letsencrypt.log

2017-11-13 22:01:25,222:DEBUG:certbot.main:certbot version: 0.19.0
2017-11-13 22:01:25,222:DEBUG:certbot.main:Arguments: ['--nginx']
2017-11-13 22:01:25,222:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2017-11-13 22:01:25,245:DEBUG:certbot.log:Root logging level set at 20
2017-11-13 22:01:25,245:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2017-11-13 22:01:25,246:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
2017-11-13 22:01:25,766:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin - Alpha
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x2d2c350>
Prep: True
2017-11-13 22:01:25,767:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nginx.configurator.NginxConfigurator object at 0x2d2c350> and installer <certbot_nginx.configurator.NginxConfigurator object at 0x2d2c350>
2017-11-13 22:01:25,767:INFO:certbot.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2017-11-13 22:01:25,774:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, contact=(u'mailto:[email protected]',), agreement=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf', key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x3314550>)>)), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/24227043', new_authzr_uri=u'https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), aa0fb713821e208a2a47657e88c54f4b, Meta(creation_host=u'localhost', creation_dt=datetime.datetime(2017, 11, 13, 20, 30, 41, tzinfo=<UTC>)))>
2017-11-13 22:01:25,776:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
2017-11-13 22:01:25,783:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
2017-11-13 22:01:25,926:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 561
2017-11-13 22:01:25,927:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 561
Replay-Nonce: LDSDwAYBMcUgKOdmPHgMggS10KLAvMTOsF-9Mpzjm4k
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:01:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:01:25 GMT
Connection: keep-alive

{
  "AOnf9SZeV1Y": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",
  "meta": {
    "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf"
  },
  "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",
  "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",
  "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",
  "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"
}
2017-11-13 22:11:31,644:INFO:certbot.main:Obtaining a new certificate
2017-11-13 22:11:31,645:DEBUG:acme.client:Requesting fresh nonce
2017-11-13 22:11:31,645:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz.
2017-11-13 22:11:31,646:DEBUG:requests.packages.urllib3.connectionpool:Resetting dropped connection: acme-v01.api.letsencrypt.org
2017-11-13 22:11:31,733:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0
2017-11-13 22:11:31,733:DEBUG:acme.client:Received response:
HTTP 405
Server: nginx
Content-Type: application/problem+json
Content-Length: 91
Allow: POST
Replay-Nonce: Td9NVlG0TPi4QrREAmwOyD1LUChUvi6RgGeLND28JOc
Expires: Mon, 13 Nov 2017 22:11:31 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:31 GMT
Connection: keep-alive


2017-11-13 22:11:31,734:DEBUG:acme.client:Storing nonce: Td9NVlG0TPi4QrREAmwOyD1LUChUvi6RgGeLND28JOc
2017-11-13 22:11:31,734:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns",
    "value": "stat-ease.com"
  },
  "resource": "new-authz"
}
2017-11-13 22:11:31,738:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "eyJub25jZSI6ICJUZDlOVmxHMFRQaTRRclJFQW13T3lEMUxVQ2hVdmk2UmdHZUxORDI4Sk9jIiwgImFsZyI6ICJSUzI1NiIsICJqd2siOiB7ImUiOiAiQVFBQiIsICJrdHkiOiAiUlNBIiwgIm4iOiAicnpOT0lXSUlydG8yQ0piNWZXbFlnOEZ2RncxNURuM0FKM2VKUnFncXFwbGRDME9QUzdkXzNkRVJSVnNlM1FVc1h1M0o1bVVlLVBXb25scllidHhGRHdNY2VCVmhTak1KTEZ3Q2IxLVZfSFBweWRBb2E1dnJGUzVfT0tFQ1Jpb29yRFJ2Uzd2bkplSTFsSjR6UElzd1JuV2gwaHlrNE9nN3NFaWpDZTllamstY3J2SGNzQVFRWk4wWVZ2dER6dG05UV9tNmlXdTN5SERYdzJ3N0xWNEFZcWdBMGdqVi1ZMmRDZzdPQUFkQ055WTZpaklSMUJCZElNZkUtenIxcTdhN1hvYmoyRnlKX09YQnVyQ1o4S1MxYlljS2h3UGY0c056Uk1DeU91WjBiZkZEb0VHTzhtb2NxUWpXWGM4bFBFd2hmeWptVnZaM3gySHo4aS02TTB5b1R3In19",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAic3RhdC1lYXNlLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9",
  "signature": "eGkIhQA3o6oFxKmORZrSy4Kks_UiL6oivHfnVhr7j_PzWAVMVmOgI6AL1WSgO-nalHDCutn2647EYfTv71iEpYu_s0yqIqL0O2VQ_LlduKPLZ9D32bIKIXnTHT_-mdyTVEfWFq9i_R3nho6Ju_HKXAhVceiMjldLbZr47JTuNJ1I3aJQG8z33id9BciTKZ7RDO-__C7xpblTBHISTeKb2Bf8j1uM2bl7JeBLGUsso73830EPX53XHw9t31uxwhx_T0_wHscwE0mUfKVL9ZZ3j6AEzs-UFU0QGlwgEuL80eGr5r03Zav6OzDoivCtkOdg5K2nr-iYIFTfcQg6A4lb8w"
}
2017-11-13 22:11:31,817:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1001
2017-11-13 22:11:31,818:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1001
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI
Replay-Nonce: 3dPJdk4xwzBtnrm2PtpDAHcO_7W0ZD892Y_mNG-bbV4
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:31 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:31 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "stat-ease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:31.772505475Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689305",
      "token": "ufuiP675tl2J2aw34Xn28lfUs3yPV9kBaDCQ7prgm48"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689306",
      "token": "KlKkAW-gn8Bf-AdOhUhND2VnV6DpkuAQjregs4rPfZw"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689307",
      "token": "PgvzBXZ-64AvtZQUKCtXbHXtiemF8mA03OIV1DbXYLU"
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      0
    ],
    [
      1
    ]
  ]
}
2017-11-13 22:11:31,818:DEBUG:acme.client:Storing nonce: 3dPJdk4xwzBtnrm2PtpDAHcO_7W0ZD892Y_mNG-bbV4
2017-11-13 22:11:31,819:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns",
    "value": "www.stat-ease.com"
  },
  "resource": "new-authz"
}
2017-11-13 22:11:31,823:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAid3d3LnN0YXQtZWFzZS5jb20iCiAgfSwgCiAgInJlc291cmNlIjogIm5ldy1hdXRoeiIKfQ",
  "signature": "muP3tysp5mgFLWpuJ_oT-vyRpKSHwOV70GNDzy6YnTPvRkf_lw_jWIOIuNXY2-GiA5rEcVzG4MtUudsxWPAu1y1RiLmyixwtYtQbKGkNP_5QUaIogbP45tILt1Rr3AwB43cryqWgw8S_BxVDLDfS69leNE4Rm8iS2u5_0Vy_LUsg31PB7WDFBb595ReNTTW4pPKDztQerBI4lB8HcgIdoaKnZwPBhV4kI_osNrv4TFcWQ95zMAZlWLvBK4sAxDI8cPhv81psvZFfqvQURn9-IlCQ-azoGQxaVCZBc53TpmY7Xlo_OKlDNoRLSs1u2_bP_aKElZRxSR_RcgtlFp97Eg"
}
2017-11-13 22:11:31,913:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1005
2017-11-13 22:11:31,914:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1005
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE
Replay-Nonce: lmslKYmG5AWPA0awUCL39Gvi7l5iycWzv2kU5-Ap-_U
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:31 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:31 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "www.stat-ease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:31.866210346Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689314",
      "token": "2Atfq4XMEfCScnPLn9W7MWhVOtEqpz6IrPipC56Fq7M"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689315",
      "token": "qh1bHkA3l7ShZzQBM8uBjLE7mzZ-CQC2_xBU5EjTNsA"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689316",
      "token": "Xz---Wjn4m-2qAFhfrPzPmMcpZ7ed-8OeFJtJ4uQ4a0"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      2
    ],
    [
      0
    ]
  ]
}
2017-11-13 22:11:31,914:DEBUG:acme.client:Storing nonce: lmslKYmG5AWPA0awUCL39Gvi7l5iycWzv2kU5-Ap-_U
2017-11-13 22:11:31,914:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns",
    "value": "statease.com"
  },
  "resource": "new-authz"
}
2017-11-13 22:11:31,918:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAic3RhdGVhc2UuY29tIgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0",
  "signature": "VeHFyZcVsNjZug5j-3yTt4WqMge4jn6OzCvJdWJWhNBmnyTXdgLtSaMZcGTl6j4NTjdvKSXWEFtEq96KatKQUtRpI-YVVC1OHUJ7XgrsVmvRUTxELUL3g2lE0o7gJwKMadaWUeX3CEtIivBF9DdDh17BHk2AM2VAN0IVnknRZqwDFyHRXE9EyVddD6rU2oDZSBggJEYgKHACRfa2dj8oRe2nIo1fJ2ozZjoUsSajZzowNe_sl-VuS3HUaERL553zAw6-OKRkyvOoY8wqYw3WkzwsHxfbos3tPF486rUWJ5D4_g55hGdPWzkbtwlbu-QFYE3VU1w-FoYm4BCm4L5p8w"
}
2017-11-13 22:11:31,999:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1000
2017-11-13 22:11:31,999:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1000
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc
Replay-Nonce: IgFBjh9FFDRCnwTMT-GSGGaV-X0u6cKoEzgPurfxbc8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:31 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:31 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "statease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:31.954048049Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689326",
      "token": "7BwyYcnX8uVzKD0Vc3hAgQLCy_O9Eqhgd8goNFqhtPM"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689327",
      "token": "gHArUunX9LrtqL-xWeu3PV8qiszndM2c-C4oLloFkF4"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689328",
      "token": "60EHlaQNjGFJabqTcuaXHzOekfFWtuOM_GQVlSOJPxw"
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      1
    ],
    [
      0
    ]
  ]
}
2017-11-13 22:11:32,000:DEBUG:acme.client:Storing nonce: IgFBjh9FFDRCnwTMT-GSGGaV-X0u6cKoEzgPurfxbc8
2017-11-13 22:11:32,001:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns",
    "value": "activate.statease.com"
  },
  "resource": "new-authz"
}
2017-11-13 22:11:32,005:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "eyJub25jZSI6ICJJZ0ZCamg5RkZEUkNud1RNVC1HU0dHYVYtWDB1NmNLb0V6Z1B1cmZ4YmM4IiwgImFsZyI6ICJSUzI1NiIsICJqd2siOiB7ImUiOiAiQVFBQiIsICJrdHkiOiAiUlNBIiwgIm4iOiAicnpOT0lXSUlydG8yQ0piNWZXbFlnOEZ2RncxNURuM0FKM2VKUnFncXFwbGRDME9QUzdkXzNkRVJSVnNlM1FVc1h1M0o1bVVlLVBXb25scllidHhGRHdNY2VCVmhTak1KTEZ3Q2IxLVZfSFBweWRBb2E1dnJGUzVfT0tFQ1Jpb29yRFJ2Uzd2bkplSTFsSjR6UElzd1JuV2gwaHlrNE9nN3NFaWpDZTllamstY3J2SGNzQVFRWk4wWVZ2dER6dG05UV9tNmlXdTN5SERYdzJ3N0xWNEFZcWdBMGdqVi1ZMmRDZzdPQUFkQ055WTZpaklSMUJCZElNZkUtenIxcTdhN1hvYmoyRnlKX09YQnVyQ1o4S1MxYlljS2h3UGY0c056Uk1DeU91WjBiZkZEb0VHTzhtb2NxUWpXWGM4bFBFd2hmeWptVnZaM3gySHo4aS02TTB5b1R3In19",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAiYWN0aXZhdGUuc3RhdGVhc2UuY29tIgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0",
  "signature": "baOcZLxvveRl5x7eERTHgi5UsV8hYgogYhcgxQJ2xNkejupoYPsZAsWz3toerYHVkKXczuj_BoShNN9lL3LzSjwnDnwdKPro9AqS9DJ74yPbaRiQyTPCoD-4kZJCmJpCJ8t7xGw14DyRQZvZWvNuunZ1TjXJgPmVhkEAMLUCrC5ZPPL2G93Reu5iRdesCrQkjLBvlX3f3FjYsw9GyEDhMeG0R3T9H1QSN3XY6Shs9hFkP0j03gOw4V5Ua-HKT2rbhvksPrYBlw7l15GvBqVCEwWA8TqC59Q_Mw5QReWkgv-vnDlXWJ5_FMF7aFzmuB75aayzRkdxu0jotBoFVhX5rg"
}
2017-11-13 22:11:32,083:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1009
2017-11-13 22:11:32,084:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1009
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw
Replay-Nonce: mBgSmCERRV3vyjktvIBigo6bUscPFGf7T1LTwGT92tA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:32 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:32 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "activate.statease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:32.039739329Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689330",
      "token": "woMsDDqVvCTJ9w8sfbMiWpeCKvEycEWwuL35qnVtK64"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689332",
      "token": "G95wRw1Z5XN2-_6qMQao0DPfsQBegXP5_b-ImIcs-ss"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689333",
      "token": "j_gIurahfZ2P065pwK-5l2IyCPdJnHA-xqzm8EYL6UI"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      0
    ],
    [
      2
    ]
  ]
}
2017-11-13 22:11:32,084:DEBUG:acme.client:Storing nonce: mBgSmCERRV3vyjktvIBigo6bUscPFGf7T1LTwGT92tA
2017-11-13 22:11:32,085:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns",
    "value": "staging.statease.com"
  },
  "resource": "new-authz"
}
2017-11-13 22:11:32,089:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAic3RhZ2luZy5zdGF0ZWFzZS5jb20iCiAgfSwgCiAgInJlc291cmNlIjogIm5ldy1hdXRoeiIKfQ",
  "signature": "ryf7CagWkDFgqO5FOPitxiLJkmPOK9q_anx00emh8AHrZF6IY6N8rkx67ts0Z40JPO8FMYp2bKBBDMnMHG4irFfQAuxVT3O2Zo-SOrvA-0mlFtHkkPKSutHEfI5KIxJoZ6dEUbG1EnhwO6Sr9fBC5fWx3tC789IwiPK-EYU0fC6IAgmUM79jlNz3E8XILIETwBxsPKc5pxdWfrzzV8FJ_e4BUXzJoRDRmuPp2r_bd-SqeKXv6-q7CVV8sy2YiVc1H35hdNBOK05p5Sgxz8WFL3l2O4eas_KbR8TFNl0But2ctTYzYhsooJ_1R57IRnfL9vCwCABmy6dedzu-Q_284A"
}
2017-11-13 22:11:32,164:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1388
2017-11-13 22:11:32,165:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1388
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE
Replay-Nonce: 88lg-WyM-oiMqeEA8B6eiNGmfF95nB8stvy4MgbsneI
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:32 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:32 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "staging.statease.com"
  },
  "status": "valid",
  "expires": "2017-12-13T20:31:48Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010063",
      "token": "bw30-oCHvquhmjYo8wyOiXtsVoSfBfQWdpJfr5SHuYg"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010064",
      "token": "wG3z3Su_7L3X7jVzTP9IJZKdlbBqORq5p1xVfAAAUDU"
    },
    {
      "type": "tls-sni-01",
      "status": "valid",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010065",
      "token": "ZThuzmlHFPTqoz7K65T-vlVmj1kcejPS73ZnrtDZ610",
      "keyAuthorization": "ZThuzmlHFPTqoz7K65T-vlVmj1kcejPS73ZnrtDZ610.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
      "validationRecord": [
        {
          "hostname": "staging.statease.com",
          "port": "443",
          "addressesResolved": [
            "162.209.98.243"
          ],
          "addressUsed": "162.209.98.243",
          "addressesTried": []
        }
      ]
    }
  ],
  "combinations": [
    [
      0
    ],
    [
      2
    ],
    [
      1
    ]
  ]
}
2017-11-13 22:11:32,165:DEBUG:acme.client:Storing nonce: 88lg-WyM-oiMqeEA8B6eiNGmfF95nB8stvy4MgbsneI
2017-11-13 22:11:32,166:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns",
    "value": "activate.staging.statease.com"
  },
  "resource": "new-authz"
}
2017-11-13 22:11:32,169:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAiYWN0aXZhdGUuc3RhZ2luZy5zdGF0ZWFzZS5jb20iCiAgfSwgCiAgInJlc291cmNlIjogIm5ldy1hdXRoeiIKfQ",
  "signature": "RdOAy-9Yl2OnpXi0jla2KTaw7Td6bDJEunvNklBwtmMH-sOnIxVBE_KHuoI94hOKtL5miUZfdkTUOrY1L61_E0AXFn2DzbyO3QZ-6ucBM0njhqOL31Yd3075Kyh9LLQ6D2hcqs8t1s-VUWPkQLPmTQS6ef6PRsJ31vTgOlqb9aM0vKyVx8rhlBphoM3nwdh19YmvMm_cw-dLQian8J5MDGEQ3d-uJTfp-9-dHCyzOxlDyqjRaR_M8MvanhmaSVN83uFVFiPlmy5LiiZ4mTuh3PHHrGDC9Lxp1hqUsydMY5NneCxYn35hv7iIVbaO7ZeKrQyQA8wzNyNmP1Hxs_Qz3A"
}
2017-11-13 22:11:32,254:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1017
2017-11-13 22:11:32,254:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1017
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0
Replay-Nonce: N7GdIxlie3-K6mScCjXbHtwhV_n0sIgL34kTIrIzhUA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:32 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:32 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "activate.staging.statease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:32.210059582Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689346",
      "token": "EEyefwjSAw0rWIBuBbG7Rz6hKrElXACeTvScddUb-oY"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689347",
      "token": "ti6IKwa6cPU7RGfnxZlmK1rA4m_AWLXJRpT5hWfAckc"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689348",
      "token": "gbJfPcuLN-_q8E9odST2ZzgbD2kV3Ub7z2t0ihEkOVQ"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      0
    ],
    [
      2
    ]
  ]
}
2017-11-13 22:11:32,254:DEBUG:acme.client:Storing nonce: N7GdIxlie3-K6mScCjXbHtwhV_n0sIgL34kTIrIzhUA
2017-11-13 22:11:32,255:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns",
    "value": "www.statease.com"
  },
  "resource": "new-authz"
}
2017-11-13 22:11:32,259:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAid3d3LnN0YXRlYXNlLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9",
  "signature": "CIq2MQzwiAyXzQYiSW0iFk3zvv_k5oj7oqEYB0AjKfJQNEt4yV1yXuWbzEi7XYV_d1azJu5WYhB7-cO7Xv8LvAG7mKg3o4V6oUg1ftb3Exm5T8q_3SPXgzWy1aKZ1jVDQF7FedtgMcj8aCcQKCRqoHPQEt1835j2adT4Z1LPnhyRZA0FLd97VWdKgFNYM0aT-WdBV1CNzIXXeNn4pNmtLJK0vPxeYS01we73SQWvdp4BHIa4sVi4nNTZR84uZ7FweNYvsKltualciB-RS3YL77irwumwNYpADTfD_mm-O4OsZ-7m8oQQZ47yOf2l-pSuQNfUnOm4GJBcJcCcs7fjLg"
}
2017-11-13 22:11:32,345:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1004
2017-11-13 22:11:32,346:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1004
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI
Replay-Nonce: ImkZESi7EgPtmdPJ1Nx_HGc5PdUsHcq2BC-sS7bokoM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:32 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:32 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "www.statease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:32.302009401Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689350",
      "token": "2Pcv-LTd09h1WJzh3yM478_oQnCNXgOZQgF8zjF8oH0"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689351",
      "token": "ALJR6FcgKQ9H0VF6UjORoLNlrdy_UlVN1S-LJ968Dac"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689352",
      "token": "87GmuWzcTb8ioz87h2sYjRcSVl5vxBJg_B4_doLvC8s"
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      1
    ],
    [
      0
    ]
  ]
}
2017-11-13 22:11:32,346:DEBUG:acme.client:Storing nonce: ImkZESi7EgPtmdPJ1Nx_HGc5PdUsHcq2BC-sS7bokoM
2017-11-13 22:11:32,346:INFO:certbot.auth_handler:Performing the following challenges:
2017-11-13 22:11:32,347:INFO:certbot.auth_handler:tls-sni-01 challenge for stat-ease.com
2017-11-13 22:11:32,347:INFO:certbot.auth_handler:tls-sni-01 challenge for www.stat-ease.com
2017-11-13 22:11:32,347:INFO:certbot.auth_handler:tls-sni-01 challenge for statease.com
2017-11-13 22:11:32,347:INFO:certbot.auth_handler:tls-sni-01 challenge for activate.statease.com
2017-11-13 22:11:32,348:INFO:certbot.auth_handler:tls-sni-01 challenge for staging.statease.com
2017-11-13 22:11:32,348:INFO:certbot.auth_handler:tls-sni-01 challenge for activate.staging.statease.com
2017-11-13 22:11:32,348:INFO:certbot.auth_handler:tls-sni-01 challenge for www.statease.com
2017-11-13 22:11:33,903:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/rlc-staging.conf
2017-11-13 22:11:33,904:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/magento.conf
2017-11-13 22:11:33,904:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/rlc-statease-com.conf
2017-11-13 22:11:33,904:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/staging-statease-com.conf
2017-11-13 22:11:33,904:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/drop.conf
2017-11-13 22:11:33,904:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2017-11-13 22:11:33,905:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/www-statease-com.conf
2017-11-13 22:11:33,905:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2017-11-13 22:11:33,905:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php5.conf
2017-11-13 22:11:33,905:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php5_secure.conf
2017-11-13 22:11:33,908:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
#----------------------------------------------------------------------
# Main Module - directives that cover basic functionality
#
#   http://wiki.codemongers.com/NginxMainModule
#
#----------------------------------------------------------------------
user nginx nginx;
worker_processes 2;
pid /var/run/nginx.pid;

#----------------------------------------------------------------------
# Events Module
#
#   http://wiki.codemongers.com/NginxEventsModule
#
#----------------------------------------------------------------------
events {
    worker_connections 1024;
    # "on" if worker_processes > 1
    accept_mutex off;
}

#----------------------------------------------------------------------
# HTTP Core Module
#
#   http://wiki.codemongers.com/NginxHttpCoreModule
#
#----------------------------------------------------------------------
http {
include /etc/letsencrypt/le_tls_sni_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
    # specify log level
    access_log /var/log/nginx/access.log;
    error_log /var/log/nginx/error.log warn;

    include mime.types;
    default_type application/octet-stream;

    log_format main '$remote_addr - $remote_user [$time_local] $request '
                    '"$status" $body_bytes_sent "$http_referer" '
                    '"$http_user_agent" "$http_x_forwarded_for"';
    log_format postdata '$remote_addr - $remote_user [$time_local] $request '
                    '"$status" $body_bytes_sent "$http_referer" '
                    '"$http_user_agent" "$http_x_forwarded_for" "$request_body"';

    # This tells Nginx to ignore the contents of a file it is sending
    # and uses the kernel sendfile instead
    sendfile on;

    # Set this to on if you have sendfile on
    # It will prepend the HTTP response headers before
    # calling sendfile()
    tcp_nopush on;

    # This disables the "Nagle buggering algorithm" (Nginx Docs)
    # Good for websites that send a lot of small requests that
    # don't need a response
    tcp_nodelay off;

    # timeouts
    keepalive_timeout 10;
    send_timeout 30;

    # general options
    server_tokens off;
    server_name_in_redirect off;
    charset utf-8;
    ignore_invalid_headers on;
    recursive_error_pages on;
    merge_slashes on;
    client_max_body_size 200m;
    client_body_buffer_size 128k;
    limit_conn_zone $binary_remote_addr zone=limit_per_ip:16m;
    underscores_in_headers on;

    # compression
    gzip on;
    gzip_http_version 1.0;
    gzip_proxied any;
    gzip_vary on;
    gzip_static on;
    gzip_min_length 1024;
    gzip_buffers 32 8k;
    gzip_comp_level 6;
    gzip_types text/plain text/css application/x-javascript text/comma-separated-values \
        text/xml application/xml application/xml+rss application/atom+xml text/javascript;
    # IE6 doesn't always handle compression well, so disable for IE6
    gzip_disable "MSIE [1-6].(?!.*SV1)";

    ssl_certificate /etc/nginx/ssl/statease.com-bundle.pem;
    ssl_certificate_key /etc/nginx/ssl/statease.com.key;

    # include active sites
    include /etc/nginx/sites-enabled/*;

}


2017-11-13 22:11:34,957:INFO:certbot.auth_handler:Waiting for verification...
2017-11-13 22:11:34,959:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "PgvzBXZ-64AvtZQUKCtXbHXtiemF8mA03OIV1DbXYLU.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "type": "tls-sni-01",
  "resource": "challenge"
}
2017-11-13 22:11:34,964:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689307:
{
  "protected": "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",
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIlBndnpCWFotNjRBdnRaUVVLQ3RYYkhYdGllbUY4bUEwM09JVjFEYlhZTFUuNGNWTDE0dnItTTJQeXlNNzFuZTdZN3JleEpBWFNQanVCRjMxSGV0RnFXQSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  "signature": "IH0b40X8dIGiMB94GdC9eQhrofthN4gipvZAdfrcKNCd05vUwBK69x3NxTNWWtZzCuIul1o0g0hnfYa0h8RZIFmlRDIUuw2yVQpJ-kbyThx8FYWN2k0qLpZHCTLNj4WhcFSvARS_X3dkRQg-xDNQ4zzOlKG9Puj-40yimSWd90bwz_z8HDhTX-pwDUrrWNAZxLIewKmFoF9d_1gIJb9phTaunKdKtux94_qdIRpdAehVHfRO4v2FbsnTzOZxTBE9IDS49GN9A9kIqx-XjEz6vD4AHiI7CwAwZr9_RXhrXozs8LlztWdTkcorM0w2TILqWyHAkYypQWnUKkEqyKKkdQ"
}
2017-11-13 22:11:35,041:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689307 HTTP/1.1" 202 339
2017-11-13 22:11:35,042:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689307
Replay-Nonce: V2ler6u9WiZtc87ymM3EH0HnK-Mw7roWNX76j9TOi38
Expires: Mon, 13 Nov 2017 22:11:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:35 GMT
Connection: keep-alive

{
  "type": "tls-sni-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689307",
  "token": "PgvzBXZ-64AvtZQUKCtXbHXtiemF8mA03OIV1DbXYLU",
  "keyAuthorization": "PgvzBXZ-64AvtZQUKCtXbHXtiemF8mA03OIV1DbXYLU.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
}
2017-11-13 22:11:35,042:DEBUG:acme.client:Storing nonce: V2ler6u9WiZtc87ymM3EH0HnK-Mw7roWNX76j9TOi38
2017-11-13 22:11:35,043:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "Xz---Wjn4m-2qAFhfrPzPmMcpZ7ed-8OeFJtJ4uQ4a0.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "type": "tls-sni-01",
  "resource": "challenge"
}
2017-11-13 22:11:35,047:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689316:
{
  "protected": "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",
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIlh6LS0tV2puNG0tMnFBRmhmclB6UG1NY3BaN2VkLThPZUZKdEo0dVE0YTAuNGNWTDE0dnItTTJQeXlNNzFuZTdZN3JleEpBWFNQanVCRjMxSGV0RnFXQSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  "signature": "BkVMLsAFfdzRdOa1zZnnZn6PWCObI63mURt61zhWYiyA9nAgD1WiBkCck5Eo8j8h5SqzRRHVpcsB9hOygCIIIkNU6W-Y9nwlMdMfYQ6SuDKoVsNlZ-WyUiUGBz8CeDIH19T2h59ibZpcI6i_86EbyaKFTp_8BVallmwGL9KmiJZiIcJl_3Gn6wewJ-u7bYUyvzhbBIWuyszgQT4Dj90sfnPE9f3485aG6tj0LzDQdCzSXkMqX9g2gxYlG3ZkHnFJ33pGGzTv5mHK-m1yGAtdnHCpekCHocV21tDwI8pXCANgAkUtADM1apg2aVgBNbiojPlkaXOepr2tpZzLsU8SmA"
}
2017-11-13 22:11:35,136:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689316 HTTP/1.1" 202 339
2017-11-13 22:11:35,137:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689316
Replay-Nonce: aO3eZdjOCnZCdkrCRjnGZBuX5ttqDKLMCNYOW6BBGrs
Expires: Mon, 13 Nov 2017 22:11:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:35 GMT
Connection: keep-alive

{
  "type": "tls-sni-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689316",
  "token": "Xz---Wjn4m-2qAFhfrPzPmMcpZ7ed-8OeFJtJ4uQ4a0",
  "keyAuthorization": "Xz---Wjn4m-2qAFhfrPzPmMcpZ7ed-8OeFJtJ4uQ4a0.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
}
2017-11-13 22:11:35,137:DEBUG:acme.client:Storing nonce: aO3eZdjOCnZCdkrCRjnGZBuX5ttqDKLMCNYOW6BBGrs
2017-11-13 22:11:35,137:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "gHArUunX9LrtqL-xWeu3PV8qiszndM2c-C4oLloFkF4.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "type": "tls-sni-01",
  "resource": "challenge"
}
2017-11-13 22:11:35,141:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689327:
{
  "protected": "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",
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogImdIQXJVdW5YOUxydHFMLXhXZXUzUFY4cWlzem5kTTJjLUM0b0xsb0ZrRjQuNGNWTDE0dnItTTJQeXlNNzFuZTdZN3JleEpBWFNQanVCRjMxSGV0RnFXQSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  "signature": "FpwtH8hylbwPuDACdOBfHM8dx7-IwILE6dDIWz9CPzbeWTw9WmwT-gNUzN0LZ4uqwbl4x7v1oGVCf7HhrmC8eVNzljQ8UTQ7XMtWg9QLk06tm7QeuRyT6PZ8pIX8rZE_wm3nDgG9s__ausQkRuxSjFd9mfK-ok0w9Z3rDWkgaJbB9GJQnF9G0VkmUHqPW8rQ8mdHv1JTZX7SCxYrGnv6P1GKpEB9XSJ8S1DNsR_b16qIAa3cR4rXjgrudXUoXviZrDIF95rROImz533CuToR-wQcbaByYVHiIFSrPr5azL8lljF3VKzPxCDxvrOXlxI6_42TGlaQ4n4wugNiWT19GA"
}
2017-11-13 22:11:35,225:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689327 HTTP/1.1" 202 339
2017-11-13 22:11:35,226:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689327
Replay-Nonce: hTgJih6-ULGIYb0A08MFFsNBPScKf9zwIcRm9L9-ED8
Expires: Mon, 13 Nov 2017 22:11:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:35 GMT
Connection: keep-alive

{
  "type": "tls-sni-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689327",
  "token": "gHArUunX9LrtqL-xWeu3PV8qiszndM2c-C4oLloFkF4",
  "keyAuthorization": "gHArUunX9LrtqL-xWeu3PV8qiszndM2c-C4oLloFkF4.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
}
2017-11-13 22:11:35,226:DEBUG:acme.client:Storing nonce: hTgJih6-ULGIYb0A08MFFsNBPScKf9zwIcRm9L9-ED8
2017-11-13 22:11:35,226:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "G95wRw1Z5XN2-_6qMQao0DPfsQBegXP5_b-ImIcs-ss.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "type": "tls-sni-01",
  "resource": "challenge"
}
2017-11-13 22:11:35,230:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689332:
{
  "protected": "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",
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIkc5NXdSdzFaNVhOMi1fNnFNUWFvMERQZnNRQmVnWFA1X2ItSW1JY3Mtc3MuNGNWTDE0dnItTTJQeXlNNzFuZTdZN3JleEpBWFNQanVCRjMxSGV0RnFXQSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  "signature": "dqMor9XjSf9isOe-1U-JqDH61HHGhjhAVX_e1SlQcZGbPnoN7p_-DQ18BaveksR7OrnlSsTdwcp20WH3sVcPhe924j-IJIme_9JjmduzPbT52v55oMjS5Bvf2Tj6C2cDMgq9Iy8Ly3-F7Ks5NFVzNW-G_yJe8pCxrZL8MhnX_Ejfs75WXr2CR00K0U9eogvvbYgDqznrjqON35vM0RbplAVQbQFKGg5zuHKhfS-EtR3AwL-vU2d6QhESViN-buX1FNUlbJwDEauYgzrt4hcfCUHiM53SKbS9djJe0aU68gkJrL-x6DL0WX8YSVILnfrpnl77QCRW5qk-eweqXVRldQ"
}
2017-11-13 22:11:35,311:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689332 HTTP/1.1" 202 339
2017-11-13 22:11:35,311:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689332
Replay-Nonce: PoKtYTvD2BqA03RTMB2NTs8gDGcimzAK7f1v347xi2Y
Expires: Mon, 13 Nov 2017 22:11:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:35 GMT
Connection: keep-alive

{
  "type": "tls-sni-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689332",
  "token": "G95wRw1Z5XN2-_6qMQao0DPfsQBegXP5_b-ImIcs-ss",
  "keyAuthorization": "G95wRw1Z5XN2-_6qMQao0DPfsQBegXP5_b-ImIcs-ss.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
}
2017-11-13 22:11:35,312:DEBUG:acme.client:Storing nonce: PoKtYTvD2BqA03RTMB2NTs8gDGcimzAK7f1v347xi2Y
2017-11-13 22:11:35,312:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "ZThuzmlHFPTqoz7K65T-vlVmj1kcejPS73ZnrtDZ610.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "type": "tls-sni-01",
  "resource": "challenge"
}
2017-11-13 22:11:35,316:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010065:
{
  "protected": "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",
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIlpUaHV6bWxIRlBUcW96N0s2NVQtdmxWbWoxa2NlalBTNzNabnJ0RFo2MTAuNGNWTDE0dnItTTJQeXlNNzFuZTdZN3JleEpBWFNQanVCRjMxSGV0RnFXQSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  "signature": "a3ic34j3os0cmn6NxjASYrw50gghZoq51ICw6LUR5zzMMFZvCowm4EwLnYRNfIVugPkylGEuEiwiByZ1HOoj3eiAKT0pJDn-j-kvsTfu7RdaSCT3CYWMreWLYiYJ_av_2cZ7JP81RjVlOnuFz84IL8FIUDbkvtlPG05TtJQKyGE7lrits-pko9OAQfxd4O82SnBoBi7juSsgF_5fvU3yaS9OvrWthFrXXXmCVqjp38v8j6lM3ye_IzRKGsOL3XYZKE-D80qHuZF0VrchLJV25xO4tP6Vy5m4354K7GqSbkBpB9fQul4NUY_ZQD3W_4-eAc2VsSAt2otr4VPDGNJMdQ"
}
2017-11-13 22:11:35,389:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010065 HTTP/1.1" 202 570
2017-11-13 22:11:35,390:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 570
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010065
Replay-Nonce: SYo0WBS57vncM5AkqSK7sb_ZNvkHsX7nQ1AykfVlI54
Expires: Mon, 13 Nov 2017 22:11:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:35 GMT
Connection: keep-alive

{
  "type": "tls-sni-01",
  "status": "valid",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010065",
  "token": "ZThuzmlHFPTqoz7K65T-vlVmj1kcejPS73ZnrtDZ610",
  "keyAuthorization": "ZThuzmlHFPTqoz7K65T-vlVmj1kcejPS73ZnrtDZ610.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "validationRecord": [
    {
      "hostname": "staging.statease.com",
      "port": "443",
      "addressesResolved": [
        "162.209.98.243"
      ],
      "addressUsed": "162.209.98.243",
      "addressesTried": []
    }
  ]
}
2017-11-13 22:11:35,390:DEBUG:acme.client:Storing nonce: SYo0WBS57vncM5AkqSK7sb_ZNvkHsX7nQ1AykfVlI54
2017-11-13 22:11:35,390:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "ti6IKwa6cPU7RGfnxZlmK1rA4m_AWLXJRpT5hWfAckc.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "type": "tls-sni-01",
  "resource": "challenge"
}
2017-11-13 22:11:35,394:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689347:
{
  "protected": "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",
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogInRpNklLd2E2Y1BVN1JHZm54WmxtSzFyQTRtX0FXTFhKUnBUNWhXZkFja2MuNGNWTDE0dnItTTJQeXlNNzFuZTdZN3JleEpBWFNQanVCRjMxSGV0RnFXQSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  "signature": "hm-T3jbQATiUtEGN5vBGudCpzORsFzhTg1DD2kSGKgX2JTK0H4ZQjhroHp40Mc77xv5K9Xwp6LuaeX_Ype4Rw8pqaBLszK9lJSy1x6JvrWZiadvfKfR9mNpxXAJ3I2Y41ELmkxsKZIX0wdcZufWdiQkSxYRdHjayTzlw9eafnDhafYqszWOuiV4J1wyaka60S4zXcxSLh1zPi0aS3Mrqan5jE6QQOMKD9kER0ZMl8NLx8dguvKYnRmq2Ai9Dh9HpMvqMGVCnSkfNyLze9ffWMfqAM3tofYjSidR1WSI2PcDyZL-lcYokAy_FUBXwvnyHxbw6w7CaO-q6_bQBtMQdJQ"
}
2017-11-13 22:11:35,473:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689347 HTTP/1.1" 202 339
2017-11-13 22:11:35,474:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689347
Replay-Nonce: i8R9sbW7JJCfzjdePFi942Y7gNKUqkNNLD3nnywvWM4
Expires: Mon, 13 Nov 2017 22:11:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:35 GMT
Connection: keep-alive

{
  "type": "tls-sni-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689347",
  "token": "ti6IKwa6cPU7RGfnxZlmK1rA4m_AWLXJRpT5hWfAckc",
  "keyAuthorization": "ti6IKwa6cPU7RGfnxZlmK1rA4m_AWLXJRpT5hWfAckc.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
}
2017-11-13 22:11:35,474:DEBUG:acme.client:Storing nonce: i8R9sbW7JJCfzjdePFi942Y7gNKUqkNNLD3nnywvWM4
2017-11-13 22:11:35,475:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "87GmuWzcTb8ioz87h2sYjRcSVl5vxBJg_B4_doLvC8s.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
  "type": "tls-sni-01",
  "resource": "challenge"
}
2017-11-13 22:11:35,479:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689352:
{
  "protected": "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",
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIjg3R211V3pjVGI4aW96ODdoMnNZalJjU1ZsNXZ4QkpnX0I0X2RvTHZDOHMuNGNWTDE0dnItTTJQeXlNNzFuZTdZN3JleEpBWFNQanVCRjMxSGV0RnFXQSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  "signature": "eHjoOnH9vXt1maGiOx_UrFxPNg8zoZaStw2zgr35acSWiH7bdJOBmg9wHoWZvJbgiO2drOmEuZvzKSb7rPD6_8yXVj67XuRpJ1dw8kqatTDsG6PjrJGYkYN9DiqgHRdX-5HKOnpG0CN1YKdGuwexG811Zago80ZS5BxF0BZECIJmkkpOBb2NA0DRGnrL_L0gwZpjANP2orPRLQeRanZ1zVedVFKQaFdF4CM_bJXweI2064LLfcN-yxSGt2s4_E2yR2X0EB7nzaS1t7_Qx112INi6fyJZ4LoZ-q4V0VmUpjabzS4ylc-2fjLACY0b1vrFSMBnH1PykwVaEYEpqykjsw"
}
2017-11-13 22:11:35,555:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689352 HTTP/1.1" 202 339
2017-11-13 22:11:35,556:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 339
Boulder-Requester: 24227043
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689352
Replay-Nonce: XbrjiLz7JmuEAgW5kfVnT9RUhYsO8DajnZdxq83ar-U
Expires: Mon, 13 Nov 2017 22:11:35 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:35 GMT
Connection: keep-alive

{
  "type": "tls-sni-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689352",
  "token": "87GmuWzcTb8ioz87h2sYjRcSVl5vxBJg_B4_doLvC8s",
  "keyAuthorization": "87GmuWzcTb8ioz87h2sYjRcSVl5vxBJg_B4_doLvC8s.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
}
2017-11-13 22:11:35,556:DEBUG:acme.client:Storing nonce: XbrjiLz7JmuEAgW5kfVnT9RUhYsO8DajnZdxq83ar-U
2017-11-13 22:11:38,560:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE.
2017-11-13 22:11:38,629:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE HTTP/1.1" 200 1388
2017-11-13 22:11:38,630:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1388
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: gKkEVQakp38q2hhYfeNnDEL6p0aOYxx8dJtxFq8-Zlk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:38 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:38 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "staging.statease.com"
  },
  "status": "valid",
  "expires": "2017-12-13T20:31:48Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010063",
      "token": "bw30-oCHvquhmjYo8wyOiXtsVoSfBfQWdpJfr5SHuYg"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010064",
      "token": "wG3z3Su_7L3X7jVzTP9IJZKdlbBqORq5p1xVfAAAUDU"
    },
    {
      "type": "tls-sni-01",
      "status": "valid",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/X4vt_emKnY3jJ-zXpZyiF2DyU9aD0sMLDIoPYAbtvCE/2463010065",
      "token": "ZThuzmlHFPTqoz7K65T-vlVmj1kcejPS73ZnrtDZ610",
      "keyAuthorization": "ZThuzmlHFPTqoz7K65T-vlVmj1kcejPS73ZnrtDZ610.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
      "validationRecord": [
        {
          "hostname": "staging.statease.com",
          "port": "443",
          "addressesResolved": [
            "162.209.98.243"
          ],
          "addressUsed": "162.209.98.243",
          "addressesTried": []
        }
      ]
    }
  ],
  "combinations": [
    [
      0
    ],
    [
      2
    ],
    [
      1
    ]
  ]
}
2017-11-13 22:11:38,631:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0.
2017-11-13 22:11:38,699:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0 HTTP/1.1" 200 1844
2017-11-13 22:11:38,700:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1844
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: rD9z0r_xp8f_vyHGyv4taI0Ke27KHzxcXjzgp9KmI-w
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:38 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:38 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "activate.staging.statease.com"
  },
  "status": "invalid",
  "expires": "2017-11-20T22:11:32Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689346",
      "token": "EEyefwjSAw0rWIBuBbG7Rz6hKrElXACeTvScddUb-oY"
    },
    {
      "type": "tls-sni-01",
      "status": "invalid",
      "error": {
        "type": "urn:acme:error:unauthorized",
        "detail": "Incorrect validation certificate for tls-sni-01 challenge. Requested 6176798a1c6e9ef594c8b9700beadda1.f6f3c44f2963df7066dfe7473f24579f.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names \"bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy\"",
        "status": 403
      },
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689347",
      "token": "ti6IKwa6cPU7RGfnxZlmK1rA4m_AWLXJRpT5hWfAckc",
      "keyAuthorization": "ti6IKwa6cPU7RGfnxZlmK1rA4m_AWLXJRpT5hWfAckc.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
      "validationRecord": [
        {
          "hostname": "activate.staging.statease.com",
          "port": "443",
          "addressesResolved": [
            "162.209.98.243"
          ],
          "addressUsed": "162.209.98.243",
          "addressesTried": []
        }
      ]
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Uz3Q1-42iXAbR3joSGmOY-69KLF4sfdHFiBxhduxn_0/2463689348",
      "token": "gbJfPcuLN-_q8E9odST2ZzgbD2kV3Ub7z2t0ihEkOVQ"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      0
    ],
    [
      2
    ]
  ]
}
2017-11-13 22:11:38,701:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI.
2017-11-13 22:11:38,780:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI HTTP/1.1" 200 1108
2017-11-13 22:11:38,781:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1108
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: YU47sI49xcUF6DeuJWbC-4mJ-nX4WcClCz684_QiDeo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:38 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:38 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "stat-ease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:31Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689305",
      "token": "ufuiP675tl2J2aw34Xn28lfUs3yPV9kBaDCQ7prgm48"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689306",
      "token": "KlKkAW-gn8Bf-AdOhUhND2VnV6DpkuAQjregs4rPfZw"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/wdtGPPwsX0EVZWXae7B4xMXMBGujPXcq12z3PbDPuWI/2463689307",
      "token": "PgvzBXZ-64AvtZQUKCtXbHXtiemF8mA03OIV1DbXYLU",
      "keyAuthorization": "PgvzBXZ-64AvtZQUKCtXbHXtiemF8mA03OIV1DbXYLU.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      0
    ],
    [
      1
    ]
  ]
}
2017-11-13 22:11:38,782:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE.
2017-11-13 22:11:38,844:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE HTTP/1.1" 200 1112
2017-11-13 22:11:38,845:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1112
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: fJhjZMF2-u_NqYz0ZFI-Ttk5ITk5RLNQ_J0F1NCW1kk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:38 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:38 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "www.stat-ease.com"
  },
  "status": "pending",
  "expires": "2017-11-20T22:11:31Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689314",
      "token": "2Atfq4XMEfCScnPLn9W7MWhVOtEqpz6IrPipC56Fq7M"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689315",
      "token": "qh1bHkA3l7ShZzQBM8uBjLE7mzZ-CQC2_xBU5EjTNsA"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/c4_ORG0nGr6BxFo_PJ3bVI_BJAu4L06TAv04xgpqPtE/2463689316",
      "token": "Xz---Wjn4m-2qAFhfrPzPmMcpZ7ed-8OeFJtJ4uQ4a0",
      "keyAuthorization": "Xz---Wjn4m-2qAFhfrPzPmMcpZ7ed-8OeFJtJ4uQ4a0.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      2
    ],
    [
      0
    ]
  ]
}
2017-11-13 22:11:38,846:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc.
2017-11-13 22:11:38,914:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc HTTP/1.1" 200 1922
2017-11-13 22:11:38,914:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1922
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: fnDxJk6_5JJA5NDE_hKDvSd0egYVOdHYO75ByKYf77w
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:38 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:38 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "statease.com"
  },
  "status": "invalid",
  "expires": "2017-11-20T22:11:31Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689326",
      "token": "7BwyYcnX8uVzKD0Vc3hAgQLCy_O9Eqhgd8goNFqhtPM"
    },
    {
      "type": "tls-sni-01",
      "status": "invalid",
      "error": {
        "type": "urn:acme:error:unauthorized",
        "detail": "Incorrect validation certificate for tls-sni-01 challenge. Requested c829fafc9ba1e02e2beb1ae5665e3e8c.42a47a5a16c3b6673549c7497d339ed1.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names \"bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy\"",
        "status": 403
      },
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689327",
      "token": "gHArUunX9LrtqL-xWeu3PV8qiszndM2c-C4oLloFkF4",
      "keyAuthorization": "gHArUunX9LrtqL-xWeu3PV8qiszndM2c-C4oLloFkF4.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
      "validationRecord": [
        {
          "hostname": "statease.com",
          "port": "443",
          "addressesResolved": [
            "162.209.98.243",
            "2001:4802:7800:1:cf5b:3fd6:ff20:8c5"
          ],
          "addressUsed": "162.209.98.243",
          "addressesTried": [
            "2001:4802:7800:1:cf5b:3fd6:ff20:8c5"
          ]
        }
      ]
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/T2mH-gIARonOkxC2-nYquLXEbFLnkQk5Kf2pVFcLYjc/2463689328",
      "token": "60EHlaQNjGFJabqTcuaXHzOekfFWtuOM_GQVlSOJPxw"
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      1
    ],
    [
      0
    ]
  ]
}
2017-11-13 22:11:38,915:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI.
2017-11-13 22:11:38,995:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI HTTP/1.1" 200 1930
2017-11-13 22:11:38,996:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1930
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: s7CbdCv86wbCE-fDfJqMMn68ABNwf58-9ixH3Ya4UXc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:38 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:38 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "www.statease.com"
  },
  "status": "invalid",
  "expires": "2017-11-20T22:11:32Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689350",
      "token": "2Pcv-LTd09h1WJzh3yM478_oQnCNXgOZQgF8zjF8oH0"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689351",
      "token": "ALJR6FcgKQ9H0VF6UjORoLNlrdy_UlVN1S-LJ968Dac"
    },
    {
      "type": "tls-sni-01",
      "status": "invalid",
      "error": {
        "type": "urn:acme:error:unauthorized",
        "detail": "Incorrect validation certificate for tls-sni-01 challenge. Requested f76a6626e2e7264c5c5ef13e331ed3e2.a29f0f4e649c3345ba399df9adb4a2f7.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names \"bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy\"",
        "status": 403
      },
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/EoybAPMeDnfwo7I5iBeW272r6ADLMVGP4ABTHwCc3RI/2463689352",
      "token": "87GmuWzcTb8ioz87h2sYjRcSVl5vxBJg_B4_doLvC8s",
      "keyAuthorization": "87GmuWzcTb8ioz87h2sYjRcSVl5vxBJg_B4_doLvC8s.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
      "validationRecord": [
        {
          "hostname": "www.statease.com",
          "port": "443",
          "addressesResolved": [
            "162.209.98.243",
            "2001:4802:7800:1:cf5b:3fd6:ff20:8c5"
          ],
          "addressUsed": "162.209.98.243",
          "addressesTried": [
            "2001:4802:7800:1:cf5b:3fd6:ff20:8c5"
          ]
        }
      ]
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      1
    ],
    [
      0
    ]
  ]
}
2017-11-13 22:11:38,997:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw.
2017-11-13 22:11:39,060:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw HTTP/1.1" 200 1828
2017-11-13 22:11:39,061:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1828
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: KwbnGzhAVcWEzA-RdorGcZdGfJrHN_jGlyOH7X8DDZY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Mon, 13 Nov 2017 22:11:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Mon, 13 Nov 2017 22:11:39 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "activate.statease.com"
  },
  "status": "invalid",
  "expires": "2017-11-20T22:11:32Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689330",
      "token": "woMsDDqVvCTJ9w8sfbMiWpeCKvEycEWwuL35qnVtK64"
    },
    {
      "type": "tls-sni-01",
      "status": "invalid",
      "error": {
        "type": "urn:acme:error:unauthorized",
        "detail": "Incorrect validation certificate for tls-sni-01 challenge. Requested 27a85b99b5a188641c7cd5a963381fd6.e35424529ec6ee688719b19feb15c261.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names \"bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy\"",
        "status": 403
      },
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689332",
      "token": "G95wRw1Z5XN2-_6qMQao0DPfsQBegXP5_b-ImIcs-ss",
      "keyAuthorization": "G95wRw1Z5XN2-_6qMQao0DPfsQBegXP5_b-ImIcs-ss.4cVL14vr-M2PyyM71ne7Y7rexJAXSPjuBF31HetFqWA",
      "validationRecord": [
        {
          "hostname": "activate.statease.com",
          "port": "443",
          "addressesResolved": [
            "162.209.98.243"
          ],
          "addressUsed": "162.209.98.243",
          "addressesTried": []
        }
      ]
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/qY20QKQhqVu5ae6rmCKVuI1gVJOx55bFjhLSXokwSKw/2463689333",
      "token": "j_gIurahfZ2P065pwK-5l2IyCPdJnHA-xqzm8EYL6UI"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      0
    ],
    [
      2
    ]
  ]
}
2017-11-13 22:11:39,062:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:

Domain: activate.staging.statease.com
Type:   unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge. Requested 6176798a1c6e9ef594c8b9700beadda1.f6f3c44f2963df7066dfe7473f24579f.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy"

Domain: www.statease.com
Type:   unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge. Requested f76a6626e2e7264c5c5ef13e331ed3e2.a29f0f4e649c3345ba399df9adb4a2f7.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy"

Domain: statease.com
Type:   unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge. Requested c829fafc9ba1e02e2beb1ae5665e3e8c.42a47a5a16c3b6673549c7497d339ed1.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy"

Domain: activate.statease.com
Type:   unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge. Requested 27a85b99b5a188641c7cd5a963381fd6.e35424529ec6ee688719b19feb15c261.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy"

To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
2017-11-13 22:11:39,062:INFO:certbot.auth_handler:Cleaning up challenges
2017-11-13 22:11:40,550:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
  File "/opt/eff.org/certbot/venv/bin/letsencrypt", line 11, in <module>
    sys.exit(main())
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/main.py", line 861, in main
    return config.func(config, plugins)
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/main.py", line 698, in run
    certname, lineage)
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/main.py", line 85, in _get_and_save_cert
    lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/client.py", line 357, in obtain_and_enroll_certificate
    certr, chain, key, _ = self.obtain_certificate(domains)
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/client.py", line 318, in obtain_certificate
    self.config.allow_subset_of_names)
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/auth_handler.py", line 81, in get_authorizations
    self._respond(resp, best_effort)
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/auth_handler.py", line 138, in _respond
    self._poll_challenges(chall_update, best_effort)
  File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/auth_handler.py", line 202, in _poll_challenges
    raise errors.FailedChallenges(all_failed_achalls)
FailedChallenges: Failed authorization procedure. activate.staging.statease.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 6176798a1c6e9ef594c8b9700beadda1.f6f3c44f2963df7066dfe7473f24579f.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy", www.statease.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested f76a6626e2e7264c5c5ef13e331ed3e2.a29f0f4e649c3345ba399df9adb4a2f7.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy", statease.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested c829fafc9ba1e02e2beb1ae5665e3e8c.42a47a5a16c3b6673549c7497d339ed1.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy", activate.statease.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 27a85b99b5a188641c7cd5a963381fd6.e35424529ec6ee688719b19feb15c261.acme.invalid from 162.209.98.243:443. Received 1 certificate(s), first certificate had names "bb314e5be30d3db782c00c7b915f0b9a.abadc0eb8241737e1fef226d18724d87.acme.invalid, dummy"