rZ6NK9SK-Xk 2023-04-12 08:12:11,945:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 08:12:11,946:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1597, in certonly lineage = _get_and_save_cert(le_client, config, domains, certname, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 08:12:11,947:ERROR:certbot._internal.log:Some challenges have failed. 2023-04-12 08:52:23,110:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 08:52:23,361:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 08:52:23,362:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 08:52:23,362:DEBUG:certbot._internal.main:Arguments: ['--dry-run', '--preconfigured-renewal'] 2023-04-12 08:52:23,362:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 08:52:23,370:DEBUG:certbot._internal.log:Root logging level set at 30 2023-04-12 08:52:23,372:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/devops.z3cyber.org.conf 2023-04-12 08:52:23,390:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2023-04-12 08:52:23,390:DEBUG:certbot._internal.cli:Var dry_run=True (set by user). 2023-04-12 08:52:23,390:DEBUG:certbot._internal.cli:Var server={'dry_run', 'staging'} (set by user). 2023-04-12 08:52:23,390:DEBUG:certbot._internal.cli:Var dry_run=True (set by user). 2023-04-12 08:52:23,390:DEBUG:certbot._internal.cli:Var server={'dry_run', 'staging'} (set by user). 2023-04-12 08:52:23,391:DEBUG:certbot._internal.cli:Var account={'server'} (set by user). 2023-04-12 08:52:23,410:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-12 08:52:23,410:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-12 08:52:23,410:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 08:52:23,412:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 08:52:23,413:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 08:52:23,413:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 08:52:23,461:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 08:52:23,461:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2023-04-12 08:52:23,463:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2023-04-12 08:52:23,707:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 830 2023-04-12 08:52:23,708:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:23 GMT Content-Type: application/json Content-Length: 830 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "md4vUqlMctw": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-12 08:52:23,710:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for devops.z3cyber.org 2023-04-12 08:52:23,826:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 08:52:23,826:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 08:52:23,899:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 08:52:23,900:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:23 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F056RjB_XQXH2TtRgVx826nGH-QOq0TVAwL7bB0Yq5-mUA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 08:52:23,900:DEBUG:acme.client:Storing nonce: 8F056RjB_XQXH2TtRgVx826nGH-QOq0TVAwL7bB0Yq5-mUA 2023-04-12 08:52:23,901:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 08:52:23,905:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1NlJqQl9YUVhIMlR0UmdWeDgyNm5HSC1RT3EwVFZBd0w3YkIwWXE1LW1VQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "cqlo7FxYIBW02Z4OXtG2EfKSfKSmYmIA-UkZaZdlJ8EZMBkiyirEDezarqCT7IkoyG7ubgX2N7u3ia5PFVFlelFFUl4qaQoKZ0Eiy1ZcsvoiqiDoyvYPrTi8mBRuqyXCdB2N5lYHpq3wbYdOrjzCns5vEQX2-zfHUvasha21na0wkiugrG-03bvudrztVDvwFEkEHhadrm1-pyiVm9O1zcaigqjd6q8GTOlESIppDIalTj0k2Fni8Jv2TVWU6iB-Tk5DtLGNPjAE6yre0xStRwmCHLKWpHVtdsL68TuqfXIgnitsBaZvzABvi7uMqqZaHIKBWgEljznIYJJE1lTtBw", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 08:52:24,010:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354 2023-04-12 08:52:24,011:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 08:52:23 GMT Content-Type: application/json Content-Length: 354 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/97761144/8229027684 Replay-Nonce: A272KRmpGSTutbfj3U8-xKq1oB8PXdf6UP5O440m2A-5Fks X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T08:52:23Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090717604" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/97761144/8229027684" } 2023-04-12 08:52:24,011:DEBUG:acme.client:Storing nonce: A272KRmpGSTutbfj3U8-xKq1oB8PXdf6UP5O440m2A-5Fks 2023-04-12 08:52:24,011:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:52:24,012:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090717604: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcyS1JtcEdTVHV0YmZqM1U4LXhLcTFvQjhQWGRmNlVQNU80NDBtMkEtNUZrcyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwNzE3NjA0In0", "signature": "T4WEzaSU8ItA7iDltfZm7x6G2-x8i39_Ap9eKthdlVk7I5A9yoqRvhJhowGUJ6vxAqY4ZQ4Dve7hRgepWY17jBImT59JYiqmV3tQ8IzinokWIfixBUdZjdoVwPr6ITYU1bY7V8pq75SwciFkiqR3DYxnZT6n9lCuVPX5xRCffZd8s2W7q0AD-exu5X5BQuTCJLEZNEhpdf4ljLAVp8MBVajgsjDBBTm0BO4HiFG9cCYburezZ2qHpDao0r-by13RhuIksyKPpM2-mQ2RicCS2-XV2ycQfyBCrdJPPVSuBGllMxYzCc6XfCLG3jCfudaNlmzB9PLZOL0b62WOfG6Sbg", "payload": "" } 2023-04-12 08:52:24,089:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090717604 HTTP/1.1" 200 820 2023-04-12 08:52:24,089:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:24 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37CB8CuriNNNtnC8X5ld7s4-7MTbIwuJVjRrdAgPESO4Jk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:52:23Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ckulng", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/lHl-NA", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" } ] } 2023-04-12 08:52:24,090:DEBUG:acme.client:Storing nonce: B37CB8CuriNNNtnC8X5ld7s4-7MTbIwuJVjRrdAgPESO4Jk 2023-04-12 08:52:24,090:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 08:52:24,090:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 08:52:24,090:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 08:52:24,090:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 08:52:24,092:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8 2023-04-12 08:52:24,092:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 08:52:24,094:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDQjhDdXJpTk5OdG5DOFg1bGQ3czQtN01UYkl3dUpWalJyZEFnUEVTTzRKayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My82MDkwNzE3NjA0L0VDWVZtUSJ9", "signature": "cp7rAoHzEPJxhJpMgOzQnWVeT65hLiXxRdwBAwnEJGreel_79etD2-WjmCg1iODzu51oNg9JttMYU90l76s7KBNQ1XNJ7_vbm3KI_jk2hNCuREiohADfuREfmxZJBfdfO5Aq5Q6_V4usIFdZMlMMQqCK43NiKZTXAyvUUajsHbKrK9t-kAYkmDfvRLrq-wJ1tbvEZTI_XrigrvSbTF6jsXCuL94TKZIiF7zrM7_Z8kDggzMFCJlMQg0pmFB3QxMInjZgiqlimUKL3BxTlMBde-up5rBukfol379yrdjKYy6RuuiZzCX2iBdbSzij2vmJUY3Nmbeai_NfY8mimN40sg", "payload": "e30" } 2023-04-12 08:52:24,173:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/6090717604/ECYVmQ HTTP/1.1" 200 193 2023-04-12 08:52:24,174:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:24 GMT Content-Type: application/json Content-Length: 193 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ Replay-Nonce: B37ClGkpXAV0Hu7yTLZ97W9jaT-CUqCOq1oH3VuqyfE-nIs X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" } 2023-04-12 08:52:24,174:DEBUG:acme.client:Storing nonce: B37ClGkpXAV0Hu7yTLZ97W9jaT-CUqCOq1oH3VuqyfE-nIs 2023-04-12 08:52:24,174:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 08:52:25,176:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:52:25,178:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090717604: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDbEdrcFhBVjBIdTd5VExaOTdXOWphVC1DVXFDT3Exb0gzVnVxeWZFLW5JcyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwNzE3NjA0In0", "signature": "GED5T5nGSWT7A89kidGSwX6gibFSzJ9WYP-ca7ls5TRVdD-zwoqpy3kFuEnOqoThLx6wjcb1PWgU2U_M-SlxBDFIHM_xVq_EBqcPBUMk1Rbsix-BhLfZq23xBhde076F3bgS5MSRpmCZrIJOJXFiqt0UfVdCMVyvr67B6nUuZBmSpQc_x3rFt7gqzsPkNSUUZIyi1382r5JRN1KbYdWRAPf_xoz0cKeoid9SMjh6t27Bj6aaRqDYUBLcx0KOnD5B3igjRTwKUxo8zIaUOXuqJm0GtSV0oSbiUhAw02nO0bB1lbrdri9SKO59XdJ24gf_DQRYSPW1hDWBL24WMiyqCQ", "payload": "" } 2023-04-12 08:52:25,255:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090717604 HTTP/1.1" 200 820 2023-04-12 08:52:25,256:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:25 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37ClcpjBbMgZ64kmJ7-Shjyg5HA_6REs1m_vcWfrpx7zlY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:52:23Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ckulng", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/lHl-NA", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" } ] } 2023-04-12 08:52:25,256:DEBUG:acme.client:Storing nonce: B37ClcpjBbMgZ64kmJ7-Shjyg5HA_6REs1m_vcWfrpx7zlY 2023-04-12 08:52:28,260:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:52:28,262:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090717604: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDbGNwakJiTWdaNjRrbUo3LVNoanlnNUhBXzZSRXMxbV92Y1dmcnB4N3psWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwNzE3NjA0In0", "signature": "fVKuHo3cRA_yA8nfDC1OfyWbW5GQ2jp8VPwAJK7whdMikaXLiEUM35DO5oY3BBkvlEy5faU7ButIEI04JzRsYi_xy3cz_fVreZHEZTCeSHeT4C5JhuCedzSvxuSZ3NjXpJizJ4DCcKtFSeZMvYt02aKtsn3mvPtTv5sRVpFprr4H0RfZjq7MBf3Lng3VHVX3eLgX5aQxGYg34XXP8wvOuEB6HynPpoNNVYzXEfAyGsw4qpTvsuxcYV5vg2nfH14VWrEALs5Yv-PLH1EJxYsa4XBwskUsuLduQEo3BjYoxVQXCJoJ5--03DZuTAp0UrAJ4mJfMJ72N7zbJ5tfZHCSGg", "payload": "" } 2023-04-12 08:52:28,337:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090717604 HTTP/1.1" 200 820 2023-04-12 08:52:28,338:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:28 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: A272kaNO0tzWGFEKXuHxeFmFvnWmpYEU-tmUVPQFgOiMf6I X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:52:23Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ckulng", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/lHl-NA", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" } ] } 2023-04-12 08:52:28,338:DEBUG:acme.client:Storing nonce: A272kaNO0tzWGFEKXuHxeFmFvnWmpYEU-tmUVPQFgOiMf6I 2023-04-12 08:52:31,342:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:52:31,343:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090717604: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJBMjcya2FOTzB0eldHRkVLWHVIeGVGbUZ2bldtcFlFVS10bVVWUFFGZ09pTWY2SSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwNzE3NjA0In0", "signature": "ACW03uy74FTLP6A9XYCrpQAYtSOOri9GRI0YvmIFxlZ4zwvzQ7JiSAgfELJVowSLjQ7exTocHly9_8h8QjULAti72MF_0aXRCqSo9vxQIHg57kerU3udgW_Uo6c5ADvLZW0AKvFwSm8Zpkaf9v8XAty9hRo8eWeF4YfTUqaIUyawjmujM6Va6ZLkdZVkFM7VJRQGS_5xZ0eMc7RxIvW8dGVUECjJAmrXIlHRuraIN2-kZnuwwsItUFVXayNAcpc3XNkymfDjkFn8y6utfHqJnEdLSTHfOvC6KIUOa5iV1pZSxESKce_2Z_rFb9LdYTWcIE0gznTgB3iMZRV3U16C-g", "payload": "" } 2023-04-12 08:52:31,420:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090717604 HTTP/1.1" 200 820 2023-04-12 08:52:31,421:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:31 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05rLxNhPS9V6A-83w8G0ab1vdUVcRyrdvkfFZFR0mjswI X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T08:52:23Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ckulng", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/lHl-NA", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8" } ] } 2023-04-12 08:52:31,421:DEBUG:acme.client:Storing nonce: 8F05rLxNhPS9V6A-83w8G0ab1vdUVcRyrdvkfFZFR0mjswI 2023-04-12 08:52:34,425:DEBUG:acme.client:JWS payload: b'' 2023-04-12 08:52:34,428:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090717604: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1ckx4TmhQUzlWNkEtODN3OEcwYWIxdmRVVmNSeXJkdmtmRlpGUjBtanN3SSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwNzE3NjA0In0", "signature": "czDdYB4X23UYzyZXjF-KKEJ6aNmkMHN9tlvP4NVukF6AdxIfYMzaCKS5xQKRWzOCWJAt9RG0trn9sj8P45WqR3zVqI6MBA-XDERA_qI74XOKEzcF2VvcYZ_4Xvc3Mz6D6yE3ZLJUBL8JQ1UGMj3yWFTtqfZvx65tT5PhziJ9jVmJiUSjER4wYY7GaRk8b3sY-EiZ142mXyQQqe0OjOVCLfunn65T1L1bShYgRYpimWrtVB08Gh6Lg-p6cz9u-lr-a0vKX_n1WvUUjyNTqPB04-QwElBwmvPKO6japga3MRroHsTrFuIPkf0MEtEr7puxd9R8IBFDZwswn9JVtLEYMg", "payload": "" } 2023-04-12 08:52:34,504:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090717604 HTTP/1.1" 200 1079 2023-04-12 08:52:34,505:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 08:52:34 GMT Content-Type: application/json Content-Length: 1079 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994chJSBNZ4JhNQz-FDKH-s50eVaV1SXxPI7xa1GtJUXOw X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T08:52:23Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090717604/ECYVmQ", "token": "Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T08:52:24Z" } ] } 2023-04-12 08:52:34,505:DEBUG:acme.client:Storing nonce: 4994chJSBNZ4JhNQz-FDKH-s50eVaV1SXxPI7xa1GtJUXOw 2023-04-12 08:52:34,505:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 08:52:34,505:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 08:52:34,506:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 08:52:34,506:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 08:52:34,506:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 08:52:34,506:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 08:52:34,506:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/Xf-7fkGWTYNcZVjkap4cO0IIbPzZ4SuVnY2YXjNyeM8 2023-04-12 08:52:34,506:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 08:52:34,507:ERROR:certbot._internal.renewal:Failed to renew certificate devops.z3cyber.org with error: Some challenges have failed. 2023-04-12 08:52:34,508:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 533, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1547, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 08:52:34,509:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-12 08:52:34,510:ERROR:certbot._internal.renewal:All simulated renewals failed. The following certificates could not be renewed: 2023-04-12 08:52:34,510:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem (failure) 2023-04-12 08:52:34,510:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2023-04-12 08:52:34,510:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1636, in renew renewal.handle_renewal_request(config) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request raise errors.Error( certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2023-04-12 08:52:34,510:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s) 2023-04-12 09:11:21,717:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 09:11:21,955:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 09:11:21,955:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 09:11:21,955:DEBUG:certbot._internal.main:Arguments: ['--preconfigured-renewal'] 2023-04-12 09:11:21,956:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 09:11:21,963:DEBUG:certbot._internal.log:Root logging level set at 30 2023-04-12 09:11:22,056:DEBUG:certbot._internal.display.obj:Notifying user: Found the following certs: Certificate Name: devops.z3cyber.org Serial Number: 45dc74f16bf5af2e20a05b47835361dd75a Key Type: RSA Domains: devops.z3cyber.org Expiry Date: 2023-04-11 16:53:04+00:00 (INVALID: EXPIRED) Certificate Path: /etc/letsencrypt/live/devops.z3cyber.org/fullchain.pem Private Key Path: /etc/letsencrypt/live/devops.z3cyber.org/privkey.pem 2023-04-12 09:18:01,319:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 09:18:01,558:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 09:18:01,558:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 09:18:01,558:DEBUG:certbot._internal.main:Arguments: ['--config', '/etc/letsencrypt/configs/devops.conf', '--dry-run', '-v', '--preconfigured-renewal'] 2023-04-12 09:18:01,559:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 09:18:01,567:DEBUG:certbot._internal.log:Root logging level set at 20 2023-04-12 09:18:01,568:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 09:18:01,570:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 09:18:01,571:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 09:18:01,571:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 09:18:01,618:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 09:18:01,619:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2023-04-12 09:18:01,620:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2023-04-12 09:18:01,861:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 830 2023-04-12 09:18:01,862:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:01 GMT Content-Type: application/json Content-Length: 830 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "DZ3P-fnpGzE": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-12 09:18:01,925:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer 2023-04-12 09:18:10,128:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-12 09:18:10,128:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-12 09:18:10,129:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for devops.z3cyber.org 2023-04-12 09:18:10,344:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 09:18:10,344:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 09:18:10,418:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 09:18:10,418:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:10 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05lCgPzplmqtxy2uQ5jwA-ZIVsvUele9gEFFfmC62vr7c X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 09:18:10,419:DEBUG:acme.client:Storing nonce: 8F05lCgPzplmqtxy2uQ5jwA-ZIVsvUele9gEFFfmC62vr7c 2023-04-12 09:18:10,419:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 09:18:10,424:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1bENnUHpwbG1xdHh5MnVRNWp3QS1aSVZzdlVlbGU5Z0VGRmZtQzYydnI3YyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "JjGaaCZbpz8mbDqQzl_M2BicFLe1lQFNmEQjoTekuZi8GZAbL08OcqNYU39P3AlusqHQm9ZxmSxj-nZdIP6S2IVgnCz4x2atGxpOpm7P8Yam0POJfg1pAVBGXpf9SIpAgELMQvWaQ2gMwOe122iQ2Zx-AcZe4JPWOMh9JK3DPpK4WdJYXwVGPyCkC72OCEzLk8jlVNfMuHgyhy1jhsiTBGERjA1mSgJurWsBVuYVPAVRR_Orx4CWQeW_xN4FsyjUjqlIQFtXSPEoVcsgk0fIhf9AYWaN7RXJ4jr3LIHrBdoze7IdxV8iyNcEqOdo73OPQRMwzkaR8JtbrQo9680vzg", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 09:18:10,528:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354 2023-04-12 09:18:10,529:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 09:18:10 GMT Content-Type: application/json Content-Length: 354 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/97761144/8229325824 Replay-Nonce: B37CZZlVhIN8JITEab2VZ7S0JQk-5SQHvjhz5MGq7Q7NdCw X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T09:18:10Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090942044" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/97761144/8229325824" } 2023-04-12 09:18:10,529:DEBUG:acme.client:Storing nonce: B37CZZlVhIN8JITEab2VZ7S0JQk-5SQHvjhz5MGq7Q7NdCw 2023-04-12 09:18:10,530:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:18:10,532:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090942044: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDWlpsVmhJTjhKSVRFYWIyVlo3UzBKUWstNVNRSHZqaHo1TUdxN1E3TmRDdyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTQyMDQ0In0", "signature": "JR_DsisYoIfQbh9CacDXV_3jVYw3zFznyscjHNSpdQvY2N_B3Ztbz1xcMUE9H7MlYujnDrVihwb-Kys3-1M_z9qdoU1fDi0kpiX8xdwiHJrzqy2lgW8WmvMCF3OkfkBRBbj-oAp_q7leu0rwX1SzsthsGlKn_9fGO9a7YfESKCPhVs3nPGCCbPcbog0ypgFVzG5AL1jGGA-Vwvqtml5w1u185KxHHU05PxOa2enhyJXD2BxT31D2TBFXe2n1oR6J4iu9XEojmYHH9x1JsJqD8u5OFLu7Jt7NZb6ITl2R4egTIxgC6mA_rZsTOO-r5fF4PUtPE0DBn58Pu8351GtaBA", "payload": "" } 2023-04-12 09:18:10,610:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090942044 HTTP/1.1" 200 820 2023-04-12 09:18:10,611:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:10 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05B8IZE8hMQBLLlPxalylhm3OJj3dB_zbdWS1CE-QzHQk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:18:10Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/lzix8g", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/0HUblA", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" } ] } 2023-04-12 09:18:10,612:DEBUG:acme.client:Storing nonce: 8F05B8IZE8hMQBLLlPxalylhm3OJj3dB_zbdWS1CE-QzHQk 2023-04-12 09:18:10,612:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 09:18:10,613:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 09:18:10,613:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 09:18:10,613:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 09:18:10,615:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME 2023-04-12 09:18:10,615:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 09:18:10,618:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1QjhJWkU4aE1RQkxMbFB4YWx5bGhtM09KajNkQl96YmRXUzFDRS1RekhRayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My82MDkwOTQyMDQ0L1Z1OTRDdyJ9", "signature": "EGFoTcQIG05ng0RGAFYEzq7O43CCix9mMjGBbaggHDtiuqLSwziwDHh_FfdxMfS1B46aueHdXWg_Oh7GnIiEXhgQCkStnSC5TPC8FOINsoPBCjUIYORqWXrjU8sb0X0OXwgWAdZWLkiRwW0aBhuSYojglSectaPSi8b2A-DecK0NPtRaR6FhFIqC4-TysapWoBsU6OA5RzHJhkLxgjG9Ab3sUye8yHjRgx2gQxVqBCO4hO6sLj78dBL0EAXJXlikAe26O7YXxJobisAGT__qxhbfoQiqvawcJjjfHEoNXGAzzPZGrgaFIzlmNIuVMdVhZw5A3_UNekQU1WuaxG3Rjg", "payload": "e30" } 2023-04-12 09:18:10,695:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/6090942044/Vu94Cw HTTP/1.1" 200 193 2023-04-12 09:18:10,696:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:10 GMT Content-Type: application/json Content-Length: 193 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw Replay-Nonce: 8F05qbZZ628ZyWd1-uB6-CqzYEwOec2ucUob3OD2Z9wElJo X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" } 2023-04-12 09:18:10,696:DEBUG:acme.client:Storing nonce: 8F05qbZZ628ZyWd1-uB6-CqzYEwOec2ucUob3OD2Z9wElJo 2023-04-12 09:18:10,696:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 09:18:11,698:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:18:11,701:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090942044: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1cWJaWjYyOFp5V2QxLXVCNi1DcXpZRXdPZWMydWNVb2IzT0QyWjl3RWxKbyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTQyMDQ0In0", "signature": "gkXId49bjGSPjKmAo3xrpYrREUm3OeipKcJobkk1hfJ2pym4jrbqEHO8bgyKuMrsU6bZ9m_JzFTrl9gDAWsxvKYelpv8wAdVxsJveCczHFPnEq1OLdIHCByMbJjBil8-b4ND9gKX0wD0q5ofJeJz6SNdG_ph_wR9UFpQt6_WH9an0P8imbmgMvHxsD549Zlr5oMII4gcl4PlVqJcZrWQjtFRXR1Nj1RDW5RquawobGuGSSSctsM1PBxS8M5tUNcMu9ZHVoeA5n1lsJH7Ixx3_vp7htZM8dtYl5EE-ZTzlBWwTt_jUt4j_HL1dw2odXPzdvDKfu-SgsY_MfldZRMjCA", "payload": "" } 2023-04-12 09:18:11,778:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090942044 HTTP/1.1" 200 820 2023-04-12 09:18:11,779:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:11 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994-uZ98fCsWfXad9YWmCxWU4KZNq8h6k2FyEQMVvohTy0 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:18:10Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/lzix8g", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/0HUblA", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" } ] } 2023-04-12 09:18:11,779:DEBUG:acme.client:Storing nonce: 4994-uZ98fCsWfXad9YWmCxWU4KZNq8h6k2FyEQMVvohTy0 2023-04-12 09:18:14,783:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:18:14,786:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090942044: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0LXVaOThmQ3NXZlhhZDlZV21DeFdVNEtaTnE4aDZrMkZ5RVFNVnZvaFR5MCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTQyMDQ0In0", "signature": "RFifQPZn8fhOzEaRjXddxdi8P3zHW8l1XZtfuB944yFSSk1NL4EKQegnEdVYzh_tgOD11znPeafBheNtI9AXZCRYhwqYCFruopfbLL0yKQxMX7LJ3XmAsw0Ha8onf_JeYw_OqliO82sxiGGAjOhTmvJxhGulJbAcVMFlMMc0uE6qjPduF1KX2IicM2tbHw7ku6KwxchbzM2yyIE32j1e3qEbycq4lDepE72XF6aDTMYhTmvi7FI8oG0fPiSmhKY5gkDZEUE-oV_9j_osfJl_xl2HlNHtROVbs0T-Np8Y9RfVcImYv9kk9Hmoxt7-rJmEp_T9I08dN_mLdYRCRhBE_A", "payload": "" } 2023-04-12 09:18:14,862:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090942044 HTTP/1.1" 200 820 2023-04-12 09:18:14,863:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:14 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05ISw7HuG6oXkpnDDcq6Arf8nFFKAxv4zO4kIQwqOJ-ZM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:18:10Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/lzix8g", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/0HUblA", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" } ] } 2023-04-12 09:18:14,863:DEBUG:acme.client:Storing nonce: 8F05ISw7HuG6oXkpnDDcq6Arf8nFFKAxv4zO4kIQwqOJ-ZM 2023-04-12 09:18:17,867:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:18:17,869:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090942044: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1SVN3N0h1RzZvWGtwbkREY3E2QXJmOG5GRktBeHY0ek80a0lRd3FPSi1aTSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTQyMDQ0In0", "signature": "Hf4N8dYWS9h88VoqK-HK2vZEQjwqXB1qH_OiZYwjGo4h6mg--HJ4_YFLcUw8F2URwAqypoep6-5rjUU5ill-m59fCpgYMtlpXdURod9YlLfnffY8pFeJrpA4ScRaxU-bbquf9KTa2GwIbCsRXQUYECvlTKD43bH43p4aqqMytFpragmEyjVjv4Bek06XrjWot-ocT1RUPN97rCD89zH8rJhkLRivjHp3bWYxFM_TkajwkKMh2JtFH241t8c5Hq3aBr_XO1GgfwsRxDnZlit_6eK2qjWOBzNsaMViBn1GWFvDG0aa9OfTdK0kI1CN_HNl7iIr_Ga3RCrK0fgUDU5z2A", "payload": "" } 2023-04-12 09:18:17,947:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090942044 HTTP/1.1" 200 820 2023-04-12 09:18:17,948:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:17 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37Cpf_uAA4MePzLXQ6cWhEaFT-NGK7xCOQ5B-yP8KCp5sk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:18:10Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/lzix8g", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/0HUblA", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME" } ] } 2023-04-12 09:18:17,948:DEBUG:acme.client:Storing nonce: B37Cpf_uAA4MePzLXQ6cWhEaFT-NGK7xCOQ5B-yP8KCp5sk 2023-04-12 09:18:20,952:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:18:20,955:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090942044: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICJCMzdDcGZfdUFBNE1lUHpMWFE2Y1doRWFGVC1OR0s3eENPUTVCLXlQOEtDcDVzayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTQyMDQ0In0", "signature": "MVvSMitxmpZznVjAfqyinAUtmwKSDdTVFn_suDutlcfBse3cbiBslyNEEUsdM3KI-zIana7WMdW9u2_IXZOmEzGYzdBfj93nPqUhjwgu4BTaKbvnduAjTdRQSVngqBDzLqfEImBdX4XkbRbUXSokBoIDpBK9NkoiKKHk6QwuK9JLb14Da2y5ShPDKHnefNt0oYC7pYRzayqYhAsZiG5cITJ8ZmftQu6xy_FnUcteuxZSYHw_zg9ZL7i0E57EvlccMw-V-9v3OLkpJu-1as8dx4wtnW22QVo5uQn6O47l7w4F9INN_Ltl8ZxZ_jn2fUP5Gjw1Sk2s33-WPo5uL9gJDw", "payload": "" } 2023-04-12 09:18:21,032:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090942044 HTTP/1.1" 200 1079 2023-04-12 09:18:21,033:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:18:20 GMT Content-Type: application/json Content-Length: 1079 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: B37Coz_Xu_kA5yOzi-zHTSOpVDdsZ75LhqR53c1OCS4h8Sk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T09:18:10Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090942044/Vu94Cw", "token": "_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T09:18:10Z" } ] } 2023-04-12 09:18:21,033:DEBUG:acme.client:Storing nonce: B37Coz_Xu_kA5yOzi-zHTSOpVDdsZ75LhqR53c1OCS4h8Sk 2023-04-12 09:18:21,033:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 09:18:21,034:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 09:18:21,034:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 09:18:21,035:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 09:18:21,035:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 09:18:21,035:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 09:18:21,035:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/_plqfu0kvjQSlPw_qQJlXPOOX7aTRTQydR5lJ3ya7ME 2023-04-12 09:18:21,036:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 09:18:21,036:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1597, in certonly lineage = _get_and_save_cert(le_client, config, domains, certname, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 09:18:21,038:ERROR:certbot._internal.log:Some challenges have failed. 2023-04-12 09:22:04,586:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97 2023-04-12 09:22:04,830:DEBUG:certbot._internal.main:certbot version: 2.5.0 2023-04-12 09:22:04,830:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2913/bin/certbot 2023-04-12 09:22:04,830:DEBUG:certbot._internal.main:Arguments: ['--dry-run', '--webroot', '-w', '/var/www/letsencrypt/', '-d', 'devops.z3cyber.org', '--preconfigured-renewal'] 2023-04-12 09:22:04,830:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2023-04-12 09:22:04,839:DEBUG:certbot._internal.log:Root logging level set at 30 2023-04-12 09:22:04,840:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2023-04-12 09:22:04,842:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2023-04-12 09:22:04,842:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2023-04-12 09:22:04,842:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2023-04-12 09:22:04,889:DEBUG:certbot._internal.main:Picked account: ), creation_host='jenkins-server-64.internal.cloudapp.net', register_to_eff=None))> 2023-04-12 09:22:04,889:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2023-04-12 09:22:04,891:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2023-04-12 09:22:05,114:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 830 2023-04-12 09:22:05,115:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:05 GMT Content-Type: application/json Content-Length: 830 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "XZWXMC5qtyY": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-ietf-acme-ari-00/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2023-04-12 09:22:05,187:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer 2023-04-12 09:22:08,755:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-04-11 16:53:04 UTC. 2023-04-12 09:22:08,755:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing... 2023-04-12 09:22:08,755:DEBUG:certbot._internal.display.obj:Notifying user: Simulating renewal of an existing certificate for devops.z3cyber.org 2023-04-12 09:22:09,594:DEBUG:acme.client:Requesting fresh nonce 2023-04-12 09:22:09,594:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2023-04-12 09:22:09,668:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2023-04-12 09:22:09,669:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:09 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 49945fYh4sHj-koapekCYFgwzamb3I04gHEEYPU1Y1tkoe8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2023-04-12 09:22:09,669:DEBUG:acme.client:Storing nonce: 49945fYh4sHj-koapekCYFgwzamb3I04gHEEYPU1Y1tkoe8 2023-04-12 09:22:09,670:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "devops.z3cyber.org"\n }\n ]\n}' 2023-04-12 09:22:09,674:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0NWZZaDRzSGota29hcGVrQ1lGZ3d6YW1iM0kwNGdIRUVZUFUxWTF0a29lOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "KcGXYa1nmgJRXMgs1xHV8L3GWvaa-WdG03awvUHzt5_vvtTONarGFsEZBHv9mf5BZZRJlK3UB4Ww27hR81ZOkatmTJAQluiQhan4QQTi-QncZRzywPpwCDjAWYu_1ZvR_A4a-lvDO5wf8Jt_2bdsjFFRcmz8u0-s4teOxZRWNz26Cy14XZfaUV0t-gJM7n0c9l8S2fFgEOn5ngmhEi1c3wZ-iWW7pcs-SNKjfLNpK9xjqMaOGaX6-pIkwkTHHr4_L4Ri2Emowge5jxYJN9A29FwWSavg2t5TxjDADB7YDnaUiqmBO8yc4poX1uGWVhegAPM0un3oMktqCjEIHI5mjQ", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImRldm9wcy56M2N5YmVyLm9yZyIKICAgIH0KICBdCn0" } 2023-04-12 09:22:09,775:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354 2023-04-12 09:22:09,776:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Wed, 12 Apr 2023 09:22:09 GMT Content-Type: application/json Content-Length: 354 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/97761144/8229375614 Replay-Nonce: 49943l1qr_LoayrfTVjVoXP9nWzjz14-Ev071t75_RpAXP8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2023-04-19T09:22:09Z", "identifiers": [ { "type": "dns", "value": "devops.z3cyber.org" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090977684" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/97761144/8229375614" } 2023-04-12 09:22:09,776:DEBUG:acme.client:Storing nonce: 49943l1qr_LoayrfTVjVoXP9nWzjz14-Ev071t75_RpAXP8 2023-04-12 09:22:09,776:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:22:09,778:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090977684: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0M2wxcXJfTG9heXJmVFZqVm9YUDluV3pqejE0LUV2MDcxdDc1X1JwQVhQOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTc3Njg0In0", "signature": "XWo0m8AFzUk4m-fsWzJTj6E11HOG0GNAF0lUhpHRq21323402Wc8o3vCP0IN-ISAJD94-d096lr-DwbsDTJMzNisOxxIih2LGGDH8hxTCofz7PkLOx3JB3XcHBe7D803Tl6Z-gB-h8Ct6Nfobmo1b-5Fr8h1mo3EUbrzey7Rj1vYG-m_4OO5lkFHFC4r1UBtKLz67rn-aiLg0LFq7O8H4iMaCEVCbovypc2qmzzLts2W_ETdb9frpSd77rXbpUBysTjYyD5OLCYbPgs7PJyAOlg37WebzYrPGHcy-9a_eypNZOSJvDqA_8k2UTF973Iq-o11Mb3JPGLC5p6Ozu-GcQ", "payload": "" } 2023-04-12 09:22:09,855:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090977684 HTTP/1.1" 200 820 2023-04-12 09:22:09,855:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:09 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994VzisXBR9wdcr6ghKj5WdCy7HsytS_G1zdyTaA1rSa_I X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:22:09Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/uD2b4A", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/VdrXKg", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" } ] } 2023-04-12 09:22:09,856:DEBUG:acme.client:Storing nonce: 4994VzisXBR9wdcr6ghKj5WdCy7HsytS_G1zdyTaA1rSa_I 2023-04-12 09:22:09,856:INFO:certbot._internal.auth_handler:Performing the following challenges: 2023-04-12 09:22:09,856:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 09:22:09,857:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/letsencrypt for all unmatched domains. 2023-04-12 09:22:09,857:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/letsencrypt/.well-known/acme-challenge 2023-04-12 09:22:09,858:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/letsencrypt/.well-known/acme-challenge/uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM 2023-04-12 09:22:09,859:DEBUG:acme.client:JWS payload: b'{}' 2023-04-12 09:22:09,861:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0Vnppc1hCUjl3ZGNyNmdoS2o1V2RDeTdIc3l0U19HMXpkeVRhQTFyU2FfSSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My82MDkwOTc3Njg0L29paHJ3dyJ9", "signature": "V7BCzHTRsM5hgfN4sbOLbq91qSwfzMBDuWFjc10TdgYcdjg_AFpngPnc0b3nQOqlzyvKvHEvDafy8C75q7dsTSngz-RnpK9Js9oRpiv2QtyRvoW4opKQ8KLnUqsFudZ57ZAfVOb0EeRadyeCFV06ZfJdVI0PJp6JLLL0RSEqanZtBsjYCVrSPgWLBOk6H_u5wf2W_eNOzNySDIvnECjjiualFMUFoSGRyqf52-piaqutYkhDuB6EGroOh4t-2q6VO2WMshGLYgq7QBjjoPS-Ce8QM8terZV6IXnuMpfWBlBbny8D5A38sNQvTVM68YFuNSiVsY1P54-gAhY5rq0NbA", "payload": "e30" } 2023-04-12 09:22:09,941:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/6090977684/oihrww HTTP/1.1" 200 193 2023-04-12 09:22:09,942:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:09 GMT Content-Type: application/json Content-Length: 193 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww Replay-Nonce: 8F05Nrz97rfMwguelYsUjf6Rcp5l2GAbu--8MwklkJzeXq0 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" } 2023-04-12 09:22:09,942:DEBUG:acme.client:Storing nonce: 8F05Nrz97rfMwguelYsUjf6Rcp5l2GAbu--8MwklkJzeXq0 2023-04-12 09:22:09,942:INFO:certbot._internal.auth_handler:Waiting for verification... 2023-04-12 09:22:10,943:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:22:10,945:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090977684: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1TnJ6OTdyZk13Z3VlbFlzVWpmNlJjcDVsMkdBYnUtLThNd2tsa0p6ZVhxMCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTc3Njg0In0", "signature": "dqZXrLkdMCLPE3u9mIs68SyFqbrdmcEeri8SByiraea9gfNFeo0DcVoGycR8f3GfuHcyeg7v_akWNBGFIsH2mwpdnvP-vq22MsZsgJXtv2KkA1TdCk16mQWVmjggG7s6TpwSbkruXkEoPiccm4XnMHSlAtWlZA9aQlJdIFgJWFhsbKgGSRUEhUa40fqEyMv886zI7rCHmCxtqbNL2McSfOkPNZJPjEOta87xZiWbGOMOoeTN2xdiolHzz8vSBnl--VFL6uVK_PHpEAoedCcxP3UspzNRCe3B6qK7pbmF8F8r36ON5zTiEhJcM96WerEQNTbhxAutR2En6j_xNw2jCA", "payload": "" } 2023-04-12 09:22:11,022:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090977684 HTTP/1.1" 200 820 2023-04-12 09:22:11,023:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:10 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05KHn8UL769nkb6hX-GIDpVxHaX8RA3tnfdedTf4fQDiQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:22:09Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/uD2b4A", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/VdrXKg", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" } ] } 2023-04-12 09:22:11,023:DEBUG:acme.client:Storing nonce: 8F05KHn8UL769nkb6hX-GIDpVxHaX8RA3tnfdedTf4fQDiQ 2023-04-12 09:22:14,027:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:22:14,029:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090977684: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1S0huOFVMNzY5bmtiNmhYLUdJRHBWeEhhWDhSQTN0bmZkZWRUZjRmUURpUSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTc3Njg0In0", "signature": "OUiWs50Qg-tTVIbr5YMjEvQ3V1R4ct1jx5DvqPXZU16k5HeMzyYOXMyKgWK3gwZPU_fEEmJe0JrJA2t4j9yonx9daTU18uKBTCEL_PZwRjzQ_X_Xj2J-v4FL-yNZcltHr0JA7kKYaR20lTYNjo_M1vH24ZYGy9mZcS_JjhrF6-2QmyaK8DX-kFoSKYk_1rVyfd80JvTcDfujKxlkShZhfxLd1tkU7RUzr94YvKoeYBtMg7Bb4sKU1HjY3TobXuQNHO7iKPdKxV1fUR0zcMBuUJagElcNg7EUeeFKKMwOVtU3Fa-pCiuwEuM-Bsyu50lx-s-SK9IMwI__lRx8uOOETw", "payload": "" } 2023-04-12 09:22:14,106:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090977684 HTTP/1.1" 200 820 2023-04-12 09:22:14,107:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:14 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994jhJIopn8MPvrxTFF6BHittcdPVypvqzfKlimlu3E-Ow X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:22:09Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/uD2b4A", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/VdrXKg", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" } ] } 2023-04-12 09:22:14,107:DEBUG:acme.client:Storing nonce: 4994jhJIopn8MPvrxTFF6BHittcdPVypvqzfKlimlu3E-Ow 2023-04-12 09:22:17,111:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:22:17,114:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090977684: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI0OTk0amhKSW9wbjhNUHZyeFRGRjZCSGl0dGNkUFZ5cHZxemZLbGltbHUzRS1PdyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTc3Njg0In0", "signature": "Rpc2jojs8xFdy1dMY7NXsiFdBKZHsiZVwgm1PsW7Fn6LElXcAT4cvNQSBQB8viDilnf7daChk8eN6hIHMil7tjT-bwjDtXq1rBlvFG99gcIpDoKDNvF_8CHlTJXUvFd7ICcSSg5HHLPvadJwLF_1Q3419IcRUVzlXB0QPemOV-VfRkLHxsrsZEUI852PfK324LKDEa3jyHl2B44MggSzI3mKFzXJcecNcMRXh2hP5rBm3DJhiOslP0JpFB3wPAN9yy-DNc53BWlUEK39Od4A3TOJN0_uFdsW8HlIoMP1VmXEHme6p3tdHM5YPR2Kp533W-jKJ7idQjKU7Ylypvpt8g", "payload": "" } 2023-04-12 09:22:17,192:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090977684 HTTP/1.1" 200 820 2023-04-12 09:22:17,193:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:17 GMT Content-Type: application/json Content-Length: 820 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 8F05Oq_HKXzULwcBkINpBM8zF6r4FeDXBy2JtGXE5AjGPtY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "pending", "expires": "2023-04-19T09:22:09Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/uD2b4A", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/VdrXKg", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM" } ] } 2023-04-12 09:22:17,193:DEBUG:acme.client:Storing nonce: 8F05Oq_HKXzULwcBkINpBM8zF6r4FeDXBy2JtGXE5AjGPtY 2023-04-12 09:22:20,197:DEBUG:acme.client:JWS payload: b'' 2023-04-12 09:22:20,200:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/6090977684: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC85Nzc2MTE0NCIsICJub25jZSI6ICI4RjA1T3FfSEtYelVMd2NCa0lOcEJNOHpGNnI0RmVEWEJ5Mkp0R1hFNUFqR1B0WSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My82MDkwOTc3Njg0In0", "signature": "LsFrbwleUvGlG8efVPM4MH1MPXGhl2gaTqMeeiLSlECdek3YQEp6MjwY24Lik10ZlRsqSw8gStUN04yy1JhZP4lTxwvaiccb2xvxB58JFSBv9WbR6WOTjJg3FXC9L0pFdiCvcwtfC3OmOUNe4vD2665GedBDOfb2nAStR0fFnL4W1OHSzaJimiQsh62qCYeY3fEJQVcw3-iuJ6DxbikOxILOcjJCf3NNW1Y-KECUa2JC4ffyDXsqgs-rK-4lJN1ovx9W6Ef74z65Sn7HCqIkBcT4zUnRUb1K1vY0De9TO6RcxDygfL3sCljKoBpZlFK0lqfJtqDzanMs4wO8xn8bTQ", "payload": "" } 2023-04-12 09:22:20,278:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/6090977684 HTTP/1.1" 200 1079 2023-04-12 09:22:20,278:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Wed, 12 Apr 2023 09:22:20 GMT Content-Type: application/json Content-Length: 1079 Connection: keep-alive Boulder-Requester: 97761144 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 4994Bvq1kpvfR4SYOPBAHzgP4glRKxLhJqCoPB7Xhf_Uuvk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "devops.z3cyber.org" }, "status": "invalid", "expires": "2023-04-19T09:22:09Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/6090977684/oihrww", "token": "uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM", "validationRecord": [ { "url": "http://devops.z3cyber.org/.well-known/acme-challenge/uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM", "hostname": "devops.z3cyber.org", "port": "80", "addressesResolved": [ "20.169.134.196" ], "addressUsed": "20.169.134.196" } ], "validated": "2023-04-12T09:22:09Z" } ] } 2023-04-12 09:22:20,279:DEBUG:acme.client:Storing nonce: 4994Bvq1kpvfR4SYOPBAHzgP4glRKxLhJqCoPB7Xhf_Uuvk 2023-04-12 09:22:20,279:INFO:certbot._internal.auth_handler:Challenge failed for domain devops.z3cyber.org 2023-04-12 09:22:20,279:INFO:certbot._internal.auth_handler:http-01 challenge for devops.z3cyber.org 2023-04-12 09:22:20,280:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: devops.z3cyber.org Type: connection Detail: 20.169.134.196: Fetching http://devops.z3cyber.org/.well-known/acme-challenge/uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2023-04-12 09:22:20,280:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 09:22:20,280:DEBUG:certbot._internal.error_handler:Calling registered functions 2023-04-12 09:22:20,280:INFO:certbot._internal.auth_handler:Cleaning up challenges 2023-04-12 09:22:20,280:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/letsencrypt/.well-known/acme-challenge/uRbYq7HdMz-JpG2fffTbixIsbdZgLiuu0V7bZ1pLnxM 2023-04-12 09:22:20,281:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2023-04-12 09:22:20,281:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/snap/certbot/2913/bin/certbot", line 8, in sys.exit(main()) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/main.py", line 19, in main return internal_main.main(cli_args) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1864, in main return config.func(config, plugins) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 1597, in certonly lineage = _get_and_save_cert(le_client, config, domains, certname, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/main.py", line 129, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/renewal.py", line 395, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/snap/certbot/2913/lib/python3.8/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2023-04-12 09:22:20,282:ERROR:certbot._internal.log:Some challenges have failed.