Advertisement
Guest User

Untitled

a guest
Oct 22nd, 2019
229
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 28.60 KB | None | 0 0
  1. bash-4.4# cat /var/log/letsencrypt/letsencrypt.log
  2. 2019-10-22 11:29:51,956:DEBUG:certbot.main:certbot version: 0.39.0
  3. 2019-10-22 11:29:51,956:DEBUG:certbot.main:Arguments: ['-c', '/etc/letsencrypt/cli.ini', '--standalone', '--preferred-challenges', 'http-01']
  4. 2019-10-22 11:29:51,956:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
  5. 2019-10-22 11:29:51,966:DEBUG:certbot.log:Root logging level set at 20
  6. 2019-10-22 11:29:51,967:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
  7. 2019-10-22 11:29:51,986:DEBUG:certbot.plugins.selection:Requested authenticator standalone and installer <certbot.cli._Default object at 0x7f39fe4e8b90>
  8. 2019-10-22 11:29:51,986:DEBUG:certbot.cli:Var pref_challs=http-01 (set by user).
  9. 2019-10-22 11:29:51,986:DEBUG:certbot.cli:Var rsa_key_size=4096 (set by user).
  10. 2019-10-22 11:29:51,986:DEBUG:certbot.cli:Var authenticator=standalone (set by user).
  11. 2019-10-22 11:29:52,004:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2019-10-21 15:36:01 UTC.
  12. 2019-10-22 11:29:52,004:INFO:certbot.renewal:Cert is due for renewal, auto-renewing...
  13. 2019-10-22 11:29:52,004:DEBUG:certbot.plugins.selection:Requested authenticator standalone and installer None
  14. 2019-10-22 11:29:52,007:DEBUG:certbot.plugins.selection:Single candidate plugin: * standalone
  15. Description: Spin up a temporary webserver
  16. Interfaces: IAuthenticator, IPlugin
  17. Entry point: standalone = certbot.plugins.standalone:Authenticator
  18. Initialized: <certbot.plugins.standalone.Authenticator object at 0x7f3a02d508d0>
  19. Prep: True
  20. 2019-10-22 11:29:52,008:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.standalone.Authenticator object at 0x7f3a02d508d0> and installer None
  21. 2019-10-22 11:29:52,008:INFO:certbot.plugins.selection:Plugins selected: Authenticator standalone, Installer None
  22. 2019-10-22 11:29:52,019:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, terms_of_service_agreed=None, agreement=None, only_return_existing=None, contact=(), key=None, external_account_binding=None), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/18663299', new_authzr_uri=None, terms_of_service=None), 4b363207f255dbf01b4abf867d66f5bd, Meta(creation_host=u'localhost', creation_dt=datetime.datetime(2017, 7, 12, 15, 18, 43, tzinfo=<UTC>)))>
  23. 2019-10-22 11:29:52,019:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
  24. 2019-10-22 11:29:52,021:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
  25. 2019-10-22 11:29:52,570:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
  26. 2019-10-22 11:29:52,571:DEBUG:acme.client:Received response:
  27. HTTP 200
  28. Server: nginx
  29. Date: Tue, 22 Oct 2019 10:29:52 GMT
  30. Content-Type: application/json
  31. Content-Length: 658
  32. Connection: keep-alive
  33. Cache-Control: public, max-age=0, no-cache
  34. X-Frame-Options: DENY
  35. Strict-Transport-Security: max-age=604800
  36.  
  37. {
  38. "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  39. "meta": {
  40. "caaIdentities": [
  41. "letsencrypt.org"
  42. ],
  43. "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
  44. "website": "https://letsencrypt.org"
  45. },
  46. "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  47. "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  48. "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  49. "oJGfo64X_Ec": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  50. "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
  51. }
  52. 2019-10-22 11:29:52,572:INFO:certbot.main:Renewing an existing certificate
  53. 2019-10-22 11:29:52,956:DEBUG:certbot.crypto_util:Generating key (4096 bits): /etc/letsencrypt/keys/0015_key-certbot.pem
  54. 2019-10-22 11:29:52,961:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0015_csr-certbot.pem
  55. 2019-10-22 11:29:52,962:DEBUG:acme.client:Requesting fresh nonce
  56. 2019-10-22 11:29:52,962:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
  57. 2019-10-22 11:29:53,092:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
  58. 2019-10-22 11:29:53,093:DEBUG:acme.client:Received response:
  59. HTTP 200
  60. Server: nginx
  61. Date: Tue, 22 Oct 2019 10:29:53 GMT
  62. Connection: keep-alive
  63. Cache-Control: public, max-age=0, no-cache
  64. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  65. Replay-Nonce: 01022t1h55WozvA-jV6B44_wM2siwlQsB7E3VvhN4cjQqhE
  66. X-Frame-Options: DENY
  67. Strict-Transport-Security: max-age=604800
  68.  
  69.  
  70. 2019-10-22 11:29:53,094:DEBUG:acme.client:Storing nonce: 01022t1h55WozvA-jV6B44_wM2siwlQsB7E3VvhN4cjQqhE
  71. 2019-10-22 11:29:53,095:DEBUG:acme.client:JWS payload:
  72. {
  73. "identifiers": [
  74. {
  75. "type": "dns",
  76. "value": "vovim.hopto.org"
  77. }
  78. ]
  79. }
  80. 2019-10-22 11:29:53,114:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
  81. {
  82. "protected": "eyJub25jZSI6ICIwMTAyMnQxaDU1V296dkEtalY2QjQ0X3dNMnNpd2xRc0I3RTNWdmhONGNqUXFoRSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvbmV3LW9yZGVyIiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
  83. "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwgCiAgICAgICJ2YWx1ZSI6ICJ2b3ZpbS5ob3B0by5vcmciCiAgICB9CiAgXQp9",
  84. "signature": "E2hMr1b-fYdU6_1rUEjozqjTqxcpWmvM2wRSNBsfpk8klNVgADMIooXPbJYxQohJ384R_SEs03lW8o2ohLq2hZ7qAr3oRVZKHCNwP7f7piGGjG7K-Hl7stGtPjpn_tHWcmyHf2lfFG-G0igjNXNYuj-CNRE4XZbIXGQn7pTMXNYGY6TQDWEFezPRVLDCB5M57DQZ-8y_wPULE8-B6tuKwoSPPQUgQx7PxXzpUWQb-U0v6T4N6VnQbqef3AfZHT5ZOoaj6PeiJB3011F09IMIKf2BqfxYJHPLa_sf2lHkBmx_xqb6uapIh15qwpuQaOsU-Zaiu8NTnoKZB03-TW7MxXPTCMpXFJEAFCHDBTkjDx8Amy9wnpbVv9EduS5StWf7bgug_vxSjoTxu042uJ8byW_tkNH-LHkfSjqj0xoyToHNdW9v0849hLamuxtILfnwXXatozDoSeStDMYp2cDiAENGJyGJQ_UwJMWqoEi1ZGx0pWAgRuaOFOWcqGL6UBQTJ5yjsSPlF3FLrvsIduPTTmsDXLodsYjWjFxg9n3G4upWxv_ALSqacGunhv3DshruK07DqmsonXzxKRdQKDI4HCKAmHhi_oy0htj6JWnsXEzrXvbz1-hNUj1D_tBVVv4aq0bc4ViOvZqg5jCURD0gU8d1QdepmOwMr_QKnT7Fc8M"
  85. }
  86. 2019-10-22 11:29:53,432:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 344
  87. 2019-10-22 11:29:53,434:DEBUG:acme.client:Received response:
  88. HTTP 201
  89. Server: nginx
  90. Date: Tue, 22 Oct 2019 10:29:53 GMT
  91. Content-Type: application/json
  92. Content-Length: 344
  93. Connection: keep-alive
  94. Boulder-Requester: 18663299
  95. Cache-Control: public, max-age=0, no-cache
  96. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  97. Location: https://acme-v02.api.letsencrypt.org/acme/order/18663299/1339337607
  98. Replay-Nonce: 0102tbA9oz3FL_ug5Wxth66589PIVovdXkaS_9Ke_JkvsP8
  99. X-Frame-Options: DENY
  100. Strict-Transport-Security: max-age=604800
  101.  
  102. {
  103. "status": "pending",
  104. "expires": "2019-10-29T10:29:53.339670087Z",
  105. "identifiers": [
  106. {
  107. "type": "dns",
  108. "value": "vovim.hopto.org"
  109. }
  110. ],
  111. "authorizations": [
  112. "https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779"
  113. ],
  114. "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/18663299/1339337607"
  115. }
  116. 2019-10-22 11:29:53,434:DEBUG:acme.client:Storing nonce: 0102tbA9oz3FL_ug5Wxth66589PIVovdXkaS_9Ke_JkvsP8
  117. 2019-10-22 11:29:53,437:DEBUG:acme.client:JWS payload:
  118.  
  119. 2019-10-22 11:29:53,442:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
  120. {
  121. "protected": "eyJub25jZSI6ICIwMTAydGJBOW96M0ZMX3VnNVd4dGg2NjU4OVBJVm92ZFhrYVNfOUtlX0prdnNQOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
  122. "payload": "",
  123. "signature": "uNwGWCDbi3e7wI9rjsdv_LJiyxRkRi3Js5lOs02lqhi7Ghzup4B5_4ZsRam_S5NmnhU85tn-nKzArjxgyUpT8G3vkDFPz4joNwE9P6QTyJo0EuPE2TDppac8EjmLzUBQy0RnMQF_GuzBP9p2m-3tQwKV0iYmMfdEnRGxmf6NRbqOGg7Zoqqk8_W78p4cRo_cArVXcyKDdrDImrSSo8hvSp2t8wMqhgBrsOTIg3RpnE_-AMH8tLZkbLSEAN1dW0ZIJbqdmZXfT_tyeXRkfn96xMgaI7yZjtbiQY5P6nAzIKiqGfre0sDUBi_4dbbJcOr8phVHOnMalTCAIb7sjNcg6efwPsKRYR9vwyIXpaQPDkQAzdwa3N2u9fenPHsy61rBmSs_1ax51icxBCbDQLRRdQ_h_7Jn7l6DkcVedYkQJ163Pw5rLJE_BoTKmLqdZC5MTQUXY--TCXCgiLhf7aeuJ1Dv4XvbMQEvmp6mImieoforPTLqMJjqunF_JC-QAwXHcFkYytiZePA4618Gt7MKqKpHFIMpALmizwAV9-1bg-AwjlAOFlB4dJrfRwQYEqItlt5M0p8lcHr2qOTSXz6AkJs_KntUF_-r_0LYR9HeO0YI1lhriXPmBcjh_Ry70kcgXpI4eVRb8TtmsxkHVblkNS68D6ktYsxrJ4Sp34bK6ZM"
  124. }
  125. 2019-10-22 11:29:53,605:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
  126. 2019-10-22 11:29:53,606:DEBUG:acme.client:Received response:
  127. HTTP 200
  128. Server: nginx
  129. Date: Tue, 22 Oct 2019 10:29:53 GMT
  130. Content-Type: application/json
  131. Content-Length: 790
  132. Connection: keep-alive
  133. Boulder-Requester: 18663299
  134. Cache-Control: public, max-age=0, no-cache
  135. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  136. Replay-Nonce: 0102rHRzaQAJkOr-C7tvnkqWq5Az7qwr1dw3ENm9noRkpKU
  137. X-Frame-Options: DENY
  138. Strict-Transport-Security: max-age=604800
  139.  
  140. {
  141. "identifier": {
  142. "type": "dns",
  143. "value": "vovim.hopto.org"
  144. },
  145. "status": "pending",
  146. "expires": "2019-10-29T10:29:53Z",
  147. "challenges": [
  148. {
  149. "type": "http-01",
  150. "status": "pending",
  151. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
  152. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  153. },
  154. {
  155. "type": "dns-01",
  156. "status": "pending",
  157. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
  158. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  159. },
  160. {
  161. "type": "tls-alpn-01",
  162. "status": "pending",
  163. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
  164. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  165. }
  166. ]
  167. }
  168. 2019-10-22 11:29:53,607:DEBUG:acme.client:Storing nonce: 0102rHRzaQAJkOr-C7tvnkqWq5Az7qwr1dw3ENm9noRkpKU
  169. 2019-10-22 11:29:53,608:INFO:certbot.auth_handler:Performing the following challenges:
  170. 2019-10-22 11:29:53,609:INFO:certbot.auth_handler:http-01 challenge for vovim.hopto.org
  171. 2019-10-22 11:29:53,610:DEBUG:acme.standalone:Successfully bound to :80 using IPv6
  172. 2019-10-22 11:29:53,610:DEBUG:acme.standalone:Certbot wasn't able to bind to :80 using IPv4, this is often expected due to the dual stack nature of IPv6 socket implementations.
  173. 2019-10-22 11:29:53,628:INFO:certbot.auth_handler:Waiting for verification...
  174. 2019-10-22 11:29:53,629:DEBUG:acme.client:JWS payload:
  175. {
  176. "type": "http-01",
  177. "resource": "challenge"
  178. }
  179. 2019-10-22 11:29:53,644:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng:
  180. {
  181. "protected": "eyJub25jZSI6ICIwMTAyckhSemFRQUprT3ItQzd0dm5rcVdxNUF6N3F3cjFkdzNFTm05bm9Sa3BLVSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvODg5NDU3Nzc5L2gzX0NuZyIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMS5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvcmVnLzE4NjYzMjk5IiwgImFsZyI6ICJSUzI1NiJ9",
  182. "payload": "ewogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
  183. "signature": "f2RUc96p6fa1sfI8y1J--fQaEyC2VMSPghkws3WePmccjocYZ9G3ZvqCO9PlQUI9XDPDFX221c0WDwk1shucSSbG24Znmg-tK3VRHPSY26HkLOGw5mDg45z-7M7MeR2-uv9GSmPpU2pF0KSOw4RWDFrlv3hEPh7xQJCNTKL1GUm4EAxj-6TNyRSCEraZxeOJEdSDnueOXZt9SRUPBPccvf7WbZYRxKCoxDx5LdVaAUSkdOMKHI0LR1zLWe43P0gzkXog8-SaWeIo75kJjmCnHE-HNKbnMVCbXzp2VYDcxBUJB1ai_KKKxgUH3P6Mq-WgSqry19dMrvcz6fiH3vVmyfnsXCD1zC0YvtaECjRLSyhwF_XUX392hJM3ZVGFQ8RwYHQspWtRJFh_jhwvNt9HyV2f2YSnV26gkCi8o-aefW3AH3p6TmnjVT_moKEu48h6HMzpK6Z200Nlb_XlA-cZ3ogQLe0GuYLhJV8aBr954TgryDz568LPX_SBDYxpkegGv88Qfae8tCPy5lm91xXFh3vRC1dngd9KCyEE-KoRrhIkRK8Zak6tvRShBU2i5XTdaOBLevUQiOb0Hyvyh10jYHrPXvHWB927FmDwuoMyyfFJFylfTuuiTC6NkhyYukjBlLfz0KQNfZOQzRpJjnRSB5lxpB5Ve3k-pOhCvES1clI"
  184. }
  185. 2019-10-22 11:29:53,833:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/889457779/h3_Cng HTTP/1.1" 200 184
  186. 2019-10-22 11:29:53,834:DEBUG:acme.client:Received response:
  187. HTTP 200
  188. Server: nginx
  189. Date: Tue, 22 Oct 2019 10:29:53 GMT
  190. Content-Type: application/json
  191. Content-Length: 184
  192. Connection: keep-alive
  193. Boulder-Requester: 18663299
  194. Cache-Control: public, max-age=0, no-cache
  195. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779>;rel="up"
  196. Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng
  197. Replay-Nonce: 0101mIEhDuRq-cFG04ttgIkw-rNO7STqGt8HlQSkcBFHlfk
  198. X-Frame-Options: DENY
  199. Strict-Transport-Security: max-age=604800
  200.  
  201. {
  202. "type": "http-01",
  203. "status": "pending",
  204. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
  205. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  206. }
  207. 2019-10-22 11:29:53,834:DEBUG:acme.client:Storing nonce: 0101mIEhDuRq-cFG04ttgIkw-rNO7STqGt8HlQSkcBFHlfk
  208. 2019-10-22 11:29:54,836:DEBUG:acme.client:JWS payload:
  209.  
  210. 2019-10-22 11:29:54,844:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
  211. {
  212. "protected": "eyJub25jZSI6ICIwMTAxbUlFaER1UnEtY0ZHMDR0dGdJa3ctck5PN1NUcUd0OEhsUVNrY0JGSGxmayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
  213. "payload": "",
  214. "signature": "Bbu63_5BkpT1kjwM9dWs5Dh_6GgeVVwT27eckfib1P7W3h3GZzkHe4yGIUc2XWsexWY8KIJblFB5934L063AjQ2CxI2EHgxbjAKdANCnB3UbtW5laBIjssMnOjLclXpQMS0bkgOOe3eLDiXBMdaQnIF9u8aSbAKhNzPPwhse0v2lJ091gZNwc2p5BpGBjhjATx1WLcWJUu9Ky16YW5RWY48BYYCcEmYwsbrWsMMh96L8imiw5tZ36feGQcDjyNGal6xJegSHm2tEHLNJytSDg7d5WpBRAUe4GK6IEVnADihc9BRcIS6Yd446uxX5JFAy8LwmS14OBUwhJqZZwW1guU8OvPtj_u2RpsciJ7b5Xq8WGV777XPajFz1g-XhaND3nuhAk0ZUr1yIxO7PnZcivG7CEOxdX9XDDDxy06konzdIxiSKx0JLq0JHJP4oGQeuLtWsyfDawgYOlPMEckBOCAq48hKUwyCNsAvzFJobSimbD14lmPMYXs2oTywLHaPUqpcJE7hdKsyfNdWpgHeQqQeKsz0ds0wjGn2QKp3TlIG_wqCQ-WyENV_20SCGTBPD5Emr4HNkpfR3bOOf1IaGU4yRsqrfabMA6V0i_wSLoDvL8K_Z3R5QIHPVM1EDY2Yv4jAWXuOM1QGFS9L9pkgNZ02X760YhEkgKEixU-hwht4"
  215. }
  216. 2019-10-22 11:29:55,018:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
  217. 2019-10-22 11:29:55,020:DEBUG:acme.client:Received response:
  218. HTTP 200
  219. Server: nginx
  220. Date: Tue, 22 Oct 2019 10:29:54 GMT
  221. Content-Type: application/json
  222. Content-Length: 790
  223. Connection: keep-alive
  224. Boulder-Requester: 18663299
  225. Cache-Control: public, max-age=0, no-cache
  226. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  227. Replay-Nonce: 0101R3fGvXlQe5HQbY9zX3R3VYrG_HC3ZSYzT9DYkSQfWHk
  228. X-Frame-Options: DENY
  229. Strict-Transport-Security: max-age=604800
  230.  
  231. {
  232. "identifier": {
  233. "type": "dns",
  234. "value": "vovim.hopto.org"
  235. },
  236. "status": "pending",
  237. "expires": "2019-10-29T10:29:53Z",
  238. "challenges": [
  239. {
  240. "type": "http-01",
  241. "status": "pending",
  242. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
  243. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  244. },
  245. {
  246. "type": "dns-01",
  247. "status": "pending",
  248. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
  249. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  250. },
  251. {
  252. "type": "tls-alpn-01",
  253. "status": "pending",
  254. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
  255. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  256. }
  257. ]
  258. }
  259. 2019-10-22 11:29:55,020:DEBUG:acme.client:Storing nonce: 0101R3fGvXlQe5HQbY9zX3R3VYrG_HC3ZSYzT9DYkSQfWHk
  260. 2019-10-22 11:29:58,025:DEBUG:acme.client:JWS payload:
  261.  
  262. 2019-10-22 11:29:58,034:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
  263. {
  264. "protected": "eyJub25jZSI6ICIwMTAxUjNmR3ZYbFFlNUhRYlk5elgzUjNWWXJHX0hDM1pTWXpUOURZa1NRZldIayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
  265. "payload": "",
  266. "signature": "n9FGUwbakgNHi-6yfvcpgDgU0pWV00uOeLcFLUb1AD82jDALpAGx5pJ1kL3a64e5XsqsOmY84gFAxjJ2z4C5Jy4xrEBkyK8gNvenOHAHTEpPN-tf_0YTySpTFT3I8FBXVLV9FGXGXLjXrCUlpD52Mo4af1P-ZyT9YTCDvjgZRFQPmA0dpIfeTzhwM2IMxou5FqbZy7ZkvIhsuA9O1J9eskIbylg3Fy3yTLGiIubPT_h1KgPuI5CY9DnizJgSH3BG2ugyJCBD3XZNbb00ZxYFwB2-Xky0imnFDjbwrrOGHIuHSGurtp6XdDL3SddIKnUWp3R8cLuxDVfPWarXLYk-OzLLTfEiskHj_bVf8OHO8gYmvCWEyPUWKM7YQOIUtWO-Q4GxoWtmABjwgf4wQ6GUjpA7RMPcgFBFnoc-0lk2HZrLAlvGscpf-xMYRH4hFk57zUg-IhbF4zxOEF0oMyXdFmOZRj9-JxBLswxh4c1mZy76KRlREVHFOfXT6nUp2GAPfXlkc5_4hr4jMDlZgPJuJceQvDepYmuKYL8MbOwNGHifCeHTQJcLNVnWHAhyKwgLdovM8LYka2ubzo1ROdbIGqLyhFoqP9yDs-g4ojXBaUeZQ5yC9owoQgRfJ4S7q_6FK3_3RqzEHxdUXVTMZ-_gKDIPeJfAlGewtt7ayqsEBQs"
  267. }
  268. 2019-10-22 11:29:58,200:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
  269. 2019-10-22 11:29:58,202:DEBUG:acme.client:Received response:
  270. HTTP 200
  271. Server: nginx
  272. Date: Tue, 22 Oct 2019 10:29:58 GMT
  273. Content-Type: application/json
  274. Content-Length: 790
  275. Connection: keep-alive
  276. Boulder-Requester: 18663299
  277. Cache-Control: public, max-age=0, no-cache
  278. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  279. Replay-Nonce: 0102EsDTffgk8z2RsY18es5vJ67LiCczoKniI_VonTaNt80
  280. X-Frame-Options: DENY
  281. Strict-Transport-Security: max-age=604800
  282.  
  283. {
  284. "identifier": {
  285. "type": "dns",
  286. "value": "vovim.hopto.org"
  287. },
  288. "status": "pending",
  289. "expires": "2019-10-29T10:29:53Z",
  290. "challenges": [
  291. {
  292. "type": "http-01",
  293. "status": "pending",
  294. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
  295. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  296. },
  297. {
  298. "type": "dns-01",
  299. "status": "pending",
  300. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
  301. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  302. },
  303. {
  304. "type": "tls-alpn-01",
  305. "status": "pending",
  306. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
  307. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  308. }
  309. ]
  310. }
  311. 2019-10-22 11:29:58,202:DEBUG:acme.client:Storing nonce: 0102EsDTffgk8z2RsY18es5vJ67LiCczoKniI_VonTaNt80
  312. 2019-10-22 11:30:01,207:DEBUG:acme.client:JWS payload:
  313.  
  314. 2019-10-22 11:30:01,216:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
  315. {
  316. "protected": "eyJub25jZSI6ICIwMTAyRXNEVGZmZ2s4ejJSc1kxOGVzNXZKNjdMaUNjem9LbmlJX1ZvblRhTnQ4MCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
  317. "payload": "",
  318. "signature": "hsbjLGb-5ElLYQ8dsbUJphUrl8YhFHt4PFDmzCruQVtsysXdFzYgr6F-P-FgAxH_yWobjK4-efXQtYNHLGiq8ubFkrTgoYFpWI2rrBCtfiLHDwccd-Q6QZ4VDTtrcC4PH70T2yuTIUiZs0fb-kAQOhOqX03jwf4AlP264WjJJOUNonsZJS-uX8dR4AZZs8hjaEgq9zG1dKU4iMg2asa1Ua2nukmjEv7HCK9wEp3qNY-CfsmXrXKurWBbtIXfOPgiueGCmHsLQnHAMy3Vg38wnXmNp5BGEfUffTtF6SZV_WyrPv3tSnj_AJZ2VBDZhytD7hAl_xP3Orub1q3F-MRjPQ4mAccBKLyZItPCkFaKKhwYSwhTvgDK0GflfbkVwWJmrp8ekBqF9WA1_DcooydZ_29-ra99CaGCb8pQacuJlOXNtz_QBi5ms7Z8QIPsvZzXnccnuHj9gShHE3I_Tudq-vcHEmwFO_QPWKiN95rj2Hr5CT43fS2mmo-BcLkBvcn8jAOLHxhiwp-9gF26ONhlUHqddU5lyBACoBejXQ8xpR1LHRI6Ks7a-0U8lEtY2AITJquroIDJXtSGvPl7x6OQNf2ZSVIq6LDgEghO_S8FfXZiWqXYn8DbDm_Xr7K-uv0-R-j1_jPyjG4qCg7rikWURHfgr1cXohVpMQQ11KlR7Ss"
  319. }
  320. 2019-10-22 11:30:01,384:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
  321. 2019-10-22 11:30:01,386:DEBUG:acme.client:Received response:
  322. HTTP 200
  323. Server: nginx
  324. Date: Tue, 22 Oct 2019 10:30:01 GMT
  325. Content-Type: application/json
  326. Content-Length: 790
  327. Connection: keep-alive
  328. Boulder-Requester: 18663299
  329. Cache-Control: public, max-age=0, no-cache
  330. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  331. Replay-Nonce: 0102ujRuBXBIOf0lTTjVUr3IU7r5T-jQinQfMGC74zpvbrs
  332. X-Frame-Options: DENY
  333. Strict-Transport-Security: max-age=604800
  334.  
  335. {
  336. "identifier": {
  337. "type": "dns",
  338. "value": "vovim.hopto.org"
  339. },
  340. "status": "pending",
  341. "expires": "2019-10-29T10:29:53Z",
  342. "challenges": [
  343. {
  344. "type": "http-01",
  345. "status": "pending",
  346. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
  347. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  348. },
  349. {
  350. "type": "dns-01",
  351. "status": "pending",
  352. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
  353. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  354. },
  355. {
  356. "type": "tls-alpn-01",
  357. "status": "pending",
  358. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
  359. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  360. }
  361. ]
  362. }
  363. 2019-10-22 11:30:01,386:DEBUG:acme.client:Storing nonce: 0102ujRuBXBIOf0lTTjVUr3IU7r5T-jQinQfMGC74zpvbrs
  364. 2019-10-22 11:30:04,391:DEBUG:acme.client:JWS payload:
  365.  
  366. 2019-10-22 11:30:04,399:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
  367. {
  368. "protected": "eyJub25jZSI6ICIwMTAydWpSdUJYQklPZjBsVFRqVlVyM0lVN3I1VC1qUWluUWZNR0M3NHpwdmJycyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
  369. "payload": "",
  370. "signature": "Q7oJGoaJk5cJ-dlSA_yvWzNk1Pr0Dzp1sjswm2YkWqt1CTHdlPwcwJCZU6Yq2p4GOnxcFJFqE6aYahLvgleT7fzUCAknDbc0CwFa9V-9l7T4TAwscl5U0V8QijHyN2Qt_auKLbRHBsMaqKiMphG6cghU3XFmYmh2SDKFf89cZ6WP8Oy_kNDCddyTGWx9vyNDlud9TpJUhnuhN6orQCfpSOgbwDiTAIqA5_DYy-AEIjzedgh2v0wp5dN-8PbPEEWrPK_xeQWBjpihaRR75soTlp8M3553omEF3diBgX50G1T2wPedlwTYOabdSCx-3mk8-tuqpCJYPr35WZF58wg_wGB16kPTuQ7UqZNrqZgrvLxGq65HjAI2Nat1kh6jeG8dn81wag9muHqCq_c5EXI-fVSwpDXuxCYuCMovhSzjmTDyyvyCvvKchLzEVkmSQFvyLE9_nzgjF-a34tnAypcH24b_ML3E_v4TvcuyYZHvpaUAMbTXGbDxCrb_j88xCuNyQWPUgSI2oLG4ggRrM28lKbrgsKdgJ8mT2etqK52fHP0PgK9HRQ-M58m13848c53uC5nZDn6wJ9MJKg7o0v7iOYcfl2DnsVOcVmjYi5znGXIVHd_EYwuyV4fbCU4ztX8F-N6qprFLbeVEKsZmq9vtEIH2amu5-NXgCBFMlhz5PX4"
  371. }
  372. 2019-10-22 11:30:04,610:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 1420
  373. 2019-10-22 11:30:04,611:DEBUG:acme.client:Received response:
  374. HTTP 200
  375. Server: nginx
  376. Date: Tue, 22 Oct 2019 10:30:04 GMT
  377. Content-Type: application/json
  378. Content-Length: 1420
  379. Connection: keep-alive
  380. Boulder-Requester: 18663299
  381. Cache-Control: public, max-age=0, no-cache
  382. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  383. Replay-Nonce: 0101P6QCBp5yKNRo97loFZbQE_K0C9gqMjG8Aw03JqA7dNE
  384. X-Frame-Options: DENY
  385. Strict-Transport-Security: max-age=604800
  386.  
  387. {
  388. "identifier": {
  389. "type": "dns",
  390. "value": "vovim.hopto.org"
  391. },
  392. "status": "invalid",
  393. "expires": "2019-10-29T10:29:53Z",
  394. "challenges": [
  395. {
  396. "type": "http-01",
  397. "status": "invalid",
  398. "error": {
  399. "type": "urn:ietf:params:acme:error:connection",
  400. "detail": "Fetching http://vovim.hopto.org/.well-known/acme-challenge/_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A: Timeout during connect (likely firewall problem)",
  401. "status": 400
  402. },
  403. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
  404. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A",
  405. "validationRecord": [
  406. {
  407. "url": "http://vovim.hopto.org/.well-known/acme-challenge/_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A",
  408. "hostname": "vovim.hopto.org",
  409. "port": "80",
  410. "addressesResolved": [
  411. "86.130.222.87"
  412. ],
  413. "addressUsed": "86.130.222.87"
  414. }
  415. ]
  416. },
  417. {
  418. "type": "dns-01",
  419. "status": "invalid",
  420. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
  421. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  422. },
  423. {
  424. "type": "tls-alpn-01",
  425. "status": "invalid",
  426. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
  427. "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
  428. }
  429. ]
  430. }
  431. 2019-10-22 11:30:04,612:DEBUG:acme.client:Storing nonce: 0101P6QCBp5yKNRo97loFZbQE_K0C9gqMjG8Aw03JqA7dNE
  432. 2019-10-22 11:30:04,613:WARNING:certbot.auth_handler:Challenge failed for domain vovim.hopto.org
  433. 2019-10-22 11:30:04,614:INFO:certbot.auth_handler:http-01 challenge for vovim.hopto.org
  434. 2019-10-22 11:30:04,615:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
  435.  
  436. Domain: vovim.hopto.org
  437. Type: connection
  438. Detail: Fetching http://vovim.hopto.org/.well-known/acme-challenge/_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A: Timeout during connect (likely firewall problem)
  439.  
  440. To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
  441. 2019-10-22 11:30:04,616:DEBUG:certbot.error_handler:Encountered exception:
  442. Traceback (most recent call last):
  443. File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
  444. self._poll_authorizations(authzrs, max_retries, best_effort)
  445. File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
  446. raise errors.AuthorizationError('Some challenges have failed.')
  447. AuthorizationError: Some challenges have failed.
  448.  
  449. 2019-10-22 11:30:04,616:DEBUG:certbot.error_handler:Calling registered functions
  450. 2019-10-22 11:30:04,616:INFO:certbot.auth_handler:Cleaning up challenges
  451. 2019-10-22 11:30:04,617:DEBUG:certbot.plugins.standalone:Stopping server at :::80...
  452. 2019-10-22 11:30:04,625:WARNING:certbot.renewal:Attempting to renew cert (vovim.hopto.org) from /etc/letsencrypt/renewal/vovim.hopto.org.conf produced an unexpected error: Some challenges have failed.. Skipping.
  453. 2019-10-22 11:30:04,627:DEBUG:certbot.renewal:Traceback was:
  454. Traceback (most recent call last):
  455. File "/usr/lib64/python2.7/site-packages/certbot/renewal.py", line 449, in handle_renewal_request
  456. main.renew_cert(lineage_config, plugins, renewal_candidate)
  457. File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 1208, in renew_cert
  458. renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
  459. File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 116, in _get_and_save_cert
  460. renewal.renew_cert(config, domains, le_client, lineage)
  461. File "/usr/lib64/python2.7/site-packages/certbot/renewal.py", line 307, in renew_cert
  462. new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
  463. File "/usr/lib64/python2.7/site-packages/certbot/client.py", line 348, in obtain_certificate
  464. orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  465. File "/usr/lib64/python2.7/site-packages/certbot/client.py", line 384, in _get_order_and_authorizations
  466. authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
  467. File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
  468. self._poll_authorizations(authzrs, max_retries, best_effort)
  469. File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
  470. raise errors.AuthorizationError('Some challenges have failed.')
  471. AuthorizationError: Some challenges have failed.
  472.  
  473. 2019-10-22 11:30:04,627:ERROR:certbot.renewal:All renewal attempts failed. The following certs could not be renewed:
  474. 2019-10-22 11:30:04,627:ERROR:certbot.renewal: /etc/letsencrypt/live/vovim.hopto.org/fullchain.pem (failure)
  475. 2019-10-22 11:30:04,630:DEBUG:certbot.log:Exiting abnormally:
  476. Traceback (most recent call last):
  477. File "/usr/bin/certbot", line 11, in <module>
  478. load_entry_point('certbot==0.39.0', 'console_scripts', 'certbot')()
  479. File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 1378, in main
  480. return config.func(config, plugins)
  481. File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 1287, in renew
  482. renewal.handle_renewal_request(config)
  483. File "/usr/lib64/python2.7/site-packages/certbot/renewal.py", line 474, in handle_renewal_request
  484. len(renew_failures), len(parse_failures)))
  485. Error: 1 renew failure(s), 0 parse failure(s)
  486. bash-4.4#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement