Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 2019-08-15 17:28:17,558:DEBUG:certbot.main:certbot version: 0.36.0
- 2019-08-15 17:28:17,558:DEBUG:certbot.main:Arguments: ['--nginx', '-d', 'mail2.dm.domain.ru', '--dry-run']
- 2019-08-15 17:28:17,558:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
- 2019-08-15 17:28:17,592:DEBUG:certbot.log:Root logging level set at 20
- 2019-08-15 17:28:17,592:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
- 2019-08-15 17:28:17,594:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
- 2019-08-15 17:28:18,309:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
- Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690>
- Prep: True
- 2019-08-15 17:28:18,310:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
- Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690>
- Prep: True
- 2019-08-15 17:28:18,311:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690> and installer <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690>
- 2019-08-15 17:28:18,311:INFO:certbot.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
- 2019-08-15 17:28:18,353:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, terms_of_service_agreed=None, agreement=None, only_return_existing=None, contact=(), key=None, external_account_binding=None), uri=u'https://acme-staging-v02.api.letsencrypt.org/acme/acct/10568145', new_authzr_uri=None, terms_of_service=None), 44788b690fe9a027bd1be7ed4aa495cc, Meta(creation_host=u'mail2.dm.domain.ru', creation_dt=datetime.datetime(2019, 8, 15, 4, 39, 16, tzinfo=<UTC>)))>
- 2019-08-15 17:28:18,356:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory.
- 2019-08-15 17:28:18,362:INFO:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org
- 2019-08-15 17:28:19,168:DEBUG:requests.packages.urllib3.connectionpool:"GET /directory HTTP/1.1" 200 724
- 2019-08-15 17:28:19,170:DEBUG:acme.client:Received response:
- HTTP 200
- content-length: 724
- expires: Thu, 15 Aug 2019 07:28:19 GMT
- strict-transport-security: max-age=604800
- server: nginx
- connection: keep-alive
- pragma: no-cache
- cache-control: max-age=0, no-cache, no-store
- date: Thu, 15 Aug 2019 07:28:19 GMT
- x-frame-options: DENY
- content-type: application/json
- {
- "O2L2gdwhGCE": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change",
- "meta": {
- "caaIdentities": [
- "letsencrypt.org"
- ],
- "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
- "website": "https://letsencrypt.org/docs/staging-environment/"
- },
- "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct",
- "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce",
- "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order",
- "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert"
- }
- 2019-08-15 17:28:19,172:INFO:certbot.main:Obtaining a new certificate
- 2019-08-15 17:28:19,411:DEBUG:acme.client:Requesting fresh nonce
- 2019-08-15 17:28:19,412:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce.
- 2019-08-15 17:28:19,724:DEBUG:requests.packages.urllib3.connectionpool:"HEAD /acme/new-nonce HTTP/1.1" 200 0
- 2019-08-15 17:28:19,725:DEBUG:acme.client:Received response:
- HTTP 200
- content-length: 0
- expires: Thu, 15 Aug 2019 07:28:19 GMT
- strict-transport-security: max-age=604800
- server: nginx
- connection: keep-alive
- link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- pragma: no-cache
- cache-control: max-age=0, no-cache, no-store
- date: Thu, 15 Aug 2019 07:28:19 GMT
- x-frame-options: DENY
- replay-nonce: 0001TLpyECkbNJqbG7geex05aEut7XPrUm1EqqK3LLEy4hw
- 2019-08-15 17:28:19,726:DEBUG:acme.client:Storing nonce: 0001TLpyECkbNJqbG7geex05aEut7XPrUm1EqqK3LLEy4hw
- 2019-08-15 17:28:19,727:DEBUG:acme.client:JWS payload:
- {
- "identifiers": [
- {
- "type": "dns",
- "value": "mail2.dm.domain.ru"
- }
- ]
- }
- 2019-08-15 17:28:19,733:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order:
- {
- "protected": "eyJub25jZSI6ICIwMDAxVExweUVDa2JOSnFiRzdnZWV4MDVhRXV0N1hQclVtMUVxcUszTExFeTRodyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMDU2ODE0NSIsICJhbGciOiAiUlMyNTYifQ",
- "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwgCiAgICAgICJ2YWx1ZSI6ICJtYWlsMi5kdi52b3N0b2sucnUiCiAgICB9CiAgXQp9",
- "signature": "Cl732NDZ9xCWDrL8L7qjB5ouyZjtJ79puEb3Fu_5y06YMwfh3kThBK98Vy_1RX6Bg1zXUaADldvhvlLIxWb-2KioMTfnAYoAvfPBHrlttj1f4buugmc3IMjsRqcxkhd66MfzqGujumeGYfZy77adPp91_NOM1cEJrNlI6bMriMQV7_HNwg3eiSwEqsuLHD5qodQAmSii9QTC9UfXGKYW-vPQl3Iv0J_oFZF6-kh0qKnXD48A2SIJXKpVu51z3Hqt-gwVq2NQMiCW3ASSR2acXnEu1FCyy61XBOZbcttJNz9g5HVFi_osZ_gRU_Xap-WlOBgcQkNQdjTvk0HGDU3duw"
- }
- 2019-08-15 17:28:20,059:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/new-order HTTP/1.1" 201 359
- 2019-08-15 17:28:20,061:DEBUG:acme.client:Received response:
- HTTP 201
- content-length: 359
- expires: Thu, 15 Aug 2019 07:28:20 GMT
- cache-control: max-age=0, no-cache, no-store
- strict-transport-security: max-age=604800
- server: nginx
- connection: keep-alive
- link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- location: https://acme-staging-v02.api.letsencrypt.org/acme/order/10568145/45155573
- pragma: no-cache
- boulder-requester: 10568145
- date: Thu, 15 Aug 2019 07:28:20 GMT
- x-frame-options: DENY
- content-type: application/json
- replay-nonce: 0002qe6yfoJO9m5XMhXyzfItqIBELyr13SvtTzFJE9ps0CA
- {
- "status": "pending",
- "expires": "2019-08-22T07:28:19.904067505Z",
- "identifiers": [
- {
- "type": "dns",
- "value": "mail2.dm.domain.ru"
- }
- ],
- "authorizations": [
- "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220"
- ],
- "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/10568145/45155573"
- }
- 2019-08-15 17:28:20,062:DEBUG:acme.client:Storing nonce: 0002qe6yfoJO9m5XMhXyzfItqIBELyr13SvtTzFJE9ps0CA
- 2019-08-15 17:28:20,062:DEBUG:acme.client:JWS payload:
- 2019-08-15 17:28:20,068:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220:
- {
- "protected": "eyJub25jZSI6ICIwMDAycWU2eWZvSk85bTVYTWhYeXpmSXRxSUJFTHlyMTNTdnRUekZKRTlwczBDQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My80MTk2MjIwIiwgImtpZCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTA1NjgxNDUiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "TfCc4BnZsilZKo8Jrla47n_xb_BrVhSJ3kiphdQzdY3NDLE7DIiN9hNBgKoUAYE4K7WwOyVw_ef_qe-Ik5UwHDgCyLlSq-nYbpyZPsysjVnIj85JM3z0vaNNEKyZ_mGqND0Xz6QRxm8rYmYc4_551neElJm-veMhBYHvOhrq60oL10c3EpSC_UE73c5iqvc-SqW76t9rw_ygl999Q2oL3Yd5qaPtVBXNF32q0MAfdmnqrrEANndbJROGu2ybknxqn5j-vTZCSCNxnqPXGMwxZNgE2fd1qwV1W61wnPJYSm6QS6XVUE1CW506Zv5qb16jS7VcVtXSdlS4yfSbpro_jg"
- }
- 2019-08-15 17:28:20,367:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/4196220 HTTP/1.1" 200 811
- 2019-08-15 17:28:20,369:DEBUG:acme.client:Received response:
- HTTP 200
- content-length: 811
- expires: Thu, 15 Aug 2019 07:28:20 GMT
- cache-control: max-age=0, no-cache, no-store
- strict-transport-security: max-age=604800
- server: nginx
- connection: keep-alive
- link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- pragma: no-cache
- boulder-requester: 10568145
- date: Thu, 15 Aug 2019 07:28:20 GMT
- x-frame-options: DENY
- content-type: application/json
- replay-nonce: 0002scLus0Dz3bXuH5gGEbvZtcExt5aLY3GKtjbVHJkHv3w
- {
- "identifier": {
- "type": "dns",
- "value": "mail2.dm.domain.ru"
- },
- "status": "pending",
- "expires": "2019-08-22T07:28:19Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/i9Ee1w",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/YY52UQ",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- }
- ]
- }
- 2019-08-15 17:28:20,370:DEBUG:acme.client:Storing nonce: 0002scLus0Dz3bXuH5gGEbvZtcExt5aLY3GKtjbVHJkHv3w
- 2019-08-15 17:28:20,371:INFO:certbot.auth_handler:Performing the following challenges:
- 2019-08-15 17:28:20,372:INFO:certbot.auth_handler:http-01 challenge for mail2.dm.domain.ru
- 2019-08-15 17:28:20,423:INFO:certbot_nginx.http_01:Using default address 80 for authentication.
- 2019-08-15 17:28:20,428:DEBUG:certbot_nginx.http_01:Generated server block:
- [[['server'], [['listen', '80'], ['server_name', u'mail2.dm.domain.ru'], ['root', '/var/lib/letsencrypt/http_01_nonexistent'], [['location', '=', u'/.well-known/acme-challenge/vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w'], [['default_type', 'text/plain'], ['return', '200', u'vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w.MiuV_YeJ9d2SYNRegxWtCqYtdOst_qUEpjiyS8cCN0Y']]]]]]
- 2019-08-15 17:28:20,430:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/ssl.tmpl
- 2019-08-15 17:28:20,431:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/iredadmin.tmpl
- 2019-08-15 17:28:20,432:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/roundcube.tmpl
- 2019-08-15 17:28:20,433:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/client_max_body_size.conf
- 2019-08-15 17:28:20,434:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/00-default.conf
- 2019-08-15 17:28:20,434:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/gzip.conf
- 2019-08-15 17:28:20,435:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/headers.conf
- 2019-08-15 17:28:20,436:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/sendfile.conf
- 2019-08-15 17:28:20,437:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/stub_status.tmpl
- 2019-08-15 17:28:20,438:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
- 2019-08-15 17:28:20,439:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/php-fpm.conf
- 2019-08-15 17:28:20,439:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/cache.conf
- 2019-08-15 17:28:20,440:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/netdata.tmpl
- 2019-08-15 17:28:20,441:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/types_hash_max_size.conf
- 2019-08-15 17:28:20,442:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/0-general.conf
- 2019-08-15 17:28:20,443:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/00-default-ssl.conf
- 2019-08-15 17:28:20,444:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/log.conf
- 2019-08-15 17:28:20,445:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/default_type.conf
- 2019-08-15 17:28:20,445:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/misc.tmpl
- 2019-08-15 17:28:20,446:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/sogo.tmpl
- 2019-08-15 17:28:20,447:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/server_tokens.conf
- 2019-08-15 17:28:20,448:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/mime_types.conf
- 2019-08-15 17:28:20,449:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
- 2019-08-15 17:28:20,449:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/php-catchall.tmpl
- 2019-08-15 17:28:20,452:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
- user nginx;
- worker_processes 1;
- pid /var/run/nginx.pid;
- events {
- worker_connections 1024;
- }
- http {
- include /etc/letsencrypt/le_http_01_cert_challenge.conf;
- server_names_hash_bucket_size 128;
- include /etc/nginx/conf-enabled/*.conf;
- include /etc/nginx/sites-enabled/*.conf;
- }
- 2019-08-15 17:28:21,490:INFO:certbot.auth_handler:Waiting for verification...
- 2019-08-15 17:28:21,492:DEBUG:acme.client:JWS payload:
- {
- "type": "http-01",
- "resource": "challenge"
- }
- 2019-08-15 17:28:21,499:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA:
- {
- "protected": "eyJub25jZSI6ICIwMDAyc2NMdXMwRHozYlh1SDVnR0Vidlp0Y0V4dDVhTFkzR0t0amJWSEprSHYzdyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My80MTk2MjIwL3RLV1dwQSIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzEwNTY4MTQ1IiwgImFsZyI6ICJSUzI1NiJ9",
- "payload": "ewogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
- "signature": "A6zH2DjO1Dyu2m2vL_Myvzoto65HTNbtQHz_1cdRVkciIafnTTDZg5_9k798Khi2Ve5klOxUW32njp6u2R5fOyyidBpHsr77bBJAgClRO6suUjhtszX3dep5iRHlP8noA_3W1wOrHNsfqeC2F-dkmTPdM3bZDL4x0eGm_AxuM3Yt5GlTzaUzhKadFPEkERr2SOmLEXdhf8dLSHnY37c3_PzAeqRKVl7b1PLIinMK79LNyfyj2B8ytgLaPyIMLVYPDLxcXGRpjUAn77CCF0WydkYaJkJ1Gh9J94o-QidLDfKg_N-aX15uKXxUfupyORAx7RB-zs8Nm-RjHM8hqrQ8uQ"
- }
- 2019-08-15 17:28:21,810:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/chall-v3/4196220/tKWWpA HTTP/1.1" 200 190
- 2019-08-15 17:28:21,811:DEBUG:acme.client:Received response:
- HTTP 200
- content-length: 190
- expires: Thu, 15 Aug 2019 07:28:21 GMT
- cache-control: max-age=0, no-cache, no-store
- strict-transport-security: max-age=604800
- server: nginx
- connection: keep-alive
- link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220>;rel="up"
- location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA
- pragma: no-cache
- boulder-requester: 10568145
- date: Thu, 15 Aug 2019 07:28:21 GMT
- x-frame-options: DENY
- content-type: application/json
- replay-nonce: 00016nrJ1NTNMaqTxiABf7VT6MjqZAVyTNjUQ3onf7UGXws
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- }
- 2019-08-15 17:28:21,812:DEBUG:acme.client:Storing nonce: 00016nrJ1NTNMaqTxiABf7VT6MjqZAVyTNjUQ3onf7UGXws
- 2019-08-15 17:28:22,814:DEBUG:acme.client:JWS payload:
- 2019-08-15 17:28:22,820:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220:
- {
- "protected": "eyJub25jZSI6ICIwMDAxNm5ySjFOVE5NYXFUeGlBQmY3VlQ2TWpxWkFWeVROalVRM29uZjdVR1h3cyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My80MTk2MjIwIiwgImtpZCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTA1NjgxNDUiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "B3IKk1806FFpkleeV91jwTsTW1UahSgn3N9acF-lXWQV9ByqnDMQ_9t2cbQbEm7qRUMrstPaMbDFqCQuuRxKQ7ZBpgtsOkVc3dDBIfZ-zrmcC0xa4Bw-raAWXtRB0ioc4azB7D7yr6Cw0OoWigqWSDfBXj6NmdghprLFCpjYaYenVju6zUmED7sPP2fUrtWbIiAUpRD1QDqtsBJxXzIFMEPCcBXemfCHR4-TFqOAMRdc5UTMtCfYIz8vyb9xwVeapdIsgBwiwH0ZplBdTzv_UI9nWyU6Ddb7s8Ck6iQEtusQgcEuEP-pJ0GHMZu1hlB4_WvKCQLDYsAU5A7Dh-mbtg"
- }
- 2019-08-15 17:28:23,447:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/4196220 HTTP/1.1" 200 811
- 2019-08-15 17:28:23,449:DEBUG:acme.client:Received response:
- HTTP 200
- content-length: 811
- expires: Thu, 15 Aug 2019 07:28:23 GMT
- cache-control: max-age=0, no-cache, no-store
- strict-transport-security: max-age=604800
- server: nginx
- connection: keep-alive
- link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- pragma: no-cache
- boulder-requester: 10568145
- date: Thu, 15 Aug 2019 07:28:23 GMT
- x-frame-options: DENY
- content-type: application/json
- replay-nonce: 0002Bqz3oup1WdiUQZzvZLnvjDxdbeElthfCsFJzxrjWBr0
- {
- "identifier": {
- "type": "dns",
- "value": "mail2.dm.domain.ru"
- },
- "status": "pending",
- "expires": "2019-08-22T07:28:19Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/i9Ee1w",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/YY52UQ",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- }
- ]
- }
- 2019-08-15 17:28:23,450:DEBUG:acme.client:Storing nonce: 0002Bqz3oup1WdiUQZzvZLnvjDxdbeElthfCsFJzxrjWBr0
- 2019-08-15 17:28:26,455:DEBUG:acme.client:JWS payload:
- 2019-08-15 17:28:26,461:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220:
- {
- "protected": "eyJub25jZSI6ICIwMDAyQnF6M291cDFXZGlVUVp6dlpMbnZqRHhkYmVFbHRoZkNzRkp6eHJqV0JyMCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My80MTk2MjIwIiwgImtpZCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTA1NjgxNDUiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "AWPOTFeseNO2R4Q-OW9dC9gEM6A2EUmzwwi-zM1LDlP6C_6ZdEcqRAxdwXG8s9Mo1J_OSiilAZD0uwJtzZINd-q_qGA1YqwmaXJwsOto2Tfqp_H_njeqTC2lVplxSthikLMnZgW_410XF9DLpRavpWszM74RyxljkzKimlmV5PIxALIDz1AlJKB7QOHv_2sXH2_5yDVCneOsaOzGPknXaXalcoMktsMvPc2mkDJOFcWlJXJbSR86CVQFUfRaEm8siDHXXGGq57NBMJN7ztySVXPkiWxVieN6TcjJVvKWLuhwgrN1z55vMY-IwNP2TXQzOCgpnJVTyKCz3sE3fKv_xA"
- }
- 2019-08-15 17:28:26,762:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/4196220 HTTP/1.1" 200 1335
- 2019-08-15 17:28:26,764:DEBUG:acme.client:Received response:
- HTTP 200
- content-length: 1335
- expires: Thu, 15 Aug 2019 07:28:26 GMT
- cache-control: max-age=0, no-cache, no-store
- strict-transport-security: max-age=604800
- server: nginx
- connection: keep-alive
- link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- pragma: no-cache
- boulder-requester: 10568145
- date: Thu, 15 Aug 2019 07:28:26 GMT
- x-frame-options: DENY
- content-type: application/json
- replay-nonce: 0002msUuep90s67z_E3mfcZ69MoCLWBxLMmpzNBaXwD8BaE
- {
- "identifier": {
- "type": "dns",
- "value": "mail2.dm.domain.ru"
- },
- "status": "invalid",
- "expires": "2019-08-22T07:28:19Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "invalid",
- "error": {
- "type": "urn:ietf:params:acme:error:caa",
- "detail": "CAA record for mail2.dm.domain.ru prevents issuance",
- "status": 403
- },
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w",
- "validationRecord": [
- {
- "url": "http://mail2.dm.domain.ru/.well-known/acme-challenge/vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w",
- "hostname": "mail2.dm.domain.ru",
- "port": "80",
- "addressesResolved": [
- "X.X.X.X"
- ],
- "addressUsed": "X.X.X.X"
- }
- ]
- },
- {
- "type": "dns-01",
- "status": "invalid",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/i9Ee1w",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- },
- {
- "type": "tls-alpn-01",
- "status": "invalid",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/YY52UQ",
- "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
- }
- ]
- }
- 2019-08-15 17:28:26,765:DEBUG:acme.client:Storing nonce: 0002msUuep90s67z_E3mfcZ69MoCLWBxLMmpzNBaXwD8BaE
- 2019-08-15 17:28:26,767:WARNING:certbot.auth_handler:Challenge failed for domain mail2.dm.domain.ru
- 2019-08-15 17:28:26,768:INFO:certbot.auth_handler:http-01 challenge for mail2.dm.domain.ru
- 2019-08-15 17:28:26,769:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
- Domain: mail2.dm.domain.ru
- Type: caa
- Detail: CAA record for mail2.dm.domain.ru prevents issuance
- 2019-08-15 17:28:26,770:DEBUG:certbot.error_handler:Encountered exception:
- Traceback (most recent call last):
- File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
- self._poll_authorizations(authzrs, max_retries, best_effort)
- File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
- raise errors.AuthorizationError('Some challenges have failed.')
- AuthorizationError: Some challenges have failed.
- 2019-08-15 17:28:26,770:DEBUG:certbot.error_handler:Calling registered functions
- 2019-08-15 17:28:26,771:INFO:certbot.auth_handler:Cleaning up challenges
- 2019-08-15 17:28:28,497:DEBUG:certbot.log:Exiting abnormally:
- Traceback (most recent call last):
- File "/usr/bin/certbot", line 9, in <module>
- load_entry_point('certbot==0.36.0', 'console_scripts', 'certbot')()
- File "/usr/lib/python2.7/site-packages/certbot/main.py", line 1381, in main
- return config.func(config, plugins)
- File "/usr/lib/python2.7/site-packages/certbot/main.py", line 1264, in certonly
- lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
- File "/usr/lib/python2.7/site-packages/certbot/main.py", line 120, in _get_and_save_cert
- lineage = le_client.obtain_and_enroll_certificate(domains, certname)
- File "/usr/lib/python2.7/site-packages/certbot/client.py", line 406, in obtain_and_enroll_certificate
- cert, chain, key, _ = self.obtain_certificate(domains)
- File "/usr/lib/python2.7/site-packages/certbot/client.py", line 349, in obtain_certificate
- orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
- File "/usr/lib/python2.7/site-packages/certbot/client.py", line 385, in _get_order_and_authorizations
- authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
- File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
- self._poll_authorizations(authzrs, max_retries, best_effort)
- File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
- raise errors.AuthorizationError('Some challenges have failed.')
- AuthorizationError: Some challenges have failed.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement