Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@vps40-vvw:~# certbot -vv
- Root logging level set at 0
- Saving debug log to /var/log/letsencrypt/letsencrypt.log
- certbot version: 0.9.3
- Arguments: ['-vv']
- Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#webroot,PluginEntryPoint#null,PluginEntryPoint#manual,PluginEntryPoint#standalone)
- Requested authenticator None and installer None
- Single candidate plugin: * apache
- Description: Apache Web Server plugin - Beta
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: apache = certbot_apache.configurator:ApacheConfigurator
- Initialized: <certbot_apache.configurator.ApacheConfigurator object at 0xb431b40c>
- Prep: True
- Selected authenticator <certbot_apache.configurator.ApacheConfigurator object at 0xb431b40c> and installer <certbot_apache.configurator.ApacheConfigurator object at 0xb431b40c>
- No names were found in your configuration files. Please enter in your domain
- name(s) (comma and/or space separated) (Enter 'c' to cancel):precode.eu
- Picked account: <Account(8c768f87dda8c46c0b28feed79308b13)>
- Sending GET request to https://acme-v01.api.letsencrypt.org/directory. args: (), kwargs: {}
- Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
- "GET /directory HTTP/1.1" 200 352
- Received <Response [200]>. Headers: {'Content-Length': '352', 'Expires': 'Mon, 20 Feb 2017 15:47:28 GMT', 'Boulder-Request-Id': 'p_3X8JO5Z4idM9OJSX__5ZvtXqf_cYi2AOgGOi81XOI', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Connection': 'keep-alive', 'Pragma': 'no-cache', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Date': 'Mon, 20 Feb 2017 15:47:28 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': '3Sqhc3hMVuQUv12C-AGuKq02xjF3udM2PbUVfXc5ObU'}. Content: '{\n "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",\n "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",\n "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",\n "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",\n "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"\n}'
- Received response <Response [200]> (headers: {'Content-Length': '352', 'Expires': 'Mon, 20 Feb 2017 15:47:28 GMT', 'Boulder-Request-Id': 'p_3X8JO5Z4idM9OJSX__5ZvtXqf_cYi2AOgGOi81XOI', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Connection': 'keep-alive', 'Pragma': 'no-cache', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Date': 'Mon, 20 Feb 2017 15:47:28 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': '3Sqhc3hMVuQUv12C-AGuKq02xjF3udM2PbUVfXc5ObU'}): '{\n "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",\n "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",\n "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",\n "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",\n "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"\n}'
- Obtaining a new certificate
- Requesting fresh nonce
- Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz. args: (), kwargs: {}
- "HEAD /acme/new-authz HTTP/1.1" 405 0
- Received <Response [405]>. Headers: {'Content-Length': '91', 'Pragma': 'no-cache', 'Boulder-Request-Id': 'dTz8pN1K57pcmPraOcDdBTv-_8lhz1-xLj8RpZtUHA4', 'Expires': 'Mon, 20 Feb 2017 15:47:28 GMT', 'Server': 'nginx', 'Connection': 'keep-alive', 'Allow': 'POST', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Date': 'Mon, 20 Feb 2017 15:47:28 GMT', 'Content-Type': 'application/problem+json', 'Replay-Nonce': 'PhElkJEbhMhPEWKJu-rTlZobjHcRymCDHiD0XTy-2Jw'}. Content: ''
- Storing nonce: '>\x11%\x90\x91\x1b\x84\xc8O\x11b\x89\xbb\xea\xd3\x95\x9a\x1b\x8cw\x11\xca`\x83\x1e \xf4]<\xbe\xd8\x9c'
- Omitted empty fields: status=None, challenges=None, expires=None, combinations=None
- Serialized JSON: {"identifier": {"type": "dns", "value": "precode.eu"}, "resource": "new-authz"}
- Omitted empty fields: x5c=(), crit=(), x5u=None, x5tS256=None, x5t=None, cty=None, alg=None, jwk=None, kid=None, typ=None, jku=None
- Omitted empty fields: x5c=(), crit=(), x5u=None, x5tS256=None, x5t=None, cty=None, nonce=None, kid=None, typ=None, jku=None
- Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz. args: (), kwargs: {'data': '{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "vgseNg0c92ujXaTpA7GGbIE_E4DjQpMkGsF-lx_CLd4e5cixsdX81ji9rHYP1XsRFQ-rQAJ7JH31yiwATB0pSpAA_JPktYo9xwYg-CJGZjNMUaw6xX5TnpfjB15QO4ztbdeohadT8FJDXfd7lK454kQPQbD3KS4MJJE-3uWDjBYOQIgPqVyihtb_HpGXyiMJp-y5T5CCVUf1Wem_XEGBGcoIQIoXG_5ddALgHZI6P4lbmeSAG4mxT6ls2rF1lyo0MD76zrggSWC-HgyLm3-HcRawOInQdDtkt520hzOx0g4xsG_DibF-MZ3n_beS2IJAfAct7ne3v5nvRDopBzTNBpURM2eZYdxjtFwJNBC7JcAOr5r-5ct9Rk7OIQv_fbZ88n504mCFlnXan-tNfd8CvnMipD7PoASNctphshfFWOZn1AvHL-XX9wv6Qsi01rH_wYB4sAsX-x2WVsUvMLF0dpjkVc10BtBnxf2y5Y9vYgsgEc0KX0XHX0P1-To2DI_vM5ivccgpWJy_GvzeGX2jrZN52g7Gjk9jV0Gy3NR1B80FhTZJpbep1kdrDqJukJZH-Q1AoVl8rZ9t_Zh_lXID3LKKi2BCLlLiq08qQ1fM5U_k152lapYk27nM1TmNLU4RRB4acaUc1gJcrYLrIzKHv34OfnpJkBRHRbn01ks5Lh8"}}, "protected": "eyJub25jZSI6ICJQaEVsa0pFYmhNaFBFV0tKdS1yVGxab2JqSGNSeW1DREhpRDBYVHktMkp3In0", "payload": "eyJpZGVudGlmaWVyIjogeyJ0eXBlIjogImRucyIsICJ2YWx1ZSI6ICJwcmVjb2RlLmV1In0sICJyZXNvdXJjZSI6ICJuZXctYXV0aHoifQ", "signature": "Z9EDvPanJIs-xiFDGwzyYPIysZgJWAEv_xbxeVDF_gmNfj-l0PCANbQNqrB8aM9ndKhH4GFBbJrR1-ikJbQ5ED0knLzyL0h3-Ip5miOLdHtW1_PI9cmMyUR_zgJTgr-SscScVn7U5mNKXSshGUNqK3c20dfKI386wN0sie_eQq4ufVq7rHrJBI0DWhXn0u_O60U1Ifka6puJ40t5td-DsrriY-Ku7GwkEEFUaoVrJyBQP2RVODLSfebMUN7gbeUCk7qSZdCnAeDfCCQlBsgxqHu4o7MN45Yn5NKMEnteIZG6R-685-aoGCyZJWmxAmmPvr353d8iEJVGJgL7jkMVwmrpNf1zIO0b2HLXDRBegMWu2EjcWHjeXY5tViY0Af6LhbvAruCdMpIRRknA_WQB-Fg2EYjnRAzmytJZKv_elL5DfjVzOEyjrfruIBJZYOqueHNGvTAWn-uaP2Pw305kCFnOvfGNPjwai6x6yTffz1c8WOrtqFQLR3MppG-kN-bsEa3XO30DQjo95j0x38aMYUdtfnBZmZV8fG53KnAyhPUzhLPfpwB3fn66iOqrgQx943PSYX0o7bUtCF7Op1plM7INgGXWdH-aseZob6yDWflUGEw-retRgUxyOXmOUMbTvLEObGVp7YQ07SNzlEM3EFNi6O226RU7f6AD_QAKQC0"}'}
- "POST /acme/new-authz HTTP/1.1" 201 995
- Received <Response [201]>. Headers: {'Content-Length': '995', 'Expires': 'Mon, 20 Feb 2017 15:47:29 GMT', 'Boulder-Request-Id': 'JgiU0OL-W_aJxascwmYkufSZfsv5920WN5dc9qqk5lw', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Connection': 'keep-alive', 'Link': '<https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"', 'Location': 'https://acme-v01.api.letsencrypt.org/acme/authz/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE', 'Pragma': 'no-cache', 'Boulder-Requester': '9823849', 'Date': 'Mon, 20 Feb 2017 15:47:29 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': 'uOvfA3wZmPrfCIV_xEluA9Bk_FFWD_h29qA-DYbqcZU'}. Content: '{\n "identifier": {\n "type": "dns",\n "value": "precode.eu"\n },\n "status": "pending",\n "expires": "2017-02-27T15:47:29.108367989Z",\n "challenges": [\n {\n "type": "dns-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965355",\n "token": "8q206VqscQFgpQYC8vVvpKDHBNbtCtXG7E8YuczZkVs"\n },\n {\n "type": "tls-sni-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356",\n "token": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg"\n },\n {\n "type": "http-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965357",\n "token": "0nhzzOZO-nAgje-xVuFir7GrNdkd-8lqR-Wmvu1BdbU"\n }\n ],\n "combinations": [\n [\n 1\n ],\n [\n 2\n ],\n [\n 0\n ]\n ]\n}'
- Storing nonce: '\xb8\xeb\xdf\x03|\x19\x98\xfa\xdf\x08\x85\x7f\xc4In\x03\xd0d\xfcQV\x0f\xf8v\xf6\xa0>\r\x86\xeaq\x95'
- Received response <Response [201]> (headers: {'Content-Length': '995', 'Expires': 'Mon, 20 Feb 2017 15:47:29 GMT', 'Boulder-Request-Id': 'JgiU0OL-W_aJxascwmYkufSZfsv5920WN5dc9qqk5lw', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Connection': 'keep-alive', 'Link': '<https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"', 'Location': 'https://acme-v01.api.letsencrypt.org/acme/authz/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE', 'Pragma': 'no-cache', 'Boulder-Requester': '9823849', 'Date': 'Mon, 20 Feb 2017 15:47:29 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': 'uOvfA3wZmPrfCIV_xEluA9Bk_FFWD_h29qA-DYbqcZU'}): '{\n "identifier": {\n "type": "dns",\n "value": "precode.eu"\n },\n "status": "pending",\n "expires": "2017-02-27T15:47:29.108367989Z",\n "challenges": [\n {\n "type": "dns-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965355",\n "token": "8q206VqscQFgpQYC8vVvpKDHBNbtCtXG7E8YuczZkVs"\n },\n {\n "type": "tls-sni-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356",\n "token": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg"\n },\n {\n "type": "http-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965357",\n "token": "0nhzzOZO-nAgje-xVuFir7GrNdkd-8lqR-Wmvu1BdbU"\n }\n ],\n "combinations": [\n [\n 1\n ],\n [\n 2\n ],\n [\n 0\n ]\n ]\n}'
- Performing the following challenges:
- tls-sni-01 challenge for precode.eu
- Enabled Apache socache_shmcb module
- Enabled Apache ssl module
- Adding Include /etc/apache2/le_tls_sni_01_cert_challenge.conf to /files/etc/apache2/apache2.conf
- writing a config file with text:
- <IfModule mod_ssl.c>
- <VirtualHost *:443>
- ServerName 3511df10e39b76499bc376524a480392.c5d60af6db111adac37795731aaa5bea.acme.invalid
- UseCanonicalName on
- SSLStrictSNIVHostCheck on
- LimitRequestBody 1048576
- Include /etc/letsencrypt/options-ssl-apache.conf
- SSLCertificateFile /var/lib/letsencrypt/n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg.crt
- SSLCertificateKeyFile /var/lib/letsencrypt/n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg.pem
- DocumentRoot /var/lib/letsencrypt/tls_sni_01_page/
- </VirtualHost>
- </IfModule>
- Creating backup of /etc/apache2/apache2.conf
- Waiting for verification...
- Serialized JSON: {"keyAuthorization": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg.6Qef2V4pIdoaMSdBQHgLYj2oBQlF-7rcwduuMGcKPWk", "type": "tls-sni-01", "resource": "challenge"}
- Omitted empty fields: x5c=(), crit=(), x5u=None, x5tS256=None, x5t=None, cty=None, alg=None, jwk=None, kid=None, typ=None, jku=None
- Omitted empty fields: x5c=(), crit=(), x5u=None, x5tS256=None, x5t=None, cty=None, nonce=None, kid=None, typ=None, jku=None
- Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356. args: (), kwargs: {'data': '{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "vgseNg0c92ujXaTpA7GGbIE_E4DjQpMkGsF-lx_CLd4e5cixsdX81ji9rHYP1XsRFQ-rQAJ7JH31yiwATB0pSpAA_JPktYo9xwYg-CJGZjNMUaw6xX5TnpfjB15QO4ztbdeohadT8FJDXfd7lK454kQPQbD3KS4MJJE-3uWDjBYOQIgPqVyihtb_HpGXyiMJp-y5T5CCVUf1Wem_XEGBGcoIQIoXG_5ddALgHZI6P4lbmeSAG4mxT6ls2rF1lyo0MD76zrggSWC-HgyLm3-HcRawOInQdDtkt520hzOx0g4xsG_DibF-MZ3n_beS2IJAfAct7ne3v5nvRDopBzTNBpURM2eZYdxjtFwJNBC7JcAOr5r-5ct9Rk7OIQv_fbZ88n504mCFlnXan-tNfd8CvnMipD7PoASNctphshfFWOZn1AvHL-XX9wv6Qsi01rH_wYB4sAsX-x2WVsUvMLF0dpjkVc10BtBnxf2y5Y9vYgsgEc0KX0XHX0P1-To2DI_vM5ivccgpWJy_GvzeGX2jrZN52g7Gjk9jV0Gy3NR1B80FhTZJpbep1kdrDqJukJZH-Q1AoVl8rZ9t_Zh_lXID3LKKi2BCLlLiq08qQ1fM5U_k152lapYk27nM1TmNLU4RRB4acaUc1gJcrYLrIzKHv34OfnpJkBRHRbn01ks5Lh8"}}, "protected": "eyJub25jZSI6ICJ1T3ZmQTN3Wm1QcmZDSVZfeEVsdUE5QmtfRkZXRF9oMjlxQS1EWWJxY1pVIn0", "payload": "eyJrZXlBdXRob3JpemF0aW9uIjogIm40d25JUUpBdWpJcHg0SjVDc3d6M2N0ck9XNlZ2RmhxQ3o4ZEJqd3lCbWcuNlFlZjJWNHBJZG9hTVNkQlFIZ0xZajJvQlFsRi03cmN3ZHV1TUdjS1BXayIsICJ0eXBlIjogInRscy1zbmktMDEiLCAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIn0", "signature": "Q0xeLjbPqUY-280QnW2xNZHqsF7KqWme-a31pnI7eqjIcTdvVAngANspeWasLGvSN7mRdsnb2Vw0gNJqrlJ9uYQ_YzXnrVaPejonKB8wZ2EHnW0gNmoWMTSGcTAlGJsrdGxVxv-wyiPf45tygt9PtOod4rhGbuoK7TpUJGBSQ1DrRj2wdSlvoQ60mjqHaFLDx4Bw0MsqIfLrFzr_aLXI6LbenHGzTrHQ7qt6VtiVsfdieAdDbInz-yQWYkMf99qD_PtoYCvmkoUFWx0YgmOf9BZzfl78YeMpM_ZtxbHWyKLwVqVKXCVplXMRi-odtNOrqwNBCFzCbowOdarljQbavwZm7m3mT3th2nothnoHMYaVoX4eIKwCLlk8xvlqFyy4eprvgF637crhfFg1iZdXy-dyuzcwMnkjPyR55211ooJC9SOJN_RwjQ7YxvxqOOn4YjM2ZuOR_NcBT3cpZ_IO3d7aOQFw_trgfnSs3-IvlPVgtX41ZApa6PxxFAkzVyIqaR6L_5dTD48uBoJnWfslFg2ngrTutY9k1It3d44uplLurDhaZX0I2nQ90HKhljfWPWXLH6NQJoCEwf1E3R7L7GbieDX6yT_26hQJ9-X38hrXBb1u3372Eb1bLAgfbtm7bz_P7RvUXNk3aHNeodYq5MQQ78il93iADdz7FIig0U8"}'}
- "POST /acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356 HTTP/1.1" 202 338
- Received <Response [202]>. Headers: {'Content-Length': '338', 'Boulder-Request-Id': '8nJJAF2VV_YDR9s54Uga8AeW6J11-H8O-KplceERIcU', 'Expires': 'Mon, 20 Feb 2017 15:47:33 GMT', 'Server': 'nginx', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Connection': 'keep-alive', 'Link': '<https://acme-v01.api.letsencrypt.org/acme/authz/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE>;rel="up"', 'Location': 'https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356', 'Pragma': 'no-cache', 'Boulder-Requester': '9823849', 'Date': 'Mon, 20 Feb 2017 15:47:33 GMT', 'Content-Type': 'application/json', 'Replay-Nonce': 'F8AedGzw9hnvjgDxKTvZNTdzY0a_FkD5MKmJoRok8NQ'}. Content: '{\n "type": "tls-sni-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356",\n "token": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg",\n "keyAuthorization": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg.6Qef2V4pIdoaMSdBQHgLYj2oBQlF-7rcwduuMGcKPWk"\n}'
- Storing nonce: '\x17\xc0\x1etl\xf0\xf6\x19\xef\x8e\x00\xf1);\xd957scF\xbf\x16@\xf90\xa9\x89\xa1\x1a$\xf0\xd4'
- Received response <Response [202]> (headers: {'Content-Length': '338', 'Boulder-Request-Id': '8nJJAF2VV_YDR9s54Uga8AeW6J11-H8O-KplceERIcU', 'Expires': 'Mon, 20 Feb 2017 15:47:33 GMT', 'Server': 'nginx', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Connection': 'keep-alive', 'Link': '<https://acme-v01.api.letsencrypt.org/acme/authz/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE>;rel="up"', 'Location': 'https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356', 'Pragma': 'no-cache', 'Boulder-Requester': '9823849', 'Date': 'Mon, 20 Feb 2017 15:47:33 GMT', 'Content-Type': 'application/json', 'Replay-Nonce': 'F8AedGzw9hnvjgDxKTvZNTdzY0a_FkD5MKmJoRok8NQ'}): '{\n "type": "tls-sni-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356",\n "token": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg",\n "keyAuthorization": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg.6Qef2V4pIdoaMSdBQHgLYj2oBQlF-7rcwduuMGcKPWk"\n}'
- Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE. args: (), kwargs: {}
- "GET /acme/authz/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE HTTP/1.1" 200 1695
- Received <Response [200]>. Headers: {'Content-Length': '1695', 'Expires': 'Mon, 20 Feb 2017 15:47:36 GMT', 'Boulder-Request-Id': 'HU7XkOvvgaof6S5A9KhRNLRI197UbN3kAt0J0jveSEA', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Connection': 'keep-alive', 'Link': '<https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"', 'Pragma': 'no-cache', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Date': 'Mon, 20 Feb 2017 15:47:36 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': 'sEDmqIrDvGV9e2H6mXAoQLvLe-XnBYocKR9Cqd2tAY4'}. Content: '{\n "identifier": {\n "type": "dns",\n "value": "precode.eu"\n },\n "status": "invalid",\n "expires": "2017-02-27T15:47:29Z",\n "challenges": [\n {\n "type": "dns-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965355",\n "token": "8q206VqscQFgpQYC8vVvpKDHBNbtCtXG7E8YuczZkVs"\n },\n {\n "type": "tls-sni-01",\n "status": "invalid",\n "error": {\n "type": "urn:acme:error:unauthorized",\n "detail": "Incorrect validation certificate for TLS-SNI-01 challenge. Requested 3511df10e39b76499bc376524a480392.c5d60af6db111adac37795731aaa5bea.acme.invalid from 164.132.149.45:443. Received 2 certificate(s), first certificate had names \\"vps40-vvw\\"",\n "status": 403\n },\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356",\n "token": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg",\n "keyAuthorization": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg.6Qef2V4pIdoaMSdBQHgLYj2oBQlF-7rcwduuMGcKPWk",\n "validationRecord": [\n {\n "hostname": "precode.eu",\n "port": "443",\n "addressesResolved": [\n "164.132.149.45"\n ],\n "addressUsed": "164.132.149.45"\n }\n ]\n },\n {\n "type": "http-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965357",\n "token": "0nhzzOZO-nAgje-xVuFir7GrNdkd-8lqR-Wmvu1BdbU"\n }\n ],\n "combinations": [\n [\n 1\n ],\n [\n 2\n ],\n [\n 0\n ]\n ]\n}'
- Received response <Response [200]> (headers: {'Content-Length': '1695', 'Expires': 'Mon, 20 Feb 2017 15:47:36 GMT', 'Boulder-Request-Id': 'HU7XkOvvgaof6S5A9KhRNLRI197UbN3kAt0J0jveSEA', 'Strict-Transport-Security': 'max-age=604800', 'Server': 'nginx', 'Connection': 'keep-alive', 'Link': '<https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"', 'Pragma': 'no-cache', 'Cache-Control': 'max-age=0, no-cache, no-store', 'Date': 'Mon, 20 Feb 2017 15:47:36 GMT', 'X-Frame-Options': 'DENY', 'Content-Type': 'application/json', 'Replay-Nonce': 'sEDmqIrDvGV9e2H6mXAoQLvLe-XnBYocKR9Cqd2tAY4'}): '{\n "identifier": {\n "type": "dns",\n "value": "precode.eu"\n },\n "status": "invalid",\n "expires": "2017-02-27T15:47:29Z",\n "challenges": [\n {\n "type": "dns-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965355",\n "token": "8q206VqscQFgpQYC8vVvpKDHBNbtCtXG7E8YuczZkVs"\n },\n {\n "type": "tls-sni-01",\n "status": "invalid",\n "error": {\n "type": "urn:acme:error:unauthorized",\n "detail": "Incorrect validation certificate for TLS-SNI-01 challenge. Requested 3511df10e39b76499bc376524a480392.c5d60af6db111adac37795731aaa5bea.acme.invalid from 164.132.149.45:443. Received 2 certificate(s), first certificate had names \\"vps40-vvw\\"",\n "status": 403\n },\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965356",\n "token": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg",\n "keyAuthorization": "n4wnIQJAujIpx4J5Cswz3ctrOW6VvFhqCz8dBjwyBmg.6Qef2V4pIdoaMSdBQHgLYj2oBQlF-7rcwduuMGcKPWk",\n "validationRecord": [\n {\n "hostname": "precode.eu",\n "port": "443",\n "addressesResolved": [\n "164.132.149.45"\n ],\n "addressUsed": "164.132.149.45"\n }\n ]\n },\n {\n "type": "http-01",\n "status": "pending",\n "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/hfTJUhLHgxkEz5eAbLjvjk30_i36XBqIS5hTDjm7QIE/679965357",\n "token": "0nhzzOZO-nAgje-xVuFir7GrNdkd-8lqR-Wmvu1BdbU"\n }\n ],\n "combinations": [\n [\n 1\n ],\n [\n 2\n ],\n [\n 0\n ]\n ]\n}'
- Reporting to user: The following errors were reported by the server:
- Domain: precode.eu
- Type: unauthorized
- Detail: Incorrect validation certificate for TLS-SNI-01 challenge. Requested 3511df10e39b76499bc376524a480392.c5d60af6db111adac37795731aaa5bea.acme.invalid from 164.132.149.45:443. Received 2 certificate(s), first certificate had names "vps40-vvw"
- To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address.
- Cleaning up challenges
- Exiting abnormally:
- Traceback (most recent call last):
- File "/usr/bin/certbot", line 9, in <module>
- load_entry_point('certbot==0.9.3', 'console_scripts', 'certbot')()
- File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 776, in main
- return config.func(config, plugins)
- File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 511, in run
- action, lineage = _auth_from_domains(le_client, config, domains)
- File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 100, in _auth_from_domains
- lineage = le_client.obtain_and_enroll_certificate(domains)
- File "/usr/lib/python2.7/dist-packages/certbot/client.py", line 281, in obtain_and_enroll_certificate
- certr, chain, key, _ = self.obtain_certificate(domains)
- File "/usr/lib/python2.7/dist-packages/certbot/client.py", line 253, in obtain_certificate
- self.config.allow_subset_of_names)
- File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 78, in get_authorizations
- self._respond(resp, best_effort)
- File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 135, in _respond
- self._poll_challenges(chall_update, best_effort)
- File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 199, in _poll_challenges
- raise errors.FailedChallenges(all_failed_achalls)
- FailedChallenges: Failed authorization procedure. precode.eu (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for TLS-SNI-01 challenge. Requested 3511df10e39b76499bc376524a480392.c5d60af6db111adac37795731aaa5bea.acme.invalid from 164.132.149.45:443. Received 2 certificate(s), first certificate had names "vps40-vvw"
- Failed authorization procedure. precode.eu (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for TLS-SNI-01 challenge. Requested 3511df10e39b76499bc376524a480392.c5d60af6db111adac37795731aaa5bea.acme.invalid from 164.132.149.45:443. Received 2 certificate(s), first certificate had names "vps40-vvw"
- IMPORTANT NOTES:
- - The following errors were reported by the server:
- Domain: precode.eu
- Type: unauthorized
- Detail: Incorrect validation certificate for TLS-SNI-01 challenge.
- Requested
- 3511df10e39b76499bc376524a480392.c5d60af6db111adac37795731aaa5bea.acme.invalid
- from 164.132.149.45:443. Received 2 certificate(s), first
- certificate had names "vps40-vvw"
- To fix these errors, please make sure that your domain name was
- entered correctly and the DNS A record(s) for that domain
- contain(s) the right IP address.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement