Requested authenticator webroot and installer NoneSingle candidate plugin: * w

1. Requested authenticator webroot and installer None
2. Single candidate plugin: * webroot
3. Description: Place files in webroot directory
4. Interfaces: IAuthenticator, IPlugin
5. Entry point: webroot = certbot.plugins.webroot:Authenticator
6. Initialized: <certbot.plugins.webroot.Authenticator object at 0x7fa2242cec50>
7. Prep: True
8. Selected authenticator <certbot.plugins.webroot.Authenticator object at 0x7fa2242cec50> and installer None
9. Plugins selected: Authenticator webroot, Installer None
10. Picked account: <Account(RegistrationResource(body=Registration(agreement=None, terms_of_service_agreed=None, only_return_existing=None, key=None, status=None, contact=()), terms_of_service=None, new_authzr_uri=None, uri='https://acme-staging-v02.api.letsencrypt.org/acme/acct/11367724'), 69760f27dced0e0101af5c5257f9ea02, Meta(creation_host='25766c2c0ba2', creation_dt=datetime.datetime(2019, 10, 19, 22, 16, 17, tzinfo=<UTC>)))>
11. Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory.
12. Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org
13. https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 724
14. Received response:
15. HTTP 200
16. Server: nginx
17. Date: Sat, 19 Oct 2019 22:16:26 GMT
18. Content-Type: application/json
19. Content-Length: 724
20. Connection: keep-alive
21. Cache-Control: public, max-age=0, no-cache
22. X-Frame-Options: DENY
23. Strict-Transport-Security: max-age=604800
24.  
25. {
26. "C0j4TcDXNYo": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
27. "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change",
28. "meta": {
29. "caaIdentities": [
30. "letsencrypt.org"
31. ],
32. "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
33. "website": "https://letsencrypt.org/docs/staging-environment/"
34. },
35. "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct",
36. "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce",
37. "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order",
38. "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert"
39. }
40. Obtaining a new certificate
41. Generating key (2048 bits): /etc/letsencrypt/keys/0001_key-certbot.pem
42. Creating CSR: /etc/letsencrypt/csr/0001_csr-certbot.pem
43. Requesting fresh nonce
44. Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce.
45. https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
46. Received response:
47. HTTP 200
48. Server: nginx
49. Date: Sat, 19 Oct 2019 22:16:26 GMT
50. Connection: keep-alive
51. Cache-Control: public, max-age=0, no-cache
52. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
53. Replay-Nonce: 0001Pwi0lAC_3jaKXd42fBGclGUxAV9UjXogEvmX_G-e4dQ
54. X-Frame-Options: DENY
55. Strict-Transport-Security: max-age=604800
56.  
57.  
58. Storing nonce: 0001Pwi0lAC_3jaKXd42fBGclGUxAV9UjXogEvmX_G-e4dQ
59. JWS payload:
60. b'{\n "identifiers": [\n {\n "value": "gordonbanderson.com",\n "type": "dns"\n },\n {\n "value": "www.gordonbanderson.com",\n "type": "dns"\n }\n ]\n}'
61. Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order:
62. {
63. "signature": "A5Oxd0c5y5EV4hjL1Eqgo40NTHuDUAvV1uU-E1ikf0JBL8TMtvZCm3E4C94sj0pvHO5lBq6GmxrDIPJym9t0kZBrqt3UJJgXshRWgo3IVEtpZcx1NZfqUkpgbV79NUVnYFoj0hwFHy1ctqN8OSAga15Pl4qDBrEREWYc5L8Zuv_rcCAV2m6pJ9k7ctg0l2FMAgQANzSRqbv7nzRLlBMPqDLQmuNNG4rZSCdr2DisEJpKOrPeTEBNwknbCdigIT7QSAda4CCqnZHvcDTwUyC1Wbjs7yKS9sOWSBXPx5daq4Vm1wRq6pGC3NEBrs_A_BlJvvWXNz7-BSqrwF8gCX2Olg",
64. "protected": "eyJhbGciOiAiUlMyNTYiLCAibm9uY2UiOiAiMDAwMVB3aTBsQUNfM2phS1hkNDJmQkdjbEdVeEFWOVVqWG9nRXZtWF9HLWU0ZFEiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMTM2NzcyNCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ",
65. "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInZhbHVlIjogImdvcmRvbmJhbmRlcnNvbi5jb20iLAogICAgICAidHlwZSI6ICJkbnMiCiAgICB9LAogICAgewogICAgICAidmFsdWUiOiAid3d3LmdvcmRvbmJhbmRlcnNvbi5jb20iLAogICAgICAidHlwZSI6ICJkbnMiCiAgICB9CiAgXQp9"
66. }
67. https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 511
68. Received response:
69. HTTP 201
70. Server: nginx
71. Date: Sat, 19 Oct 2019 22:16:26 GMT
72. Content-Type: application/json
73. Content-Length: 511
74. Connection: keep-alive
75. Boulder-Requester: 11367724
76. Cache-Control: public, max-age=0, no-cache
77. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
78. Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/11367724/56944577
79. Replay-Nonce: 0002OJkHYqwXFKJtcayUASWGYPKoaf65zOW5IkmnlwbHpRo
80. X-Frame-Options: DENY
81. Strict-Transport-Security: max-age=604800
82.  
83. {
84. "status": "pending",
85. "expires": "2019-10-26T22:16:26.724093263Z",
86. "identifiers": [
87. {
88. "type": "dns",
89. "value": "gordonbanderson.com"
90. },
91. {
92. "type": "dns",
93. "value": "www.gordonbanderson.com"
94. }
95. ],
96. "authorizations": [
97. "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751863",
98. "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751864"
99. ],
100. "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11367724/56944577"
101. }
102. Storing nonce: 0002OJkHYqwXFKJtcayUASWGYPKoaf65zOW5IkmnlwbHpRo
103. Sending GET request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751863.
104. https://acme-staging-v02.api.letsencrypt.org:443 "GET /acme/authz-v3/15751863 HTTP/1.1" 200 815
105. Received response:
106. HTTP 200
107. Server: nginx
108. Date: Sat, 19 Oct 2019 22:16:26 GMT
109. Content-Type: application/json
110. Content-Length: 815
111. Connection: keep-alive
112. Cache-Control: public, max-age=0, no-cache
113. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
114. X-Frame-Options: DENY
115. Strict-Transport-Security: max-age=604800
116.  
117. {
118. "identifier": {
119. "type": "dns",
120. "value": "gordonbanderson.com"
121. },
122. "status": "pending",
123. "expires": "2019-10-26T22:16:26Z",
124. "challenges": [
125. {
126. "type": "http-01",
127. "status": "pending",
128. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/uN9WLg",
129. "token": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM"
130. },
131. {
132. "type": "dns-01",
133. "status": "pending",
134. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/65o4xQ",
135. "token": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM"
136. },
137. {
138. "type": "tls-alpn-01",
139. "status": "pending",
140. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/X0XkWg",
141. "token": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM"
142. }
143. ]
144. }
145. Sending GET request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751864.
146. https://acme-staging-v02.api.letsencrypt.org:443 "GET /acme/authz-v3/15751864 HTTP/1.1" 200 819
147. Received response:
148. HTTP 200
149. Server: nginx
150. Date: Sat, 19 Oct 2019 22:16:27 GMT
151. Content-Type: application/json
152. Content-Length: 819
153. Connection: keep-alive
154. Cache-Control: public, max-age=0, no-cache
155. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
156. X-Frame-Options: DENY
157. Strict-Transport-Security: max-age=604800
158.  
159. {
160. "identifier": {
161. "type": "dns",
162. "value": "www.gordonbanderson.com"
163. },
164. "status": "pending",
165. "expires": "2019-10-26T22:16:26Z",
166. "challenges": [
167. {
168. "type": "http-01",
169. "status": "pending",
170. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/XXYyoA",
171. "token": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI"
172. },
173. {
174. "type": "dns-01",
175. "status": "pending",
176. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/TRaLhA",
177. "token": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI"
178. },
179. {
180. "type": "tls-alpn-01",
181. "status": "pending",
182. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/nMDrTg",
183. "token": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI"
184. }
185. ]
186. }
187. Performing the following challenges:
188. http-01 challenge for gordonbanderson.com
189. http-01 challenge for www.gordonbanderson.com
190. Using the webroot path /var/www/gba/public for all unmatched domains.
191. Creating root challenges validation dir at /var/www/gba/public/.well-known/acme-challenge
192. Creating root challenges validation dir at /var/www/gba/public/.well-known/acme-challenge
193. Attempting to save validation to /var/www/gba/public/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM
194. Attempting to save validation to /var/www/gba/public/.well-known/acme-challenge/AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI
195. Waiting for verification...
196. JWS payload:
197. b'{\n "resource": "challenge",\n "type": "http-01",\n "keyAuthorization": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM.XI2kjTbNuK64xOBk6_cdZ90WLZgP4BbnmqAxHv2iOFw"\n}'
198. Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/uN9WLg:
199. {
200. "signature": "JE1RLbO9uO3RxmPW_rXSsubDdeU7X6nR3Hz1JY_6_0zrdNaFkYUDXrY_eJvUjSphfAZNOicCJbNBq7kftABObSi9wm3vt5mOmRth1UdzUigsIjWj6Yib1dDsI7oZsYhGGP8y79FVFVEWmOkTf2njEG7YdkKnsXOcMLc0g2rKA01Ls4xxP1enr9WEp_1SUSYPmW_u1HGhj_y6qmq1fqng4EHITCXzAwcNwyyxb0-uIrT2YV-hzlqpNreiC6Lbz74Ixavs5Eyy9wEoGTLaF4WDI8Rtv8YYmzRddZElFVPn6n3YgE9tJ8Sf0697BtRQs0Zb_ezz8dQ3HYFE_8POP638Vw",
201. "protected": "eyJhbGciOiAiUlMyNTYiLCAibm9uY2UiOiAiMDAwMk9Ka0hZcXdYRktKdGNheVVBU1dHWVBLb2FmNjV6T1c1SWttbmx3YkhwUm8iLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMTM2NzcyNCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8xNTc1MTg2My91TjlXTGcifQ",
202. "payload": "ewogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJ0eXBlIjogImh0dHAtMDEiLAogICJrZXlBdXRob3JpemF0aW9uIjogInFlUDk5TlBkZGxXVzctMUdwbkFBYS1oTHZOazRibU9seGVGMWNaZUk3Rk0uWEkya2pUYk51SzY0eE9CazZfY2RaOTBXTFpnUDRCYm5tcUF4SHYyaU9GdyIKfQ"
203. }
204. https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/15751863/uN9WLg HTTP/1.1" 200 191
205. Received response:
206. HTTP 200
207. Server: nginx
208. Date: Sat, 19 Oct 2019 22:16:27 GMT
209. Content-Type: application/json
210. Content-Length: 191
211. Connection: keep-alive
212. Boulder-Requester: 11367724
213. Cache-Control: public, max-age=0, no-cache
214. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751863>;rel="up"
215. Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/uN9WLg
216. Replay-Nonce: 0002vcFzDo0kIFKyyVV38e4euINO157y9cn4y9UgiW7JpFc
217. X-Frame-Options: DENY
218. Strict-Transport-Security: max-age=604800
219.  
220. {
221. "type": "http-01",
222. "status": "pending",
223. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/uN9WLg",
224. "token": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM"
225. }
226. Storing nonce: 0002vcFzDo0kIFKyyVV38e4euINO157y9cn4y9UgiW7JpFc
227. JWS payload:
228. b'{\n "resource": "challenge",\n "type": "http-01",\n "keyAuthorization": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI.XI2kjTbNuK64xOBk6_cdZ90WLZgP4BbnmqAxHv2iOFw"\n}'
229. Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/XXYyoA:
230. {
231. "signature": "IOXMhIycp46ed-FIjvkqDfSIkpCOuEDppvBJIdnU3azDoi5amPZmmcrjHDW-wYoKknWtAb6qJVC4nMF5H__TD7hgUeiwNyNJN1kuUERXVqM44Z8YDxVGldA0IrrKf9cTzKnCBl7Vey07uADDRtgSZveNXBJvZ8rAy6awezYa-I2rxld3MsVGOEdXw7orn2tTJp0QR0E7a7U-JsItAB9my0B8bsVufeMD1GjKxn5O6G5IiVeFNwy1r4wfZGZcCZKXv9aX2SNky5u7M93MENKYp-yJnlfjrGT0NkfgESklJtZ6bxo-rD6zuKrSsqY3WWwP72D1deYhoEVpuHpNmks2GA",
232. "protected": "eyJhbGciOiAiUlMyNTYiLCAibm9uY2UiOiAiMDAwMnZjRnpEbzBrSUZLeXlWVjM4ZTRldUlOTzE1N3k5Y240eTlVZ2lXN0pwRmMiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMTM2NzcyNCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8xNTc1MTg2NC9YWFl5b0EifQ",
233. "payload": "ewogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJ0eXBlIjogImh0dHAtMDEiLAogICJrZXlBdXRob3JpemF0aW9uIjogIkFNdEpWdkNIT2pLclVocmg5d1d2ZHlkbVhrcXg0LVJaMXJhTGRRWVlodUkuWEkya2pUYk51SzY0eE9CazZfY2RaOTBXTFpnUDRCYm5tcUF4SHYyaU9GdyIKfQ"
234. }
235. https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/15751864/XXYyoA HTTP/1.1" 200 191
236. Received response:
237. HTTP 200
238. Server: nginx
239. Date: Sat, 19 Oct 2019 22:16:27 GMT
240. Content-Type: application/json
241. Content-Length: 191
242. Connection: keep-alive
243. Boulder-Requester: 11367724
244. Cache-Control: public, max-age=0, no-cache
245. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751864>;rel="up"
246. Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/XXYyoA
247. Replay-Nonce: 0001K4mX6OpgorvBHE2KzHQLYWqvHhGaltrnkm-gDKe4MDk
248. X-Frame-Options: DENY
249. Strict-Transport-Security: max-age=604800
250.  
251. {
252. "type": "http-01",
253. "status": "pending",
254. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/XXYyoA",
255. "token": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI"
256. }
257. Storing nonce: 0001K4mX6OpgorvBHE2KzHQLYWqvHhGaltrnkm-gDKe4MDk
258. Sending GET request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751863.
259. https://acme-staging-v02.api.letsencrypt.org:443 "GET /acme/authz-v3/15751863 HTTP/1.1" 200 2047
260. Received response:
261. HTTP 200
262. Server: nginx
263. Date: Sat, 19 Oct 2019 22:16:30 GMT
264. Content-Type: application/json
265. Content-Length: 2047
266. Connection: keep-alive
267. Cache-Control: public, max-age=0, no-cache
268. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
269. X-Frame-Options: DENY
270. Strict-Transport-Security: max-age=604800
271.  
272. {
273. "identifier": {
274. "type": "dns",
275. "value": "gordonbanderson.com"
276. },
277. "status": "invalid",
278. "expires": "2019-10-26T22:16:26Z",
279. "challenges": [
280. {
281. "type": "http-01",
282. "status": "invalid",
283. "error": {
284. "type": "urn:ietf:params:acme:error:unauthorized",
285. "detail": "Invalid response from https://arbroathunited.cc/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM [165.22.249.136]: \"\u003chtml\u003e\\r\\n\u003chead\u003e\u003ctitle\u003e404 Not Found\u003c/title\u003e\u003c/head\u003e\\r\\n\u003cbody\u003e\\r\\n\u003ccenter\u003e\u003ch1\u003e404 Not Found\u003c/h1\u003e\u003c/center\u003e\\r\\n\u003chr\u003e\u003ccenter\u003enginx\u003c/center\u003e\\r\\n\"",
286. "status": 403
287. },
288. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/uN9WLg",
289. "token": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM",
290. "validationRecord": [
291. {
292. "url": "http://gordonbanderson.com/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM",
293. "hostname": "gordonbanderson.com",
294. "port": "80",
295. "addressesResolved": [
296. "165.22.249.136"
297. ],
298. "addressUsed": "165.22.249.136"
299. },
300. {
301. "url": "https://arbroathunited.cc/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM",
302. "hostname": "arbroathunited.cc",
303. "port": "443",
304. "addressesResolved": [
305. "165.22.249.136"
306. ],
307. "addressUsed": "165.22.249.136"
308. }
309. ]
310. },
311. {
312. "type": "dns-01",
313. "status": "invalid",
314. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/65o4xQ",
315. "token": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM"
316. },
317. {
318. "type": "tls-alpn-01",
319. "status": "invalid",
320. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751863/X0XkWg",
321. "token": "qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM"
322. }
323. ]
324. }
325. Sending GET request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15751864.
326. https://acme-staging-v02.api.letsencrypt.org:443 "GET /acme/authz-v3/15751864 HTTP/1.1" 200 1511
327. Received response:
328. HTTP 200
329. Server: nginx
330. Date: Sat, 19 Oct 2019 22:16:31 GMT
331. Content-Type: application/json
332. Content-Length: 1511
333. Connection: keep-alive
334. Cache-Control: public, max-age=0, no-cache
335. Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
336. X-Frame-Options: DENY
337. Strict-Transport-Security: max-age=604800
338.  
339. {
340. "identifier": {
341. "type": "dns",
342. "value": "www.gordonbanderson.com"
343. },
344. "status": "valid",
345. "expires": "2019-11-25T22:16:26Z",
346. "challenges": [
347. {
348. "type": "http-01",
349. "status": "valid",
350. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/XXYyoA",
351. "token": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI",
352. "validationRecord": [
353. {
354. "url": "http://www.gordonbanderson.com/.well-known/acme-challenge/AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI",
355. "hostname": "www.gordonbanderson.com",
356. "port": "80",
357. "addressesResolved": [
358. "165.22.249.136"
359. ],
360. "addressUsed": "165.22.249.136"
361. },
362. {
363. "url": "https://gordonbanderson.com/.well-known/acme-challenge/AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI",
364. "hostname": "gordonbanderson.com",
365. "port": "443",
366. "addressesResolved": [
367. "165.22.249.136"
368. ],
369. "addressUsed": "165.22.249.136"
370. }
371. ]
372. },
373. {
374. "type": "dns-01",
375. "status": "pending",
376. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/TRaLhA",
377. "token": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI"
378. },
379. {
380. "type": "tls-alpn-01",
381. "status": "pending",
382. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15751864/nMDrTg",
383. "token": "AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI"
384. }
385. ]
386. }
387. Reporting to user: The following errors were reported by the server:
388.  
389. Domain: gordonbanderson.com
390. Type: unauthorized
391. Detail: Invalid response from https://arbroathunited.cc/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM [165.22.249.136]: "<html>\r\n<head><title>404 Not Found</title></head>\r\n<body>\r\n<center><h1>404 Not Found</h1></center>\r\n<hr><center>nginx</center>\r\n"
392.  
393. To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
394. Encountered exception:
395. Traceback (most recent call last):
396. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
397. self._respond(aauthzrs, resp, best_effort)
398. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 161, in _respond
399. self._poll_challenges(aauthzrs, chall_update, best_effort)
400. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 232, in _poll_challenges
401. raise errors.FailedChallenges(all_failed_achalls)
402. certbot.errors.FailedChallenges: Failed authorization procedure. gordonbanderson.com (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from https://arbroathunited.cc/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM [165.22.249.136]: "<html>\r\n<head><title>404 Not Found</title></head>\r\n<body>\r\n<center><h1>404 Not Found</h1></center>\r\n<hr><center>nginx</center>\r\n"
403.  
404. Calling registered functions
405. Cleaning up challenges
406. Removing /var/www/gba/public/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM
407. Removing /var/www/gba/public/.well-known/acme-challenge/AMtJVvCHOjKrUhrh9wWvdydmXkqx4-RZ1raLdQYYhuI
408. All challenges cleaned up
409. Exiting abnormally:
410. Traceback (most recent call last):
411. File "/usr/bin/certbot", line 11, in <module>
412. load_entry_point('certbot==0.28.0', 'console_scripts', 'certbot')()
413. File "/usr/lib/python3/dist-packages/certbot/main.py", line 1340, in main
414. return config.func(config, plugins)
415. File "/usr/lib/python3/dist-packages/certbot/main.py", line 1225, in certonly
416. lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
417. File "/usr/lib/python3/dist-packages/certbot/main.py", line 121, in _get_and_save_cert
418. lineage = le_client.obtain_and_enroll_certificate(domains, certname)
419. File "/usr/lib/python3/dist-packages/certbot/client.py", line 392, in obtain_and_enroll_certificate
420. cert, chain, key, _ = self.obtain_certificate(domains)
421. File "/usr/lib/python3/dist-packages/certbot/client.py", line 335, in obtain_certificate
422. orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
423. File "/usr/lib/python3/dist-packages/certbot/client.py", line 371, in _get_order_and_authorizations
424. authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
425. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
426. self._respond(aauthzrs, resp, best_effort)
427. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 161, in _respond
428. self._poll_challenges(aauthzrs, chall_update, best_effort)
429. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 232, in _poll_challenges
430. raise errors.FailedChallenges(all_failed_achalls)
431. certbot.errors.FailedChallenges: Failed authorization procedure. gordonbanderson.com (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from https://arbroathunited.cc/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM [165.22.249.136]: "<html>\r\n<head><title>404 Not Found</title></head>\r\n<body>\r\n<center><h1>404 Not Found</h1></center>\r\n<hr><center>nginx</center>\r\n"
432. Failed authorization procedure. gordonbanderson.com (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from https://arbroathunited.cc/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM [165.22.249.136]: "<html>\r\n<head><title>404 Not Found</title></head>\r\n<body>\r\n<center><h1>404 Not Found</h1></center>\r\n<hr><center>nginx</center>\r\n"
433.  
434. IMPORTANT NOTES:
435. - The following errors were reported by the server:
436.  
437. Domain: gordonbanderson.com
438. Type: unauthorized
439. Detail: Invalid response from
440. https://arbroathunited.cc/.well-known/acme-challenge/qeP99NPddlWW7-1GpnAAa-hLvNk4bmOlxeF1cZeI7FM
441. [165.22.249.136]: "<html>\r\n<head><title>404 Not
442. Found</title></head>\r\n<body>\r\n<center><h1>404 Not
443. Found</h1></center>\r\n<hr><center>nginx</center>\r\n"
444.  
445. To fix these errors, please make sure that your domain name was
446. entered correctly and the DNS A/AAAA record(s) for that domain
447. contain(s) the right IP address.