Untitled

2023-11-23 12:40:31,151:DEBUG:certbot._internal.main:certbot version: 1.19.0
2023-11-23 12:40:31,152:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
2023-11-23 12:40:31,152:DEBUG:certbot._internal.main:Arguments: ['--standalone', '-d', 'mail.ddns.net']
2023-11-23 12:40:31,152:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2023-11-23 12:40:31,158:DEBUG:certbot._internal.log:Root logging level set at 30
2023-11-23 12:40:31,160:DEBUG:certbot._internal.plugins.selection:Requested authenticator standalone and installer None
2023-11-23 12:40:31,162:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * standalone
Description: Spin up a temporary webserver
Interfaces: Authenticator, Plugin
Entry point: standalone = certbot._internal.plugins.standalone:Authenticator
Initialized: <certbot._internal.plugins.standalone.Authenticator object at 0x7f2ccf4c55c0>
Prep: True
2023-11-23 12:40:31,162:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot._internal.plugins.standalone.Authenticator object at 0x7f2ccf4c55c0> and installer None
2023-11-23 12:40:31,162:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator standalone, Installer None
2023-11-23 12:40:31,181:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x7f2ccf2f1630>)>), contact=('mailto:mail',), agreement='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf', status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v01.api.letsencrypt.org/acme/reg/25151836', new_authzr_uri='https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'), 3ec9e801b10d56c64ed4e0e2bbecae74, Meta(creation_dt=datetime.datetime(2017, 12, 1, 10, 55, 46, tzinfo=<UTC>), creation_host='ReverseProxy', register_to_eff=None))>
2023-11-23 12:40:31,181:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2023-11-23 12:40:31,182:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2023-11-23 12:40:31,585:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 752
2023-11-23 12:40:31,586:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:31 GMT
Content-Type: application/json
Content-Length: 752
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-01/renewalInfo/",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert",
  "sY_IStXZL_Q": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417"
}
2023-11-23 12:40:31,599:DEBUG:certbot._internal.plugins.selection:Requested authenticator standalone and installer <certbot._internal.cli.cli_utils._Default object at 0x7f2ccf244c88>
2023-11-23 12:40:31,606:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80
2023-11-23 12:40:31,623:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503
2023-11-23 12:40:31,624:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/mail.ddns.net/cert32.pem is signed by the certificate's issuer.
2023-11-23 12:40:31,626:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/mail.ddns.net/cert32.pem is: OCSPCertStatus.GOOD
2023-11-23 12:40:31,628:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-12-13 11:51:26 UTC.
2023-11-23 12:40:31,628:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2023-11-23 12:40:31,628:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for mail.ddns.net
2023-11-23 12:40:31,692:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/0153_key-certbot.pem
2023-11-23 12:40:31,695:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0153_csr-certbot.pem
2023-11-23 12:40:31,695:DEBUG:acme.client:Requesting fresh nonce
2023-11-23 12:40:31,695:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2023-11-23 12:40:31,828:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2023-11-23 12:40:31,828:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:31 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: nbWKegf8BNgFgQ_Lbnmt1Zjl_yZycgcJ0c03DCuluIiCmHw9ATo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2023-11-23 12:40:31,828:DEBUG:acme.client:Storing nonce: nbWKegf8BNgFgQ_Lbnmt1Zjl_yZycgcJ0c03DCuluIiCmHw9ATo
2023-11-23 12:40:31,828:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "mail.ddns.net"\n    }\n  ]\n}'
2023-11-23 12:40:31,833:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJuYldLZWdmOEJOZ0ZnUV9MYm5tdDFaamxfeVp5Y2djSjBjMDNEQ3VsdUlpQ21IdzlBVG8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  "signature": "tQV2Zn8rlaJTQpZrjxKgchK8MxtjT_9J3q9PLDNYkNDrfklriKOfISZgfL1epIuELYLbGx2x8I2E0Jy-4lCxuX6WxCqEnUZAtmVSE07I7VTF37fLbT4IB1_baAhECU50NlvZE2k5TxUOFzaNJ9YQbZkEJ9EJLyoF6_D-nyrsHL2VVClGR5zIB6abmIVdI-WoixnIj1QrgjX6R4lygOkydEybFddT31mwKHmg2JCA4-1OSc647wlyiuRh7XuXjmmOYKmkdazjhw41VM_0irTc2KlySdzHVM9bvNJ84KsUpXdyPksKdAIt7lOOmBXX_wd3vl1KjpDbKp82lTGwZoGs5ZmdNKi7K08CyYk7-fkK_JUNSY9Y_4OKrZSKZR-N14zRzvxZV0zECRIQa9tgyvCGhe99u7OqMzd4lO3UFsVjmSKkCgQ1pWUgh4FNGp9VyLo_jxOST4IgR6EOFIzLMlDDIxxcgYo6FYLsb4p8_lxhjW1i_-w7cHxD5EolrROS6HmEtbqfbbncRn_TF5TMPdrDO4ynUYJneMbMust3VwLMEWq12MlIpCyzxng9WoiuzpPcgMb1bzIwVUxFTOUdCo3GlWLBieUv5G2hzTm53EPhQeEORwNkaSP9Y5VfOoCYmFEqnyvyRx95PXm-jpB3ljXxkTxNXe8Q7yXxo35H5mt2hz4",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImxpbHAuZGRucy5uZXQiCiAgICB9CiAgXQp9"
}
2023-11-23 12:40:32,127:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 337
2023-11-23 12:40:32,128:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Thu, 23 Nov 2023 12:40:32 GMT
Content-Type: application/json
Content-Length: 337
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/25151836/224252421286
Replay-Nonce: nbWKegf8TDhh9Iml72C1JRNgecG2kymJGjMQBaSlYDntIWjEIqo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2023-11-30T12:40:31Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "mail.ddns.net"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/25151836/224252421286"
}
2023-11-23 12:40:32,128:DEBUG:acme.client:Storing nonce: nbWKegf8TDhh9Iml72C1JRNgecG2kymJGjMQBaSlYDntIWjEIqo
2023-11-23 12:40:32,128:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:40:32,132:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJuYldLZWdmOFREaGg5SW1sNzJDMUpSTmdlY0cya3ltSkdqTVFCYVNsWURudElXakVJcW8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTA1ODg1NiJ9",
  "signature": "h183CK9UpZDpFUd7F6otcyYlcPt3Ep3q8ZEIIUo9udXFlODlOXGra1aM-Q86PGbKLf_83iYT0-hTPsdU1QPHJIdgqeW--NN7Z40cXFngVyX3nCYCfmAbRRQmbTX6ANgMKVF22cMvWzdwr3vAbZMYv2OOOEoVjjRextsqr-eM26O-RUnas5_KvMUN_AvtOAoPqt4ByJGnLDjaWMn8OyVUih-TgPe9KNPmprgmgeQ49a2PDOlxK1xHtZoAWRAQqZ6l8h9ANbdABMCdA4GHJ8BufXlCgeCGG5IsJQIO-W25-uYSfU4LTBnW9XvFKF6GC6HX4L2c1wD8tN9Xi_c6vG-nP6nom0JGaqK9CbqOg6cYDPULvsvrATT3ZkTkCMDwxbfVKWLwkvOP0S35gaBveV0EX2KHa6YkinwQFT2fSe8E9jLnYnI4v_703w5r7vsvnW88nR09a15NNT651hwaBMwQuxQlKn25t5gjMxQVbYemuGRkA8g21DPI-7lnjGbzFA_KIXyyFZ9iwg67egvYATAQqGc1BMDQ8Tggo_OFML_H3Py69n0DExoJr11R5Al8MAsBXhbaADsWvnXMrcKGFUE-DE9h15tsL96DemoU3q8oS4oYuXkFgb1bKSfJsR10RQv8ywQMmJTRbA7VxpweDiDJ4XCQNWZNTnAsJTZr4L5X0R8",
  "payload": ""
}
2023-11-23 12:40:32,268:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719058856 HTTP/1.1" 200 797
2023-11-23 12:40:32,269:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:32 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: v0bMowfiSYal6nLsp8Yw15moLWjuWpdWpA2nLsjrDuYIybsqUDk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:40:31Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/QNak0g",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/mRYFIw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    }
  ]
}
2023-11-23 12:40:32,269:DEBUG:acme.client:Storing nonce: v0bMowfiSYal6nLsp8Yw15moLWjuWpdWpA2nLsjrDuYIybsqUDk
2023-11-23 12:40:32,269:INFO:certbot._internal.auth_handler:Performing the following challenges:
2023-11-23 12:40:32,269:INFO:certbot._internal.auth_handler:http-01 challenge for mail.ddns.net
2023-11-23 12:40:32,269:DEBUG:acme.standalone:Successfully bound to :80 using IPv6
2023-11-23 12:40:32,269:DEBUG:acme.standalone:Certbot wasn't able to bind to :80 using IPv4, this is often expected due to the dual stack nature of IPv6 socket implementations.
2023-11-23 12:40:32,271:DEBUG:acme.client:JWS payload:
b'{}'
2023-11-23 12:40:32,275:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJ2MGJNb3dmaVNZYWw2bkxzcDhZdzE1bW9MV2p1V3BkV3BBMm5Mc2pyRHVZSXlic3FVRGsiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzI4NjcxOTA1ODg1Ni9SOC0zSncifQ",
  "signature": "fbI18KT1Kfx13sg7-ie4to7zfsTTrXbeoAc24uigztfkVo6cQoGZ_pCpFbvRjtAtwpwJDCxGFISze8X8bNST75iDGyEZvF1K3ro9renSKe_E5K1P_f0ZPfVMjYMoZzu9FsxF5IA0HvHcyBEiHFkyjUXGa3j_1yj4HhoaTeTMXhDh-gyFkpuvjQ1c6YcB0BowiJMhDUFmMsg5Iw2_yBXuIbwojw2sf5OpbYHH6b9cFxr8RJXjiKtpe_4Z_Hx1lyAsiKSevMUP8AXnK7fAh5cSGOGk6L7nlscpSHCdn4cx25bNQ30NIIj_A6Kpbr0zu1yjU9UZmyEvAy8hFfGKcTDS2Uajv8aU8Ab63NF3LqFQYTanmFTgmSMfhGWx2iO4oF0Uz6IltrWNJ2TXugLb1K2Cj3fLrF0R1bwdGmyyig5918vN8Xw4r2hnIAh3a0FvmyOzEmK6POfM14eX1QRHu0Jjq60C7sEYP1MWXlGEwEfgDPfmxAb3GXcRj4u-c6yh6s-_tVqyqoBa9Nzg_RTKq4f6x9klhj8aFJp9SnzTR2S31VgiY_jijcJeeIt19PT29_WoFuXbu7LZVIdpXVscuvGWX13fFEFZAXik1Vf6_AAazUPuJ4s-MSKOFSP7QShk5BTiKN-uMsrwmenPvy5LJ8bLrTPyvyylbGfWETHnCWjZkPo",
  "payload": "e30"
}
2023-11-23 12:40:32,423:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/286719058856/R8-3Jw HTTP/1.1" 200 187
2023-11-23 12:40:32,424:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:32 GMT
Content-Type: application/json
Content-Length: 187
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw
Replay-Nonce: v0bMowfiULgtwsPrZobo1S1z-ODgs1044mNx-sZOCi02ikQvCig
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "status": "pending",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw",
  "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
}
2023-11-23 12:40:32,424:DEBUG:acme.client:Storing nonce: v0bMowfiULgtwsPrZobo1S1z-ODgs1044mNx-sZOCi02ikQvCig
2023-11-23 12:40:32,424:INFO:certbot._internal.auth_handler:Waiting for verification...
2023-11-23 12:40:33,425:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:40:33,430:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJ2MGJNb3dmaVVMZ3R3c1ByWm9ibzFTMXotT0RnczEwNDRtTngtc1pPQ2kwMmlrUXZDaWciLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTA1ODg1NiJ9",
  "signature": "hE3uAkpiVi2NkKyQwVwmzOm6GT6XEqKo4Ju3S9QfehFdt_m-dpY-O7xkOxY-VDTuDWhm-q1m-7276E8NpuuOyfxeFZ9Dik9hWYN9NK4Ax7ydnsYUQX-eIJ7LTpnTfm5bgxuFuj4kMrlwE0H7kwct_Ss-PIRWNqF-6Sfw3eJGoraHmaDpZrVwiDRGFiY1uK8TeBduc2_woG9sVpbJWCr9J6SA9EEUHm-YAidNZjzO_jiKg6wlQ4pKZeLW41pdHHgQMx2Zzj7987Q1HMrMgpMXzo3fNQRXwJxaIdtsrYBdkBCVDGKOt7kemPUlnlYQ67qpad0UvgGBvxtu_eSbBqEv5i3BXTzOGQja8FT47Vrs6FAawiLpOJB6-HobP8EQCen4aYTb3-5ZY4qzTuCjOV5YKo9qnFcP6EdkPjJCLEctL8iBvBOdo_ZCJaXy-bxtOb4Lix7lub5SqzkmjtMWgB3wk4eMBLR3ugS_xvAMangTHLg3pqw0xsGUBeO9wLF0SaIXD70W3MTAdsIwQo6Pjj_zZAd2UMA-kziWgRSnBybPtA2Diw0PdKVt_y-5ZhBck0O83L2-HnGmJVRPLoWwkhxrtuvbRDdQWTngt72OQwSxhzH_lf54wadZrU2fDUfJdKMYmDqL1Lal2w3MnKKTSOSnriXBx95rz7EwzCMWCsd-mfw",
  "payload": ""
}
2023-11-23 12:40:33,565:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719058856 HTTP/1.1" 200 797
2023-11-23 12:40:33,566:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:33 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: v0bMowfiaV2ffGRj2FOV-BcizhprMVgBg07OoDP7hOo7pFDCmJU
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:40:31Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/QNak0g",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/mRYFIw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    }
  ]
}
2023-11-23 12:40:33,566:DEBUG:acme.client:Storing nonce: v0bMowfiaV2ffGRj2FOV-BcizhprMVgBg07OoDP7hOo7pFDCmJU
2023-11-23 12:40:36,567:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:40:36,571:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJ2MGJNb3dmaWFWMmZmR1JqMkZPVi1CY2l6aHByTVZnQmcwN09vRFA3aE9vN3BGRENtSlUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTA1ODg1NiJ9",
  "signature": "Lfo4ZgOJcJFpLoJlp869VcqTDB2g-NG2fMvYyUM3SSy3DhPn4ZQYh3nEV3_ANj1W-5aZh4z2_FL6yHC9dNgyxbxnkMYwioukPIOzoH5IiCJEClM0iMNPOJ6QHfPkc_LcKg48k8pUocGibxBdtUw_IXIS2IAsSCmRB-f-hO53ka35cZNnue_j55QULCqGIPAiriQafBtSTbmAst0Vo5I1PojMm5lnbXl-9Sq83frgklqf4UdmUXJv8vCXt7mTxFt27Y-yfKKFXpYqJiy9l1m5U9_vi-3U1V0pTixBgq7b42agzM4bBkYVx0P6j0olLEKe5bNePclReOF02rcDQwb_UcvX2WvjmOGuO5NHbYHV-_dyqnDjQTI_Hix2i1yyOV0u_TIzvQRlDSxRnxFvCbDmkhnh8O31cgAiHRpl4AQPAhPjjRqkNTi2AdE3PnwbnNm9i-l8BwJYPzjPDORARTGN8Bgf9S3mAqT08ixxJWS2bAOGqfT1InJ2fvktE2aF81zQaALxB1lDMmXt7NiQIX-3wLeZVGSJYEHjMGx4m085WrRR_ZtPFjNaNL6PqThWWGcm31D3F_yXELwIyqDK3mmtXdKpXgo4i1eMBIOFxuHI0dM6PYm0LEoeXY5VaNEbeBKYyK4LrXmkuInnPNLAgiQKcJKDmDwWQDXuA7s30opgXVA",
  "payload": ""
}
2023-11-23 12:40:36,718:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719058856 HTTP/1.1" 200 797
2023-11-23 12:40:36,719:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:36 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: nbWKegf8mr4unbl2Bl0q1h8bRVPXwZZtqx_XOeIGOO7TupK7ebs
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:40:31Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/QNak0g",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/mRYFIw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    }
  ]
}
2023-11-23 12:40:36,719:DEBUG:acme.client:Storing nonce: nbWKegf8mr4unbl2Bl0q1h8bRVPXwZZtqx_XOeIGOO7TupK7ebs
2023-11-23 12:40:39,723:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:40:39,727:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJuYldLZWdmOG1yNHVuYmwyQmwwcTFoOGJSVlBYd1padHF4X1hPZUlHT083VHVwSzdlYnMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTA1ODg1NiJ9",
  "signature": "mKqnsi6SEl1lYT2AfNTteCFHpb95D5j-ZmsVechZpD_HfRbbCyslCdklwDbZsVvcxrvSPTXDisf5gABbuexTr_kP2LCxEu60Hala9lULVJRd1cFh9E8E79cEkvVWpCIUC6i3s0DvNg9WrOjGcBWCdrUu5MyXgu5oVG13jpsK4Yw9DPxTc4g2TP591XtnXsrcfYjVrymehnR-bFR3mwIKDFyLiFY1RgdzrVxHVM85u6rzdCK7NXna3k7uIcnTRaX8hqkqbtRWEpxWLa7apV7pfAwCAt0TDNPi7_3oIhivP-J1VDaRMcvAbx3cWTyBuaGST74uyeMc2mdSOFtUHNdU1YF-y9h6oJVVCZ6YHqSXOVjD_AJJQVHmpD-nX59IKRLPLF63hNavgrlcqjPPHcpJwy_6UV52Rk1AEe8AzFtvrHgYmA6fs43R5mhlQnIVzt1OlnmAzY2JuvpFnirHEhx-_kL9tso4Bx8wK8gJoWl83ahNeooLoRVUAOhFxSmmIx5y8ubtzb4HwS3CH3AGy9ruqRpjyIS-P_vzJGNH2t-5edMaJ1mR-qxJWDCVipYFmhWbN6SXyRuJO8WnEnKJkt4eoUYSxiQ8DbO3NJK7h-nCgOtHmwXCgAqy-sguBv4ojhFwVkK46ZiGn-TaviBPtI2ZNF6JKUXr97U-07jjZuATH64",
  "payload": ""
}
2023-11-23 12:40:39,870:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719058856 HTTP/1.1" 200 797
2023-11-23 12:40:39,871:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:39 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: v0bMowfinCh54aedfmrC9kTJT--OeLkSacyKvz4DLsp17JFH7Ao
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:40:31Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/QNak0g",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/mRYFIw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    }
  ]
}
2023-11-23 12:40:39,871:DEBUG:acme.client:Storing nonce: v0bMowfinCh54aedfmrC9kTJT--OeLkSacyKvz4DLsp17JFH7Ao
2023-11-23 12:40:42,874:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:40:42,879:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJ2MGJNb3dmaW5DaDU0YWVkZm1yQzlrVEpULS1PZUxrU2FjeUt2ejRETHNwMTdKRkg3QW8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTA1ODg1NiJ9",
  "signature": "jp0UiAKk8uNlg2PQe895GUUeHrX3m4gKEtzuKZs5ojfdaSm7QlBFEQ8wEH9B1tQoY_OQkd530MT62tKOvBpCD_sMCZEw8DVlP1pAwPvsLac6_C6qCQOGdS56l0qDOspSSfwQvXFXuHbYw7ynqvaX51H1KlLgo1ckzukso3qEz-1Ymkx7KC0ili3MPUOYwcTJnRfFwAes4w4UhF4Pdsz-97w2A5nQTmh_YRnFh1gbjCfd75KXL3iRyWrlzAWBqS-l9x8j6oYzGTbl1cGrhlumpKzu0rVWN9jHconxH3tCwpLclr_SP1-glNz80FB_HHhFHBx7JFkM1cqof-Zg4fF1jx-FGJAGrViWQeH379P12gdCEoccytIBTYdW_ub7O7DdpDbK0pxU9GO8lWUHYRSKJPWZe87bSA88JmEei3zCrR_XsZ_-yJ5n6cBAqYu73QIgVzQ-llkd0S98RVPFOWda0FaSdvlnxT_ORCzDiOy06iMuh_xlDFSwRDoGuF-qd3RIQIT6LPBiEYuqskdJY1LWsATDdWqQBCDE7BE9-WzMt8q5NUGvYEsGTTeD29QtgSehjWJJ8uz_0bWqowLatC6QjSppz3BfYAe5y9uDuto7yY4yiBZuf0rkG9C0iSzhlcWzwIazBfggdLApauvDjbLx53V3NNSG5kxTZtB5wO1_jgo",
  "payload": ""
}
2023-11-23 12:40:43,013:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719058856 HTTP/1.1" 200 797
2023-11-23 12:40:43,014:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:42 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: v0bMowfis6UkGVxFHoiyYmYl03wofr88gvva7MIQ99UJmUEGxH0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:40:31Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/QNak0g",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/mRYFIw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw"
    }
  ]
}
2023-11-23 12:40:43,014:DEBUG:acme.client:Storing nonce: v0bMowfis6UkGVxFHoiyYmYl03wofr88gvva7MIQ99UJmUEGxH0
2023-11-23 12:40:46,015:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:40:46,020:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719058856:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJ2MGJNb3dmaXM2VWtHVnhGSG9peVltWWwwM3dvZnI4OGd2dmE3TUlROTlVSm1VRUd4SDAiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTA1ODg1NiJ9",
  "signature": "XfAUJ5oRGwTv7n2kkGvPisTId1IqOvhVtJensIcbwRKhWW0m2tpJB9DHpIt8hHQOpdq93FboSV0P8o3j3pfAJf_72eVAzdTrQ7Gax-XnDwcT5zmiWdoL4wQLT6NwUYGDfikwUFomUQfTdzC9AEgUOrc6LFs9a9ycHgXXUSfrZC79vgiCEiAFRLKrGlrw881W3APIewve-qxCLEu9wDpeGiu7hlv_rcsGWTGdrc6_JBLvT592BxAm7z97Nw4Ah4NKgToBXb1NUTONpYkdagfxJOU-6k1ulU_mxICGk9oyoAbAeDKEaqtO8gtICzlB2HN3MpELtm7-zaieOiLefMaIBcQbYSC7eNRTRzmFbZL5RQBbxOI2sA6n8GW3C1fL2XyBrhH5JzG7bfYBHG_qRpUCZytfTh29S5vjUYhhOUoSV98UJVlJJjIYqcbLFkndUatYcJjqBS4_T--lHGmKQcCLQRY546rMvUnHr1Bn4x6VzHuAVcNeqDqOLbrZ-D4pPh4hy057zPax9lfGTHwgpJPHVK5rcvK2Zol026WyPpgfF6rgy0Yi57IzmSFAZabdVDsKXEh_QRI_HlFf1atO9R8CPwwLSvPSVOTpG6_enrXvvKBtZd4HIO7qyse7ou2k2P7ETNZ5J7IQPb0NpEYh23Q9TZuajFrtM6Dchu7v7-ANNzI",
  "payload": ""
}
2023-11-23 12:40:46,155:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719058856 HTTP/1.1" 200 1488
2023-11-23 12:40:46,156:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:40:46 GMT
Content-Type: application/json
Content-Length: 1488
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: nbWKegf8Tlj6S-Vta78aKnZYKSY5TgfKoebW32kEsVqmMR9hEJU
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "invalid",
  "expires": "2023-11-30T12:40:31Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "invalid",
      "error": {
        "type": "urn:ietf:params:acme:error:connection",
        "detail": "IP: Fetching http://mail.ddns.net/.well-known/acme-challenge/ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw: Timeout during connect (likely firewall problem)",
        "status": 400
      },
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719058856/R8-3Jw",
      "token": "ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw",
      "validationRecord": [
        {
          "url": "http://mail.ddns.net/.well-known/acme-challenge/ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw",
          "hostname": "mail.ddns.net",
          "port": "80",
          "addressesResolved": [
            "IP",
            "2a01:e0a:c67:8680:d469:3210:6aa6:cde"
          ],
          "addressUsed": "2a01:e0a:c67:8680:d469:3210:6aa6:cde"
        },
        {
          "url": "http://mail.ddns.net/.well-known/acme-challenge/ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw",
          "hostname": "mail.ddns.net",
          "port": "80",
          "addressesResolved": [
            "IP",
            "2a01:e0a:c67:8680:d469:3210:6aa6:cde"
          ],
          "addressUsed": "IP"
        }
      ],
      "validated": "2023-11-23T12:40:32Z"
    }
  ]
}
2023-11-23 12:40:46,156:DEBUG:acme.client:Storing nonce: nbWKegf8Tlj6S-Vta78aKnZYKSY5TgfKoebW32kEsVqmMR9hEJU
2023-11-23 12:40:46,156:INFO:certbot._internal.auth_handler:Challenge failed for domain mail.ddns.net
2023-11-23 12:40:46,156:INFO:certbot._internal.auth_handler:http-01 challenge for mail.ddns.net
2023-11-23 12:40:46,156:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: standalone). The Certificate Authority reported these problems:
  Domain: mail.ddns.net
  Type:   connection
  Detail: IP: Fetching http://mail.ddns.net/.well-known/acme-challenge/ryMVcyAgezY1ZoKrIu6FPfFwU9DBxXUX1yHEGaoZYmw: Timeout during connect (likely firewall problem)

Hint: The Certificate Authority failed to download the challenge files from the temporary standalone webserver started by Certbot on port 80. Ensure that the listed domains point to this machine and that it can accept inbound connections from the internet.

2023-11-23 12:40:46,157:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2023-11-23 12:40:46,157:DEBUG:certbot._internal.error_handler:Calling registered functions
2023-11-23 12:40:46,157:INFO:certbot._internal.auth_handler:Cleaning up challenges
2023-11-23 12:40:46,157:DEBUG:certbot._internal.plugins.standalone:Stopping server at :::80...
2023-11-23 12:40:46,293:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 8, in <module>
    sys.exit(main())
  File "/opt/certbot/lib/python3.7/site-packages/certbot/main.py", line 15, in main
    return internal_main.main(cli_args)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1572, in main
    return config.func(config, plugins)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1432, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 122, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/renewal.py", line 335, in renew_cert
    new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 384, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 434, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2023-11-23 12:40:46,293:ERROR:certbot._internal.log:Some challenges have failed.
2023-11-23 12:41:09,144:DEBUG:certbot._internal.main:certbot version: 1.19.0
2023-11-23 12:41:09,144:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
2023-11-23 12:41:09,144:DEBUG:certbot._internal.main:Arguments: ['--standalone', '-d', 'mail.ddns.net', '-v']
2023-11-23 12:41:09,144:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2023-11-23 12:41:09,150:DEBUG:certbot._internal.log:Root logging level set at 20
2023-11-23 12:41:09,150:DEBUG:certbot._internal.plugins.selection:Requested authenticator standalone and installer None
2023-11-23 12:41:09,152:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * standalone
Description: Spin up a temporary webserver
Interfaces: Authenticator, Plugin
Entry point: standalone = certbot._internal.plugins.standalone:Authenticator
Initialized: <certbot._internal.plugins.standalone.Authenticator object at 0x7ff4b8373cc0>
Prep: True
2023-11-23 12:41:09,152:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot._internal.plugins.standalone.Authenticator object at 0x7ff4b8373cc0> and installer None
2023-11-23 12:41:09,152:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator standalone, Installer None
2023-11-23 12:41:09,171:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x7ff4b83735f8>)>), contact=('mailto:mail',), agreement='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf', status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v01.api.letsencrypt.org/acme/reg/25151836', new_authzr_uri='https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'), 3ec9e801b10d56c64ed4e0e2bbecae74, Meta(creation_dt=datetime.datetime(2017, 12, 1, 10, 55, 46, tzinfo=<UTC>), creation_host='ReverseProxy', register_to_eff=None))>
2023-11-23 12:41:09,172:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2023-11-23 12:41:09,173:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2023-11-23 12:41:09,595:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 752
2023-11-23 12:41:09,596:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:09 GMT
Content-Type: application/json
Content-Length: 752
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "ICHPRaCd2y8": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-01/renewalInfo/",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2023-11-23 12:41:09,609:DEBUG:certbot._internal.plugins.selection:Requested authenticator standalone and installer <certbot._internal.cli.cli_utils._Default object at 0x7ff4b82bb2e8>
2023-11-23 12:41:09,616:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80
2023-11-23 12:41:09,633:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503
2023-11-23 12:41:09,634:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/mail.ddns.net/cert32.pem is signed by the certificate's issuer.
2023-11-23 12:41:09,636:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/mail.ddns.net/cert32.pem is: OCSPCertStatus.GOOD
2023-11-23 12:41:09,638:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2023-12-13 11:51:26 UTC.
2023-11-23 12:41:09,638:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2023-11-23 12:41:09,638:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for mail.ddns.net
2023-11-23 12:41:09,681:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/0154_key-certbot.pem
2023-11-23 12:41:09,683:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0154_csr-certbot.pem
2023-11-23 12:41:09,684:DEBUG:acme.client:Requesting fresh nonce
2023-11-23 12:41:09,684:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2023-11-23 12:41:09,824:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2023-11-23 12:41:09,825:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:09 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: SFMYLIQjKDLzePRjX7PxhpYGDcSpo7B58XGRWm1hUnzAasn0hIQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2023-11-23 12:41:09,825:DEBUG:acme.client:Storing nonce: SFMYLIQjKDLzePRjX7PxhpYGDcSpo7B58XGRWm1hUnzAasn0hIQ
2023-11-23 12:41:09,825:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "mail.ddns.net"\n    }\n  ]\n}'
2023-11-23 12:41:09,829:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJTRk1ZTElRaktETHplUFJqWDdQeGhwWUdEY1NwbzdCNThYR1JXbTFoVW56QWFzbjBoSVEiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  "signature": "CfDDjnvJvX7JAvqn_xp9EUQr291nFAzwFEKgOV8ZH4t9DG_1KxPJEcpLFNLLWjtks55Gx9WzEEmOq15XjZ9ke0_NzgO1dvACfb8SyO955MojDm4OkG_614q-CuOJ45P01RBc85xDjGJIA5NO_W38rx2TJAY6ZEzcuMj4Qkm6KVOH2U_KBfbViZr--gCa_sk63ymdV-rVcyt5SxL227CRTmzPdgNXEhRecIasD7kMAGYeAN45HAo_2uw0c2t06CkJQ0naQl4mnlRv7H5hI42OKqwq5JIdLhl1xu4ahvS1N_2nlkW8vjWBKfc-db33dMdEudZKvNnq-CVImDeJFUcrqquOIkPQ7zjbQJnGH_X_PgHE77AvKn-SRF1VB6jKfdxRjtZ_GKnHlL79KCIvouVcqTOyaEF1F2ht8SSCpXUpfLGj1DITmiOYQZgyo6HD7GpZb_qQLJJ3kdxsO1mMkHInlMARsaSjpAV41HNSsBPTBP57DDAh1j6vkfzP56J_NhO23HQRdOhnTy86VSidIwONjsE-eMqj3MQVDfheYklknRifoXdZhqiUj6elCFlMEkQO6nBvFL-oYBvAslwO4I4DmGzKYWryL8o7YwkeVOq6Vgg4IDAH5owkWSaglBMr4VzuIA7uzhv5GB8nSF9zCAgPDTEo-vaWA91hoBVShLAqLD8",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImxpbHAuZGRucy5uZXQiCiAgICB9CiAgXQp9"
}
2023-11-23 12:41:10,034:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 337
2023-11-23 12:41:10,034:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Thu, 23 Nov 2023 12:41:09 GMT
Content-Type: application/json
Content-Length: 337
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/25151836/224252525516
Replay-Nonce: SFMYLIQjd7HsN5EQxlG8gm3VusbNqclbSRCryi6Ca3rKqiuwot0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2023-11-30T12:41:09Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "mail.ddns.net"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/25151836/224252525516"
}
2023-11-23 12:41:10,035:DEBUG:acme.client:Storing nonce: SFMYLIQjd7HsN5EQxlG8gm3VusbNqclbSRCryi6Ca3rKqiuwot0
2023-11-23 12:41:10,035:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:41:10,039:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJTRk1ZTElRamQ3SHNONUVReGxHOGdtM1Z1c2JOcWNsYlNSQ3J5aTZDYTNyS3FpdXdvdDAiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTIzMzE4NiJ9",
  "signature": "NaZXtzWmdTdL1ZIht3tzrJu-MPMuGrTwdIXrJ4CB4pVHi4pW-g5VdDuxq8AG2KjCJ_Hn7NCPaETyV1EdCsAQXPwWRyf4UDS5zpsXY_JLwa2I9l0IVQ1VaxBnG2YLOyiastsn9TgVUtkLfHB2ZKmlIOEx95F7czZ2tL86mVAVc-F7dNbNuwZyLArNlkRRAgz8qcyM6mctCiZjkV4ExddFMTYKyuQK9uvKUSZWT51r3ZZLdTn2pCBt2ORgaN9xG6n8m2kGiBuAQpeQVrp5lpPetY2lVKJhfEGlKUtuNqosXxQbSEmFCJrpX1tX-gLPbrCKw9buYV4lFTSXbCuV-R7n0BO5bNsiE6tp20byUxzLn9ohvKKJ9EsjEbFwybM6j8ohISa27f5cWIEcTZPiWGxknqT4Je5-2H0iLDgwLVjNgiwMmyftiq-PkGt7e96zWAYJMQXnUil8rBQtcXM8ThcRmzfeZEPM6OfhSkCJq3PehdcvLFjjgdUzWe8xVRj8d6h4-jN-RZxi4x3sqriRePREnsKPz8R1sRV6scFzfq3sm0G5776fk-RlzZKV2AbFNVakJpc2EiK879g0JeSRbGIHCuU49qRRHZtZJ2s2NaUgLj8iX_jUKtv7H9wXa344CSSef_uWV98aD10WLugDzhZNWiRZ-doFUWXHyrEfsz6NULs",
  "payload": ""
}
2023-11-23 12:41:10,195:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719233186 HTTP/1.1" 200 797
2023-11-23 12:41:10,196:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:10 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: SFMYLIQj9GwkgFGXw04-LeQWcHuF0N-be9pNgP-4GxtUaz52Mww
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:41:09Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/LhbCfQ",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/KivuBg",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    }
  ]
}
2023-11-23 12:41:10,196:DEBUG:acme.client:Storing nonce: SFMYLIQj9GwkgFGXw04-LeQWcHuF0N-be9pNgP-4GxtUaz52Mww
2023-11-23 12:41:10,196:INFO:certbot._internal.auth_handler:Performing the following challenges:
2023-11-23 12:41:10,196:INFO:certbot._internal.auth_handler:http-01 challenge for mail.ddns.net
2023-11-23 12:41:10,197:DEBUG:acme.standalone:Successfully bound to :80 using IPv6
2023-11-23 12:41:10,197:DEBUG:acme.standalone:Certbot wasn't able to bind to :80 using IPv4, this is often expected due to the dual stack nature of IPv6 socket implementations.
2023-11-23 12:41:10,198:DEBUG:acme.client:JWS payload:
b'{}'
2023-11-23 12:41:10,203:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJTRk1ZTElRajlHd2tnRkdYdzA0LUxlUVdjSHVGME4tYmU5cE5nUC00R3h0VWF6NTJNd3ciLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzI4NjcxOTIzMzE4Ni9qc29kMlEifQ",
  "signature": "Y2mtnHyXWLG9aEPMr6dF1TJJtv1rKL1k7tbPxq7B-dV4Hc9jR8rLrBfAvuph8Z8ttb4H54cCnMh5GauiS3XB-n1WYrsVXJgzrTqPiki54oHg6pY2yAxm5ii1EB_OO7w54d6chYGiF1pH06vgqvhTRLEMJX9TQPYGwlPwnnyzNZ2MY5sMFdmOfCTLBGjs4tCWMQx2ia23r41yEv6ZlB_K6dKrlvwVc7mwD29tRCB--YBJnC-x_LO36QFnYl_gOVdyRrxJjIVj7I9MduMjAaLFsw80DmanAEK_9pVX73Nx-6T2dxunSSkZYQYScoKHAQPc_zahVaFmpSXyyi4EWEzTiKzAOFHy4dHdtn7JPR4kb-55_N0i2KcU_A2A9yelIzWDBin9o3c3U-v341_Ta2J7VI1E77CW0yXlTmzQDIna1EnUp6JLJhkBB7EVCezPHzY3mEhf472KO5wvtnTqZtUa2apq99RmqV1Oz4v--O1C0gJxBKD61nXwm4I9-2_zCXlAfISDnqZ93Wd-Zboqrv-s_3666bMGWY6ncWeiBt5aySX3sG_S1jfwTfXgVjVVrCwx42T0sECz9IbJ9K-OiL1CFaFE0tUjx_IPFwexpdjGT0Z5_fS2WZ_0fXzT4VBda5Bys0roBL5qT9HiOApluIwI5EWZHi_-0SseOPyIWY76vPM",
  "payload": "e30"
}
2023-11-23 12:41:10,349:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/286719233186/jsod2Q HTTP/1.1" 200 187
2023-11-23 12:41:10,350:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:10 GMT
Content-Type: application/json
Content-Length: 187
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q
Replay-Nonce: SFMYLIQj2DUQe2z_suUYzhBRFeqOjcp98lHLRkyqgP5lEJEQJUM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "status": "pending",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q",
  "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
}
2023-11-23 12:41:10,350:DEBUG:acme.client:Storing nonce: SFMYLIQj2DUQe2z_suUYzhBRFeqOjcp98lHLRkyqgP5lEJEQJUM
2023-11-23 12:41:10,350:INFO:certbot._internal.auth_handler:Waiting for verification...
2023-11-23 12:41:11,351:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:41:11,356:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJTRk1ZTElRajJEVVFlMnpfc3VVWXpoQlJGZXFPamNwOThsSExSa3lxZ1A1bEVKRVFKVU0iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTIzMzE4NiJ9",
  "signature": "YZS5poXTpkxyLnhH89aHaaV7q2IEfC0V_e0B2RhP7Nu9-NMqs4wV17uVgdYXk1cbvefwaIeek36jd0BD5wEnXLwlhduhWzKp0E0bx8OLGEGRimNxzpceX2sd9kiqnPhWTIPmSI4uARH-Qi2WQPXVp5hQMj25lVT7rMbzrkrG3RDk9ut14sTFw9k5nXfe0BD7Co9RUkTHBuKVoD1dGSm1TQ1ZnzVyFaO64lBpzWGJNPbX0bUprP74-BWiAIuB98l_G5v8QwYUdBwIZvMn0IqjKlxEcrWsaY3wvfxTD5uhsKhuyIDd5bshj4GdybwCG1B4KysoVvf5sjwVdomudaAmAgJOfk64PDKehnu5YJ0wWWBlJn7ao7bAlt1tc9qQ4GlPO--4LJOl7XVncSW3_3FdUoagWhRiniSQGi6ZAKrOav2Rk-xzqThgholQgUvX6f7DjyS9hsBLmF3Fxs40gIDtWOvnYjlSKn24jep0UfGEObQNWZqzLLlkFuuT6OCEcCOVAWtLQisQPLmnO0cCLnUuCuinx2B3hhr_-6Q-yuWxJoUgsH0UXDZXnYDrOqCxrGJPsbcPGmWkychAwY6T4nqJsJMah8KYz_0mcBl3NLiXqtF9p1vPXTt-i_BDZ2YIHFtzMDEuYPL77M8xTB0QCu-OD5mIK1jPS-a10yLpc11f2YU",
  "payload": ""
}
2023-11-23 12:41:11,499:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719233186 HTTP/1.1" 200 797
2023-11-23 12:41:11,500:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:11 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: jXyutbsnbCx8Deb5CSgfUgiQDqaUBQmMuxWop3DgqaajJE9HHE8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:41:09Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/LhbCfQ",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/KivuBg",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    }
  ]
}
2023-11-23 12:41:11,500:DEBUG:acme.client:Storing nonce: jXyutbsnbCx8Deb5CSgfUgiQDqaUBQmMuxWop3DgqaajJE9HHE8
2023-11-23 12:41:14,502:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:41:14,507:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJqWHl1dGJzbmJDeDhEZWI1Q1NnZlVnaVFEcWFVQlFtTXV4V29wM0RncWFhakpFOUhIRTgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTIzMzE4NiJ9",
  "signature": "qgZh9dsr1tqlBThc8TZ27ttGDOdz_bH-WlLAxTgys22-ABRxl8Wk9lT3-1ipjJ0-5j8PHguz14vk_ISZ92ot99j-4Ak7rD_vW2JS7PHQVHJ1ZZ3EHXOOiP42yeNWohD8mAJ-N62Jwlk1oAqpDKC4xO5GshsxycCJ_eZ1Dxwp0QIDaAqLfnNTk78nfn5InX9gqjKI_FAeGIftMXUalT5ZLF9L9GqN2omx2GH6_dbSTuKxHRMnFltF5bJbxeGRfFJoADil4PZSwBmJpMnZmbp430ehiy9eMi_lFNrwDSBnzRss82x2HCu_9RWqWqwd3_uMIDf93IyUA1jVVATXW2d0mR8Rd-jk3BX6T8RtHtypB1qa88HPExFWLNz5t2M4t20hYuVBlYmiWg87o4kWzRexJZrb-QErpBU1JvQ0EFYll9qtxNnjFt3UMtqt1qdOLtkYwqT5MJhoBXBnBXzDYNiZ2ABJSMWBV81ZMj5hobQrMlQ5VOSK8bube2poyFqneYUj6cB-KkkDnF5BQNl_fXEvXzKF35jZp6TykUwSOrajb1Wh1czf3EF4FSJXhMQJAuLFRH37lAJnkhP513HpPBLmc4WlMrXP61MzjUFDtzWI1G173r9-rtp3A5rH9sQKdWuAyDclud0rlsuPsEVpOpmM9MpnV4dX04j3QJAlm_s5P24",
  "payload": ""
}
2023-11-23 12:41:14,654:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719233186 HTTP/1.1" 200 797
2023-11-23 12:41:14,654:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:14 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: SFMYLIQjGcLC-IYXcH0VsIAnqqVEQnichGiZLS2ID04OXIzZAmc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:41:09Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/LhbCfQ",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/KivuBg",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    }
  ]
}
2023-11-23 12:41:14,654:DEBUG:acme.client:Storing nonce: SFMYLIQjGcLC-IYXcH0VsIAnqqVEQnichGiZLS2ID04OXIzZAmc
2023-11-23 12:41:17,658:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:41:17,662:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJTRk1ZTElRakdjTEMtSVlYY0gwVnNJQW5xcVZFUW5pY2hHaVpMUzJJRDA0T1hJelpBbWMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTIzMzE4NiJ9",
  "signature": "Uw4hJ39N9JX_hcpAQn3Bf0NFJDcNwDdRQwcliniSa6wGHf9uWxPibwENd_fi5X3pULv_zaaJq2rJJaVdU9alvTUwa-ho_PCU8qGxbJhmLF_ZCc0IgEWP75OEjhcLiHHWr0n9ss9f-hiOJus-K2ES8zqq3IqOTKcLXHyWqem-U690UPu7qogRxVwSiqYqluBdfiyPpe88FZNcQklYnzVf9mc2utFZOQwrck5ii_znzoXTXBXrC3lCOzjzdNhfPr6Hsu-6hRK6kuH8k6jkcpLPK8q2stFiEVIjviBaced13f7opEFvToFcNrQ8ki4F2iGJYtNsPwFYA-oeXV3nvkhI3doP-7EVZQsAv8ASspsAxzHYDaCPcQG_oRxhi2IcxieughiOQ82JCPqsjvwYfHOXLiLJ9HFlltLtjiOlT4d0HlzDDmdmrWYo_GYQtW9Eq8XuUvDtSxXeLEAPmJyaz6rkwpczHWflwRg0xQPFMu3goYNXTpyVzGhOwGauFMzcbP-ZeFqWfc26lyGkiWBYn4BCQUT83Z-j9AyHKsiYrGMKXaykkqQu-nlfKgkaCgBYyqhhtpJdGHMRsT816VqHA_ulxkDSbV9Hc3MVB0WniV9jqW5548MpMMIPQkA7on-16EYj581yIFzA-VJe0EYNKC9v2_BGCTguIHz7KOQQQ1d1j58",
  "payload": ""
}
2023-11-23 12:41:17,816:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719233186 HTTP/1.1" 200 797
2023-11-23 12:41:17,816:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:17 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: jXyutbsn91lSt0Ft7drE2gtDHGsIO9Y72R5Oj7-rjVGX7C1GnOo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:41:09Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/LhbCfQ",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/KivuBg",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    }
  ]
}
2023-11-23 12:41:17,816:DEBUG:acme.client:Storing nonce: jXyutbsn91lSt0Ft7drE2gtDHGsIO9Y72R5Oj7-rjVGX7C1GnOo
2023-11-23 12:41:20,819:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:41:20,824:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJqWHl1dGJzbjkxbFN0MEZ0N2RyRTJndERIR3NJTzlZNzJSNU9qNy1yalZHWDdDMUduT28iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTIzMzE4NiJ9",
  "signature": "Gxtr27-pwGDv2nSh1vEH_DYC9wtcyDPUWwgtz_yi0E-J0mkvyTvDBt0PzUh3g91HgH19pYc1vKdssyy0zLO_bbm21QlA7l8HaPhQ8T3mPdP5jk3BderHILZlx3but3PvtA-9Ip2NGjW7v3nG8_DWK2-4kt3L_6pVx3mqd47b4La-7-x00rAPBtwaGhYDi6iXjqBmjK3evU8wFuARrYftXejGfOkOv0iKQD8sCUTEBEEyYQ790c7otp2gKfVZuszPFa9nMUljqyqEN3qMpypdc99EmgWcx3Vh9mRi2CY67mrVqSDkGr4tHdg5CHz-jzmiSsO0CjCWZVWFigEnZF5eJhglUdknn398oQDf9E0lssYbCnelesuFN_AGHp5rtsrAvqPggSP35Ye3S5WmzHC9n8joFkjAfneNFjNP3GHhS2jkpw-YsHsKh0zvm3bAO6IR3qjrSPbotAf26IkNK4nPoaCZpGrwobhn7hhuzieC_6guzf_fJFUk7z_ozGetDP19nP0JL1ft1gj_ZcfQAcW6biv2Lrxf-Xe6g3xnQCxSQ0TIUh--q64UpIhmEoEt_Td7ZYoxHirnaOKgDmjwHBDmZHlz29yXoygatiJ8bE4xwTjsGPaGWm5iwUL2S_bRyZgEtcEoq5rVh8FAVppM25iibfe8GJ3uPZAekF4FMe08zgI",
  "payload": ""
}
2023-11-23 12:41:20,969:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719233186 HTTP/1.1" 200 797
2023-11-23 12:41:20,969:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:20 GMT
Content-Type: application/json
Content-Length: 797
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: jXyutbsnaoxObjv2QBV3ywFm66H-ApRLtwpRVwljzGMZMGTKnak
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "pending",
  "expires": "2023-11-30T12:41:09Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/LhbCfQ",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/KivuBg",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY"
    }
  ]
}
2023-11-23 12:41:20,970:DEBUG:acme.client:Storing nonce: jXyutbsnaoxObjv2QBV3ywFm66H-ApRLtwpRVwljzGMZMGTKnak
2023-11-23 12:41:23,971:DEBUG:acme.client:JWS payload:
b''
2023-11-23 12:41:23,976:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/286719233186:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDEuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL3JlZy8yNTE1MTgzNiIsICJub25jZSI6ICJqWHl1dGJzbmFveE9ianYyUUJWM3l3Rm02NkgtQXBSTHR3cFJWd2xqekdNWk1HVEtuYWsiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzI4NjcxOTIzMzE4NiJ9",
  "signature": "J5wY6bzjSKP-R1pbKCpdwYtPuwT-5NR8DKZrMRyBqnG_LspnRQVlS1Nz45e9rf397D2ZWMCimR8Elk5soCny44TTxn4ZtaVakXPq-gMh9bd7LwN9mHqn1h60Vv8c5oqpNWgEMgTurbyDZjDPfJEOYgk0qTwP7xhgTbGmu0dumIGJZ--V0vHX-80mU8aUMwbJZ361TRvgmgKhB-4dMMjsjazUC2I0_QCJhx_SfQAAxpBmfJoR3UZXul1h0D1CPBJHFbmEflwWfRKftC4DS_7-HMvgGusWg_7o27t4Y0idTqBYtc2iixrsNCtIIAAOeKP4LTjPRN9c2EU40BEaxrEN4MZyG66LmL0pKAjPcHUUzS3dd61dWcHZ7MrS3PRloaWP6gqENoHu5FJhgMNpB6eAutNzWBfU3bPJqopd3G6XhVOLidtopdJ8A8EXw8hmOOhoVxAIZJOJvG3jzjDbR00GZf5xuFOL8QgLtapWk1butvjSgX4nMyqXekxEgYm09PB6d4wN2okVk8rHmQXjtPNI5Z94Tv3wJdScin5iL8vgBRrZxeI28Ymx0j0xc_PhnAYktdOIGqauhcurGCtaeNoGWoM4_YvQg0g52F13PMAR5fdfOqwD-9hwhC_9G4_UOnop5a4GlMEg8vEFkAWAWpaPCmign-q9FLYZkUvsQDyalno",
  "payload": ""
}
2023-11-23 12:41:24,121:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/286719233186 HTTP/1.1" 200 1488
2023-11-23 12:41:24,122:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 23 Nov 2023 12:41:24 GMT
Content-Type: application/json
Content-Length: 1488
Connection: keep-alive
Boulder-Requester: 25151836
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: SFMYLIQjaAgOdiK_lfdkmqx4bwTe5yHTgT3n6AwZVdq43ymCV_8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "mail.ddns.net"
  },
  "status": "invalid",
  "expires": "2023-11-30T12:41:09Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "invalid",
      "error": {
        "type": "urn:ietf:params:acme:error:connection",
        "detail": "IP: Fetching http://mail.ddns.net/.well-known/acme-challenge/qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY: Timeout during connect (likely firewall problem)",
        "status": 400
      },
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/286719233186/jsod2Q",
      "token": "qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY",
      "validationRecord": [
        {
          "url": "http://mail.ddns.net/.well-known/acme-challenge/qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY",
          "hostname": "mail.ddns.net",
          "port": "80",
          "addressesResolved": [
            "IP",
            "2a01:e0a:c67:8680:d469:3210:6aa6:cde"
          ],
          "addressUsed": "2a01:e0a:c67:8680:d469:3210:6aa6:cde"
        },
        {
          "url": "http://mail.ddns.net/.well-known/acme-challenge/qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY",
          "hostname": "mail.ddns.net",
          "port": "80",
          "addressesResolved": [
            "IP",
            "2a01:e0a:c67:8680:d469:3210:6aa6:cde"
          ],
          "addressUsed": "IP"
        }
      ],
      "validated": "2023-11-23T12:41:10Z"
    }
  ]
}
2023-11-23 12:41:24,122:DEBUG:acme.client:Storing nonce: SFMYLIQjaAgOdiK_lfdkmqx4bwTe5yHTgT3n6AwZVdq43ymCV_8
2023-11-23 12:41:24,122:INFO:certbot._internal.auth_handler:Challenge failed for domain mail.ddns.net
2023-11-23 12:41:24,122:INFO:certbot._internal.auth_handler:http-01 challenge for mail.ddns.net
2023-11-23 12:41:24,122:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: standalone). The Certificate Authority reported these problems:
  Domain: mail.ddns.net
  Type:   connection
  Detail: IP: Fetching http://mail.ddns.net/.well-known/acme-challenge/qmb6hJRRsWNCtHe5N0KpcXLL05aTUOUoAgRbjmoOVLY: Timeout during connect (likely firewall problem)

Hint: The Certificate Authority failed to download the challenge files from the temporary standalone webserver started by Certbot on port 80. Ensure that the listed domains point to this machine and that it can accept inbound connections from the internet.

2023-11-23 12:41:24,123:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2023-11-23 12:41:24,123:DEBUG:certbot._internal.error_handler:Calling registered functions
2023-11-23 12:41:24,123:INFO:certbot._internal.auth_handler:Cleaning up challenges
2023-11-23 12:41:24,123:DEBUG:certbot._internal.plugins.standalone:Stopping server at :::80...
2023-11-23 12:41:24,222:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 8, in <module>
    sys.exit(main())
  File "/opt/certbot/lib/python3.7/site-packages/certbot/main.py", line 15, in main
    return internal_main.main(cli_args)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1572, in main
    return config.func(config, plugins)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1432, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 122, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/renewal.py", line 335, in renew_cert
    new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 384, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 434, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2023-11-23 12:41:24,222:ERROR:certbot._internal.log:Some challenges have failed.