API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 15th, 2019
270
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 23.03 KB | None | 0 0
raw download clone embed print report
  1. 2019-08-15 17:28:17,558:DEBUG:certbot.main:certbot version: 0.36.0
  2. 2019-08-15 17:28:17,558:DEBUG:certbot.main:Arguments: ['--nginx', '-d', 'mail2.dm.domain.ru', '--dry-run']
  3. 2019-08-15 17:28:17,558:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
  4. 2019-08-15 17:28:17,592:DEBUG:certbot.log:Root logging level set at 20
  5. 2019-08-15 17:28:17,592:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
  6. 2019-08-15 17:28:17,594:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
  7. 2019-08-15 17:28:18,309:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
  8. Description: Nginx Web Server plugin
  9. Interfaces: IAuthenticator, IInstaller, IPlugin
  10. Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
  11. Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690>
  12. Prep: True
  13. 2019-08-15 17:28:18,310:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
  14. Description: Nginx Web Server plugin
  15. Interfaces: IAuthenticator, IInstaller, IPlugin
  16. Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
  17. Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690>
  18. Prep: True
  19. 2019-08-15 17:28:18,311:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690> and installer <certbot_nginx.configurator.NginxConfigurator object at 0x7f66b7113690>
  20. 2019-08-15 17:28:18,311:INFO:certbot.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
  21. 2019-08-15 17:28:18,353:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, terms_of_service_agreed=None, agreement=None, only_return_existing=None, contact=(), key=None, external_account_binding=None), uri=u'https://acme-staging-v02.api.letsencrypt.org/acme/acct/10568145', new_authzr_uri=None, terms_of_service=None), 44788b690fe9a027bd1be7ed4aa495cc, Meta(creation_host=u'mail2.dm.domain.ru', creation_dt=datetime.datetime(2019, 8, 15, 4, 39, 16, tzinfo=<UTC>)))>
  22. 2019-08-15 17:28:18,356:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory.
  23. 2019-08-15 17:28:18,362:INFO:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org
  24. 2019-08-15 17:28:19,168:DEBUG:requests.packages.urllib3.connectionpool:"GET /directory HTTP/1.1" 200 724
  25. 2019-08-15 17:28:19,170:DEBUG:acme.client:Received response:
  26. HTTP 200
  27. content-length: 724
  28. expires: Thu, 15 Aug 2019 07:28:19 GMT
  29. strict-transport-security: max-age=604800
  30. server: nginx
  31. connection: keep-alive
  32. pragma: no-cache
  33. cache-control: max-age=0, no-cache, no-store
  34. date: Thu, 15 Aug 2019 07:28:19 GMT
  35. x-frame-options: DENY
  36. content-type: application/json
  37.  
  38. {
  39. "O2L2gdwhGCE": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  40. "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change",
  41. "meta": {
  42. "caaIdentities": [
  43. "letsencrypt.org"
  44. ],
  45. "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
  46. "website": "https://letsencrypt.org/docs/staging-environment/"
  47. },
  48. "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct",
  49. "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce",
  50. "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order",
  51. "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert"
  52. }
  53. 2019-08-15 17:28:19,172:INFO:certbot.main:Obtaining a new certificate
  54. 2019-08-15 17:28:19,411:DEBUG:acme.client:Requesting fresh nonce
  55. 2019-08-15 17:28:19,412:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce.
  56. 2019-08-15 17:28:19,724:DEBUG:requests.packages.urllib3.connectionpool:"HEAD /acme/new-nonce HTTP/1.1" 200 0
  57. 2019-08-15 17:28:19,725:DEBUG:acme.client:Received response:
  58. HTTP 200
  59. content-length: 0
  60. expires: Thu, 15 Aug 2019 07:28:19 GMT
  61. strict-transport-security: max-age=604800
  62. server: nginx
  63. connection: keep-alive
  64. link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
  65. pragma: no-cache
  66. cache-control: max-age=0, no-cache, no-store
  67. date: Thu, 15 Aug 2019 07:28:19 GMT
  68. x-frame-options: DENY
  69. replay-nonce: 0001TLpyECkbNJqbG7geex05aEut7XPrUm1EqqK3LLEy4hw
  70.  
  71.  
  72. 2019-08-15 17:28:19,726:DEBUG:acme.client:Storing nonce: 0001TLpyECkbNJqbG7geex05aEut7XPrUm1EqqK3LLEy4hw
  73. 2019-08-15 17:28:19,727:DEBUG:acme.client:JWS payload:
  74. {
  75. "identifiers": [
  76. {
  77. "type": "dns",
  78. "value": "mail2.dm.domain.ru"
  79. }
  80. ]
  81. }
  82. 2019-08-15 17:28:19,733:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order:
  83. {
  84. "protected": "eyJub25jZSI6ICIwMDAxVExweUVDa2JOSnFiRzdnZWV4MDVhRXV0N1hQclVtMUVxcUszTExFeTRodyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMDU2ODE0NSIsICJhbGciOiAiUlMyNTYifQ",
  85. "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwgCiAgICAgICJ2YWx1ZSI6ICJtYWlsMi5kdi52b3N0b2sucnUiCiAgICB9CiAgXQp9",
  86. "signature": "Cl732NDZ9xCWDrL8L7qjB5ouyZjtJ79puEb3Fu_5y06YMwfh3kThBK98Vy_1RX6Bg1zXUaADldvhvlLIxWb-2KioMTfnAYoAvfPBHrlttj1f4buugmc3IMjsRqcxkhd66MfzqGujumeGYfZy77adPp91_NOM1cEJrNlI6bMriMQV7_HNwg3eiSwEqsuLHD5qodQAmSii9QTC9UfXGKYW-vPQl3Iv0J_oFZF6-kh0qKnXD48A2SIJXKpVu51z3Hqt-gwVq2NQMiCW3ASSR2acXnEu1FCyy61XBOZbcttJNz9g5HVFi_osZ_gRU_Xap-WlOBgcQkNQdjTvk0HGDU3duw"
  87. }
  88. 2019-08-15 17:28:20,059:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/new-order HTTP/1.1" 201 359
  89. 2019-08-15 17:28:20,061:DEBUG:acme.client:Received response:
  90. HTTP 201
  91. content-length: 359
  92. expires: Thu, 15 Aug 2019 07:28:20 GMT
  93. cache-control: max-age=0, no-cache, no-store
  94. strict-transport-security: max-age=604800
  95. server: nginx
  96. connection: keep-alive
  97. link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
  98. location: https://acme-staging-v02.api.letsencrypt.org/acme/order/10568145/45155573
  99. pragma: no-cache
  100. boulder-requester: 10568145
  101. date: Thu, 15 Aug 2019 07:28:20 GMT
  102. x-frame-options: DENY
  103. content-type: application/json
  104. replay-nonce: 0002qe6yfoJO9m5XMhXyzfItqIBELyr13SvtTzFJE9ps0CA
  105.  
  106. {
  107. "status": "pending",
  108. "expires": "2019-08-22T07:28:19.904067505Z",
  109. "identifiers": [
  110. {
  111. "type": "dns",
  112. "value": "mail2.dm.domain.ru"
  113. }
  114. ],
  115. "authorizations": [
  116. "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220"
  117. ],
  118. "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/10568145/45155573"
  119. }
  120. 2019-08-15 17:28:20,062:DEBUG:acme.client:Storing nonce: 0002qe6yfoJO9m5XMhXyzfItqIBELyr13SvtTzFJE9ps0CA
  121. 2019-08-15 17:28:20,062:DEBUG:acme.client:JWS payload:
  122.  
  123. 2019-08-15 17:28:20,068:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220:
  124. {
  125. "protected": "eyJub25jZSI6ICIwMDAycWU2eWZvSk85bTVYTWhYeXpmSXRxSUJFTHlyMTNTdnRUekZKRTlwczBDQSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My80MTk2MjIwIiwgImtpZCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTA1NjgxNDUiLCAiYWxnIjogIlJTMjU2In0",
  126. "payload": "",
  127. "signature": "TfCc4BnZsilZKo8Jrla47n_xb_BrVhSJ3kiphdQzdY3NDLE7DIiN9hNBgKoUAYE4K7WwOyVw_ef_qe-Ik5UwHDgCyLlSq-nYbpyZPsysjVnIj85JM3z0vaNNEKyZ_mGqND0Xz6QRxm8rYmYc4_551neElJm-veMhBYHvOhrq60oL10c3EpSC_UE73c5iqvc-SqW76t9rw_ygl999Q2oL3Yd5qaPtVBXNF32q0MAfdmnqrrEANndbJROGu2ybknxqn5j-vTZCSCNxnqPXGMwxZNgE2fd1qwV1W61wnPJYSm6QS6XVUE1CW506Zv5qb16jS7VcVtXSdlS4yfSbpro_jg"
  128. }
  129. 2019-08-15 17:28:20,367:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/4196220 HTTP/1.1" 200 811
  130. 2019-08-15 17:28:20,369:DEBUG:acme.client:Received response:
  131. HTTP 200
  132. content-length: 811
  133. expires: Thu, 15 Aug 2019 07:28:20 GMT
  134. cache-control: max-age=0, no-cache, no-store
  135. strict-transport-security: max-age=604800
  136. server: nginx
  137. connection: keep-alive
  138. link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
  139. pragma: no-cache
  140. boulder-requester: 10568145
  141. date: Thu, 15 Aug 2019 07:28:20 GMT
  142. x-frame-options: DENY
  143. content-type: application/json
  144. replay-nonce: 0002scLus0Dz3bXuH5gGEbvZtcExt5aLY3GKtjbVHJkHv3w
  145.  
  146. {
  147. "identifier": {
  148. "type": "dns",
  149. "value": "mail2.dm.domain.ru"
  150. },
  151. "status": "pending",
  152. "expires": "2019-08-22T07:28:19Z",
  153. "challenges": [
  154. {
  155. "type": "http-01",
  156. "status": "pending",
  157. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
  158. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  159. },
  160. {
  161. "type": "dns-01",
  162. "status": "pending",
  163. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/i9Ee1w",
  164. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  165. },
  166. {
  167. "type": "tls-alpn-01",
  168. "status": "pending",
  169. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/YY52UQ",
  170. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  171. }
  172. ]
  173. }
  174. 2019-08-15 17:28:20,370:DEBUG:acme.client:Storing nonce: 0002scLus0Dz3bXuH5gGEbvZtcExt5aLY3GKtjbVHJkHv3w
  175. 2019-08-15 17:28:20,371:INFO:certbot.auth_handler:Performing the following challenges:
  176. 2019-08-15 17:28:20,372:INFO:certbot.auth_handler:http-01 challenge for mail2.dm.domain.ru
  177. 2019-08-15 17:28:20,423:INFO:certbot_nginx.http_01:Using default address 80 for authentication.
  178. 2019-08-15 17:28:20,428:DEBUG:certbot_nginx.http_01:Generated server block:
  179. [[['server'], [['listen', '80'], ['server_name', u'mail2.dm.domain.ru'], ['root', '/var/lib/letsencrypt/http_01_nonexistent'], [['location', '=', u'/.well-known/acme-challenge/vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w'], [['default_type', 'text/plain'], ['return', '200', u'vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w.MiuV_YeJ9d2SYNRegxWtCqYtdOst_qUEpjiyS8cCN0Y']]]]]]
  180. 2019-08-15 17:28:20,430:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/ssl.tmpl
  181. 2019-08-15 17:28:20,431:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/iredadmin.tmpl
  182. 2019-08-15 17:28:20,432:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/roundcube.tmpl
  183. 2019-08-15 17:28:20,433:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/client_max_body_size.conf
  184. 2019-08-15 17:28:20,434:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/00-default.conf
  185. 2019-08-15 17:28:20,434:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/gzip.conf
  186. 2019-08-15 17:28:20,435:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/headers.conf
  187. 2019-08-15 17:28:20,436:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/sendfile.conf
  188. 2019-08-15 17:28:20,437:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/stub_status.tmpl
  189. 2019-08-15 17:28:20,438:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
  190. 2019-08-15 17:28:20,439:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/php-fpm.conf
  191. 2019-08-15 17:28:20,439:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/cache.conf
  192. 2019-08-15 17:28:20,440:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/netdata.tmpl
  193. 2019-08-15 17:28:20,441:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/types_hash_max_size.conf
  194. 2019-08-15 17:28:20,442:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/0-general.conf
  195. 2019-08-15 17:28:20,443:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/00-default-ssl.conf
  196. 2019-08-15 17:28:20,444:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/log.conf
  197. 2019-08-15 17:28:20,445:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/default_type.conf
  198. 2019-08-15 17:28:20,445:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/misc.tmpl
  199. 2019-08-15 17:28:20,446:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/sogo.tmpl
  200. 2019-08-15 17:28:20,447:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/server_tokens.conf
  201. 2019-08-15 17:28:20,448:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf-enabled/mime_types.conf
  202. 2019-08-15 17:28:20,449:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
  203. 2019-08-15 17:28:20,449:DEBUG:certbot.reverter:Creating backup of /etc/nginx/templates/php-catchall.tmpl
  204. 2019-08-15 17:28:20,452:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
  205. user nginx;
  206. worker_processes 1;
  207. pid /var/run/nginx.pid;
  208.  
  209. events {
  210. worker_connections 1024;
  211. }
  212.  
  213. http {
  214. include /etc/letsencrypt/le_http_01_cert_challenge.conf;
  215. server_names_hash_bucket_size 128;
  216. include /etc/nginx/conf-enabled/*.conf;
  217. include /etc/nginx/sites-enabled/*.conf;
  218. }
  219.  
  220. 2019-08-15 17:28:21,490:INFO:certbot.auth_handler:Waiting for verification...
  221. 2019-08-15 17:28:21,492:DEBUG:acme.client:JWS payload:
  222. {
  223. "type": "http-01",
  224. "resource": "challenge"
  225. }
  226. 2019-08-15 17:28:21,499:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA:
  227. {
  228. "protected": "eyJub25jZSI6ICIwMDAyc2NMdXMwRHozYlh1SDVnR0Vidlp0Y0V4dDVhTFkzR0t0amJWSEprSHYzdyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My80MTk2MjIwL3RLV1dwQSIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzEwNTY4MTQ1IiwgImFsZyI6ICJSUzI1NiJ9",
  229. "payload": "ewogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  230. "signature": "A6zH2DjO1Dyu2m2vL_Myvzoto65HTNbtQHz_1cdRVkciIafnTTDZg5_9k798Khi2Ve5klOxUW32njp6u2R5fOyyidBpHsr77bBJAgClRO6suUjhtszX3dep5iRHlP8noA_3W1wOrHNsfqeC2F-dkmTPdM3bZDL4x0eGm_AxuM3Yt5GlTzaUzhKadFPEkERr2SOmLEXdhf8dLSHnY37c3_PzAeqRKVl7b1PLIinMK79LNyfyj2B8ytgLaPyIMLVYPDLxcXGRpjUAn77CCF0WydkYaJkJ1Gh9J94o-QidLDfKg_N-aX15uKXxUfupyORAx7RB-zs8Nm-RjHM8hqrQ8uQ"
  231. }
  232. 2019-08-15 17:28:21,810:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/chall-v3/4196220/tKWWpA HTTP/1.1" 200 190
  233. 2019-08-15 17:28:21,811:DEBUG:acme.client:Received response:
  234. HTTP 200
  235. content-length: 190
  236. expires: Thu, 15 Aug 2019 07:28:21 GMT
  237. cache-control: max-age=0, no-cache, no-store
  238. strict-transport-security: max-age=604800
  239. server: nginx
  240. connection: keep-alive
  241. link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220>;rel="up"
  242. location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA
  243. pragma: no-cache
  244. boulder-requester: 10568145
  245. date: Thu, 15 Aug 2019 07:28:21 GMT
  246. x-frame-options: DENY
  247. content-type: application/json
  248. replay-nonce: 00016nrJ1NTNMaqTxiABf7VT6MjqZAVyTNjUQ3onf7UGXws
  249.  
  250. {
  251. "type": "http-01",
  252. "status": "pending",
  253. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
  254. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  255. }
  256. 2019-08-15 17:28:21,812:DEBUG:acme.client:Storing nonce: 00016nrJ1NTNMaqTxiABf7VT6MjqZAVyTNjUQ3onf7UGXws
  257. 2019-08-15 17:28:22,814:DEBUG:acme.client:JWS payload:
  258.  
  259. 2019-08-15 17:28:22,820:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220:
  260. {
  261. "protected": "eyJub25jZSI6ICIwMDAxNm5ySjFOVE5NYXFUeGlBQmY3VlQ2TWpxWkFWeVROalVRM29uZjdVR1h3cyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My80MTk2MjIwIiwgImtpZCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTA1NjgxNDUiLCAiYWxnIjogIlJTMjU2In0",
  262. "payload": "",
  263. "signature": "B3IKk1806FFpkleeV91jwTsTW1UahSgn3N9acF-lXWQV9ByqnDMQ_9t2cbQbEm7qRUMrstPaMbDFqCQuuRxKQ7ZBpgtsOkVc3dDBIfZ-zrmcC0xa4Bw-raAWXtRB0ioc4azB7D7yr6Cw0OoWigqWSDfBXj6NmdghprLFCpjYaYenVju6zUmED7sPP2fUrtWbIiAUpRD1QDqtsBJxXzIFMEPCcBXemfCHR4-TFqOAMRdc5UTMtCfYIz8vyb9xwVeapdIsgBwiwH0ZplBdTzv_UI9nWyU6Ddb7s8Ck6iQEtusQgcEuEP-pJ0GHMZu1hlB4_WvKCQLDYsAU5A7Dh-mbtg"
  264. }
  265. 2019-08-15 17:28:23,447:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/4196220 HTTP/1.1" 200 811
  266. 2019-08-15 17:28:23,449:DEBUG:acme.client:Received response:
  267. HTTP 200
  268. content-length: 811
  269. expires: Thu, 15 Aug 2019 07:28:23 GMT
  270. cache-control: max-age=0, no-cache, no-store
  271. strict-transport-security: max-age=604800
  272. server: nginx
  273. connection: keep-alive
  274. link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
  275. pragma: no-cache
  276. boulder-requester: 10568145
  277. date: Thu, 15 Aug 2019 07:28:23 GMT
  278. x-frame-options: DENY
  279. content-type: application/json
  280. replay-nonce: 0002Bqz3oup1WdiUQZzvZLnvjDxdbeElthfCsFJzxrjWBr0
  281.  
  282. {
  283. "identifier": {
  284. "type": "dns",
  285. "value": "mail2.dm.domain.ru"
  286. },
  287. "status": "pending",
  288. "expires": "2019-08-22T07:28:19Z",
  289. "challenges": [
  290. {
  291. "type": "http-01",
  292. "status": "pending",
  293. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
  294. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  295. },
  296. {
  297. "type": "dns-01",
  298. "status": "pending",
  299. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/i9Ee1w",
  300. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  301. },
  302. {
  303. "type": "tls-alpn-01",
  304. "status": "pending",
  305. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/YY52UQ",
  306. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  307. }
  308. ]
  309. }
  310. 2019-08-15 17:28:23,450:DEBUG:acme.client:Storing nonce: 0002Bqz3oup1WdiUQZzvZLnvjDxdbeElthfCsFJzxrjWBr0
  311. 2019-08-15 17:28:26,455:DEBUG:acme.client:JWS payload:
  312.  
  313. 2019-08-15 17:28:26,461:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/4196220:
  314. {
  315. "protected": "eyJub25jZSI6ICIwMDAyQnF6M291cDFXZGlVUVp6dlpMbnZqRHhkYmVFbHRoZkNzRkp6eHJqV0JyMCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My80MTk2MjIwIiwgImtpZCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTA1NjgxNDUiLCAiYWxnIjogIlJTMjU2In0",
  316. "payload": "",
  317. "signature": "AWPOTFeseNO2R4Q-OW9dC9gEM6A2EUmzwwi-zM1LDlP6C_6ZdEcqRAxdwXG8s9Mo1J_OSiilAZD0uwJtzZINd-q_qGA1YqwmaXJwsOto2Tfqp_H_njeqTC2lVplxSthikLMnZgW_410XF9DLpRavpWszM74RyxljkzKimlmV5PIxALIDz1AlJKB7QOHv_2sXH2_5yDVCneOsaOzGPknXaXalcoMktsMvPc2mkDJOFcWlJXJbSR86CVQFUfRaEm8siDHXXGGq57NBMJN7ztySVXPkiWxVieN6TcjJVvKWLuhwgrN1z55vMY-IwNP2TXQzOCgpnJVTyKCz3sE3fKv_xA"
  318. }
  319. 2019-08-15 17:28:26,762:DEBUG:requests.packages.urllib3.connectionpool:"POST /acme/authz-v3/4196220 HTTP/1.1" 200 1335
  320. 2019-08-15 17:28:26,764:DEBUG:acme.client:Received response:
  321. HTTP 200
  322. content-length: 1335
  323. expires: Thu, 15 Aug 2019 07:28:26 GMT
  324. cache-control: max-age=0, no-cache, no-store
  325. strict-transport-security: max-age=604800
  326. server: nginx
  327. connection: keep-alive
  328. link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
  329. pragma: no-cache
  330. boulder-requester: 10568145
  331. date: Thu, 15 Aug 2019 07:28:26 GMT
  332. x-frame-options: DENY
  333. content-type: application/json
  334. replay-nonce: 0002msUuep90s67z_E3mfcZ69MoCLWBxLMmpzNBaXwD8BaE
  335.  
  336. {
  337. "identifier": {
  338. "type": "dns",
  339. "value": "mail2.dm.domain.ru"
  340. },
  341. "status": "invalid",
  342. "expires": "2019-08-22T07:28:19Z",
  343. "challenges": [
  344. {
  345. "type": "http-01",
  346. "status": "invalid",
  347. "error": {
  348. "type": "urn:ietf:params:acme:error:caa",
  349. "detail": "CAA record for mail2.dm.domain.ru prevents issuance",
  350. "status": 403
  351. },
  352. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/tKWWpA",
  353. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w",
  354. "validationRecord": [
  355. {
  356. "url": "http://mail2.dm.domain.ru/.well-known/acme-challenge/vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w",
  357. "hostname": "mail2.dm.domain.ru",
  358. "port": "80",
  359. "addressesResolved": [
  360. "X.X.X.X"
  361. ],
  362. "addressUsed": "X.X.X.X"
  363. }
  364. ]
  365. },
  366. {
  367. "type": "dns-01",
  368. "status": "invalid",
  369. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/i9Ee1w",
  370. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  371. },
  372. {
  373. "type": "tls-alpn-01",
  374. "status": "invalid",
  375. "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/4196220/YY52UQ",
  376. "token": "vx4Q2Swl1JxITV1g3mvjiF00ZBEJZh_xHf9dzI8tp-w"
  377. }
  378. ]
  379. }
  380. 2019-08-15 17:28:26,765:DEBUG:acme.client:Storing nonce: 0002msUuep90s67z_E3mfcZ69MoCLWBxLMmpzNBaXwD8BaE
  381. 2019-08-15 17:28:26,767:WARNING:certbot.auth_handler:Challenge failed for domain mail2.dm.domain.ru
  382. 2019-08-15 17:28:26,768:INFO:certbot.auth_handler:http-01 challenge for mail2.dm.domain.ru
  383. 2019-08-15 17:28:26,769:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
  384.  
  385. Domain: mail2.dm.domain.ru
  386. Type: caa
  387. Detail: CAA record for mail2.dm.domain.ru prevents issuance
  388. 2019-08-15 17:28:26,770:DEBUG:certbot.error_handler:Encountered exception:
  389. Traceback (most recent call last):
  390. File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
  391. self._poll_authorizations(authzrs, max_retries, best_effort)
  392. File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
  393. raise errors.AuthorizationError('Some challenges have failed.')
  394. AuthorizationError: Some challenges have failed.
  395.  
  396. 2019-08-15 17:28:26,770:DEBUG:certbot.error_handler:Calling registered functions
  397. 2019-08-15 17:28:26,771:INFO:certbot.auth_handler:Cleaning up challenges
  398. 2019-08-15 17:28:28,497:DEBUG:certbot.log:Exiting abnormally:
  399. Traceback (most recent call last):
  400. File "/usr/bin/certbot", line 9, in <module>
  401. load_entry_point('certbot==0.36.0', 'console_scripts', 'certbot')()
  402. File "/usr/lib/python2.7/site-packages/certbot/main.py", line 1381, in main
  403. return config.func(config, plugins)
  404. File "/usr/lib/python2.7/site-packages/certbot/main.py", line 1264, in certonly
  405. lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  406. File "/usr/lib/python2.7/site-packages/certbot/main.py", line 120, in _get_and_save_cert
  407. lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  408. File "/usr/lib/python2.7/site-packages/certbot/client.py", line 406, in obtain_and_enroll_certificate
  409. cert, chain, key, _ = self.obtain_certificate(domains)
  410. File "/usr/lib/python2.7/site-packages/certbot/client.py", line 349, in obtain_certificate
  411. orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  412. File "/usr/lib/python2.7/site-packages/certbot/client.py", line 385, in _get_order_and_authorizations
  413. authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
  414. File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
  415. self._poll_authorizations(authzrs, max_retries, best_effort)
  416. File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
  417. raise errors.AuthorizationError('Some challenges have failed.')
  418. AuthorizationError: Some challenges have failed.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!