2017-12-23 21:53:36,148:DEBUG:certbot.main:certbot version: 0.14.2 2017-12-23 21:53:36,149:DEBUG:certbot.main:Arguments: ['--nginx', '-d', 'cienciadelgaza.com', '-d', 'www.cienciadelgaza.com'] 2017-12-23 21:53:36,149:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2017-12-23 21:53:36,164:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx 2017-12-23 21:53:36,164:DEBUG:certbot.cli:Default Detector is Namespace(account=, agree_dev_preview=None, allow_subset_of_names=, apache=, authenticator='nginx', break_my_certs=, cert_path=, certname=, chain_path=, checkpoints=, config_dir=, config_file=None, configurator=, csr=, debug=, debug_challenges=, dialog=None, domains='www.cienciadelgaza.com', dry_run=, duplicate=, eff_email=, email=, expand=, force_interactive=, fullchain_path=, func=, hsts=, http01_port=, ifaces=, init=, installer='nginx', key_path=, logs_dir=, manual=, manual_auth_hook=, manual_cleanup_hook=, manual_public_ip_logging_ok=, must_staple=, nginx=True, nginx_ctl=, nginx_server_root=, no_bootstrap=, no_self_upgrade=, no_verify_ssl=, noninteractive_mode=, num=, os_packages_only=, post_hook=, pre_hook=, pref_challs=, prepare=, quiet=, reason=, redirect=, register_unsafely_without_email=, reinstall=, renew_by_default=, renew_hook=, renew_with_new_domains=, rsa_key_size=, server=, staging=, standalone=, standalone_supported_challenges=, staple=, strict_permissions=, text_mode=, tls_sni_01_port=, tos=, uir=, update_registration=, user_agent=, validate_hooks=, verb='run', verbose_count=, webroot=, webroot_map=, webroot_path=, work_dir=) 2017-12-23 21:53:36,184:DEBUG:certbot.log:Root logging level set at 20 2017-12-23 21:53:36,184:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log 2017-12-23 21:53:36,185:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx 2017-12-23 21:53:37,046:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx Description: Nginx Web Server plugin - Alpha Interfaces: IAuthenticator, IInstaller, IPlugin Entry point: nginx = certbot_nginx.configurator:NginxConfigurator Initialized: Prep: True 2017-12-23 21:53:37,047:DEBUG:certbot.plugins.selection:Selected authenticator and installer 2017-12-23 21:53:37,052:DEBUG:certbot.main:Picked account: )>)), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/18408123', new_authzr_uri=u'https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), 925e9d789f5ac62de679cbc3e4bf0d20, Meta(creation_host=u'london.t1ip.com', creation_dt=datetime.datetime(2017, 7, 5, 19, 14, 43, tzinfo=)))> 2017-12-23 21:53:37,053:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory. 2017-12-23 21:53:37,059:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org 2017-12-23 21:53:37,288:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 562 2017-12-23 21:53:37,288:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 562 Replay-Nonce: ngp-6E7uVDrRzOSpULS14Ziqq1XqFVcJs-HZHeJ0QtA X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Sat, 23 Dec 2017 21:53:37 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:37 GMT Connection: keep-alive { "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change", "meta": { "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf" }, "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz", "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert", "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg", "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert", "s-kh5KICgLo": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417" } 2017-12-23 21:53:37,300:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2017-10-03 18:18:00 UTC. 2017-12-23 21:53:37,300:INFO:certbot.renewal:Cert is due for renewal, auto-renewing... 2017-12-23 21:53:37,301:INFO:certbot.main:Renewing an existing certificate 2017-12-23 21:53:37,301:DEBUG:acme.client:Requesting fresh nonce 2017-12-23 21:53:37,301:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz. 2017-12-23 21:53:37,479:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0 2017-12-23 21:53:37,480:DEBUG:acme.client:Received response: HTTP 405 Server: nginx Content-Type: application/problem+json Content-Length: 91 Allow: POST Replay-Nonce: 4xLxuYXRsjIEXS4wMANryyUxONMR4qgrKvbgK56Fcqc Expires: Sat, 23 Dec 2017 21:53:37 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:37 GMT Connection: keep-alive 2017-12-23 21:53:37,480:DEBUG:acme.client:Storing nonce: 4xLxuYXRsjIEXS4wMANryyUxONMR4qgrKvbgK56Fcqc 2017-12-23 21:53:37,481:DEBUG:acme.client:JWS payload: { "identifier": { "type": "dns", "value": "cienciadelgaza.com" }, "resource": "new-authz" } 2017-12-23 21:53:37,484:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz: { "header": { "alg": "RS256", "jwk": { "e": "AQAB", "kty": "RSA", "n": "zpD0aw84CnyJ0ejjKD71nvoF16MPhyH0GYeS4-7THsL8nDV2VagXPQMN_Xk3h7_RhdnFDnhXFS22s3Xrpuw5RMZP7vrJk2TvDdKgajJXbLDggdqtmMLDugLb58tg5G5nbl-NLU7l2lwX6kekXqteTakyWrj9wQrjHe4IG6kiOIxA4GaL1zTQlJeljhXACozEekha9jBEW-aWc8hsaGRGGajo-IkWkwFcFOfwDu_4oEM088ZPjB2YNZQ_4RGo9P9he2rwNZEIm9puqoZLnjXBgfX13EzvQrSZEWYZTymKPKpFgCZ7Utak2QgVVObUmuFAkWWd14xuVqMi_AW3qZc9SQ" } }, "protected": "eyJub25jZSI6ICI0eEx4dVlYUnNqSUVYUzR3TUFOcnl5VXhPTk1SNHFnckt2YmdLNTZGY3FjIn0", "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAiY2llbmNpYWRlbGdhemEuY29tIgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0", "signature": "V6PAE-iuQzpfcd8jrJzv_VkmaMeIz0HUYT3tLZklBIAtVpzv3abCMsUzLu3GvgK_V2uOycMBNb4d1QHK0sVdAYxUmDrd_XPZVbROzcIXCqJ2JFOcKe0gd5XZimRGoiHsa_LvsOdFt5v8yGOSbYPBcli_Yq2BmjZ4DUkil3m_RdzReBvd59I6YIYbecQ2RsHSyxm_YRmmHDzhw3wLsVUI0vl6ixyYeLtkIrt0zX5xHWJ4l0G2w2leNTDevEATd0rvMznrsqbg-ITgIDKMZ3YwlrT4ufLwRCr0V65MDqwfWT1DO35OcnJmq5w8veJY_iq_2hojOVkxpnnq-NSoZBWJ3g" } 2017-12-23 21:53:38,433:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1384 2017-12-23 21:53:38,434:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Content-Type: application/json Content-Length: 1384 Boulder-Requester: 18408123 Link: ;rel="next" Location: https://acme-v01.api.letsencrypt.org/acme/authz/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc Replay-Nonce: HeJwMcsoqlPWXiv_JOfvy-X7L4ooT7xmmp1SYtIlL1A X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Sat, 23 Dec 2017 21:53:38 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:38 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "cienciadelgaza.com" }, "status": "valid", "expires": "2017-12-29T23:56:25Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857299", "token": "H68VaMZrCO9uoa2Z44u1w2Hrqdh2u0xjBMmX9QAjHnI" }, { "type": "tls-sni-01", "status": "valid", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857300", "token": "Jrhe4TBQ6LUzdzcqgJla_OiL8fHzO-oShXcO_ComZOo", "keyAuthorization": "Jrhe4TBQ6LUzdzcqgJla_OiL8fHzO-oShXcO_ComZOo.V_mhHGpRTgdPXd7H0yj_clAVnvd3mgK4yIK7JKMRrJY", "validationRecord": [ { "hostname": "cienciadelgaza.com", "port": "443", "addressesResolved": [ "185.185.40.134" ], "addressUsed": "185.185.40.134", "addressesTried": [] } ] }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857301", "token": "bUDSEUB3cwCd7k0j2jQX6eT3_QFIMyTSo5HZ58dLU9k" } ], "combinations": [ [ 2 ], [ 0 ], [ 1 ] ] } 2017-12-23 21:53:38,434:DEBUG:acme.client:Storing nonce: HeJwMcsoqlPWXiv_JOfvy-X7L4ooT7xmmp1SYtIlL1A 2017-12-23 21:53:38,438:DEBUG:acme.client:JWS payload: { "identifier": { "type": "dns", "value": "www.cienciadelgaza.com" }, "resource": "new-authz" } 2017-12-23 21:53:38,444:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz: { "header": { "alg": "RS256", "jwk": { "e": "AQAB", "kty": "RSA", "n": "zpD0aw84CnyJ0ejjKD71nvoF16MPhyH0GYeS4-7THsL8nDV2VagXPQMN_Xk3h7_RhdnFDnhXFS22s3Xrpuw5RMZP7vrJk2TvDdKgajJXbLDggdqtmMLDugLb58tg5G5nbl-NLU7l2lwX6kekXqteTakyWrj9wQrjHe4IG6kiOIxA4GaL1zTQlJeljhXACozEekha9jBEW-aWc8hsaGRGGajo-IkWkwFcFOfwDu_4oEM088ZPjB2YNZQ_4RGo9P9he2rwNZEIm9puqoZLnjXBgfX13EzvQrSZEWYZTymKPKpFgCZ7Utak2QgVVObUmuFAkWWd14xuVqMi_AW3qZc9SQ" } }, "protected": "eyJub25jZSI6ICJIZUp3TWNzb3FsUFdYaXZfSk9mdnktWDdMNG9vVDd4bW1wMVNZdElsTDFBIn0", "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAid3d3LmNpZW5jaWFkZWxnYXphLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9", "signature": "BqTVdUqkFPWJNtf47ineH9xyJTH9bop780c8ytvB4xUTG-WyggKkFNiVud91K-6aHU2DLlEnLe9pdwoH1mF5XdMI_2xK2QjXxny823msP2LPWmP-MP434kw9s-_0tLvNx5jNUB0M1giKfp9UycxOT63RSP8-S0Iywpyr5YneuueSqRriBW4Bk8FctjS8u2letFdndsQbR64VARC4wYE4iaG_7Nn9iaRiS0Jr-yc4hqnx4PX068uomZaZi7aN-_0_j_ZE5qj1it9140hAb_1r7nBkdJ9-HO6KixslSS5Zt4C8sbIOTzRgaIR9w1wiGRNMyaapCuxeUxNQOkp3zvWAvA" } 2017-12-23 21:53:40,163:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1010 2017-12-23 21:53:40,164:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Content-Type: application/json Content-Length: 1010 Boulder-Requester: 18408123 Link: ;rel="next" Location: https://acme-v01.api.letsencrypt.org/acme/authz/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I Replay-Nonce: TJdHGxgyHL3Q6DRBdBxmk353OKEd3Q5pZDOvk-coksQ X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Sat, 23 Dec 2017 21:53:40 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:40 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "www.cienciadelgaza.com" }, "status": "pending", "expires": "2017-12-30T21:53:39.273120086Z", "challenges": [ { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951875", "token": "OZHhGZcJgMFit7QfFu5-moZOhcHlo1diipdlTfcxf40" }, { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951904", "token": "Gc7htdYDqGBzbd_03Jk8MPTBW1nlew8vBv9CkQ8GBG0" }, { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951942", "token": "Z-zEMr59vwejzBHwiTmOU7jhvq4CjJO5O6K3noit5KI" } ], "combinations": [ [ 1 ], [ 2 ], [ 0 ] ] } 2017-12-23 21:53:40,164:DEBUG:acme.client:Storing nonce: TJdHGxgyHL3Q6DRBdBxmk353OKEd3Q5pZDOvk-coksQ 2017-12-23 21:53:40,165:INFO:certbot.auth_handler:Performing the following challenges: 2017-12-23 21:53:40,165:INFO:certbot.auth_handler:tls-sni-01 challenge for cienciadelgaza.com 2017-12-23 21:53:40,165:INFO:certbot.auth_handler:tls-sni-01 challenge for www.cienciadelgaza.com 2017-12-23 21:53:40,622:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/epicgifs 2017-12-23 21:53:40,622:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/yourls 2017-12-23 21:53:40,622:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/woocomemerce 2017-12-23 21:53:40,622:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/ttrrs 2017-12-23 21:53:40,622:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/logofonts 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/phpenable 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/publicforces 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/owncloud 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/bad_referer 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/goodtextfonts 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/freelancer 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/portableapps 2017-12-23 21:53:40,623:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/emergency 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/elotrolado 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/ads 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/main 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/selfoss 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/cienciadelgaza 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/public 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/success 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/cienciasocializa 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types 2017-12-23 21:53:40,624:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/friki 2017-12-23 21:53:40,625:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/gbirdy 2017-12-23 21:53:40,625:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/default 2017-12-23 21:53:40,626:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf: user www-data; worker_processes 5; error_log /var/log/nginx/error.log; pid /var/run/nginx.pid; events { worker_connections 1024; # multi_accept on; } http { include /etc/letsencrypt/le_tls_sni_01_cert_challenge.conf; server_names_hash_bucket_size 128; log_format main '$remote_addr - $remote_user [$time_local] ' '"$request_method $scheme://$host$request_uri $server_protocol" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" $request_time'; include /etc/nginx/mime.types; include bad_referer; access_log /var/log/nginx/access.log main; error_log /var/log/nginx/error.log; access_log /var/log/nginx/$host.access.log main; sendfile on; #tcp_nopush on; fastcgi_read_timeout 600s; #keepalive_timeout 0; keepalive_timeout 65; tcp_nodelay on; gzip on; gzip_disable "MSIE [1-6]\.(?!.*SV1)"; client_max_body_size 100M; # Default server server { # ssl_certificate /etc/nginx/ssl/nginx.crt; # ssl_certificate_key /etc/nginx/ssl/nginx.key; ssl_certificate /etc/letsencrypt/live/cienciadelgaza.com/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/cienciadelgaza.com/privkey.pem; # managed by Certbot listen 80 default; ## listen for ipv4; this line is default and implied listen 443 ssl default_server; ## listen for ipv6 return 404; } include /etc/nginx/conf.d/*.conf; include /etc/nginx/sites-enabled/*; fastcgi_buffers 8 16k; fastcgi_buffer_size 32k; } 2017-12-23 21:53:41,661:INFO:certbot.auth_handler:Waiting for verification... 2017-12-23 21:53:41,661:DEBUG:acme.client:JWS payload: { "keyAuthorization": "Jrhe4TBQ6LUzdzcqgJla_OiL8fHzO-oShXcO_ComZOo.V_mhHGpRTgdPXd7H0yj_clAVnvd3mgK4yIK7JKMRrJY", "type": "tls-sni-01", "resource": "challenge" } 2017-12-23 21:53:41,665:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857300: { "header": { "alg": "RS256", "jwk": { "e": "AQAB", "kty": "RSA", "n": "zpD0aw84CnyJ0ejjKD71nvoF16MPhyH0GYeS4-7THsL8nDV2VagXPQMN_Xk3h7_RhdnFDnhXFS22s3Xrpuw5RMZP7vrJk2TvDdKgajJXbLDggdqtmMLDugLb58tg5G5nbl-NLU7l2lwX6kekXqteTakyWrj9wQrjHe4IG6kiOIxA4GaL1zTQlJeljhXACozEekha9jBEW-aWc8hsaGRGGajo-IkWkwFcFOfwDu_4oEM088ZPjB2YNZQ_4RGo9P9he2rwNZEIm9puqoZLnjXBgfX13EzvQrSZEWYZTymKPKpFgCZ7Utak2QgVVObUmuFAkWWd14xuVqMi_AW3qZc9SQ" } }, "protected": "eyJub25jZSI6ICJUSmRIR3hneUhMM1E2RFJCZEJ4bWszNTNPS0VkM1E1cFpET3ZrLWNva3NRIn0", "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIkpyaGU0VEJRNkxVemR6Y3FnSmxhX09pTDhmSHpPLW9TaFhjT19Db21aT28uVl9taEhHcFJUZ2RQWGQ3SDB5al9jbEFWbnZkM21nSzR5SUs3SktNUnJKWSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", "signature": "zhUlwQjMpTLQw2ZekN7FP-PtMDh7on1pFk1IjREZ6V64IdzVtrFoaBlUSMkngkn3_crOQj04rD0LN1c-CpbaparL305UcB0buzaihUw726GjZhpWEfRVOjVVl8bPUlg_C7qAXBtHrRJ0ZireoVluobdJMhfDXDpwZ4WCO36Hf85O_EDr1it33K1wJLErPPqCHpnapGZ6vY3O56V2BMXn8NSNv4ZlnW6IRdMIMsoRVc1MUeo7jQp_1qFZE3vwRUNzOxX-oJPjAdHElHvmHltfqQhWdGhrgnTByIH5hzvwphjzLJ5bRDPjzrV364nUfYuFO24uMWTLn3bownLe3BCX7Q" } 2017-12-23 21:53:42,028:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857300 HTTP/1.1" 202 568 2017-12-23 21:53:42,029:DEBUG:acme.client:Received response: HTTP 202 Server: nginx Content-Type: application/json Content-Length: 568 Boulder-Requester: 18408123 Link: ;rel="up" Location: https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857300 Replay-Nonce: EnkfzKB4SFziJGFmbbwlwbW7MkddJdR4oXimWgSXTjw Expires: Sat, 23 Dec 2017 21:53:42 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:42 GMT Connection: keep-alive { "type": "tls-sni-01", "status": "valid", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857300", "token": "Jrhe4TBQ6LUzdzcqgJla_OiL8fHzO-oShXcO_ComZOo", "keyAuthorization": "Jrhe4TBQ6LUzdzcqgJla_OiL8fHzO-oShXcO_ComZOo.V_mhHGpRTgdPXd7H0yj_clAVnvd3mgK4yIK7JKMRrJY", "validationRecord": [ { "hostname": "cienciadelgaza.com", "port": "443", "addressesResolved": [ "185.185.40.134" ], "addressUsed": "185.185.40.134", "addressesTried": [] } ] } 2017-12-23 21:53:42,029:DEBUG:acme.client:Storing nonce: EnkfzKB4SFziJGFmbbwlwbW7MkddJdR4oXimWgSXTjw 2017-12-23 21:53:42,029:DEBUG:acme.client:JWS payload: { "keyAuthorization": "Z-zEMr59vwejzBHwiTmOU7jhvq4CjJO5O6K3noit5KI.V_mhHGpRTgdPXd7H0yj_clAVnvd3mgK4yIK7JKMRrJY", "type": "tls-sni-01", "resource": "challenge" } 2017-12-23 21:53:42,034:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951942: { "header": { "alg": "RS256", "jwk": { "e": "AQAB", "kty": "RSA", "n": "zpD0aw84CnyJ0ejjKD71nvoF16MPhyH0GYeS4-7THsL8nDV2VagXPQMN_Xk3h7_RhdnFDnhXFS22s3Xrpuw5RMZP7vrJk2TvDdKgajJXbLDggdqtmMLDugLb58tg5G5nbl-NLU7l2lwX6kekXqteTakyWrj9wQrjHe4IG6kiOIxA4GaL1zTQlJeljhXACozEekha9jBEW-aWc8hsaGRGGajo-IkWkwFcFOfwDu_4oEM088ZPjB2YNZQ_4RGo9P9he2rwNZEIm9puqoZLnjXBgfX13EzvQrSZEWYZTymKPKpFgCZ7Utak2QgVVObUmuFAkWWd14xuVqMi_AW3qZc9SQ" } }, "protected": "eyJub25jZSI6ICJFbmtmektCNFNGemlKR0ZtYmJ3bHdiVzdNa2RkSmRSNG9YaW1XZ1NYVGp3In0", "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogIlotekVNcjU5dndlanpCSHdpVG1PVTdqaHZxNENqSk81TzZLM25vaXQ1S0kuVl9taEhHcFJUZ2RQWGQ3SDB5al9jbEFWbnZkM21nSzR5SUs3SktNUnJKWSIsIAogICJ0eXBlIjogInRscy1zbmktMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", "signature": "SKBR_HfEhuAcMcazr3ZyyuzoS6N1jN0qfiK_KySFhN4xm_uRsp_NgxK-buIf-FigqxqTi2aDJQlKV0oFDT0pYir-fzfmFIudulm_0XU3s2ZFnWlWqeGYco4lE_IwvNiPiscVdqbmM035MH9xATCr9-fM3xfFtE6yNznApJ8fGUJGXXednwxLJ2bv15f6_KMnvaq_jXSlPPXt5LA2g4l9wM-a511LO0hEQ09Knc4j36Ywoyg_jRu8-o4eu2e21dbvZgs9BwHAYATl6RJ_vkjyxbx7eTEUDybKCOXoDQlE4CaHddlFhVxTFkHno4Wd5SSLwBWU_pFaaLThs1Exsd63Dw" } 2017-12-23 21:53:43,070:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951942 HTTP/1.1" 202 339 2017-12-23 21:53:43,071:DEBUG:acme.client:Received response: HTTP 202 Server: nginx Content-Type: application/json Content-Length: 339 Boulder-Requester: 18408123 Link: ;rel="up" Location: https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951942 Replay-Nonce: 0KBEk3Y3qsU5cLcA9Eh_hIOD4Gx_Qpwf23__PqtCvVQ Expires: Sat, 23 Dec 2017 21:53:43 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:43 GMT Connection: keep-alive { "type": "tls-sni-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951942", "token": "Z-zEMr59vwejzBHwiTmOU7jhvq4CjJO5O6K3noit5KI", "keyAuthorization": "Z-zEMr59vwejzBHwiTmOU7jhvq4CjJO5O6K3noit5KI.V_mhHGpRTgdPXd7H0yj_clAVnvd3mgK4yIK7JKMRrJY" } 2017-12-23 21:53:43,071:DEBUG:acme.client:Storing nonce: 0KBEk3Y3qsU5cLcA9Eh_hIOD4Gx_Qpwf23__PqtCvVQ 2017-12-23 21:53:46,074:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I. 2017-12-23 21:53:46,749:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I HTTP/1.1" 200 1787 2017-12-23 21:53:46,750:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1787 Link: ;rel="next" Replay-Nonce: cASp8I2chvo4jBWpO-SCR1YdDYKNCAs8bFUeGa6_CYc X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Sat, 23 Dec 2017 21:53:46 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:46 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "www.cienciadelgaza.com" }, "status": "invalid", "expires": "2017-12-30T21:53:39Z", "challenges": [ { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951875", "token": "OZHhGZcJgMFit7QfFu5-moZOhcHlo1diipdlTfcxf40" }, { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951904", "token": "Gc7htdYDqGBzbd_03Jk8MPTBW1nlew8vBv9CkQ8GBG0" }, { "type": "tls-sni-01", "status": "invalid", "error": { "type": "urn:acme:error:unauthorized", "detail": "Incorrect validation certificate for tls-sni-01 challenge. Requested f4ae04029f9e7fde28171a912073bd6b.6c8545d86d20ce09f8f2dda3d59db46b.acme.invalid from 185.185.40.134:443. Received 2 certificate(s), first certificate had names \"cienciadelgaza.com, www.cienciadelgaza.com\"", "status": 403 }, "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/f4ugXs9lU-tlEc6Ia4HVJbwXD6ZeK7l4IJMNgXLWK8I/2846951942", "token": "Z-zEMr59vwejzBHwiTmOU7jhvq4CjJO5O6K3noit5KI", "keyAuthorization": "Z-zEMr59vwejzBHwiTmOU7jhvq4CjJO5O6K3noit5KI.V_mhHGpRTgdPXd7H0yj_clAVnvd3mgK4yIK7JKMRrJY", "validationRecord": [ { "hostname": "www.cienciadelgaza.com", "port": "443", "addressesResolved": [ "185.185.40.134" ], "addressUsed": "185.185.40.134", "addressesTried": [] } ] } ], "combinations": [ [ 1 ], [ 2 ], [ 0 ] ] } 2017-12-23 21:53:46,750:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc. 2017-12-23 21:53:47,365:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc HTTP/1.1" 200 1384 2017-12-23 21:53:47,366:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Content-Type: application/json Content-Length: 1384 Link: ;rel="next" Replay-Nonce: VvSLVN-ErGJ4rVDqV7Gopo8j6eaotNH3UMV-YTh4zTk X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 Expires: Sat, 23 Dec 2017 21:53:47 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 23 Dec 2017 21:53:47 GMT Connection: keep-alive { "identifier": { "type": "dns", "value": "cienciadelgaza.com" }, "status": "valid", "expires": "2017-12-29T23:56:25Z", "challenges": [ { "type": "http-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857299", "token": "H68VaMZrCO9uoa2Z44u1w2Hrqdh2u0xjBMmX9QAjHnI" }, { "type": "tls-sni-01", "status": "valid", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857300", "token": "Jrhe4TBQ6LUzdzcqgJla_OiL8fHzO-oShXcO_ComZOo", "keyAuthorization": "Jrhe4TBQ6LUzdzcqgJla_OiL8fHzO-oShXcO_ComZOo.V_mhHGpRTgdPXd7H0yj_clAVnvd3mgK4yIK7JKMRrJY", "validationRecord": [ { "hostname": "cienciadelgaza.com", "port": "443", "addressesResolved": [ "185.185.40.134" ], "addressUsed": "185.185.40.134", "addressesTried": [] } ] }, { "type": "dns-01", "status": "pending", "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/w_JIEzq6NhYftEi5xYcKctEUycyYoUu0m6GMWOYVFmc/2599857301", "token": "bUDSEUB3cwCd7k0j2jQX6eT3_QFIMyTSo5HZ58dLU9k" } ], "combinations": [ [ 2 ], [ 0 ], [ 1 ] ] } 2017-12-23 21:53:47,366:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server: Domain: www.cienciadelgaza.com Type: unauthorized Detail: Incorrect validation certificate for tls-sni-01 challenge. Requested f4ae04029f9e7fde28171a912073bd6b.6c8545d86d20ce09f8f2dda3d59db46b.acme.invalid from 185.185.40.134:443. Received 2 certificate(s), first certificate had names "cienciadelgaza.com, www.cienciadelgaza.com" To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address. 2017-12-23 21:53:47,367:INFO:certbot.auth_handler:Cleaning up challenges 2017-12-23 21:53:49,020:DEBUG:certbot.log:Exiting abnormally: Traceback (most recent call last): File "/usr/bin/certbot", line 11, in load_entry_point('certbot==0.14.2', 'console_scripts', 'certbot')() File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 742, in main return config.func(config, plugins) File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 597, in run certname, lineage) File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 77, in _get_and_save_cert renewal.renew_cert(config, domains, le_client, lineage) File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 296, in renew_cert new_certr, new_chain, new_key, _ = le_client.obtain_certificate(domains) File "/usr/lib/python2.7/dist-packages/certbot/client.py", line 313, in obtain_certificate self.config.allow_subset_of_names) File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 81, in get_authorizations self._respond(resp, best_effort) File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 138, in _respond self._poll_challenges(chall_update, best_effort) File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 202, in _poll_challenges raise errors.FailedChallenges(all_failed_achalls) FailedChallenges: Failed authorization procedure. www.cienciadelgaza.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested f4ae04029f9e7fde28171a912073bd6b.6c8545d86d20ce09f8f2dda3d59db46b.acme.invalid from 185.185.40.134:443. Received 2 certificate(s), first certificate had names "cienciadelgaza.com, www.cienciadelgaza.com"