2021-10-07 21:23:44,957:DEBUG:certbot._internal.main:certbot version: 1.19.0 2021-10-07 21:23:44,958:DEBUG:certbot._internal.main:Location of certbot entry point: /opt/certbot/bin/certbot 2021-10-07 21:23:44,958:DEBUG:certbot._internal.main:Arguments: ['--force-renewal', '--non-interactive', '--config', '/etc/letsencrypt.ini', '--cert-name', 'npm-42', '--preferred-challenges', 'dns,http', '--disable-hook-validation'] 2021-10-07 21:23:44,958:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2021-10-07 21:23:44,981:DEBUG:certbot._internal.log:Root logging level set at 30 2021-10-07 21:23:44,982:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/npm-42.conf 2021-10-07 21:23:44,996:DEBUG:certbot._internal.plugins.selection:Requested authenticator and installer 2021-10-07 21:23:44,996:DEBUG:certbot._internal.cli:Var pref_challs=dns,http (set by user). 2021-10-07 21:23:44,996:DEBUG:certbot._internal.cli:Var webroot_path=/data/letsencrypt-acme-challenge (set by user). 2021-10-07 21:23:44,996:DEBUG:certbot._internal.cli:Var webroot_map={'webroot_path'} (set by user). 2021-10-07 21:23:44,996:DEBUG:certbot._internal.cli:Var webroot_path=/data/letsencrypt-acme-challenge (set by user). 2021-10-07 21:23:45,007:DEBUG:certbot._internal.renewal:Auto-renewal forced with --force-renewal... 2021-10-07 21:23:45,007:INFO:certbot._internal.renewal:Non-interactive renewal: random delay of 108.3860321222949 seconds 2021-10-07 21:25:33,493:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2021-10-07 21:25:33,502:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Place files in webroot directory Interfaces: Authenticator, Plugin Entry point: webroot = certbot._internal.plugins.webroot:Authenticator Initialized: Prep: True 2021-10-07 21:25:33,503:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2021-10-07 21:25:33,503:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2021-10-07 21:25:33,521:DEBUG:certbot._internal.main:Picked account: ), creation_host='682fc423a5c8', register_to_eff=None))> 2021-10-07 21:25:33,522:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2021-10-07 21:25:33,528:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2021-10-07 21:25:33,811:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658 2021-10-07 21:25:33,812:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:20 GMT Content-Type: application/json Content-Length: 658 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "K7EySCUNTqs": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2021-10-07 21:25:33,814:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for calibre.moralanimal.net 2021-10-07 21:25:34,193:DEBUG:certbot.crypto_util:Generating ECDSA key (2048 bits): /etc/letsencrypt/keys/24153_key-certbot.pem 2021-10-07 21:25:34,396:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/24153_csr-certbot.pem 2021-10-07 21:25:34,396:DEBUG:acme.client:Requesting fresh nonce 2021-10-07 21:25:34,396:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce. 2021-10-07 21:25:34,460:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2021-10-07 21:25:34,460:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:20 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 0002sO965HdHxfWKQUaKTT4x6VvtuNA2cOUvn-zmb8bo9RY X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2021-10-07 21:25:34,461:DEBUG:acme.client:Storing nonce: 0002sO965HdHxfWKQUaKTT4x6VvtuNA2cOUvn-zmb8bo9RY 2021-10-07 21:25:34,461:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "calibre.moralanimal.net"\n }\n ]\n}' 2021-10-07 21:25:34,463:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE2Mjk2NTcwIiwgIm5vbmNlIjogIjAwMDJzTzk2NUhkSHhmV0tRVWFLVFQ0eDZWdnR1TkEyY09Vdm4tem1iOGJvOVJZIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ", "signature": "GaRhDFYsT0yth0-FHrlzDQn51jM0_ErWwDPdQ-531-6L4F0IAlL5_XYD-Yah0_ky65E17TaxEWqVlnx5jHI-vdQCfhY6KivCGQsztoI0U8qLCpN4RBqvMt3CKnHjlk2OfZGtTJYetvZWT4Va6WH8vmvCXSUbz3jrU7LV0ez_6wWPOTm8d86pGVVo36i4wJrvlLRLFtyl9A_WV_wLXynEBeB3c-iGoj0dk2cNEcb65BrfJjstQeRzMdQmXQ4_J1ko9n9jyT31vrD_AwITpyBXlDrlpGmEWpIxDzABxFNuZvwz9nqoCuwR0pbO8ejEdonUm9bVf1ay-RY8hCgqFsGDbA", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImNhbGlicmUubW9yYWxhbmltYWwubmV0IgogICAgfQogIF0KfQ" } 2021-10-07 21:25:34,576:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 346 2021-10-07 21:25:34,576:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Thu, 07 Oct 2021 21:24:21 GMT Content-Type: application/json Content-Length: 346 Connection: keep-alive Boulder-Requester: 116296570 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-v02.api.letsencrypt.org/acme/order/116296570/30214662790 Replay-Nonce: 0001qCh4sHBGZz9ViIMEKxnqmoVAWHSZh9U4ZyT9mcofHqg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2021-10-14T21:24:21Z", "identifiers": [ { "type": "dns", "value": "calibre.moralanimal.net" } ], "authorizations": [ "https://acme-v02.api.letsencrypt.org/acme/authz-v3/37937859170" ], "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/116296570/30214662790" } 2021-10-07 21:25:34,577:DEBUG:acme.client:Storing nonce: 0001qCh4sHBGZz9ViIMEKxnqmoVAWHSZh9U4ZyT9mcofHqg 2021-10-07 21:25:34,577:DEBUG:acme.client:JWS payload: b'' 2021-10-07 21:25:34,578:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/37937859170: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE2Mjk2NTcwIiwgIm5vbmNlIjogIjAwMDFxQ2g0c0hCR1p6OVZpSU1FS3hucW1vVkFXSFNaaDlVNFp5VDltY29mSHFnIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8zNzkzNzg1OTE3MCJ9", "signature": "AU2POJLu43STDCRV8ltH6kn4x5x1bj8q01dMfVYkH6L0q7xw0cQOKhhIrSgUvpVKV3jlPp3eab1EW51Kl4KhWsfQmdRPPJtljLr6qRPzM40clkDQc2F0pxHND5ve1IX94tFxdJV1OzRyAyyYC7-4XnkuvVQNgHf2mz1v7tzCezUB_mwOeFgb3OPtNIlC-Mg3NOdi5skhGtH9Fu5YkwmZ0R2bSEuHfDdozfwqvqUMeBc5Hr4rApnjMNf_IyOblH9w_DqnJA07rPFcOK0cqkZ4PxEl4t4J-a5zNq8RbjR8hqWQISRtxslKYrrxx0AXebmT6Fsw6JLRyxLxKEhBO_swLg", "payload": "" } 2021-10-07 21:25:34,649:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/37937859170 HTTP/1.1" 200 804 2021-10-07 21:25:34,649:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:21 GMT Content-Type: application/json Content-Length: 804 Connection: keep-alive Boulder-Requester: 116296570 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 0001-hTLWt5LVYeloJ_wFoZxzvIBIc7L1TEvPY5I9i3QxvA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "calibre.moralanimal.net" }, "status": "pending", "expires": "2021-10-14T21:24:21Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZaQP7w", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZWibeg", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" } ] } 2021-10-07 21:25:34,650:DEBUG:acme.client:Storing nonce: 0001-hTLWt5LVYeloJ_wFoZxzvIBIc7L1TEvPY5I9i3QxvA 2021-10-07 21:25:34,650:INFO:certbot._internal.auth_handler:Performing the following challenges: 2021-10-07 21:25:34,650:INFO:certbot._internal.auth_handler:http-01 challenge for calibre.moralanimal.net 2021-10-07 21:25:34,651:INFO:certbot._internal.plugins.webroot:Using the webroot path /data/letsencrypt-acme-challenge for all unmatched domains. 2021-10-07 21:25:34,651:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /data/letsencrypt-acme-challenge/.well-known/acme-challenge 2021-10-07 21:25:34,652:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /data/letsencrypt-acme-challenge/.well-known/acme-challenge/NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8 2021-10-07 21:25:34,653:DEBUG:acme.client:JWS payload: b'{}' 2021-10-07 21:25:34,655:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE2Mjk2NTcwIiwgIm5vbmNlIjogIjAwMDEtaFRMV3Q1TFZZZWxvSl93Rm9aeHp2SUJJYzdMMVRFdlBZNUk5aTNReHZBIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8zNzkzNzg1OTE3MC8zQ2RRVVEifQ", "signature": "MjXWtt1C0a0ZwbhQ5xnnsMFiEkB4oglEfu2HS-PIRAihvTZ7ZmV-jrDCigOfL1LZlQiPDNzb43_z-zrwHjPvS_Z9ffq7Qhf_kWGITV9A2T1f2-vHKUrsMmnQH-r7A_yW590DfUOPKTbaI4u1gutj78BF3e0QCfggpuPakxFfwhbqwkXe1McShdWGLIoDy4owb6EbFXZdy4njH4KMZRv8HrdWEtD9cH_XCiV-V4h5RMRvIdeclMgHgtMQKdl1-zBjaL95ZR1D5XJIru4K9dEkMtIADPTBzwNZJiTqqgOQlOD6fgBpEIZ-Id0iMj1xLxPIv1amkRhAbV4dv6IERyp49w", "payload": "e30" } 2021-10-07 21:25:34,734:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/37937859170/3CdQUQ HTTP/1.1" 200 186 2021-10-07 21:25:34,734:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:21 GMT Content-Type: application/json Content-Length: 186 Connection: keep-alive Boulder-Requester: 116296570 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ Replay-Nonce: 0001tT4eO_UDUxJsXM1QLtdvFs-yVpkbpOOj4NhoT4EX5rc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" } 2021-10-07 21:25:34,735:DEBUG:acme.client:Storing nonce: 0001tT4eO_UDUxJsXM1QLtdvFs-yVpkbpOOj4NhoT4EX5rc 2021-10-07 21:25:34,735:INFO:certbot._internal.auth_handler:Waiting for verification... 2021-10-07 21:25:35,736:DEBUG:acme.client:JWS payload: b'' 2021-10-07 21:25:35,740:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/37937859170: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE2Mjk2NTcwIiwgIm5vbmNlIjogIjAwMDF0VDRlT19VRFV4SnNYTTFRTHRkdkZzLXlWcGticE9PajROaG9UNEVYNXJjIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8zNzkzNzg1OTE3MCJ9", "signature": "QJojzFTJtFhgdmNm-Ss_AAvMWBbLUj8WAXsl5paSZwMR9U-Pe0-3er9oe1kKKsMhE8pkuqcWB3dyO-ssVQW_dKiXSltuaeZu419wBSa9hx1hjKUk11zYh1aWJwxv0CsUSI2Fsez6o9SLPX_lamIMBNvBGgeQ8lv-9RC8kAgpxVGESpSkAuxJ9zC0DkmG9Y3llQINhCEH0iuTekLD4E5H8n2p9hbBpnHrP5_5Lose6Bs7Lm0ESMCy8DAx8RqOEpoMTFVCzcZLgz31b_4jTnJEbiupci3CBq-A_pSPv0ZiAQEkYiqw01rv6Q49H4ozpsI_gcIXmfnyVsN30tUV5hO1Ug", "payload": "" } 2021-10-07 21:25:36,091:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/37937859170 HTTP/1.1" 200 804 2021-10-07 21:25:36,093:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:22 GMT Content-Type: application/json Content-Length: 804 Connection: keep-alive Boulder-Requester: 116296570 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 0002bs1ipvYcHqELz6xd7927GII7hghNoaPSTRA2Wtj4u6Q X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "calibre.moralanimal.net" }, "status": "pending", "expires": "2021-10-14T21:24:21Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZaQP7w", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZWibeg", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" } ] } 2021-10-07 21:25:36,093:DEBUG:acme.client:Storing nonce: 0002bs1ipvYcHqELz6xd7927GII7hghNoaPSTRA2Wtj4u6Q 2021-10-07 21:25:39,097:DEBUG:acme.client:JWS payload: b'' 2021-10-07 21:25:39,100:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/37937859170: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE2Mjk2NTcwIiwgIm5vbmNlIjogIjAwMDJiczFpcHZZY0hxRUx6NnhkNzkyN0dJSTdoZ2hOb2FQU1RSQTJXdGo0dTZRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8zNzkzNzg1OTE3MCJ9", "signature": "sYFc9Wq-JCIrA8AvcMCG8Iege_-4sWyU0784Qxy2ayWEUZIm7OPHswsr3rNfvLrc_9mFtl5GcZCK3leVF44_-JBvDC1uMqoQVmNO9PPHuK2ircuyjAVQxeaDSUTiMyHS96G_z1t-BnjwNBui9oAqHCUlWbIYm1i8JeZffhyr-qh6X_fbs_iazWvEsKTs_e8SsHPX7ITgVH492aAjj04B3D2_tCntpJgIN9fCv_2XkPPYqQbWTf3CW4KF4UFqWmRXyFhTvIdlJDjGau6Q7QEAw5Yls6YHn-j6YHI_8-lMtM8eBZSxB2woEvilmK2Gvzd6AsoyR4AX0ztN1bzZnRFYlA", "payload": "" } 2021-10-07 21:25:39,172:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/37937859170 HTTP/1.1" 200 804 2021-10-07 21:25:39,173:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:25 GMT Content-Type: application/json Content-Length: 804 Connection: keep-alive Boulder-Requester: 116296570 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 0001V3aK4spu1aMo5XPBNVmFcXeq1i2Pl8Nm3_2itsuYkok X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "calibre.moralanimal.net" }, "status": "pending", "expires": "2021-10-14T21:24:21Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZaQP7w", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZWibeg", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" } ] } 2021-10-07 21:25:39,174:DEBUG:acme.client:Storing nonce: 0001V3aK4spu1aMo5XPBNVmFcXeq1i2Pl8Nm3_2itsuYkok 2021-10-07 21:25:42,177:DEBUG:acme.client:JWS payload: b'' 2021-10-07 21:25:42,181:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/37937859170: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE2Mjk2NTcwIiwgIm5vbmNlIjogIjAwMDFWM2FLNHNwdTFhTW81WFBCTlZtRmNYZXExaTJQbDhObTNfMml0c3VZa29rIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8zNzkzNzg1OTE3MCJ9", "signature": "S88XvUvs9nspYh-NXhpSTwyWlrONT0VH7wSnW8jw86DyXFoxuyXbwQhtVtamwUXpGpZTNM3d4W8Gk_3W7FggrUhXLaCcdkSQ26aHwehi7Yjvdats6A4i9BDraqwmNrdxp3IGXv0VfcyPrV8msW5k7mbi24YL9YYoEkLuMk3d2BRwnJyOlmaAhgJqFmemuTUsxNy5uhOGQ9H5LMChNkP09h_taDofzh51hPS0NNphPJtOy-N0a0L1fp1anae4dzplCbk9C2ZaaYnKXpJ_WOlXddB4imQHPrUseVV_1V6AbOZQbKH2bKAu4N9pq-egqR_d6VgsxW0RgMjusi-pHTNBog", "payload": "" } 2021-10-07 21:25:42,254:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/37937859170 HTTP/1.1" 200 804 2021-10-07 21:25:42,255:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:28 GMT Content-Type: application/json Content-Length: 804 Connection: keep-alive Boulder-Requester: 116296570 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 0001DCKsGu4y5KOvrdD2p_9u0t_aaeEinjUKKjakBufgVkg X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "calibre.moralanimal.net" }, "status": "pending", "expires": "2021-10-14T21:24:21Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "dns-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZaQP7w", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/ZWibeg", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8" } ] } 2021-10-07 21:25:42,256:DEBUG:acme.client:Storing nonce: 0001DCKsGu4y5KOvrdD2p_9u0t_aaeEinjUKKjakBufgVkg 2021-10-07 21:25:45,260:DEBUG:acme.client:JWS payload: b'' 2021-10-07 21:25:45,264:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/37937859170: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE2Mjk2NTcwIiwgIm5vbmNlIjogIjAwMDFEQ0tzR3U0eTVLT3ZyZEQycF85dTB0X2FhZUVpbmpVS0tqYWtCdWZnVmtnIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8zNzkzNzg1OTE3MCJ9", "signature": "mgFl73SwkmeZpr9yNP3UtptRdHNrVVj27OB4uF8Xfso9AIp1U3waT-PyfRxV7Ks4tB4dwkOw_hWJeHdacWLN1c2qCswDsaEkFJ4kF4D9cGl-7vFkyof2xsUTIKTS2GagNk43ubi_L8D4fz6eL6gQDk6uG4r3efjEMEDCr5TOFAt8iWO3mQlTzqh93Fnt_z91R0mX0nVVIkTjmzo43bBp_PufKTMjp4-wG1QpfpeTY43_kje6jhQBXXEHCPMLQXawlbPVGiJMnPJhAWWcNJ4DmUOds3o5tKC0d3EAePVbf6hWt81wK2druiDnbb71TMAGitVb5Ccj41uXXBLgexeIUw", "payload": "" } 2021-10-07 21:25:45,340:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/37937859170 HTTP/1.1" 200 1072 2021-10-07 21:25:45,342:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Thu, 07 Oct 2021 21:24:31 GMT Content-Type: application/json Content-Length: 1072 Connection: keep-alive Boulder-Requester: 116296570 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: 00025J2sdUmY4h6HOIn4bMOH4Ne1cF7bfZj2_A9YvYerK4w X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "calibre.moralanimal.net" }, "status": "invalid", "expires": "2021-10-14T21:24:21Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "Fetching http://calibre.moralanimal.net/.well-known/acme-challenge/NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8: Timeout during connect (likely firewall problem)", "status": 400 }, "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/37937859170/3CdQUQ", "token": "NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8", "validationRecord": [ { "url": "http://calibre.moralanimal.net/.well-known/acme-challenge/NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8", "hostname": "calibre.moralanimal.net", "port": "80", "addressesResolved": [ "64.22.31.253" ], "addressUsed": "64.22.31.253" } ], "validated": "2021-10-07T21:24:21Z" } ] } 2021-10-07 21:25:45,342:DEBUG:acme.client:Storing nonce: 00025J2sdUmY4h6HOIn4bMOH4Ne1cF7bfZj2_A9YvYerK4w 2021-10-07 21:25:45,343:INFO:certbot._internal.auth_handler:Challenge failed for domain calibre.moralanimal.net 2021-10-07 21:25:45,343:INFO:certbot._internal.auth_handler:http-01 challenge for calibre.moralanimal.net 2021-10-07 21:25:45,344:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: calibre.moralanimal.net Type: connection Detail: Fetching http://calibre.moralanimal.net/.well-known/acme-challenge/NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8: Timeout during connect (likely firewall problem) Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2021-10-07 21:25:45,345:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations self._poll_authorizations(authzrs, max_retries, best_effort) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2021-10-07 21:25:45,345:DEBUG:certbot._internal.error_handler:Calling registered functions 2021-10-07 21:25:45,345:INFO:certbot._internal.auth_handler:Cleaning up challenges 2021-10-07 21:25:45,345:DEBUG:certbot._internal.plugins.webroot:Removing /data/letsencrypt-acme-challenge/.well-known/acme-challenge/NY_Etu7F0hK-WqICHNncBjZYv6o_CGkazN6Y3UCX1x8 2021-10-07 21:25:45,346:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2021-10-07 21:25:45,347:ERROR:certbot._internal.renewal:Failed to renew certificate npm-42 with error: Some challenges have failed. 2021-10-07 21:25:45,349:DEBUG:certbot._internal.renewal:Traceback was: Traceback (most recent call last): File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/renewal.py", line 475, in handle_renewal_request main.renew_cert(lineage_config, plugins, renewal_candidate) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1384, in renew_cert renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 122, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/renewal.py", line 335, in renew_cert new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 384, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 434, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations self._poll_authorizations(authzrs, max_retries, best_effort) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2021-10-07 21:25:45,350:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2021-10-07 21:25:45,350:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed: 2021-10-07 21:25:45,350:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/npm-42/fullchain.pem (failure) 2021-10-07 21:25:45,351:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 2021-10-07 21:25:45,351:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/opt/certbot/bin/certbot", line 8, in sys.exit(main()) File "/opt/certbot/lib/python3.7/site-packages/certbot/main.py", line 15, in main return internal_main.main(cli_args) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1572, in main return config.func(config, plugins) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1458, in renew renewal.handle_renewal_request(config) File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/renewal.py", line 501, in handle_renewal_request len(renew_failures), len(parse_failures))) certbot.errors.Error: 1 renew failure(s), 0 parse failure(s) 2021-10-07 21:25:45,352:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s)