Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 2019-02-06 12:00:04,594:DEBUG:certbot.main:certbot version: 0.30.2
- 2019-02-06 12:00:04,595:DEBUG:certbot.main:Arguments: ['--pre-hook', '/sbin/service nginx stop', '--post-hook', '/sbin/service nginx start']
- 2019-02-06 12:00:04,595:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
- 2019-02-06 12:00:04,633:DEBUG:certbot.log:Root logging level set at 20
- 2019-02-06 12:00:04,634:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
- 2019-02-06 12:00:04,693:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0x7efbec8d4ef0> and installer <certbot.cli._Default object at 0x7efbec8d4ef0>
- 2019-02-06 12:00:04,693:DEBUG:certbot.cli:Var pre_hook=/sbin/service nginx stop (set by user).
- 2019-02-06 12:00:04,693:DEBUG:certbot.cli:Var post_hook=/sbin/service nginx start (set by user).
- 2019-02-06 12:00:04,747:INFO:certbot.renewal:Cert not yet due for renewal
- 2019-02-06 12:00:04,749:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
- 2019-02-06 12:00:04,758:DEBUG:certbot.plugins.selection:Selecting plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
- Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec8d7eb8>
- 2019-02-06 12:00:04,761:DEBUG:certbot.cli:Var pre_hook=/sbin/service nginx stop (set by user).
- 2019-02-06 12:00:04,761:DEBUG:certbot.cli:Var post_hook=/sbin/service nginx start (set by user).
- 2019-02-06 12:00:04,805:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2019-01-27 20:32:44 UTC.
- 2019-02-06 12:00:04,806:INFO:certbot.renewal:Cert is due for renewal, auto-renewing...
- 2019-02-06 12:00:04,806:INFO:certbot.renewal:Non-interactive renewal: random delay of 42 seconds
- 2019-02-06 12:00:46,849:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
- 2019-02-06 12:00:47,256:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
- Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec8d70b8>
- Prep: True
- 2019-02-06 12:00:47,257:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
- Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec8d70b8>
- Prep: True
- 2019-02-06 12:00:47,257:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec8d70b8> and installer <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec8d70b8>
- 2019-02-06 12:00:47,257:INFO:certbot.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
- 2019-02-06 12:00:47,262:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(uri='https://acme-v02.api.letsencrypt.org/acme/acct/39351473', new_authzr_uri=None, body=Registration(status=None, only_return_existing=None, agreement=None, contact=(), key=None, external_account_binding=None, terms_of_service_agreed=None), terms_of_service=None), b203b3ac934a195cc38ed344b9017ce0, Meta(creation_dt=datetime.datetime(2018, 7, 31, 13, 3, 18, tzinfo=<UTC>), creation_host='example-server'))>
- 2019-02-06 12:00:47,265:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
- 2019-02-06 12:00:47,269:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
- 2019-02-06 12:00:47,626:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
- 2019-02-06 12:00:47,627:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 658
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:00:47 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:00:47 GMT
- Connection: keep-alive
- {
- "SKxWWmvCejA": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
- "meta": {
- "caaIdentities": [
- "letsencrypt.org"
- ],
- "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
- "website": "https://letsencrypt.org"
- },
- "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
- "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
- "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
- "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
- }
- 2019-02-06 12:00:47,628:INFO:certbot.hooks:Running pre-hook command: /sbin/service nginx stop
- 2019-02-06 12:00:47,788:INFO:certbot.hooks:Output from service:
- Stopping nginx: [ OK ]
- 2019-02-06 12:00:47,788:INFO:certbot.main:Renewing an existing certificate
- 2019-02-06 12:00:47,952:DEBUG:certbot.crypto_util:Generating key (2048 bits): /etc/letsencrypt/keys/0063_key-certbot.pem
- 2019-02-06 12:00:47,956:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0063_csr-certbot.pem
- 2019-02-06 12:00:47,957:DEBUG:acme.client:Requesting fresh nonce
- 2019-02-06 12:00:47,957:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
- 2019-02-06 12:00:48,218:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
- 2019-02-06 12:00:48,220:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Replay-Nonce: Ip_oAGdzzxoAUpAe4SGeD-MpBG3F94BkYKGYpwq0nIk
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Content-Length: 0
- Expires: Wed, 06 Feb 2019 12:00:48 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:00:48 GMT
- Connection: keep-alive
- 2019-02-06 12:00:48,220:DEBUG:acme.client:Storing nonce: Ip_oAGdzzxoAUpAe4SGeD-MpBG3F94BkYKGYpwq0nIk
- 2019-02-06 12:00:48,221:DEBUG:acme.client:JWS payload:
- b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "example.co.uk"\n }\n ]\n}'
- 2019-02-06 12:00:48,226:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
- {
- "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInNjaG9sYXJwYWNrMy5jby51ayIKICAgIH0KICBdCn0",
- "signature": "WiV_yKIx-V3kaRZ_tkgR4QJFFFqlcZJ7c05x9jPy2edkUbFy0tsAZeLYU16z4Keb9XhQt5eFlAJDIoKG5wx7TZ2sGlxel7zaxWBvV8UZ7czQkc-RL6NVZXE_GGHgL8lJ74CfjFYM9JIHZXa9HkXny-oBRAxSCpzeug4ePiMwSccP97J0ffnVx8aUjYenr5wo6bo_WRku-JDaIeABRytxKrzaxV4Dnp6QLxgEkOHUjtE0rGwrGkyUAiEQWM3Kq2Tu0f1E37rw5HPqdpGwE8sH5uTbkW2-TQfljHBJLeO5knr74D_pLx421Z1Dp2AtLASQ2aGLBJXfNDaLSTFsS0PQ1w",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciIsICJub25jZSI6ICJJcF9vQUdkenp4b0FVcEFlNFNHZUQtTXBCRzNGOTRCa1lLR1lwd3EwbklrIn0"
- }
- 2019-02-06 12:00:48,539:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 376
- 2019-02-06 12:00:48,540:DEBUG:acme.client:Received response:
- HTTP 201
- Server: nginx
- Content-Type: application/json
- Content-Length: 376
- Boulder-Requester: 39351473
- Location: https://acme-v02.api.letsencrypt.org/acme/order/39351473/304202627
- Replay-Nonce: 88Wwpay3irkEyHeBnnfYN_18cuHUYSoSmtqlACqYEnI
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:00:48 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:00:48 GMT
- Connection: keep-alive
- {
- "status": "pending",
- "expires": "2019-02-13T12:00:48.36880981Z",
- "identifiers": [
- {
- "type": "dns",
- "value": "example.co.uk"
- }
- ],
- "authorizations": [
- "https://acme-v02.api.letsencrypt.org/acme/authz/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI"
- ],
- "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/39351473/304202627"
- }
- 2019-02-06 12:00:48,540:DEBUG:acme.client:Storing nonce: 88Wwpay3irkEyHeBnnfYN_18cuHUYSoSmtqlACqYEnI
- 2019-02-06 12:00:48,541:DEBUG:acme.client:JWS payload:
- b''
- 2019-02-06 12:00:48,543:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI:
- {
- "payload": "",
- "signature": "vwFoKKcsRnyuTq6m3E9XS-hazDHq9hPA0pgBF9Nm8Whwn4S1REOv3zJ87dxyBBWU6I5rrxL3XeO-NILBn09YB75UO1zlO_xgD4WESmPYIlu6wZ8u4ubpnQu-XJeEexRs9TViJx4ZyMYATnDGCAl-sSbm2WwRTidgcJGS2j9dDt2stvCHgJIHmBmWB5I729Yp4dFhewGmbCUhE7IfyrTGc0o1JX3dXYhM-NPHRaFZcWsu3JgoHWu9t3c2I3zVgMsE99riKc5n9A9YvO7Dp2v8Fsti8COPv1QjB2WIuer5_KHIPXUmaG8E9rlvEqiy9r0asrW7_FemF1T3hxMJDUMMTg",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6L29WQUFuempDX28xT2RhTHhuZ24yQkpiRlozc0NPcUozbEw0OFV0UktxWUkiLCAibm9uY2UiOiAiODhXd3BheTNpcmtFeUhlQm5uZllOXzE4Y3VIVVlTb1NtdHFsQUNxWUVuSSJ9"
- }
- 2019-02-06 12:00:48,936:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI HTTP/1.1" 200 1166
- 2019-02-06 12:00:48,938:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 1166
- Boulder-Requester: 39351473
- Replay-Nonce: 29-MaNxu9pVMc1KvMWWtK2Oo7M137xMlnJ6Ul81SXWM
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:00:48 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:00:48 GMT
- Connection: keep-alive
- {
- "identifier": {
- "type": "dns",
- "value": "example.co.uk"
- },
- "status": "pending",
- "expires": "2019-02-13T12:00:48Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922324",
- "token": "FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0"
- },
- {
- "type": "tls-sni-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922329",
- "token": "BP_5m-CCU5uMJb8jB48Z_D9cH00StroMc4Jv4gY5x7A"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922331",
- "token": "lyn8yGi4S-30O7Es4sh1d3osKWuYUkqOPd_9RRQTChI"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922332",
- "token": "4j93c0v0GbCa23cMh4fapcdY04q-N9aVrsAQtoC_arY"
- }
- ]
- }
- 2019-02-06 12:00:48,938:DEBUG:acme.client:Storing nonce: 29-MaNxu9pVMc1KvMWWtK2Oo7M137xMlnJ6Ul81SXWM
- 2019-02-06 12:00:48,939:INFO:certbot.auth_handler:Performing the following challenges:
- 2019-02-06 12:00:48,939:INFO:certbot.auth_handler:http-01 challenge for example.co.uk
- 2019-02-06 12:00:48,984:INFO:certbot_nginx.http_01:Using default address 80 for authentication.
- 2019-02-06 12:00:48,986:DEBUG:certbot_nginx.http_01:Generated server block:
- [[['server'], [['listen', '80'], ['server_name', 'example.co.uk'], ['root', '/var/lib/letsencrypt/http_01_nonexistent'], [['location', '=', '/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0'], [['default_type', 'text/plain'], ['return', '200', 'FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0.lpk35UZHk93QJD25xXO8QY5cp41Zlsnd7-MVW8IITy8']]]]]]
- 2019-02-06 12:00:48,988:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
- 2019-02-06 12:00:48,991:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/subdomain.example.conf
- 2019-02-06 12:00:48,991:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
- 2019-02-06 12:00:48,992:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
- 2019-02-06 12:00:48,992:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/ssl.conf
- 2019-02-06 12:00:48,993:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-geoip.conf
- 2019-02-06 12:00:48,993:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/subdomain2.example.conf
- 2019-02-06 12:00:48,994:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
- 2019-02-06 12:00:48,994:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
- 2019-02-06 12:00:48,995:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/virtual.conf
- 2019-02-06 12:00:48,995:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
- 2019-02-06 12:00:48,996:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
- 2019-02-06 12:00:48,998:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
- # For more information on configuration, see:
- # * Official English Documentation: http://nginx.org/en/docs/
- # * Official Russian Documentation: http://nginx.org/ru/docs/
- user nginx;
- worker_processes auto;
- error_log /var/log/nginx/error.log;
- pid /var/run/nginx.pid;
- # Load dynamic modules. See /usr/share/nginx/README.dynamic.
- include /usr/share/nginx/modules/*.conf;
- events {
- worker_connections 1024;
- }
- http {
- include /etc/letsencrypt/le_http_01_cert_challenge.conf;
- server_names_hash_bucket_size 128;
- log_format main '$remote_addr - $remote_user [$time_local] "$request" '
- '$status $body_bytes_sent "$http_referer" '
- '"$http_user_agent" "$http_x_forwarded_for"';
- access_log /var/log/nginx/access.log main;
- sendfile on;
- tcp_nopush on;
- tcp_nodelay on;
- keepalive_timeout 65;
- types_hash_max_size 2048;
- include /etc/nginx/mime.types;
- default_type application/octet-stream;
- # Load modular configuration files from the /etc/nginx/conf.d directory.
- # See http://nginx.org/en/docs/ngx_core_module.html#include
- # for more information.
- include /etc/nginx/conf.d/*.conf;
- }
- 2019-02-06 12:00:50,086:INFO:certbot.auth_handler:Waiting for verification...
- 2019-02-06 12:00:50,089:DEBUG:acme.client:JWS payload:
- b'{\n "type": "http-01",\n "resource": "challenge",\n "keyAuthorization": "FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0.lpk35UZHk93QJD25xXO8QY5cp41Zlsnd7-MVW8IITy8"\n}'
- 2019-02-06 12:00:50,093:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922324:
- {
- "payload": "ewogICJ0eXBlIjogImh0dHAtMDEiLAogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJrZXlBdXRob3JpemF0aW9uIjogIkZLNmwwYlRPd0ZjbWZiSklOczRub1Z5ZlJEOVBJaEUzLV9NSnlOeUNvdzAubHBrMzVVWkhrOTNRSkQyNXhYTzhRWTVjcDQxWmxzbmQ3LU1WVzhJSVR5OCIKfQ",
- "signature": "IwAOM3a8djNNupDiOsOFcmpUhGf9OeO80cbLEnwVRDtHe8FFd0ID_0a-nPYoGNJ9xycx0viy6_vE9N9wmaCfcL44fF7iSBDcsWXakAqMBDuMih7auZ8ejDp7TGUHNhdYkazCnqn9g0qeAYfUJE34i84eqJ0oRo3OB4bMXsbSHc3Hx1KKHbyVpDJamr3Nt-NdpwTleSno_gxv-hU5L48O3GEscS0TV5qDAVRyBUGwFXtk4W4F6Dgj7WBjakvzN6m2DfachclCoY3FEPWKURBqN9_nxuWUPVatzevp7TSGk92jikhE2kmFueRAnoBELizAMJRgAMALKLecUCEdftSL3A",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsZW5nZS9vVkFBbnpqQ19vMU9kYUx4bmduMkJKYkZaM3NDT3FKM2xMNDhVdFJLcVlJLzEyMzA0OTIyMzI0IiwgIm5vbmNlIjogIjI5LU1hTnh1OXBWTWMxS3ZNV1d0SzJPbzdNMTM3eE1sbko2VWw4MVNYV00ifQ"
- }
- 2019-02-06 12:00:50,438:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922324 HTTP/1.1" 200 224
- 2019-02-06 12:00:50,439:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 224
- Boulder-Requester: 39351473
- Link: <https://acme-v02.api.letsencrypt.org/acme/authz/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI>;rel="up"
- Location: https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922324
- Replay-Nonce: 2UlpY9hz4UXOAkZl5sKDN_ra_C97B-Ghg5Rg-596SDU
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:00:50 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:00:50 GMT
- Connection: keep-alive
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922324",
- "token": "FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0"
- }
- 2019-02-06 12:00:50,440:DEBUG:acme.client:Storing nonce: 2UlpY9hz4UXOAkZl5sKDN_ra_C97B-Ghg5Rg-596SDU
- 2019-02-06 12:00:53,444:DEBUG:acme.client:JWS payload:
- b''
- 2019-02-06 12:00:53,446:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI:
- {
- "payload": "",
- "signature": "cvvThtP1jpOOHUa9Cv6kQaRBoZGQjDQcfEJi4SZQs97d3ZEUnKzKyzXukLdoYDJj_riY7x7zsM_2mVpOxuBpTiLyiFOHmwVHfi5_hznthchMyMc1VBio0D9TT45G8rq2JS64Vz7DJ0Pz5BXALS2Jv_BSeZVxJJq6yG_MWOIcCAu9BBB_Vqlvy69zwoEnu2gm8PM2_bxmKE6erw24dq0TNSjaoPCoi-7o7lynER6RMKYwpjkTkdauq49c8mE_gI1XROFD09_kv3-8S3AeEVd-dUCzs05mXnZspVg32VMh_8lI4k14eZkk_fbo5u6pe29EQj9Q1K7hcAz2sIk9eCGYYg",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6L29WQUFuempDX28xT2RhTHhuZ24yQkpiRlozc0NPcUozbEw0OFV0UktxWUkiLCAibm9uY2UiOiAiMlVscFk5aHo0VVhPQWtabDVzS0ROX3JhX0M5N0ItR2hnNVJnLTU5NlNEVSJ9"
- }
- 2019-02-06 12:00:53,908:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI HTTP/1.1" 200 2404
- 2019-02-06 12:00:53,909:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Boulder-Requester: 39351473
- Replay-Nonce: CIetZX8w1999u8FagRkR_BshzFWr3PEfwf80IOZ9w_g
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Content-Length: 2404
- Expires: Wed, 06 Feb 2019 12:00:53 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:00:53 GMT
- Connection: keep-alive
- {
- "identifier": {
- "type": "dns",
- "value": "example.co.uk"
- },
- "status": "invalid",
- "expires": "2019-02-13T12:00:48Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "invalid",
- "error": {
- "type": "urn:ietf:params:acme:error:unauthorized",
- "detail": "Invalid response from http://example.co.uk/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0: \" \u003ch2\u003eSite Error\u003c/h2\u003e\\n \u003cp\u003eAn error was encountered while publishing this resource.\\n \u003c/p\u003e\\n \u003cp\u003e\u003cstrong\u003eResource not found\u003c/stro\"",
- "status": 403
- },
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922324",
- "token": "FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0",
- "validationRecord": [
- {
- "url": "http://example.co.uk/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0",
- "hostname": "example.co.uk",
- "port": "80",
- "addressesResolved": [
- "52.56.249.63",
- "35.176.82.16",
- "3.8.42.65"
- ],
- "addressUsed": "52.56.249.63"
- },
- {
- "url": "https://example.co.uk:443/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0",
- "hostname": "example.co.uk",
- "port": "443",
- "addressesResolved": [
- "35.176.82.16",
- "3.8.42.65",
- "52.56.249.63"
- ],
- "addressUsed": "35.176.82.16"
- }
- ]
- },
- {
- "type": "tls-sni-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922329",
- "token": "BP_5m-CCU5uMJb8jB48Z_D9cH00StroMc4Jv4gY5x7A"
- },
- {
- "type": "dns-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922331",
- "token": "lyn8yGi4S-30O7Es4sh1d3osKWuYUkqOPd_9RRQTChI"
- },
- {
- "type": "tls-alpn-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/oVAAnzjC_o1OdaLxngn2BJbFZ3sCOqJ3lL48UtRKqYI/12304922332",
- "token": "4j93c0v0GbCa23cMh4fapcdY04q-N9aVrsAQtoC_arY"
- }
- ]
- }
- 2019-02-06 12:00:53,910:DEBUG:acme.client:Storing nonce: CIetZX8w1999u8FagRkR_BshzFWr3PEfwf80IOZ9w_g
- 2019-02-06 12:00:53,912:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
- Domain: example.co.uk
- Type: unauthorized
- Detail: Invalid response from http://example.co.uk/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro"
- To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
- 2019-02-06 12:00:53,912:DEBUG:certbot.error_handler:Encountered exception:
- Traceback (most recent call last):
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 82, in handle_authorizations
- self._respond(aauthzrs, resp, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 161, in _respond
- self._poll_challenges(aauthzrs, chall_update, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 232, in _poll_challenges
- raise errors.FailedChallenges(all_failed_achalls)
- certbot.errors.FailedChallenges: Failed authorization procedure. example.co.uk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://example.co.uk/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro"
- 2019-02-06 12:00:53,913:DEBUG:certbot.error_handler:Calling registered functions
- 2019-02-06 12:00:53,913:INFO:certbot.auth_handler:Cleaning up challenges
- 2019-02-06 12:00:55,316:WARNING:certbot.renewal:Attempting to renew cert (example.co.uk) from /etc/letsencrypt/renewal/example.co.uk.conf produced an unexpected error: Failed authorization procedure. example.co.uk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://example.co.uk/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro". Skipping.
- 2019-02-06 12:00:55,319:DEBUG:certbot.renewal:Traceback was:
- Traceback (most recent call last):
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/renewal.py", line 452, in handle_renewal_request
- main.renew_cert(lineage_config, plugins, renewal_candidate)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py", line 1192, in renew_cert
- renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py", line 116, in _get_and_save_cert
- renewal.renew_cert(config, domains, le_client, lineage)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/renewal.py", line 310, in renew_cert
- new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/client.py", line 353, in obtain_certificate
- orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/client.py", line 389, in _get_order_and_authorizations
- authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 82, in handle_authorizations
- self._respond(aauthzrs, resp, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 161, in _respond
- self._poll_challenges(aauthzrs, chall_update, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 232, in _poll_challenges
- raise errors.FailedChallenges(all_failed_achalls)
- certbot.errors.FailedChallenges: Failed authorization procedure. example.co.uk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://example.co.uk/.well-known/acme-challenge/FK6l0bTOwFcmfbJINs4noVyfRD9PIhE3-_MJyNyCow0: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro"
- 2019-02-06 12:00:55,369:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2019-03-05 15:24:28 UTC.
- 2019-02-06 12:00:55,369:INFO:certbot.renewal:Cert is due for renewal, auto-renewing...
- 2019-02-06 12:00:55,369:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
- 2019-02-06 12:00:55,983:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
- Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec845d68>
- Prep: True
- 2019-02-06 12:00:55,985:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: IAuthenticator, IInstaller, IPlugin
- Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
- Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec845d68>
- Prep: True
- 2019-02-06 12:00:55,985:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec845d68> and installer <certbot_nginx.configurator.NginxConfigurator object at 0x7efbec845d68>
- 2019-02-06 12:00:55,985:INFO:certbot.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
- 2019-02-06 12:00:55,989:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(uri='https://acme-v02.api.letsencrypt.org/acme/acct/39351473', new_authzr_uri=None, body=Registration(status=None, only_return_existing=None, agreement=None, contact=(), key=None, external_account_binding=None, terms_of_service_agreed=None), terms_of_service=None), b203b3ac934a195cc38ed344b9017ce0, Meta(creation_dt=datetime.datetime(2018, 7, 31, 13, 3, 18, tzinfo=<UTC>), creation_host='example-server'))>
- 2019-02-06 12:00:55,991:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
- 2019-02-06 12:00:55,993:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
- 2019-02-06 12:01:05,026:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
- 2019-02-06 12:01:05,027:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 658
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:01:05 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:01:05 GMT
- Connection: keep-alive
- {
- "83WhT9Xdxsg": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
- "meta": {
- "caaIdentities": [
- "letsencrypt.org"
- ],
- "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
- "website": "https://letsencrypt.org"
- },
- "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
- "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
- "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
- "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
- }
- 2019-02-06 12:01:05,028:INFO:certbot.hooks:Pre-hook command already run, skipping: /sbin/service nginx stop
- 2019-02-06 12:01:05,029:INFO:certbot.main:Renewing an existing certificate
- 2019-02-06 12:01:05,167:DEBUG:certbot.crypto_util:Generating key (2048 bits): /etc/letsencrypt/keys/0064_key-certbot.pem
- 2019-02-06 12:01:05,171:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0064_csr-certbot.pem
- 2019-02-06 12:01:05,172:DEBUG:acme.client:Requesting fresh nonce
- 2019-02-06 12:01:05,172:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
- 2019-02-06 12:01:05,446:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
- 2019-02-06 12:01:05,448:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Replay-Nonce: 9surGf7tEZELL68EKEqXz9iBWA_vEDX3o8zcsFT7n1M
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Content-Length: 0
- Expires: Wed, 06 Feb 2019 12:01:05 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:01:05 GMT
- Connection: keep-alive
- 2019-02-06 12:01:05,448:DEBUG:acme.client:Storing nonce: 9surGf7tEZELL68EKEqXz9iBWA_vEDX3o8zcsFT7n1M
- 2019-02-06 12:01:05,449:DEBUG:acme.client:JWS payload:
- b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "subdomain.example.co.uk"\n }\n ]\n}'
- 2019-02-06 12:01:05,451:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
- {
- "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogIndyYXBwZWQuc2Nob2xhcnBhY2szLmNvLnVrIgogICAgfQogIF0KfQ",
- "signature": "I7m29xHjZD53E4pQsnzXt_ZkMDzD0IwJgm-V0qjbsErv6cdeCb_qGb5BnhtxBpo7CR_6n-SfJrjKRBJfCblNRGUbJaYoxBVb3gH2GV71JQB2fCoriQopYhGDSvm0B8N0d8coYob_Uo-FAgd1P7kxbe-atEPJG1onrCtN_5Trg-mciuL7ftsbLvUoVfRGrU5MkFgcKntRl5ddn86fvnjTqGodGG2gZP502t7oCqms3A6hlk7K13mNX_oBmKbH189rNOz-LoxZW6rss0MXr1vNzAYbs7m3U4ypsvXT_P6zdBJQ3gVlTYZyAIZAKdqI0Qz20nORcoNsgi1x8HhVSjSaZA",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciIsICJub25jZSI6ICI5c3VyR2Y3dEVaRUxMNjhFS0VxWHo5aUJXQV92RURYM284emNzRlQ3bjFNIn0"
- }
- 2019-02-06 12:01:06,694:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 385
- 2019-02-06 12:01:06,696:DEBUG:acme.client:Received response:
- HTTP 201
- Server: nginx
- Content-Type: application/json
- Content-Length: 385
- Boulder-Requester: 39351473
- Location: https://acme-v02.api.letsencrypt.org/acme/order/39351473/304203055
- Replay-Nonce: gjXmXWREoOY1D5p9Eb9Z-gR0S9VY4zf8w4qLpWqXEuI
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:01:06 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:01:06 GMT
- Connection: keep-alive
- {
- "status": "pending",
- "expires": "2019-02-13T12:01:06.522846052Z",
- "identifiers": [
- {
- "type": "dns",
- "value": "subdomain.example.co.uk"
- }
- ],
- "authorizations": [
- "https://acme-v02.api.letsencrypt.org/acme/authz/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ"
- ],
- "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/39351473/304203055"
- }
- 2019-02-06 12:01:06,696:DEBUG:acme.client:Storing nonce: gjXmXWREoOY1D5p9Eb9Z-gR0S9VY4zf8w4qLpWqXEuI
- 2019-02-06 12:01:06,696:DEBUG:acme.client:JWS payload:
- b''
- 2019-02-06 12:01:06,699:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ:
- {
- "payload": "",
- "signature": "RWIfQ1JRAWSHFvz_ootkaMzAicb9fPSv6A_RKo_M2alxKS2fHDF2r-OexGZv80Q73zVgUnW0yIigDuApJnYbDB99CeR4rY4lb9uwpyUafO8ONjq8bKl6UpQMcp1KcOFDv9O_6J6qqnclqFrM8P9YgJyGsCKclHiia9H7k-U52OF2g2KQSyPqVhfaA52G5XfQOqtW14iZtpNzWlY6SX5RB-s226uTpCX55YrFJEPnpHHg4Z8BtBsdEd794KQi7jgLxlkLxw72w6HMHou03K5Pj-6B0lj7fF3uKyVXaGNe3cGug8lIUAUu-vsR9x5h_5UR7Wnf17NWGCf7pA0Oh1bGOg",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzUzU1Rrdm9vSGlVWXFkbzBfMWNGVVpnSzc0Ull2djJSajFDN04teTJfTFEiLCAibm9uY2UiOiAiZ2pYbVhXUkVvT1kxRDVwOUViOVotZ1IwUzlWWTR6Zjh3NHFMcFdxWEV1SSJ9"
- }
- 2019-02-06 12:01:07,172:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ HTTP/1.1" 200 1174
- 2019-02-06 12:01:07,173:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 1174
- Boulder-Requester: 39351473
- Replay-Nonce: hInGRhCBjqdZuM4mGH16zkUxXvc0aC9J1bvMSiAxRfY
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:01:07 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:01:07 GMT
- Connection: keep-alive
- {
- "identifier": {
- "type": "dns",
- "value": "subdomain.example.co.uk"
- },
- "status": "pending",
- "expires": "2019-02-13T12:01:06Z",
- "challenges": [
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932546",
- "token": "c-ShWqBZPXzmIZQTuuliYBkPsH7pyMvKFeBorcfkhxk"
- },
- {
- "type": "tls-sni-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932547",
- "token": "DoW_DiAod6JfJHpF6dnx7ZS_rgXgnIpapgvoKjhuoro"
- },
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932548",
- "token": "aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932549",
- "token": "BI19fy6pwGoF7j0ArLSK-o5skBUyKVgxnqoUCgrgaUw"
- }
- ]
- }
- 2019-02-06 12:01:07,174:DEBUG:acme.client:Storing nonce: hInGRhCBjqdZuM4mGH16zkUxXvc0aC9J1bvMSiAxRfY
- 2019-02-06 12:01:07,175:INFO:certbot.auth_handler:Performing the following challenges:
- 2019-02-06 12:01:07,175:INFO:certbot.auth_handler:http-01 challenge for subdomain.example.co.uk
- 2019-02-06 12:01:07,209:DEBUG:certbot_nginx.http_01:Generated server block:
- []
- 2019-02-06 12:01:07,211:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
- 2019-02-06 12:01:07,211:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/subdomain.example.conf
- 2019-02-06 12:01:07,212:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
- 2019-02-06 12:01:07,212:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
- 2019-02-06 12:01:07,213:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/ssl.conf
- 2019-02-06 12:01:07,213:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-geoip.conf
- 2019-02-06 12:01:07,214:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/subdomain2.example.conf
- 2019-02-06 12:01:07,214:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
- 2019-02-06 12:01:07,215:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
- 2019-02-06 12:01:07,215:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/virtual.conf
- 2019-02-06 12:01:07,216:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
- 2019-02-06 12:01:07,216:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
- 2019-02-06 12:01:07,219:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/conf.d/subdomain.example.conf:
- upstream wrapped.example {
- server 127.0.0.1:8082;
- server 127.0.0.1:8083;
- server 127.0.0.1:8085;
- server 127.0.0.1:8086;
- server 127.0.0.1:8087;
- server 127.0.0.1:8088;
- server 127.0.0.1:8089;
- server 127.0.0.1:8090;
- }
- server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
- listen subdomain.example.co.uk:80;
- server_name subdomain.example.co.uk;
- return 301 https://$server_name$request_uri;
- location = /.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4{default_type text/plain;return 200 aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4.lpk35UZHk93QJD25xXO8QY5cp41Zlsnd7-MVW8IITy8;} # managed by Certbot
- }
- server {
- # Allow large uploads
- client_max_body_size 500M;
- listen subdomain.example.co.uk:443;
- # DO NOT EDIT BELOW HERE --------------------------------------------
- ssl on;
- ssl_protocols TLSv1.2;
- ssl_certificate /etc/letsencrypt/live/subdomain.example.co.uk/fullchain.pem; # managed by Certbot
- ssl_certificate_key /etc/letsencrypt/live/subdomain.example.co.uk/privkey.pem; # managed by Certbot
- ssl_ecdh_curve secp384r1;
- ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH';
- ssl_prefer_server_ciphers on;
- ssl_dhparam /etc/nginx/ssl/dhparam.pem;
- # DO NOT EDIT ABOVE HERE --------------------------------------------
- # Prevent click jacking.
- add_header X-Frame-Options "SAMEORIGIN";
- # Prevent man-in-middle attacks
- add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; ";
- server_name subdomain.example.co.uk;
- access_log /var/log/nginx/wrapped.example.access.log;
- location /nginx_status {
- access_log off;
- allow SERVER-IP;
- allow OFFICE-IP;
- allow 127.0.0.1;
- deny all;
- stub_status on;
- }
- location / {
- proxy_pass http://wrapped.example;
- proxy_redirect off;
- proxy_set_header Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_pass_request_body on;
- proxy_pass_request_headers on;
- proxy_connect_timeout 300;
- proxy_send_timeout 300;
- proxy_read_timeout 300;
- send_timeout 300;
- # - - - - - - - - - -
- # SERVICE STATUS
- # 'proxy_intercept_errors' needs to be turned on for Error pages to work
- #proxy_intercept_errors on;
- include /etc/nginx/conf.d/service/*.conf;
- # - - - - - - - - - -
- }
- }
- 2019-02-06 12:01:07,221:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
- # For more information on configuration, see:
- # * Official English Documentation: http://nginx.org/en/docs/
- # * Official Russian Documentation: http://nginx.org/ru/docs/
- user nginx;
- worker_processes auto;
- error_log /var/log/nginx/error.log;
- pid /var/run/nginx.pid;
- # Load dynamic modules. See /usr/share/nginx/README.dynamic.
- include /usr/share/nginx/modules/*.conf;
- events {
- worker_connections 1024;
- }
- http {
- include /etc/letsencrypt/le_http_01_cert_challenge.conf;
- server_names_hash_bucket_size 128;
- log_format main '$remote_addr - $remote_user [$time_local] "$request" '
- '$status $body_bytes_sent "$http_referer" '
- '"$http_user_agent" "$http_x_forwarded_for"';
- access_log /var/log/nginx/access.log main;
- sendfile on;
- tcp_nopush on;
- tcp_nodelay on;
- keepalive_timeout 65;
- types_hash_max_size 2048;
- include /etc/nginx/mime.types;
- default_type application/octet-stream;
- # Load modular configuration files from the /etc/nginx/conf.d directory.
- # See http://nginx.org/en/docs/ngx_core_module.html#include
- # for more information.
- include /etc/nginx/conf.d/*.conf;
- }
- 2019-02-06 12:01:08,271:INFO:certbot.auth_handler:Waiting for verification...
- 2019-02-06 12:01:08,273:DEBUG:acme.client:JWS payload:
- b'{\n "type": "http-01",\n "resource": "challenge",\n "keyAuthorization": "aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4.lpk35UZHk93QJD25xXO8QY5cp41Zlsnd7-MVW8IITy8"\n}'
- 2019-02-06 12:01:08,276:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932548:
- {
- "payload": "ewogICJ0eXBlIjogImh0dHAtMDEiLAogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJrZXlBdXRob3JpemF0aW9uIjogImFxWUMyWmVldHRCSnpVTk5DZVhDVVItWnNWTndIMDlmUkNKanVtS1ZIQjQubHBrMzVVWkhrOTNRSkQyNXhYTzhRWTVjcDQxWmxzbmQ3LU1WVzhJSVR5OCIKfQ",
- "signature": "Mb8feQ4o3rb6YtJsLVrNGS8kYz8bJiLsfvSs7GM2j4rJKyOWtNXnWJX2VVSKnUfd1LrISACe1VoGqRBmxV5HJSkGygbrl981r02Y6D_evREJ2Lx-zU_Ocv_LpP3LMxqpSE_m3boeD-cUt9OcIrXtMRg_JJOVnWYB8tu5SKrza4Z2cLfI0Rc3RgcUysaZ4f-L1M-GzyIJ-XYWuxUfrwjlo85_BHM06EZeKbBnLfiKv-HrNEqCBZc4xRUt31mVtVnJh-NyY9oPt_Hg_cL7luu0-tzSbDXZxxq7YbCK9cDz4rEL_wH4z4bwBgBk8Nl9oDnwWInSvEQKV03ZDcUm0ipN0Q",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsZW5nZS81M1NUa3Zvb0hpVVlxZG8wXzFjRlVaZ0s3NFJZdnYyUmoxQzdOLXkyX0xRLzEyMzA0OTMyNTQ4IiwgIm5vbmNlIjogImhJbkdSaENCanFkWnVNNG1HSDE2emtVeFh2YzBhQzlKMWJ2TVNpQXhSZlkifQ"
- }
- 2019-02-06 12:01:08,588:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932548 HTTP/1.1" 200 224
- 2019-02-06 12:01:08,590:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 224
- Boulder-Requester: 39351473
- Link: <https://acme-v02.api.letsencrypt.org/acme/authz/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ>;rel="up"
- Location: https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932548
- Replay-Nonce: 7xDsgp7biPIWCJeY3PHI-lYU-2j84NrMgiUnRhoaqx4
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Wed, 06 Feb 2019 12:01:08 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:01:08 GMT
- Connection: keep-alive
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932548",
- "token": "aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4"
- }
- 2019-02-06 12:01:08,591:DEBUG:acme.client:Storing nonce: 7xDsgp7biPIWCJeY3PHI-lYU-2j84NrMgiUnRhoaqx4
- 2019-02-06 12:01:11,595:DEBUG:acme.client:JWS payload:
- b''
- 2019-02-06 12:01:11,597:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ:
- {
- "payload": "",
- "signature": "wnyTCmDoRRGWR3ObQ4hf95KT2q3n0H6huQqxNJPCPzbW2M-VcDJvm69JgOkzmpRhFPv3ZBbO_TG-ruKEmKdySmfZ-51sfBdCN6dIN_D-676gQB5dqndHNAcMFoyi9cJl_X-76za9_eGnP0OJO-loIistNxeD3BaPmlPf0LUdeQidcIzVwXz6na_JQRNu_CPR7I6CuLO3Tz3PoA7E8sADDJja5QiFdGXkQUqaNIbNYnTxV1cLxOe8tppxotb08703AOap2RRyLGeDqB85Jv74IWNcc2os0u8Zxae0B1YxB6zTQ5n_2MJXhpAsRv0pB5Yl9B8pU1ONGd53grR7PBdXBw",
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMzkzNTE0NzMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzUzU1Rrdm9vSGlVWXFkbzBfMWNGVVpnSzc0Ull2djJSajFDN04teTJfTFEiLCAibm9uY2UiOiAiN3hEc2dwN2JpUElXQ0plWTNQSEktbFlVLTJqODROck1naVVuUmhvYXF4NCJ9"
- }
- 2019-02-06 12:01:11,938:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ HTTP/1.1" 200 2346
- 2019-02-06 12:01:11,939:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Boulder-Requester: 39351473
- Replay-Nonce: lMAJMEdpsIinxhdSnIyaIFnqune2QJEUk_05VYTmLq4
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Content-Length: 2346
- Expires: Wed, 06 Feb 2019 12:01:11 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Wed, 06 Feb 2019 12:01:11 GMT
- Connection: keep-alive
- {
- "identifier": {
- "type": "dns",
- "value": "subdomain.example.co.uk"
- },
- "status": "invalid",
- "expires": "2019-02-13T12:01:06Z",
- "challenges": [
- {
- "type": "dns-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932546",
- "token": "c-ShWqBZPXzmIZQTuuliYBkPsH7pyMvKFeBorcfkhxk"
- },
- {
- "type": "tls-sni-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932547",
- "token": "DoW_DiAod6JfJHpF6dnx7ZS_rgXgnIpapgvoKjhuoro"
- },
- {
- "type": "http-01",
- "status": "invalid",
- "error": {
- "type": "urn:ietf:params:acme:error:unauthorized",
- "detail": "Invalid response from http://subdomain.example.co.uk/.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4: \" \u003ch2\u003eSite Error\u003c/h2\u003e\\n \u003cp\u003eAn error was encountered while publishing this resource.\\n \u003c/p\u003e\\n \u003cp\u003e\u003cstrong\u003eResource not found\u003c/stro\"",
- "status": 403
- },
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932548",
- "token": "aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4",
- "validationRecord": [
- {
- "url": "http://subdomain.example.co.uk/.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4",
- "hostname": "subdomain.example.co.uk",
- "port": "80",
- "addressesResolved": [
- "SERVER-IP"
- ],
- "addressUsed": "SERVER-IP"
- },
- {
- "url": "https://subdomain.example.co.uk/.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4",
- "hostname": "subdomain.example.co.uk",
- "port": "443",
- "addressesResolved": [
- "SERVER-IP"
- ],
- "addressUsed": "SERVER-IP"
- }
- ]
- },
- {
- "type": "tls-alpn-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/53STkvooHiUYqdo0_1cFUZgK74RYvv2Rj1C7N-y2_LQ/12304932549",
- "token": "BI19fy6pwGoF7j0ArLSK-o5skBUyKVgxnqoUCgrgaUw"
- }
- ]
- }
- 2019-02-06 12:01:11,940:DEBUG:acme.client:Storing nonce: lMAJMEdpsIinxhdSnIyaIFnqune2QJEUk_05VYTmLq4
- 2019-02-06 12:01:11,941:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
- Domain: subdomain.example.co.uk
- Type: unauthorized
- Detail: Invalid response from http://subdomain.example.co.uk/.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro"
- To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
- 2019-02-06 12:01:11,942:DEBUG:certbot.error_handler:Encountered exception:
- Traceback (most recent call last):
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 82, in handle_authorizations
- self._respond(aauthzrs, resp, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 161, in _respond
- self._poll_challenges(aauthzrs, chall_update, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 232, in _poll_challenges
- raise errors.FailedChallenges(all_failed_achalls)
- certbot.errors.FailedChallenges: Failed authorization procedure. subdomain.example.co.uk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://subdomain.example.co.uk/.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro"
- 2019-02-06 12:01:11,942:DEBUG:certbot.error_handler:Calling registered functions
- 2019-02-06 12:01:11,942:INFO:certbot.auth_handler:Cleaning up challenges
- 2019-02-06 12:01:13,325:WARNING:certbot.renewal:Attempting to renew cert (subdomain.example.co.uk) from /etc/letsencrypt/renewal/subdomain.example.co.uk.conf produced an unexpected error: Failed authorization procedure. subdomain.example.co.uk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://subdomain.example.co.uk/.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro". Skipping.
- 2019-02-06 12:01:13,326:DEBUG:certbot.renewal:Traceback was:
- Traceback (most recent call last):
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/renewal.py", line 452, in handle_renewal_request
- main.renew_cert(lineage_config, plugins, renewal_candidate)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py", line 1192, in renew_cert
- renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py", line 116, in _get_and_save_cert
- renewal.renew_cert(config, domains, le_client, lineage)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/renewal.py", line 310, in renew_cert
- new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/client.py", line 353, in obtain_certificate
- orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/client.py", line 389, in _get_order_and_authorizations
- authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 82, in handle_authorizations
- self._respond(aauthzrs, resp, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 161, in _respond
- self._poll_challenges(aauthzrs, chall_update, best_effort)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/auth_handler.py", line 232, in _poll_challenges
- raise errors.FailedChallenges(all_failed_achalls)
- certbot.errors.FailedChallenges: Failed authorization procedure. subdomain.example.co.uk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://subdomain.example.co.uk/.well-known/acme-challenge/aqYC2ZeettBJzUNNCeXCUR-ZsVNwH09fRCJjumKVHB4: " <h2>Site Error</h2>\n <p>An error was encountered while publishing this resource.\n </p>\n <p><strong>Resource not found</stro"
- 2019-02-06 12:01:13,327:ERROR:certbot.renewal:All renewal attempts failed. The following certs could not be renewed:
- 2019-02-06 12:01:13,327:ERROR:certbot.renewal: /etc/letsencrypt/live/example.co.uk/fullchain.pem (failure)
- /etc/letsencrypt/live/subdomain.example.co.uk/fullchain.pem (failure)
- 2019-02-06 12:01:13,327:INFO:certbot.hooks:Running post-hook command: /sbin/service nginx start
- 2019-02-06 12:01:13,392:DEBUG:certbot.log:Exiting abnormally:
- Traceback (most recent call last):
- File "/opt/eff.org/certbot/venv/bin/letsencrypt", line 11, in <module>
- load_entry_point('letsencrypt==0.7.0', 'console_scripts', 'letsencrypt')()
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py", line 1364, in main
- return config.func(config, plugins)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/main.py", line 1271, in renew
- renewal.handle_renewal_request(config)
- File "/opt/eff.org/certbot/venv/lib64/python3.4/site-packages/certbot/renewal.py", line 477, in handle_renewal_request
- len(renew_failures), len(parse_failures)))
- certbot.errors.Error: 2 renew failure(s), 0 parse failure(s)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement