2017-06-28 18:00:17,631:DEBUG:certbot.main:certbot version: 0.15.0 2017-06-28 18:00:17,631:DEBUG:certbot.main:Arguments: ['--debug-challenges'] 2017-06-28 18:00:17,631:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2017-06-28 18:00:17,645:DEBUG:certbot.log:Root logging level set at 20 2017-06-28 18:00:17,645:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log 2017-06-28 18:00:17,678:DEBUG:certbot.plugins.selection:Requested authenticator and installer 2017-06-28 18:00:17,678:DEBUG:certbot.cli:Default Detector is Namespace(account=, agree_dev_preview=None, allow_subset_of_names=, apache=, apache_challenge_location=, apache_ctl=, apache_dismod=, apache_enmod=, apache_handle_modules=, apache_handle_sites=, apache_init_script=, apache_le_vhost_ext=, apache_logs_root=, apache_server_root=, apache_vhost_root=, authenticator=, break_my_certs=, cert_path=, certname=, chain_path=, checkpoints=, config_dir=, config_file=None, configurator=, csr=, debug=, debug_challenges=True, dialog=None, dns_cloudflare=, dns_cloudxns=, dns_digitalocean=, dns_dnsimple=, dns_google=, dns_nsone=, dns_route53=, domains=, dry_run=, duplicate=, eff_email=, email=, expand=, force_interactive=, fullchain_path=, func=, hsts=, http01_address=, http01_port=, ifaces=, init=, installer=, key_path=, logs_dir=, manual=, manual_auth_hook=, manual_cleanup_hook=, manual_public_ip_logging_ok=, must_staple=, nginx=, nginx_ctl=, nginx_server_root=, no_bootstrap=, no_self_upgrade=, no_verify_ssl=, noninteractive_mode=, num=, os_packages_only=, post_hook=, pre_hook=, pref_challs=, prepare=, quiet=, reason=, redirect=, register_unsafely_without_email=, reinstall=, renew_by_default=, renew_hook=, renew_with_new_domains=, rsa_key_size=, server=, staging=, standalone=, standalone_supported_challenges=, staple=, strict_permissions=, text_mode=, tls_sni_01_address=, tls_sni_01_port=, tos=, uir=, update_registration=, user_agent=, validate_hooks=, verb='renew', verbose_count=, webroot=, webroot_map=, webroot_path=, work_dir=) 2017-06-28 18:00:17,685:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,687:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,689:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,691:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,694:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,696:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,698:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,700:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,702:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,705:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,707:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,709:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,712:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,714:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:17,716:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2017-07-18 14:17:00 UTC. 2017-06-28 18:00:17,716:INFO:certbot.renewal:Cert is due for renewal, auto-renewing... 2017-06-28 18:00:17,742:DEBUG:certbot.plugins.selection:Requested authenticator apache and installer apache 2017-06-28 18:00:17,810:DEBUG:certbot_apache.configurator:Apache version is 2.2.15 2017-06-28 18:00:19,463:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache Description: Apache Web Server plugin - Beta Interfaces: IAuthenticator, IInstaller, IPlugin Entry point: apache = certbot_apache.configurator:ApacheConfigurator Initialized: Prep: True 2017-06-28 18:00:19,464:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache Description: Apache Web Server plugin - Beta Interfaces: IAuthenticator, IInstaller, IPlugin Entry point: apache = certbot_apache.configurator:ApacheConfigurator Initialized: Prep: True 2017-06-28 18:00:19,464:DEBUG:certbot.plugins.selection:Selected authenticator and installer 2017-06-28 18:00:19,466:DEBUG:certbot.main:Picked account: )>)), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/12855199', new_authzr_uri=u'https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), 6b457f9bbf08082e01f7abdd4cc62323, Meta(creation_host=u'ns399081.ip-5-135-178.eu', creation_dt=datetime.datetime(2017, 4, 18, 21, 26, 26, tzinfo=)))> 2017-06-28 18:00:19,467:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory. 2017-06-28 18:00:19,471:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org 2017-06-28 18:00:19,928:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 352 2017-06-28 18:00:19,929:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 352 Boulder-Request-Id: oOVa-47Z4oLgsg_1nCtMZuBZ4CraUQTJBUqrZiLhm7A Replay-Nonce: kmvAANNXYdGFKS_GLqOl_ti4QwHHpfCbtN9xYxzvTR8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:06 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:06 GMT Connection: keep-alive { "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change", "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz", "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert", "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg", "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert" } 2017-06-28 18:00:19,929:INFO:certbot.main:Renewing an existing certificate 2017-06-28 18:00:19,930:DEBUG:acme.client:Requesting fresh nonce 2017-06-28 18:00:19,930:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz. 2017-06-28 18:00:20,217:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0 2017-06-28 18:00:20,218:DEBUG:acme.client:Received response: HTTP 405 Server: nginx Content-Type: application/problem+json Content-Length: 91 Allow: POST Boulder-Request-Id: IUcwHQNp906PCXjkT-rLv4MhF41386jslJuG4muBdh4 Replay-Nonce: C95chvWC8S_csa_tX3pGxGH7t2re_4j1_TqRgwUhGAc Expires: Wed, 28 Jun 2017 18:03:06 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:06 GMT Connection: keep-alive 2017-06-28 18:00:20,218:DEBUG:acme.client:Storing nonce: C95chvWC8S_csa_tX3pGxGH7t2re_4j1_TqRgwUhGAc 2017-06-28 18:00:20,218:DEBUG:acme.client:JWS payload: { "identifier": { "type": "dns", "value": "piscine-en-palette.fr" }, "resource": "new-authz" } 2017-06-28 18:00:20,221:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz: { "protected": "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", "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAicGlzY2luZS1lbi1wYWxldHRlLmZyIgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0", "signature": "PrQQIuUC-7CWuT3nZbgNNFApmq1UYoIViz0ILi8use2H48aih65lvLgbGInVU50d3dMUbpU5ZWSGPuPw_Qq1DKjRxkc-temRH9TI-Tp_IvIirDKUnkW8Yofpsgf9HOjDb8a6TcE0W008RLTg-XEPM0Tn5sBCCcpfZ6CJwLs2vaVwlkm0_V3XXV3qekBTfxG6A3fic86yOrYgYm3gM1gistui_HiiieC4WbxcfnsBWRalkPs26pGeUymC0jy_0VVw-kTdh6nj9W_3o4D6CrZUFZS6zVLPjbBxgLDX_bnqz_E7dFXzRKxagxz6VRHbfAnVvqdfE94Sq3DCoAsOPuLdwQ" } 2017-06-28 18:00:20,707:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1009 2017-06-28 18:00:20,708:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Content-Type: application/json Content-Length: 1009 Boulder-Request-Id: iRoRT_zGeYfED3oD34pW6wmHqoQ23GmQOoYWHNlUCwI Boulder-Requester: 12855199 Link: ;rel="next" Location: https://acme-v01.api.letsencrypt.org/acme/authz/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY Replay-Nonce: OhddeLOHe9vkGcLyc9q4PIJqrIje693oiV8JSEdvtig X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:07 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:07 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "piscine-en-palette.fr" }, "status": "pending", "expires": "2017-07-05T18:03:06.838612158Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834246", "token": "aclPMuOm1thtIOKqWJO_RdIHxsMnx4UOYRXlJRI3auM" }, { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834247", "token": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY" }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834248", "token": "1F-Xx7jNYzrcw8_BR_mft5l_kOZIKOLZUjEekeSrJVs" } ], "combinations": [ [ 2 ], [ 0 ], [ 1 ] ] } 2017-06-28 18:00:20,708:DEBUG:acme.client:Storing nonce: OhddeLOHe9vkGcLyc9q4PIJqrIje693oiV8JSEdvtig 2017-06-28 18:00:20,709:DEBUG:acme.client:JWS payload: { "identifier": { "type": "dns", "value": "www.piscine-en-palette.fr" }, "resource": "new-authz" } 2017-06-28 18:00:20,712:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz: { "protected": "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", "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAid3d3LnBpc2NpbmUtZW4tcGFsZXR0ZS5mciIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9", "signature": "ftw0mzRZ-n5fl3qi4gw1KWDMCwgwadcaFt-vL327LsVhoVKyFHtmG306EfamDQm_ldXidyVs0WtInK6Lipj8XyEpF94-nwoi4C5SDMyhUDkuItMh4a8FvBjxK0TM3YBjtV183PCeKeTZHHarPbDn2irtdWYIHUlWkDdScDne2pLRVpEVjHqd8vlbG2Ozi55tKf6lyLQfcTq1Tq75VZrtZUXpgwe69Zr_nDBq-OjuNSw4m2n_gMOro6Z2jp6h0OfdeF8Lt1B0V_ciEeesSxK1bRI0Wjy1RZmQO6da7cLqQCMs1jEE3_S8KGr0B_5inJCNQTOuRptDjHcxzvAiQTHGAA" } 2017-06-28 18:00:20,983:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1013 2017-06-28 18:00:20,984:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Content-Type: application/json Content-Length: 1013 Boulder-Request-Id: RatdO4j7pbyIy0MmZzjhT0LxRMOUt8jFxf2ZeiEjJG4 Boulder-Requester: 12855199 Link: ;rel="next" Location: https://acme-v01.api.letsencrypt.org/acme/authz/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE Replay-Nonce: KILOhpjPWM6LrFDilqxWZCcmgerZmkHZLjJ-B-ZxrTU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:07 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:07 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "www.piscine-en-palette.fr" }, "status": "pending", "expires": "2017-07-05T18:03:07.347459609Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834297", "token": "jk305netFLDmT3WhmqWFC6N3fiEOoPN4o0WHA1A-g-A" }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834298", "token": "GhaG-4vNd3KSr8w5v_KQi0MFUEsmaeZR2dwyEOucOnc" }, { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834299", "token": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M" } ], "combinations": [ [ 0 ], [ 1 ], [ 2 ] ] } 2017-06-28 18:00:20,984:DEBUG:acme.client:Storing nonce: KILOhpjPWM6LrFDilqxWZCcmgerZmkHZLjJ-B-ZxrTU 2017-06-28 18:00:20,985:INFO:certbot.auth_handler:Performing the following challenges: 2017-06-28 18:00:20,985:INFO:certbot.auth_handler:tls-sni-01 challenge for piscine-en-palette.fr 2017-06-28 18:00:20,985:INFO:certbot.auth_handler:tls-sni-01 challenge for www.piscine-en-palette.fr 2017-06-28 18:00:21,802:DEBUG:certbot_apache.tls_sni_01:Adding Include /etc/httpd/conf.d/le_tls_sni_01_cert_challenge.conf to /files/etc/httpd/conf/httpd.conf 2017-06-28 18:00:21,803:DEBUG:certbot_apache.tls_sni_01:writing a config file with text: ServerName d6d48299d84764afa2abe560b3d6836c.8b197252798be82b62728ebbf20b9147.acme.invalid UseCanonicalName on SSLStrictSNIVHostCheck on LimitRequestBody 1048576 Include /etc/letsencrypt/options-ssl-apache.conf SSLCertificateFile /var/lib/letsencrypt/y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY.crt SSLCertificateKeyFile /var/lib/letsencrypt/y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY.pem DocumentRoot /var/lib/letsencrypt/tls_sni_01_page/ ServerName 074d61f8bac395657af72c8fc686e872.f2dc5d5be007ff72a897b5178d78bf67.acme.invalid UseCanonicalName on SSLStrictSNIVHostCheck on LimitRequestBody 1048576 Include /etc/letsencrypt/options-ssl-apache.conf SSLCertificateFile /var/lib/letsencrypt/Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M.crt SSLCertificateKeyFile /var/lib/letsencrypt/Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M.pem DocumentRoot /var/lib/letsencrypt/tls_sni_01_page/ 2017-06-28 18:00:21,871:DEBUG:certbot.reverter:Creating backup of /etc/httpd/conf/httpd.conf 2017-06-28 18:00:25,433:INFO:certbot.auth_handler:Waiting for verification... 2017-06-28 18:00:25,434:DEBUG:acme.client:JWS payload: { "keyAuthorization": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "type": "tls-sni-01", "resource": "challenge" } 2017-06-28 18:00:25,437:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834247: { "protected": "eyJub25jZSI6ICJLSUxPaHBqUFdNNkxyRkRpbHF4V1pDY21nZXJabWtIWkxqSi1CLVp4clRVIiwgImFsZyI6ICJSUzI1NiIsICJqd2siOiB7ImUiOiAiQVFBQiIsICJrdHkiOiAiUlNBIiwgIm4iOiAiME9NR1VaZmM3LVdpdmo1RndkRmJ0UFhEZWpIUUJ6bXJySWQ3S0VWTks3RmsycGNyS0hoZ2RISWFFRTdHYU95S0tYVkxFVWpNOHNyVGxWeURTTy05amYteGpUVnBxeU4tQk1RWlJEMFR2Qkh4RlhQM29sVUMxWGgxRHlLb0VKamNqZFJNa3dnRXJrYUJWYU5HZWI4a3Mwakd3dEMwbUpLcG5tUlhoNzlZbGh3bmQ1dDRxZFhlWnFkd1J3bkxPMXJHa0dYV29zQ1ozS3hJb3lhX0pzdjg5dDBhaUtZRHFsQlgwMm5MUlgwRjMxVGRiOW8tcEVJZWJyZ3JrTEFxX3ZVd3NRSVdDcXpTSHVMSGM2TW9pYXFneThkakhBdU9WdlZEakxYWWZ5enBIamgtTjF3di1ncVk1WXoxVHVMdmN2dVFOTlNHcm1IaUlQX29XYTJISEVWVzlRIn19", "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogInktTThUV0J3ekY1ZVBGRFYzT3czZm1yaUhHV3BqQjFOUmZON09zUzBLeVkudFA1bFJnWFBMREhHN2pCdm1xWUx4NDJjNlBrZTBUcl8tMndVZkZWbXBDcyIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", "signature": "qrqyM3SRVKYv7jFQ-vUPMmQfYdiD9ex5ig7YtYYtMBW4Xoy9kN8qLrPn2Z6J844xiZCzX79hpQhgFYcHWMQLuePj7gsixh26kYQJsRuFZxQDdtuY8Clxvhk1TuLGRlh8wDGhCaaSRdrJz23jx-uNLdeq3at3HxuOzhC6rSNAR2SXjhp0P4eTyQp0ilN8skgz9Qwe_F12VaDAO_uhGzmGDCeJN9-jhrcdpDE90-YlP2Dg_6i1yeoraRsElby62b4lUUCKT5iWkQZv-en18F6JRh2vxTaMWaj2I8DyY0fsWUStqa19goUwdGP7nd_hkzg8B9TLBUBRoVgL5dFZFT3Q0A" } 2017-06-28 18:00:25,657:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834247 HTTP/1.1" 202 339 2017-06-28 18:00:25,657:DEBUG:acme.client:Received response: HTTP 202 Server: nginx Content-Type: application/json Content-Length: 339 Boulder-Request-Id: eHn8gPIPUPDUoB8RsocKFgKrVCNQ--Tadtr7sJWVoVs Boulder-Requester: 12855199 Link: ;rel="up" Location: https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834247 Replay-Nonce: C6lxvaRH8Iv93dGRCZjz6plp58hOO8k06omWnCI3E4o Expires: Wed, 28 Jun 2017 18:03:12 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:12 GMT Connection: keep-alive { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834247", "token": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY", "keyAuthorization": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs" } 2017-06-28 18:00:25,657:DEBUG:acme.client:Storing nonce: C6lxvaRH8Iv93dGRCZjz6plp58hOO8k06omWnCI3E4o 2017-06-28 18:00:25,658:DEBUG:acme.client:JWS payload: { "keyAuthorization": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "type": "tls-sni-01", "resource": "challenge" } 2017-06-28 18:00:25,660:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834299: { "protected": "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", "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIkJyMy1JNU13Zy14VFpKV2N3UXJwR3pJNkk5NjViVGNDNVYwMWFzN3VzME0udFA1bFJnWFBMREhHN2pCdm1xWUx4NDJjNlBrZTBUcl8tMndVZkZWbXBDcyIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", "signature": "qINg8g_t-Oc3IALo5YKwKsVZS-XvF2sdqfdBFu1nDYOGlM8wVlOHQ0ZN5pSMxB0t7f9F4CJwLU3HiyMPg3UcVKxJfLlnYR9dKlKEahGFpuGAGVQG2zw3xfHUoVVImIy1NTcIYldsvyjX01ZwAOyG0P7om54Dyk-h7955hMxIBeiBGTRio9Rn22jx9mORktgfsPKIxfRPrt-F5P4XbkY5KO1lSScnMrztiTVNClL-BeKunc4F5wfD9dDYSVyPo_RMW-I0QPe31EvP0w9z9e315jq1eSP-hEMVQtIkRUtc0lpBAVsMdtmg5r82C_isdfV-lQpt4DgYfnfrd_0K0--seg" } 2017-06-28 18:00:25,966:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834299 HTTP/1.1" 202 339 2017-06-28 18:00:25,967:DEBUG:acme.client:Received response: HTTP 202 Server: nginx Content-Type: application/json Content-Length: 339 Boulder-Request-Id: bYOi7WM5VipbT84GLkZpzKxtOJjOZhuFT4T0eU4weiA Boulder-Requester: 12855199 Link: ;rel="up" Location: https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834299 Replay-Nonce: 235iTEesbm_E3st9ykTB4YeTM-kSzAtbWIPPr1K4Jpk Expires: Wed, 28 Jun 2017 18:03:12 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:12 GMT Connection: keep-alive { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834299", "token": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M", "keyAuthorization": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs" } 2017-06-28 18:00:25,967:DEBUG:acme.client:Storing nonce: 235iTEesbm_E3st9ykTB4YeTM-kSzAtbWIPPr1K4Jpk 2017-06-28 18:00:28,971:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE. 2017-06-28 18:00:29,165:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE HTTP/1.1" 200 1120 2017-06-28 18:00:29,166:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1120 Boulder-Request-Id: No8GX55jcy5o31_OvYxdyI6QZk-IzvThHi9Fpo7YMgo Link: ;rel="next" Replay-Nonce: LsqAXoPiSiUYru_v3f55i2wUSKA9qdDWeaxlzhme-8E X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:15 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:15 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "www.piscine-en-palette.fr" }, "status": "pending", "expires": "2017-07-05T18:03:07Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834297", "token": "jk305netFLDmT3WhmqWFC6N3fiEOoPN4o0WHA1A-g-A" }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834298", "token": "GhaG-4vNd3KSr8w5v_KQi0MFUEsmaeZR2dwyEOucOnc" }, { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834299", "token": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M", "keyAuthorization": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs" } ], "combinations": [ [ 0 ], [ 1 ], [ 2 ] ] } 2017-06-28 18:00:29,168:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY. 2017-06-28 18:00:29,383:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY HTTP/1.1" 200 1116 2017-06-28 18:00:29,384:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1116 Boulder-Request-Id: YRT4Ati7V2UHZwjmCf5WrI1KzmXkWwIFl6xLkmJ3iFM Link: ;rel="next" Replay-Nonce: wXh9VkoUyBoWHkIqUeMA2uykFfijmjIq0bI7bASTRLA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:15 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:15 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "piscine-en-palette.fr" }, "status": "pending", "expires": "2017-07-05T18:03:06Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834246", "token": "aclPMuOm1thtIOKqWJO_RdIHxsMnx4UOYRXlJRI3auM" }, { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834247", "token": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY", "keyAuthorization": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs" }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834248", "token": "1F-Xx7jNYzrcw8_BR_mft5l_kOZIKOLZUjEekeSrJVs" } ], "combinations": [ [ 2 ], [ 0 ], [ 1 ] ] } 2017-06-28 18:00:32,388:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE. 2017-06-28 18:00:32,611:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE HTTP/1.1" 200 1520 2017-06-28 18:00:32,612:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1520 Boulder-Request-Id: so1p-4wH3eJA-XsxC-IZ9N4SXs2I7fAEfjbZb5IgJQc Link: ;rel="next" Replay-Nonce: 4Qteiwa7pWGxgbd77oDROZNcjWcAutX3PSYyPnfbMyY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:19 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:19 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "www.piscine-en-palette.fr" }, "status": "invalid", "expires": "2017-07-05T18:03:07Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834297", "token": "jk305netFLDmT3WhmqWFC6N3fiEOoPN4o0WHA1A-g-A" }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834298", "token": "GhaG-4vNd3KSr8w5v_KQi0MFUEsmaeZR2dwyEOucOnc" }, { "type": "tls-sni-01", "status": "invalid", "error": { "type": "urn:acme:error:connection", "detail": "Timeout", "status": 400 }, "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/h1gX8AAPrKbB3oIRbgVVUeO88fAlgak5CjQR9I7r7iE/1441834299", "token": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M", "keyAuthorization": "Br3-I5Mwg-xTZJWcwQrpGzI6I965bTcC5V01as7us0M.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "validationRecord": [ { "hostname": "www.piscine-en-palette.fr", "port": "443", "addressesResolved": [ "5.135.178.75" ], "addressUsed": "5.135.178.75", "addressesTried": [] } ] } ], "combinations": [ [ 0 ], [ 1 ], [ 2 ] ] } 2017-06-28 18:00:32,613:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY. 2017-06-28 18:00:32,828:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY HTTP/1.1" 200 1512 2017-06-28 18:00:32,828:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1512 Boulder-Request-Id: 60mNpiQ4CvAk6OvcIp4s6-0M41ooDG439CvV3Zr6i88 Link: ;rel="next" Replay-Nonce: iZT41nfh7YhTfNhh2MIE60Erzc8PWhV0o-sqo8ia0JQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:19 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:19 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "piscine-en-palette.fr" }, "status": "invalid", "expires": "2017-07-05T18:03:06Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834246", "token": "aclPMuOm1thtIOKqWJO_RdIHxsMnx4UOYRXlJRI3auM" }, { "type": "tls-sni-01", "status": "invalid", "error": { "type": "urn:acme:error:connection", "detail": "Timeout", "status": 400 }, "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834247", "token": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY", "keyAuthorization": "y-M8TWBwzF5ePFDV3Ow3fmriHGWpjB1NRfN7OsS0KyY.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "validationRecord": [ { "hostname": "piscine-en-palette.fr", "port": "443", "addressesResolved": [ "5.135.178.75" ], "addressUsed": "5.135.178.75", "addressesTried": [] } ] }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/SAbxflCZTMgFfNVJDtZZN2uklCiCPgMuRpZZzborpcY/1441834248", "token": "1F-Xx7jNYzrcw8_BR_mft5l_kOZIKOLZUjEekeSrJVs" } ], "combinations": [ [ 2 ], [ 0 ], [ 1 ] ] } 2017-06-28 18:00:32,830:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server: Domain: www.piscine-en-palette.fr Type: connection Detail: Timeout Domain: piscine-en-palette.fr Type: connection Detail: Timeout To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided. 2017-06-28 18:00:32,830:INFO:certbot.auth_handler:Cleaning up challenges 2017-06-28 18:00:33,281:WARNING:certbot.renewal:Attempting to renew cert from /etc/letsencrypt/renewal/piscine-en-palette.fr.conf produced an unexpected error: Failed authorization procedure. www.piscine-en-palette.fr (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout, piscine-en-palette.fr (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout. Skipping. 2017-06-28 18:00:33,282:DEBUG:certbot.renewal:Traceback was: Traceback (most recent call last): File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/renewal.py", line 419, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/main.py", line 641, in renew_cert _get_and_save_cert(le_client, config, lineage=lineage) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/main.py", line 77, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/renewal.py", line 297, in renew_cert new_certr, new_chain, new_key, _ = le_client.obtain_certificate(domains) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/client.py", line 313, in obtain_certificate self.config.allow_subset_of_names) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/auth_handler.py", line 81, in get_authorizations self._respond(resp, best_effort) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/auth_handler.py", line 138, in _respond self._poll_challenges(chall_update, best_effort) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/auth_handler.py", line 202, in _poll_challenges raise errors.FailedChallenges(all_failed_achalls) FailedChallenges: Failed authorization procedure. www.piscine-en-palette.fr (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout, piscine-en-palette.fr (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout 2017-06-28 18:00:33,286:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2017-07-20 11:52:00 UTC. 2017-06-28 18:00:33,286:INFO:certbot.renewal:Cert is due for renewal, auto-renewing... 2017-06-28 18:00:33,312:DEBUG:certbot.plugins.selection:Requested authenticator apache and installer apache 2017-06-28 18:00:33,372:DEBUG:certbot_apache.configurator:Apache version is 2.2.15 2017-06-28 18:00:34,939:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache Description: Apache Web Server plugin - Beta Interfaces: IAuthenticator, IInstaller, IPlugin Entry point: apache = certbot_apache.configurator:ApacheConfigurator Initialized: Prep: True 2017-06-28 18:00:34,940:DEBUG:certbot.plugins.selection:Single candidate plugin: * apache Description: Apache Web Server plugin - Beta Interfaces: IAuthenticator, IInstaller, IPlugin Entry point: apache = certbot_apache.configurator:ApacheConfigurator Initialized: Prep: True 2017-06-28 18:00:34,940:DEBUG:certbot.plugins.selection:Selected authenticator and installer 2017-06-28 18:00:34,942:DEBUG:certbot.main:Picked account: )>)), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/12855199', new_authzr_uri=u'https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), 6b457f9bbf08082e01f7abdd4cc62323, Meta(creation_host=u'ns399081.ip-5-135-178.eu', creation_dt=datetime.datetime(2017, 4, 18, 21, 26, 26, tzinfo=)))> 2017-06-28 18:00:34,943:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory. 2017-06-28 18:00:34,944:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org 2017-06-28 18:00:35,198:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 352 2017-06-28 18:00:35,198:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 352 Boulder-Request-Id: 9m64jU277vwnHyr3X4k1Dd8JgtBX4L8lNBoZBeISCmo Replay-Nonce: CkQQPM-XJ0xhXYcETWiqXOpIqMnfFRbI7PdKVgQ01fo X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:21 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:21 GMT Connection: keep-alive { "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change", "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz", "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert", "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg", "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert" } 2017-06-28 18:00:35,220:INFO:certbot.main:Renewing an existing certificate 2017-06-28 18:00:35,221:DEBUG:acme.client:Requesting fresh nonce 2017-06-28 18:00:35,221:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz. 2017-06-28 18:00:35,446:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0 2017-06-28 18:00:35,446:DEBUG:acme.client:Received response: HTTP 405 Server: nginx Content-Type: application/problem+json Content-Length: 91 Allow: POST Boulder-Request-Id: SMk_AC7fOsShFf3yEf11-cwDjkhsotaNn2AMbu3MoLs Replay-Nonce: 4L9a8jKt5H5jgurpUVOoBr_kenUxRqK-TPmOWf9SpGc Expires: Wed, 28 Jun 2017 18:03:21 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:21 GMT Connection: keep-alive 2017-06-28 18:00:35,446:DEBUG:acme.client:Storing nonce: 4L9a8jKt5H5jgurpUVOoBr_kenUxRqK-TPmOWf9SpGc 2017-06-28 18:00:35,446:DEBUG:acme.client:JWS payload: { "identifier": { "type": "dns", "value": "domaines-expires.net" }, "resource": "new-authz" } 2017-06-28 18:00:35,449:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz: { "protected": "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", "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAiZG9tYWluZXMtZXhwaXJlcy5uZXQiCiAgfSwgCiAgInJlc291cmNlIjogIm5ldy1hdXRoeiIKfQ", "signature": "fAcDT8WsHD-5pqI8lYmkZobhgNPx-MS--5auwf41l2Uj5a-QzkHDhhK55QTnIYrgI2I1CmlK68lfd5Oy46lyobUTW9TgaVDR8BME09fRAvpWAoOSqYaMXdv_HAKV7tbM8p1PCBel9zuEEqLULVF6oVWT0GRo2oMTcRkt4DvvKqIpvxJ_v8_AYdxfoEPoUeyugZ_zUhWGn6Vo24fvfchNz1BAEPT2b8sq0bHhhoUbC135ztkDtF-P2TpKcqAmgEU3QITO68r3bfKJhOB9h7qv1VT-mNbjnEV4Smo3-PyBlhReR7QEJMotUJfphVXwW7Ch8soRnFKXqM1Iv9oiFsSCDg" } 2017-06-28 18:00:35,678:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1008 2017-06-28 18:00:35,679:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Content-Type: application/json Content-Length: 1008 Boulder-Request-Id: GJqVVkE_wtXUvCEjrdAkM2qu-Xsc-bGzmM2LpL99KtM Boulder-Requester: 12855199 Link: ;rel="next" Location: https://acme-v01.api.letsencrypt.org/acme/authz/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8 Replay-Nonce: ulMvls5Bv78r3FQ88cAAG3XlPp5_AgPDqTu5-yViENM X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:22 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:22 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "domaines-expires.net" }, "status": "pending", "expires": "2017-07-05T18:03:22.023716968Z", "challenges": [ { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835782", "token": "zMZ_cF1g2BwOk_uyvCWzBUpjsba7MVLwqiYRydyhS88" }, { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835783", "token": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU" }, { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835784", "token": "AjhixiZ_sQSCub4VZEiW1hMHF5VwApFjNVOaNmFHED4" } ], "combinations": [ [ 0 ], [ 2 ], [ 1 ] ] } 2017-06-28 18:00:35,679:DEBUG:acme.client:Storing nonce: ulMvls5Bv78r3FQ88cAAG3XlPp5_AgPDqTu5-yViENM 2017-06-28 18:00:35,680:DEBUG:acme.client:JWS payload: { "identifier": { "type": "dns", "value": "www.domaines-expires.net" }, "resource": "new-authz" } 2017-06-28 18:00:35,682:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz: { "protected": "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", "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAid3d3LmRvbWFpbmVzLWV4cGlyZXMubmV0IgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0", "signature": "wUwpoo_bhe80-NGVlh9gcZT2b9Xk5c4GVSANtSJDXMoXClWRCiNpTce60ZtWW2PfgnxoNCTc8ZSayRUUC7ftEAePjELtDhN4qGTvRXzBihOz6p5RstjgWhwYxxXy-_YThrE67riVi64zR830UZAi_b_XfUA1ZAiFrIOzA3EzQsKmU7Nc0WGPpdLuizWl722T76wlpUu4o6Z42M8morbNSvTrJI8jUopNEv9u_SjUsOF5vlqnSjLXhz02fMEtN7YMiL6rXnLfDP15mwo7A8g-Us5_PV2ngiIpq4ATjwk4STpyhD54-fsiOpcw8HUwPK8km3dEuadbBcfqDMC7xI6Kbg" } 2017-06-28 18:00:35,946:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1392 2017-06-28 18:00:35,947:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Content-Type: application/json Content-Length: 1392 Boulder-Request-Id: BXDJ6OC84xlpNThKRg-bRIsrsi76DGizIb4rqd_S1FI Boulder-Requester: 12855199 Link: ;rel="next" Location: https://acme-v01.api.letsencrypt.org/acme/authz/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY Replay-Nonce: lER0nwOFb3yjjh9K0jwlaLHQIlx0JiG2t-plHmSI7Yk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:22 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:22 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "www.domaines-expires.net" }, "status": "valid", "expires": "2017-07-28T16:11:36Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285798", "token": "ea7h-0VKm25swPA1cmynwhwkqCI9VVyC_OtHSg7WR4A" }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285799", "token": "M24iFWI8yBDHb4zY88gxcoCl3I8qmTAPzjxtIL4GB4I" }, { "type": "tls-sni-01", "status": "valid", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285800", "token": "gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ", "keyAuthorization": "gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "validationRecord": [ { "hostname": "www.domaines-expires.net", "port": "443", "addressesResolved": [ "5.135.178.75" ], "addressUsed": "5.135.178.75", "addressesTried": [] } ] } ], "combinations": [ [ 1 ], [ 0 ], [ 2 ] ] } 2017-06-28 18:00:35,947:DEBUG:acme.client:Storing nonce: lER0nwOFb3yjjh9K0jwlaLHQIlx0JiG2t-plHmSI7Yk 2017-06-28 18:00:35,948:INFO:certbot.auth_handler:Performing the following challenges: 2017-06-28 18:00:35,948:INFO:certbot.auth_handler:tls-sni-01 challenge for domaines-expires.net 2017-06-28 18:00:35,948:INFO:certbot.auth_handler:tls-sni-01 challenge for www.domaines-expires.net 2017-06-28 18:00:37,022:DEBUG:certbot_apache.tls_sni_01:Adding Include /etc/httpd/conf.d/le_tls_sni_01_cert_challenge.conf to /files/etc/httpd/conf/httpd.conf 2017-06-28 18:00:37,023:DEBUG:certbot_apache.tls_sni_01:writing a config file with text: ServerName 82837d995b001e16413dac011a57ba53.7ad1ea147032d36ecd0c94435c59f8c1.acme.invalid UseCanonicalName on SSLStrictSNIVHostCheck on LimitRequestBody 1048576 Include /etc/letsencrypt/options-ssl-apache.conf SSLCertificateFile /var/lib/letsencrypt/9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU.crt SSLCertificateKeyFile /var/lib/letsencrypt/9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU.pem DocumentRoot /var/lib/letsencrypt/tls_sni_01_page/ ServerName 41dfae8bffaae2d1bd025d0d609d64f2.f57debbe5f5dad9c64fd8f7097289548.acme.invalid UseCanonicalName on SSLStrictSNIVHostCheck on LimitRequestBody 1048576 Include /etc/letsencrypt/options-ssl-apache.conf SSLCertificateFile /var/lib/letsencrypt/gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ.crt SSLCertificateKeyFile /var/lib/letsencrypt/gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ.pem DocumentRoot /var/lib/letsencrypt/tls_sni_01_page/ 2017-06-28 18:00:37,085:DEBUG:certbot.reverter:Creating backup of /etc/httpd/conf/httpd.conf 2017-06-28 18:00:40,637:INFO:certbot.auth_handler:Waiting for verification... 2017-06-28 18:00:40,637:DEBUG:acme.client:JWS payload: { "keyAuthorization": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "type": "tls-sni-01", "resource": "challenge" } 2017-06-28 18:00:40,640:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835783: { "protected": "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", "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIjlPZlBIY1FxOGZ2V0R4UDZEZXF5R05HMXRtXzZ0WTFseWpkYVhnZU5xelUudFA1bFJnWFBMREhHN2pCdm1xWUx4NDJjNlBrZTBUcl8tMndVZkZWbXBDcyIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", "signature": "lI16E7TNenGO_7Sh0RmEsuAXhe4B1IFEuQxgD02oI_aPnUrVH8fjj4SrSZMP__7TsMdBZLpb9DtJnWZoE3RprajNA1UJ9EmppXFngxz21R75raQ6YvF2L8ppHSqBACNNzs3WDJ_DDfaUuCijCsvC-sLnXYFW1g-qVTx5BJeRncPyBV7vUUIm3KDoG_PlXdzQZC9wm9IReJ894CuxBMy-L_HHXyU4VlKYsjirMomO4BtPXhJm1RqTa6lKAxxhHx0Am808JVw2-RdtKLzFBkLoU4qkkBAlO9iLswZiEDW9mpnEd9W__LP5PT0jwe47frnZZXpFoKedftkS6w0s2WbyRw" } 2017-06-28 18:00:40,883:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835783 HTTP/1.1" 202 339 2017-06-28 18:00:40,884:DEBUG:acme.client:Received response: HTTP 202 Server: nginx Content-Type: application/json Content-Length: 339 Boulder-Request-Id: mhHxIs-LySKJhuTD0ygG2g6HNaep8vF5vmbLmjgeVyE Boulder-Requester: 12855199 Link: ;rel="up" Location: https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835783 Replay-Nonce: 98Olv4seRMD4fdaVZdAfkQMMeATCjRYYPZ3YXiwFyVI Expires: Wed, 28 Jun 2017 18:03:27 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:27 GMT Connection: keep-alive { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835783", "token": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU", "keyAuthorization": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs" } 2017-06-28 18:00:40,884:DEBUG:acme.client:Storing nonce: 98Olv4seRMD4fdaVZdAfkQMMeATCjRYYPZ3YXiwFyVI 2017-06-28 18:00:40,884:DEBUG:acme.client:JWS payload: { "keyAuthorization": "gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "type": "tls-sni-01", "resource": "challenge" } 2017-06-28 18:00:40,887:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285800: { "protected": "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", "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogImdRWWdEM3Y2eDBtTF9mNVdtMkdlODNlcWEwc1Z5V0w0Y3lzQ1NHQjFUalEudFA1bFJnWFBMREhHN2pCdm1xWUx4NDJjNlBrZTBUcl8tMndVZkZWbXBDcyIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", "signature": "l_hWOLyo46L3xccL0jtvoIzAmBvIdolSaV3D7ltLBMoq3c6jiBIOHlgMYsnk5y208xWxXfeg6BZWpazZtwTxSvGqJI_6OnkrTwKNi1gB-JnF7UTBxffwiiwG5AupVKJsiSoAhO0mmp1a203C4nAB36Q_wpiktlCRlTdvQHBaFQdF1-zs_T_XtbABBqHcbB3Z9LxYAVWbGAaF3UZBgEqpWBNjRKLTFZKhOEUFwSrKUQcCnc4crZQXnr0UWhohNfbh4NyzSL6rCTO4r_CzuLG4FspXRBTTq763XxEy_Bh6TXlriCRBH9UeP8XSCTu52AMIGKhJJg4ltrVkcCffD100rA" } 2017-06-28 18:00:41,102:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285800 HTTP/1.1" 202 570 2017-06-28 18:00:41,102:DEBUG:acme.client:Received response: HTTP 202 Server: nginx Content-Type: application/json Content-Length: 570 Boulder-Request-Id: mxOQo87kDTKYzUmxYO27LBkoYr4FdqkG7jCwq8mzee8 Boulder-Requester: 12855199 Link: ;rel="up" Location: https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285800 Replay-Nonce: TFj4yzoPGOgCqQIWbQYYycO3OkesspF6FSLLSjvDJuc Expires: Wed, 28 Jun 2017 18:03:27 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:27 GMT Connection: keep-alive { "type": "tls-sni-01", "status": "valid", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285800", "token": "gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ", "keyAuthorization": "gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "validationRecord": [ { "hostname": "www.domaines-expires.net", "port": "443", "addressesResolved": [ "5.135.178.75" ], "addressUsed": "5.135.178.75", "addressesTried": [] } ] } 2017-06-28 18:00:41,102:DEBUG:acme.client:Storing nonce: TFj4yzoPGOgCqQIWbQYYycO3OkesspF6FSLLSjvDJuc 2017-06-28 18:00:44,105:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8. 2017-06-28 18:00:44,312:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8 HTTP/1.1" 200 1115 2017-06-28 18:00:44,313:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1115 Boulder-Request-Id: AtT42IoVPAewpBooz9ePJPNAezMyWYoNnAXhpath35U Link: ;rel="next" Replay-Nonce: CB_91aVUI8G3ymrC1poPOGjTDEJFlIYFmMv9UdGfUCU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:30 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:30 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "domaines-expires.net" }, "status": "pending", "expires": "2017-07-05T18:03:22Z", "challenges": [ { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835782", "token": "zMZ_cF1g2BwOk_uyvCWzBUpjsba7MVLwqiYRydyhS88" }, { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835783", "token": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU", "keyAuthorization": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs" }, { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835784", "token": "AjhixiZ_sQSCub4VZEiW1hMHF5VwApFjNVOaNmFHED4" } ], "combinations": [ [ 0 ], [ 2 ], [ 1 ] ] } 2017-06-28 18:00:44,314:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY. 2017-06-28 18:00:44,514:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY HTTP/1.1" 200 1392 2017-06-28 18:00:44,515:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1392 Boulder-Request-Id: G5-0Hr8Cctbdtg7RmoTeN0eFINDsbbCJbK8RPHt5yHU Link: ;rel="next" Replay-Nonce: yh6j-keoX0u_c6ApuB99RJDfAKO3dKZAUs8APf2hk_I X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:30 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:30 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "www.domaines-expires.net" }, "status": "valid", "expires": "2017-07-28T16:11:36Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285798", "token": "ea7h-0VKm25swPA1cmynwhwkqCI9VVyC_OtHSg7WR4A" }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285799", "token": "M24iFWI8yBDHb4zY88gxcoCl3I8qmTAPzjxtIL4GB4I" }, { "type": "tls-sni-01", "status": "valid", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ek1SNnAuk3C2olYiEI_ygX8sxjoCSWLe0qggnLWt3fY/1441285800", "token": "gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ", "keyAuthorization": "gQYgD3v6x0mL_f5Wm2Ge83eqa0sVyWL4cysCSGB1TjQ.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "validationRecord": [ { "hostname": "www.domaines-expires.net", "port": "443", "addressesResolved": [ "5.135.178.75" ], "addressUsed": "5.135.178.75", "addressesTried": [] } ] } ], "combinations": [ [ 1 ], [ 0 ], [ 2 ] ] } 2017-06-28 18:00:47,519:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8. 2017-06-28 18:00:47,765:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8 HTTP/1.1" 200 1510 2017-06-28 18:00:47,766:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1510 Boulder-Request-Id: cEV0v2nrYN9dZ8yIUQBMgmtsC4uuyp5trR-0crCjKMA Link: ;rel="next" Replay-Nonce: uXicwitU2LsgfLQG9FXMfQOAkL__bGry8bT-COqHdy8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Wed, 28 Jun 2017 18:03:34 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Wed, 28 Jun 2017 18:03:34 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "domaines-expires.net" }, "status": "invalid", "expires": "2017-07-05T18:03:22Z", "challenges": [ { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835782", "token": "zMZ_cF1g2BwOk_uyvCWzBUpjsba7MVLwqiYRydyhS88" }, { "type": "tls-sni-01", "status": "invalid", "error": { "type": "urn:acme:error:connection", "detail": "Timeout", "status": 400 }, "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835783", "token": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU", "keyAuthorization": "9OfPHcQq8fvWDxP6DeqyGNG1tm_6tY1lyjdaXgeNqzU.tP5lRgXPLDHG7jBvmqYLx42c6Pke0Tr_-2wUfFVmpCs", "validationRecord": [ { "hostname": "domaines-expires.net", "port": "443", "addressesResolved": [ "5.135.178.75" ], "addressUsed": "5.135.178.75", "addressesTried": [] } ] }, { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/67iEF3rC8yVef9Ma2gZyAPmSuygytw4NJgynjT23jM8/1441835784", "token": "AjhixiZ_sQSCub4VZEiW1hMHF5VwApFjNVOaNmFHED4" } ], "combinations": [ [ 0 ], [ 2 ], [ 1 ] ] } 2017-06-28 18:00:47,767:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server: Domain: domaines-expires.net Type: connection Detail: Timeout To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided. 2017-06-28 18:00:47,767:INFO:certbot.auth_handler:Cleaning up challenges 2017-06-28 18:00:48,219:WARNING:certbot.renewal:Attempting to renew cert from /etc/letsencrypt/renewal/domaines-expires.net.conf produced an unexpected error: Failed authorization procedure. domaines-expires.net (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout. Skipping. 2017-06-28 18:00:48,219:DEBUG:certbot.renewal:Traceback was: Traceback (most recent call last): File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/renewal.py", line 419, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/main.py", line 641, in renew_cert _get_and_save_cert(le_client, config, lineage=lineage) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/main.py", line 77, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/renewal.py", line 297, in renew_cert new_certr, new_chain, new_key, _ = le_client.obtain_certificate(domains) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/client.py", line 313, in obtain_certificate self.config.allow_subset_of_names) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/auth_handler.py", line 81, in get_authorizations self._respond(resp, best_effort) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/auth_handler.py", line 138, in _respond self._poll_challenges(chall_update, best_effort) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/auth_handler.py", line 202, in _poll_challenges raise errors.FailedChallenges(all_failed_achalls) FailedChallenges: Failed authorization procedure. domaines-expires.net (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout 2017-06-28 18:00:48,222:INFO:certbot.renewal:Cert not yet due for renewal 2017-06-28 18:00:48,222:DEBUG:certbot.log:Exiting abnormally: Traceback (most recent call last): File "/root/.local/share/letsencrypt/bin/letsencrypt", line 11, in sys.exit(main()) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/main.py", line 743, in main return config.func(config, plugins) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/main.py", line 693, in renew renewal.handle_renewal_request(config) File "/root/.local/share/letsencrypt/lib/python2.6/site-packages/certbot/renewal.py", line 436, in handle_renewal_request len(renew_failures), len(parse_failures))) Error: 2 renew failure(s), 0 parse failure(s)