Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- bash-4.4# cat /var/log/letsencrypt/letsencrypt.log
- 2019-10-22 11:29:51,956:DEBUG:certbot.main:certbot version: 0.39.0
- 2019-10-22 11:29:51,956:DEBUG:certbot.main:Arguments: ['-c', '/etc/letsencrypt/cli.ini', '--standalone', '--preferred-challenges', 'http-01']
- 2019-10-22 11:29:51,956:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
- 2019-10-22 11:29:51,966:DEBUG:certbot.log:Root logging level set at 20
- 2019-10-22 11:29:51,967:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
- 2019-10-22 11:29:51,986:DEBUG:certbot.plugins.selection:Requested authenticator standalone and installer <certbot.cli._Default object at 0x7f39fe4e8b90>
- 2019-10-22 11:29:51,986:DEBUG:certbot.cli:Var pref_challs=http-01 (set by user).
- 2019-10-22 11:29:51,986:DEBUG:certbot.cli:Var rsa_key_size=4096 (set by user).
- 2019-10-22 11:29:51,986:DEBUG:certbot.cli:Var authenticator=standalone (set by user).
- 2019-10-22 11:29:52,004:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2019-10-21 15:36:01 UTC.
- 2019-10-22 11:29:52,004:INFO:certbot.renewal:Cert is due for renewal, auto-renewing...
- 2019-10-22 11:29:52,004:DEBUG:certbot.plugins.selection:Requested authenticator standalone and installer None
- 2019-10-22 11:29:52,007:DEBUG:certbot.plugins.selection:Single candidate plugin: * standalone
- Description: Spin up a temporary webserver
- Interfaces: IAuthenticator, IPlugin
- Entry point: standalone = certbot.plugins.standalone:Authenticator
- Initialized: <certbot.plugins.standalone.Authenticator object at 0x7f3a02d508d0>
- Prep: True
- 2019-10-22 11:29:52,008:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.standalone.Authenticator object at 0x7f3a02d508d0> and installer None
- 2019-10-22 11:29:52,008:INFO:certbot.plugins.selection:Plugins selected: Authenticator standalone, Installer None
- 2019-10-22 11:29:52,019:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, terms_of_service_agreed=None, agreement=None, only_return_existing=None, contact=(), key=None, external_account_binding=None), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/18663299', new_authzr_uri=None, terms_of_service=None), 4b363207f255dbf01b4abf867d66f5bd, Meta(creation_host=u'localhost', creation_dt=datetime.datetime(2017, 7, 12, 15, 18, 43, tzinfo=<UTC>)))>
- 2019-10-22 11:29:52,019:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
- 2019-10-22 11:29:52,021:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
- 2019-10-22 11:29:52,570:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
- 2019-10-22 11:29:52,571:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:29:52 GMT
- Content-Type: application/json
- Content-Length: 658
- Connection: keep-alive
- Cache-Control: public, max-age=0, no-cache
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
- "meta": {
- "caaIdentities": [
- "letsencrypt.org"
- ],
- "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
- "website": "https://letsencrypt.org"
- },
- "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
- "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
- "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
- "oJGfo64X_Ec": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
- }
- 2019-10-22 11:29:52,572:INFO:certbot.main:Renewing an existing certificate
- 2019-10-22 11:29:52,956:DEBUG:certbot.crypto_util:Generating key (4096 bits): /etc/letsencrypt/keys/0015_key-certbot.pem
- 2019-10-22 11:29:52,961:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0015_csr-certbot.pem
- 2019-10-22 11:29:52,962:DEBUG:acme.client:Requesting fresh nonce
- 2019-10-22 11:29:52,962:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
- 2019-10-22 11:29:53,092:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
- 2019-10-22 11:29:53,093:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:29:53 GMT
- Connection: keep-alive
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 01022t1h55WozvA-jV6B44_wM2siwlQsB7E3VvhN4cjQqhE
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- 2019-10-22 11:29:53,094:DEBUG:acme.client:Storing nonce: 01022t1h55WozvA-jV6B44_wM2siwlQsB7E3VvhN4cjQqhE
- 2019-10-22 11:29:53,095:DEBUG:acme.client:JWS payload:
- {
- "identifiers": [
- {
- "type": "dns",
- "value": "vovim.hopto.org"
- }
- ]
- }
- 2019-10-22 11:29:53,114:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
- {
- "protected": "eyJub25jZSI6ICIwMTAyMnQxaDU1V296dkEtalY2QjQ0X3dNMnNpd2xRc0I3RTNWdmhONGNqUXFoRSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvbmV3LW9yZGVyIiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwgCiAgICAgICJ2YWx1ZSI6ICJ2b3ZpbS5ob3B0by5vcmciCiAgICB9CiAgXQp9",
- "signature": "E2hMr1b-fYdU6_1rUEjozqjTqxcpWmvM2wRSNBsfpk8klNVgADMIooXPbJYxQohJ384R_SEs03lW8o2ohLq2hZ7qAr3oRVZKHCNwP7f7piGGjG7K-Hl7stGtPjpn_tHWcmyHf2lfFG-G0igjNXNYuj-CNRE4XZbIXGQn7pTMXNYGY6TQDWEFezPRVLDCB5M57DQZ-8y_wPULE8-B6tuKwoSPPQUgQx7PxXzpUWQb-U0v6T4N6VnQbqef3AfZHT5ZOoaj6PeiJB3011F09IMIKf2BqfxYJHPLa_sf2lHkBmx_xqb6uapIh15qwpuQaOsU-Zaiu8NTnoKZB03-TW7MxXPTCMpXFJEAFCHDBTkjDx8Amy9wnpbVv9EduS5StWf7bgug_vxSjoTxu042uJ8byW_tkNH-LHkfSjqj0xoyToHNdW9v0849hLamuxtILfnwXXatozDoSeStDMYp2cDiAENGJyGJQ_UwJMWqoEi1ZGx0pWAgRuaOFOWcqGL6UBQTJ5yjsSPlF3FLrvsIduPTTmsDXLodsYjWjFxg9n3G4upWxv_ALSqacGunhv3DshruK07DqmsonXzxKRdQKDI4HCKAmHhi_oy0htj6JWnsXEzrXvbz1-hNUj1D_tBVVv4aq0bc4ViOvZqg5jCURD0gU8d1QdepmOwMr_QKnT7Fc8M"
- }
- 2019-10-22 11:29:53,432:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 344
- 2019-10-22 11:29:53,434:DEBUG:acme.client:Received response:
- HTTP 201
- Server: nginx
- Date: Tue, 22 Oct 2019 10:29:53 GMT
- Content-Type: application/json
- Content-Length: 344
- Connection: keep-alive
- Boulder-Requester: 18663299
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Location: https://acme-v02.api.letsencrypt.org/acme/order/18663299/1339337607
- Replay-Nonce: 0102tbA9oz3FL_ug5Wxth66589PIVovdXkaS_9Ke_JkvsP8
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "status": "pending",
- "expires": "2019-10-29T10:29:53.339670087Z",
- "identifiers": [
- {
- "type": "dns",
- "value": "vovim.hopto.org"
- }
- ],
- "authorizations": [
- "https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779"
- ],
- "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/18663299/1339337607"
- }
- 2019-10-22 11:29:53,434:DEBUG:acme.client:Storing nonce: 0102tbA9oz3FL_ug5Wxth66589PIVovdXkaS_9Ke_JkvsP8
- 2019-10-22 11:29:53,437:DEBUG:acme.client:JWS payload:
- 2019-10-22 11:29:53,442:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
- {
- "protected": "eyJub25jZSI6ICIwMTAydGJBOW96M0ZMX3VnNVd4dGg2NjU4OVBJVm92ZFhrYVNfOUtlX0prdnNQOCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "uNwGWCDbi3e7wI9rjsdv_LJiyxRkRi3Js5lOs02lqhi7Ghzup4B5_4ZsRam_S5NmnhU85tn-nKzArjxgyUpT8G3vkDFPz4joNwE9P6QTyJo0EuPE2TDppac8EjmLzUBQy0RnMQF_GuzBP9p2m-3tQwKV0iYmMfdEnRGxmf6NRbqOGg7Zoqqk8_W78p4cRo_cArVXcyKDdrDImrSSo8hvSp2t8wMqhgBrsOTIg3RpnE_-AMH8tLZkbLSEAN1dW0ZIJbqdmZXfT_tyeXRkfn96xMgaI7yZjtbiQY5P6nAzIKiqGfre0sDUBi_4dbbJcOr8phVHOnMalTCAIb7sjNcg6efwPsKRYR9vwyIXpaQPDkQAzdwa3N2u9fenPHsy61rBmSs_1ax51icxBCbDQLRRdQ_h_7Jn7l6DkcVedYkQJ163Pw5rLJE_BoTKmLqdZC5MTQUXY--TCXCgiLhf7aeuJ1Dv4XvbMQEvmp6mImieoforPTLqMJjqunF_JC-QAwXHcFkYytiZePA4618Gt7MKqKpHFIMpALmizwAV9-1bg-AwjlAOFlB4dJrfRwQYEqItlt5M0p8lcHr2qOTSXz6AkJs_KntUF_-r_0LYR9HeO0YI1lhriXPmBcjh_Ry70kcgXpI4eVRb8TtmsxkHVblkNS68D6ktYsxrJ4Sp34bK6ZM"
- }
- 2019-10-22 11:29:53,605:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
- 2019-10-22 11:29:53,606:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:29:53 GMT
- Content-Type: application/json
- Content-Length: 790
- Connection: keep-alive
- Boulder-Requester: 18663299
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0102rHRzaQAJkOr-C7tvnkqWq5Az7qwr1dw3ENm9noRkpKU
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "vovim.hopto.org"
- },
- "status": "pending",
- "expires": "2019-10-29T10:29:53Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- }
- ]
- }
- 2019-10-22 11:29:53,607:DEBUG:acme.client:Storing nonce: 0102rHRzaQAJkOr-C7tvnkqWq5Az7qwr1dw3ENm9noRkpKU
- 2019-10-22 11:29:53,608:INFO:certbot.auth_handler:Performing the following challenges:
- 2019-10-22 11:29:53,609:INFO:certbot.auth_handler:http-01 challenge for vovim.hopto.org
- 2019-10-22 11:29:53,610:DEBUG:acme.standalone:Successfully bound to :80 using IPv6
- 2019-10-22 11:29:53,610:DEBUG:acme.standalone:Certbot wasn't able to bind to :80 using IPv4, this is often expected due to the dual stack nature of IPv6 socket implementations.
- 2019-10-22 11:29:53,628:INFO:certbot.auth_handler:Waiting for verification...
- 2019-10-22 11:29:53,629:DEBUG:acme.client:JWS payload:
- {
- "type": "http-01",
- "resource": "challenge"
- }
- 2019-10-22 11:29:53,644:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng:
- {
- "protected": "eyJub25jZSI6ICIwMTAyckhSemFRQUprT3ItQzd0dm5rcVdxNUF6N3F3cjFkdzNFTm05bm9Sa3BLVSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvODg5NDU3Nzc5L2gzX0NuZyIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMS5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvcmVnLzE4NjYzMjk5IiwgImFsZyI6ICJSUzI1NiJ9",
- "payload": "ewogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9",
- "signature": "f2RUc96p6fa1sfI8y1J--fQaEyC2VMSPghkws3WePmccjocYZ9G3ZvqCO9PlQUI9XDPDFX221c0WDwk1shucSSbG24Znmg-tK3VRHPSY26HkLOGw5mDg45z-7M7MeR2-uv9GSmPpU2pF0KSOw4RWDFrlv3hEPh7xQJCNTKL1GUm4EAxj-6TNyRSCEraZxeOJEdSDnueOXZt9SRUPBPccvf7WbZYRxKCoxDx5LdVaAUSkdOMKHI0LR1zLWe43P0gzkXog8-SaWeIo75kJjmCnHE-HNKbnMVCbXzp2VYDcxBUJB1ai_KKKxgUH3P6Mq-WgSqry19dMrvcz6fiH3vVmyfnsXCD1zC0YvtaECjRLSyhwF_XUX392hJM3ZVGFQ8RwYHQspWtRJFh_jhwvNt9HyV2f2YSnV26gkCi8o-aefW3AH3p6TmnjVT_moKEu48h6HMzpK6Z200Nlb_XlA-cZ3ogQLe0GuYLhJV8aBr954TgryDz568LPX_SBDYxpkegGv88Qfae8tCPy5lm91xXFh3vRC1dngd9KCyEE-KoRrhIkRK8Zak6tvRShBU2i5XTdaOBLevUQiOb0Hyvyh10jYHrPXvHWB927FmDwuoMyyfFJFylfTuuiTC6NkhyYukjBlLfz0KQNfZOQzRpJjnRSB5lxpB5Ve3k-pOhCvES1clI"
- }
- 2019-10-22 11:29:53,833:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/889457779/h3_Cng HTTP/1.1" 200 184
- 2019-10-22 11:29:53,834:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:29:53 GMT
- Content-Type: application/json
- Content-Length: 184
- Connection: keep-alive
- Boulder-Requester: 18663299
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779>;rel="up"
- Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng
- Replay-Nonce: 0101mIEhDuRq-cFG04ttgIkw-rNO7STqGt8HlQSkcBFHlfk
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- }
- 2019-10-22 11:29:53,834:DEBUG:acme.client:Storing nonce: 0101mIEhDuRq-cFG04ttgIkw-rNO7STqGt8HlQSkcBFHlfk
- 2019-10-22 11:29:54,836:DEBUG:acme.client:JWS payload:
- 2019-10-22 11:29:54,844:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
- {
- "protected": "eyJub25jZSI6ICIwMTAxbUlFaER1UnEtY0ZHMDR0dGdJa3ctck5PN1NUcUd0OEhsUVNrY0JGSGxmayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "Bbu63_5BkpT1kjwM9dWs5Dh_6GgeVVwT27eckfib1P7W3h3GZzkHe4yGIUc2XWsexWY8KIJblFB5934L063AjQ2CxI2EHgxbjAKdANCnB3UbtW5laBIjssMnOjLclXpQMS0bkgOOe3eLDiXBMdaQnIF9u8aSbAKhNzPPwhse0v2lJ091gZNwc2p5BpGBjhjATx1WLcWJUu9Ky16YW5RWY48BYYCcEmYwsbrWsMMh96L8imiw5tZ36feGQcDjyNGal6xJegSHm2tEHLNJytSDg7d5WpBRAUe4GK6IEVnADihc9BRcIS6Yd446uxX5JFAy8LwmS14OBUwhJqZZwW1guU8OvPtj_u2RpsciJ7b5Xq8WGV777XPajFz1g-XhaND3nuhAk0ZUr1yIxO7PnZcivG7CEOxdX9XDDDxy06konzdIxiSKx0JLq0JHJP4oGQeuLtWsyfDawgYOlPMEckBOCAq48hKUwyCNsAvzFJobSimbD14lmPMYXs2oTywLHaPUqpcJE7hdKsyfNdWpgHeQqQeKsz0ds0wjGn2QKp3TlIG_wqCQ-WyENV_20SCGTBPD5Emr4HNkpfR3bOOf1IaGU4yRsqrfabMA6V0i_wSLoDvL8K_Z3R5QIHPVM1EDY2Yv4jAWXuOM1QGFS9L9pkgNZ02X760YhEkgKEixU-hwht4"
- }
- 2019-10-22 11:29:55,018:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
- 2019-10-22 11:29:55,020:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:29:54 GMT
- Content-Type: application/json
- Content-Length: 790
- Connection: keep-alive
- Boulder-Requester: 18663299
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0101R3fGvXlQe5HQbY9zX3R3VYrG_HC3ZSYzT9DYkSQfWHk
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "vovim.hopto.org"
- },
- "status": "pending",
- "expires": "2019-10-29T10:29:53Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- }
- ]
- }
- 2019-10-22 11:29:55,020:DEBUG:acme.client:Storing nonce: 0101R3fGvXlQe5HQbY9zX3R3VYrG_HC3ZSYzT9DYkSQfWHk
- 2019-10-22 11:29:58,025:DEBUG:acme.client:JWS payload:
- 2019-10-22 11:29:58,034:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
- {
- "protected": "eyJub25jZSI6ICIwMTAxUjNmR3ZYbFFlNUhRYlk5elgzUjNWWXJHX0hDM1pTWXpUOURZa1NRZldIayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "n9FGUwbakgNHi-6yfvcpgDgU0pWV00uOeLcFLUb1AD82jDALpAGx5pJ1kL3a64e5XsqsOmY84gFAxjJ2z4C5Jy4xrEBkyK8gNvenOHAHTEpPN-tf_0YTySpTFT3I8FBXVLV9FGXGXLjXrCUlpD52Mo4af1P-ZyT9YTCDvjgZRFQPmA0dpIfeTzhwM2IMxou5FqbZy7ZkvIhsuA9O1J9eskIbylg3Fy3yTLGiIubPT_h1KgPuI5CY9DnizJgSH3BG2ugyJCBD3XZNbb00ZxYFwB2-Xky0imnFDjbwrrOGHIuHSGurtp6XdDL3SddIKnUWp3R8cLuxDVfPWarXLYk-OzLLTfEiskHj_bVf8OHO8gYmvCWEyPUWKM7YQOIUtWO-Q4GxoWtmABjwgf4wQ6GUjpA7RMPcgFBFnoc-0lk2HZrLAlvGscpf-xMYRH4hFk57zUg-IhbF4zxOEF0oMyXdFmOZRj9-JxBLswxh4c1mZy76KRlREVHFOfXT6nUp2GAPfXlkc5_4hr4jMDlZgPJuJceQvDepYmuKYL8MbOwNGHifCeHTQJcLNVnWHAhyKwgLdovM8LYka2ubzo1ROdbIGqLyhFoqP9yDs-g4ojXBaUeZQ5yC9owoQgRfJ4S7q_6FK3_3RqzEHxdUXVTMZ-_gKDIPeJfAlGewtt7ayqsEBQs"
- }
- 2019-10-22 11:29:58,200:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
- 2019-10-22 11:29:58,202:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:29:58 GMT
- Content-Type: application/json
- Content-Length: 790
- Connection: keep-alive
- Boulder-Requester: 18663299
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0102EsDTffgk8z2RsY18es5vJ67LiCczoKniI_VonTaNt80
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "vovim.hopto.org"
- },
- "status": "pending",
- "expires": "2019-10-29T10:29:53Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- }
- ]
- }
- 2019-10-22 11:29:58,202:DEBUG:acme.client:Storing nonce: 0102EsDTffgk8z2RsY18es5vJ67LiCczoKniI_VonTaNt80
- 2019-10-22 11:30:01,207:DEBUG:acme.client:JWS payload:
- 2019-10-22 11:30:01,216:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
- {
- "protected": "eyJub25jZSI6ICIwMTAyRXNEVGZmZ2s4ejJSc1kxOGVzNXZKNjdMaUNjem9LbmlJX1ZvblRhTnQ4MCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "hsbjLGb-5ElLYQ8dsbUJphUrl8YhFHt4PFDmzCruQVtsysXdFzYgr6F-P-FgAxH_yWobjK4-efXQtYNHLGiq8ubFkrTgoYFpWI2rrBCtfiLHDwccd-Q6QZ4VDTtrcC4PH70T2yuTIUiZs0fb-kAQOhOqX03jwf4AlP264WjJJOUNonsZJS-uX8dR4AZZs8hjaEgq9zG1dKU4iMg2asa1Ua2nukmjEv7HCK9wEp3qNY-CfsmXrXKurWBbtIXfOPgiueGCmHsLQnHAMy3Vg38wnXmNp5BGEfUffTtF6SZV_WyrPv3tSnj_AJZ2VBDZhytD7hAl_xP3Orub1q3F-MRjPQ4mAccBKLyZItPCkFaKKhwYSwhTvgDK0GflfbkVwWJmrp8ekBqF9WA1_DcooydZ_29-ra99CaGCb8pQacuJlOXNtz_QBi5ms7Z8QIPsvZzXnccnuHj9gShHE3I_Tudq-vcHEmwFO_QPWKiN95rj2Hr5CT43fS2mmo-BcLkBvcn8jAOLHxhiwp-9gF26ONhlUHqddU5lyBACoBejXQ8xpR1LHRI6Ks7a-0U8lEtY2AITJquroIDJXtSGvPl7x6OQNf2ZSVIq6LDgEghO_S8FfXZiWqXYn8DbDm_Xr7K-uv0-R-j1_jPyjG4qCg7rikWURHfgr1cXohVpMQQ11KlR7Ss"
- }
- 2019-10-22 11:30:01,384:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 790
- 2019-10-22 11:30:01,386:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:30:01 GMT
- Content-Type: application/json
- Content-Length: 790
- Connection: keep-alive
- Boulder-Requester: 18663299
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0102ujRuBXBIOf0lTTjVUr3IU7r5T-jQinQfMGC74zpvbrs
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "vovim.hopto.org"
- },
- "status": "pending",
- "expires": "2019-10-29T10:29:53Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- }
- ]
- }
- 2019-10-22 11:30:01,386:DEBUG:acme.client:Storing nonce: 0102ujRuBXBIOf0lTTjVUr3IU7r5T-jQinQfMGC74zpvbrs
- 2019-10-22 11:30:04,391:DEBUG:acme.client:JWS payload:
- 2019-10-22 11:30:04,399:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/889457779:
- {
- "protected": "eyJub25jZSI6ICIwMTAydWpSdUJYQklPZjBsVFRqVlVyM0lVN3I1VC1qUWluUWZNR0M3NHpwdmJycyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvODg5NDU3Nzc5IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAxLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9yZWcvMTg2NjMyOTkiLCAiYWxnIjogIlJTMjU2In0",
- "payload": "",
- "signature": "Q7oJGoaJk5cJ-dlSA_yvWzNk1Pr0Dzp1sjswm2YkWqt1CTHdlPwcwJCZU6Yq2p4GOnxcFJFqE6aYahLvgleT7fzUCAknDbc0CwFa9V-9l7T4TAwscl5U0V8QijHyN2Qt_auKLbRHBsMaqKiMphG6cghU3XFmYmh2SDKFf89cZ6WP8Oy_kNDCddyTGWx9vyNDlud9TpJUhnuhN6orQCfpSOgbwDiTAIqA5_DYy-AEIjzedgh2v0wp5dN-8PbPEEWrPK_xeQWBjpihaRR75soTlp8M3553omEF3diBgX50G1T2wPedlwTYOabdSCx-3mk8-tuqpCJYPr35WZF58wg_wGB16kPTuQ7UqZNrqZgrvLxGq65HjAI2Nat1kh6jeG8dn81wag9muHqCq_c5EXI-fVSwpDXuxCYuCMovhSzjmTDyyvyCvvKchLzEVkmSQFvyLE9_nzgjF-a34tnAypcH24b_ML3E_v4TvcuyYZHvpaUAMbTXGbDxCrb_j88xCuNyQWPUgSI2oLG4ggRrM28lKbrgsKdgJ8mT2etqK52fHP0PgK9HRQ-M58m13848c53uC5nZDn6wJ9MJKg7o0v7iOYcfl2DnsVOcVmjYi5znGXIVHd_EYwuyV4fbCU4ztX8F-N6qprFLbeVEKsZmq9vtEIH2amu5-NXgCBFMlhz5PX4"
- }
- 2019-10-22 11:30:04,610:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/889457779 HTTP/1.1" 200 1420
- 2019-10-22 11:30:04,611:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Date: Tue, 22 Oct 2019 10:30:04 GMT
- Content-Type: application/json
- Content-Length: 1420
- Connection: keep-alive
- Boulder-Requester: 18663299
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0101P6QCBp5yKNRo97loFZbQE_K0C9gqMjG8Aw03JqA7dNE
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "vovim.hopto.org"
- },
- "status": "invalid",
- "expires": "2019-10-29T10:29:53Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "invalid",
- "error": {
- "type": "urn:ietf:params:acme:error:connection",
- "detail": "Fetching http://vovim.hopto.org/.well-known/acme-challenge/_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A: Timeout during connect (likely firewall problem)",
- "status": 400
- },
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/h3_Cng",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A",
- "validationRecord": [
- {
- "url": "http://vovim.hopto.org/.well-known/acme-challenge/_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A",
- "hostname": "vovim.hopto.org",
- "port": "80",
- "addressesResolved": [
- "86.130.222.87"
- ],
- "addressUsed": "86.130.222.87"
- }
- ]
- },
- {
- "type": "dns-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/VgcnTA",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- },
- {
- "type": "tls-alpn-01",
- "status": "invalid",
- "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/889457779/e9rcKQ",
- "token": "_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A"
- }
- ]
- }
- 2019-10-22 11:30:04,612:DEBUG:acme.client:Storing nonce: 0101P6QCBp5yKNRo97loFZbQE_K0C9gqMjG8Aw03JqA7dNE
- 2019-10-22 11:30:04,613:WARNING:certbot.auth_handler:Challenge failed for domain vovim.hopto.org
- 2019-10-22 11:30:04,614:INFO:certbot.auth_handler:http-01 challenge for vovim.hopto.org
- 2019-10-22 11:30:04,615:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
- Domain: vovim.hopto.org
- Type: connection
- Detail: Fetching http://vovim.hopto.org/.well-known/acme-challenge/_sAifYraHXKuJVQ0aV8LdHOyyz6_mTlOmDRMHMfRH_A: Timeout during connect (likely firewall problem)
- To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
- 2019-10-22 11:30:04,616:DEBUG:certbot.error_handler:Encountered exception:
- Traceback (most recent call last):
- File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
- self._poll_authorizations(authzrs, max_retries, best_effort)
- File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
- raise errors.AuthorizationError('Some challenges have failed.')
- AuthorizationError: Some challenges have failed.
- 2019-10-22 11:30:04,616:DEBUG:certbot.error_handler:Calling registered functions
- 2019-10-22 11:30:04,616:INFO:certbot.auth_handler:Cleaning up challenges
- 2019-10-22 11:30:04,617:DEBUG:certbot.plugins.standalone:Stopping server at :::80...
- 2019-10-22 11:30:04,625:WARNING:certbot.renewal:Attempting to renew cert (vovim.hopto.org) from /etc/letsencrypt/renewal/vovim.hopto.org.conf produced an unexpected error: Some challenges have failed.. Skipping.
- 2019-10-22 11:30:04,627:DEBUG:certbot.renewal:Traceback was:
- Traceback (most recent call last):
- File "/usr/lib64/python2.7/site-packages/certbot/renewal.py", line 449, in handle_renewal_request
- main.renew_cert(lineage_config, plugins, renewal_candidate)
- File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 1208, in renew_cert
- renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
- File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 116, in _get_and_save_cert
- renewal.renew_cert(config, domains, le_client, lineage)
- File "/usr/lib64/python2.7/site-packages/certbot/renewal.py", line 307, in renew_cert
- new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
- File "/usr/lib64/python2.7/site-packages/certbot/client.py", line 348, in obtain_certificate
- orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
- File "/usr/lib64/python2.7/site-packages/certbot/client.py", line 384, in _get_order_and_authorizations
- authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
- File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 90, in handle_authorizations
- self._poll_authorizations(authzrs, max_retries, best_effort)
- File "/usr/lib64/python2.7/site-packages/certbot/auth_handler.py", line 154, in _poll_authorizations
- raise errors.AuthorizationError('Some challenges have failed.')
- AuthorizationError: Some challenges have failed.
- 2019-10-22 11:30:04,627:ERROR:certbot.renewal:All renewal attempts failed. The following certs could not be renewed:
- 2019-10-22 11:30:04,627:ERROR:certbot.renewal: /etc/letsencrypt/live/vovim.hopto.org/fullchain.pem (failure)
- 2019-10-22 11:30:04,630:DEBUG:certbot.log:Exiting abnormally:
- Traceback (most recent call last):
- File "/usr/bin/certbot", line 11, in <module>
- load_entry_point('certbot==0.39.0', 'console_scripts', 'certbot')()
- File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 1378, in main
- return config.func(config, plugins)
- File "/usr/lib64/python2.7/site-packages/certbot/main.py", line 1287, in renew
- renewal.handle_renewal_request(config)
- File "/usr/lib64/python2.7/site-packages/certbot/renewal.py", line 474, in handle_renewal_request
- len(renew_failures), len(parse_failures)))
- Error: 1 renew failure(s), 0 parse failure(s)
- bash-4.4#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement