404 Not Found

Heray-Was-Here
Server : nginx/1.14.1
System : Linux hwsrv-1092325.hostwindsdns.com 4.18.0-553.5.1.el8.x86_64 #1 SMP Tue May 21 05:46:01 UTC 2024 x86_64
User : nginx ( 993)
PHP Version : 7.4.33
Disable Function : NONE
Directory : /var/log/letsencrypt/
Upload File :
Current File : /var/log/letsencrypt/letsencrypt.log.408
2025-11-29 01:03:17,870:DEBUG:certbot._internal.main:certbot version: 1.22.0
2025-11-29 01:03:17,914:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
2025-11-29 01:03:17,914:DEBUG:certbot._internal.main:Arguments: ['--noninteractive', '--no-random-sleep-on-renew']
2025-11-29 01:03:17,923:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2025-11-29 01:03:18,147:DEBUG:certbot._internal.log:Root logging level set at 30
2025-11-29 01:03:18,158:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/aranoinvestmentsgroup.com.conf
2025-11-29 01:03:18,267:DEBUG:certbot._internal.plugins.selection:Requested authenticator <certbot._internal.cli.cli_utils._Default object at 0x7f09ceb78518> and installer <certbot._internal.cli.cli_utils._Default object at 0x7f09ceb78518>
2025-11-29 01:03:18,361:INFO:certbot.ocsp:Cannot extract OCSP URI from /etc/letsencrypt/archive/aranoinvestmentsgroup.com/cert11.pem
2025-11-29 01:03:18,372:DEBUG:certbot._internal.display.obj:Notifying user: Certificate not yet due for renewal
2025-11-29 01:03:18,375:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-11-29 01:03:18,385:DEBUG:certbot._internal.plugins.selection:Selecting plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09ceb68780>
2025-11-29 01:03:18,387:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/aranotinsurance.com.conf
2025-11-29 01:03:18,443:INFO:certbot.ocsp:Cannot extract OCSP URI from /etc/letsencrypt/archive/aranotinsurance.com/cert12.pem
2025-11-29 01:03:18,444:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2025-12-15 01:11:48 UTC.
2025-11-29 01:03:18,445:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2025-11-29 01:03:18,445:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-11-29 01:03:19,339:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09d1ca8f60>
Prep: True
2025-11-29 01:03:19,340:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09d1ca8f60>
Prep: True
2025-11-29 01:03:19,341:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09d1ca8f60> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09d1ca8f60>
2025-11-29 01:03:19,341:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2025-11-29 01:03:19,369:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/1496881526', new_authzr_uri=None, terms_of_service=None), 6eef7b6e72a83da2cef2f162ab0fae14, Meta(creation_dt=datetime.datetime(2024, 1, 3, 5, 42, 22, tzinfo=<UTC>), creation_host='hwsrv-1092325.hostwindsdns.com', register_to_eff=None))>
2025-11-29 01:03:19,374:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2025-11-29 01:03:19,384:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2025-11-29 01:03:26,598:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 1063
2025-11-29 01:03:26,599:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:27 GMT
Content-Type: application/json
Content-Length: 1063
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "profiles": {
      "classic": "https://letsencrypt.org/docs/profiles#classic",
      "shortlived": "https://letsencrypt.org/docs/profiles#shortlived (not yet generally available)",
      "tlsclient": "https://letsencrypt.org/docs/profiles#tlsclient",
      "tlsserver": "https://letsencrypt.org/docs/profiles#tlsserver"
    },
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.6-August-18-2025.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/acme/renewal-info",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert",
  "z7_1I5plIg0": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417"
}
2025-11-29 01:03:26,601:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for aranotinsurance.com
2025-11-29 01:03:26,940:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/1865_key-certbot.pem
2025-11-29 01:03:27,013:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/1865_csr-certbot.pem
2025-11-29 01:03:27,014:DEBUG:acme.client:Requesting fresh nonce
2025-11-29 01:03:27,014:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2025-11-29 01:03:27,041:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2025-11-29 01:03:27,041:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:27 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: jkzIQkhdNL-CaTfmbQ8AG521x8BzHHXskJFCBEQNGpfMgP4xAvg
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2025-11-29 01:03:27,042:DEBUG:acme.client:Storing nonce: jkzIQkhdNL-CaTfmbQ8AG521x8BzHHXskJFCBEQNGpfMgP4xAvg
2025-11-29 01:03:27,042:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "aranotinsurance.com"\n    }\n  ]\n}'
2025-11-29 01:03:27,046:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJqa3pJUWtoZE5MLUNhVGZtYlE4QUc1MjF4OEJ6SEhYc2tKRkNCRVFOR3BmTWdQNHhBdmciLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  "signature": "envW0m6-5-euLoSzRl3RqykaUfxp9Bl7yYYOs4S_Fzh5nSRnHGRFU-hSScPqncnytG28D3iD2ltjP-e5aFY8padtQzEXMEPKQE-1RLcv840YLYpD4QJKz_I6lPdUtKWNDP0QybiPqMkW94I48Jwp2ZaCqI9u3nrioMb6V3X_zAKrhg1EXM30EuYXNVFa9HxJBCcMEEp_BovuXA4sBH46Qr3D3UbVZ8iqlLx1CNkQLpV_j0LJLNs_j9aUwjwk2DhWzPhPeYzwUSL00cxKDb5K1hf7iD1zM9GG8alfcVq1jdPWYBwBdntiU-jZKnTul0t2vAclLQuuBtSCx0IH9a3WLQ",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImFyYW5vdGluc3VyYW5jZS5jb20iCiAgICB9CiAgXQp9"
}
2025-11-29 01:03:27,195:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 353
2025-11-29 01:03:27,196:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Sat, 29 Nov 2025 01:03:28 GMT
Content-Type: application/json
Content-Length: 353
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/453558791396
Replay-Nonce: zahUfOdGL3bo_AA50nA_aU59NspF6dd81ygcz4mLhYzDiUEsu8U
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2025-12-06T01:03:27Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "aranotinsurance.com"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619894943146"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/453558791396"
}
2025-11-29 01:03:27,197:DEBUG:acme.client:Storing nonce: zahUfOdGL3bo_AA50nA_aU59NspF6dd81ygcz4mLhYzDiUEsu8U
2025-11-29 01:03:27,197:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:03:27,200:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619894943146:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJ6YWhVZk9kR0wzYm9fQUE1MG5BX2FVNTlOc3BGNmRkODF5Z2N6NG1MaFl6RGlVRXN1OFUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk0OTQzMTQ2In0",
  "signature": "AJF6lQUUPu_HN0RxYHuV8WhSPVBhTMYOd3O-ANpC90MV2w3n7uxB7bVxDO6Vb1kCKeP0UdFiGl0ZqeBAc4JN5-Cv0cujKxtEunVLP3dZVRJi_jrOsF8I3ZYZ3q3_MJ8X9_pS-2838_4N2LpcvYgOVW4_uLctTbzgZU9BceXnghlXfXxhwtO32DJ2U9f-NGbauB_MJRQ_Ym0LNwRMso7SE-o90WIbhqaBkAbnIsf2kBK7TNJhdEklwfexJoMZDIrz-s7D4dCLfc1nEn-IGpGgq0YfShTNRj924MTS55Xixh3AXkJbCChQjD8-BLRYl9Wp3UpsUg8uYPznIBNFoHcE0g",
  "payload": ""
}
2025-11-29 01:03:27,227:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619894943146 HTTP/1.1" 200 827
2025-11-29 01:03:27,228:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:28 GMT
Content-Type: application/json
Content-Length: 827
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: jkzIQkhd7_D84FSPcg7UsoTttMJ1008BFzpSP6JPYjAvgelICbE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "aranotinsurance.com"
  },
  "status": "pending",
  "expires": "2025-12-06T01:03:27Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/J_Vbxw",
      "status": "pending",
      "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw"
    },
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/zPhM7A",
      "status": "pending",
      "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/omrIFg",
      "status": "pending",
      "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw"
    }
  ]
}
2025-11-29 01:03:27,228:DEBUG:acme.client:Storing nonce: jkzIQkhd7_D84FSPcg7UsoTttMJ1008BFzpSP6JPYjAvgelICbE
2025-11-29 01:03:27,229:INFO:certbot._internal.auth_handler:Performing the following challenges:
2025-11-29 01:03:27,229:INFO:certbot._internal.auth_handler:http-01 challenge for aranotinsurance.com
2025-11-29 01:03:27,298:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2025-11-29 01:03:27,308:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php-fpm.conf
2025-11-29 01:03:27,308:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/frontlineconstructionga.com.conf
2025-11-29 01:03:27,309:DEBUG:certbot.reverter:Creating backup of /etc/nginx/default.d/php.conf
2025-11-29 01:03:27,309:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
2025-11-29 01:03:27,309:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranotinsurance.com.conf
2025-11-29 01:03:27,310:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranoinvestmentsgroup.com.conf
2025-11-29 01:03:27,310:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
2025-11-29 01:03:27,311:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
2025-11-29 01:03:27,311:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2025-11-29 01:03:27,311:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
2025-11-29 01:03:27,312:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2025-11-29 01:03:27,312:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
2025-11-29 01:03:27,313:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
2025-11-29 01:03:27,315:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
# For more information on configuration, see:
#   * Official English Documentation: http://nginx.org/en/docs/
#   * Official Russian Documentation: http://nginx.org/ru/docs/

user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;

# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;

events {
    worker_connections 1024;
}

http {
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile            on;
    tcp_nopush          on;
    tcp_nodelay         on;
    keepalive_timeout   65;
    types_hash_max_size 2048;

    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;

    # Load modular configuration files from the /etc/nginx/conf.d directory.
    # See http://nginx.org/en/docs/ngx_core_module.html#include
    # for more information.
    include /etc/nginx/conf.d/*.conf;

    server {
        listen       80 default_server;
        listen       [::]:80 default_server;
        server_name  _;
        root         /usr/share/nginx/html;

        # Load configuration files for the default server block.
        include /etc/nginx/default.d/*.conf;

        location / {
        }

        error_page 404 /404.html;
            location = /40x.html {
        }

        error_page 500 502 503 504 /50x.html;
            location = /50x.html {
        }
    }

# Settings for a TLS enabled server.
#
#    server {
#        listen       443 ssl http2 default_server;
#        listen       [::]:443 ssl http2 default_server;
#        server_name  _;
#        root         /usr/share/nginx/html;
#
#        ssl_certificate "/etc/pki/nginx/server.crt";
#        ssl_certificate_key "/etc/pki/nginx/private/server.key";
#        ssl_session_cache shared:SSL:1m;
#        ssl_session_timeout  10m;
#        ssl_ciphers PROFILE=SYSTEM;
#        ssl_prefer_server_ciphers on;
#
#        # Load configuration files for the default server block.
#        include /etc/nginx/default.d/*.conf;
#
#        location / {
#        }
#
#        error_page 404 /404.html;
#            location = /40x.html {
#        }
#
#        error_page 500 502 503 504 /50x.html;
#            location = /50x.html {
#        }
#    }

}


2025-11-29 01:03:27,317:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/conf.d/aranotinsurance.com.conf:
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


	server_name aranotinsurance.com;

        root /var/www/aranotinsurance.com/public_html;
        index index.php index.html index.htm index.nginx-debian.html;

	client_max_body_size 110M;
	client_header_buffer_size 1024k;
	large_client_header_buffers 16 1024k;
        
	location / {
                try_files $uri $uri/ /index.php$is_args$args;
        }

	error_page 404 /404.html;
	error_page 500 502 503 504 /50x.html;
	location = /50x.html {
		root /usr/share/nginx/html;
	}

	location ~ \.php$ {
		try_files $uri =404;
		fastcgi_pass unix:/var/run/php-fpm/www.sock;
		fastcgi_index index.php;
		fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
		include fastcgi_params;
		fastcgi_connect_timeout 300s;
		fastcgi_read_timeout 300s;
		fastcgi_send_timeout 300s;
	}

        location ~ /\.ht {
                deny all;
        }

	location = /favicon.ico { log_not_found off; access_log off; }
	location = /robots.txt { log_not_found off; access_log off; allow all; }
	location ~* \.(css|gif|ico|jpeg|jpg|js|png)$ {
        expires max;
        log_not_found off;
    }




    listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/aranotinsurance.com/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/aranotinsurance.com/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot


location = /.well-known/acme-challenge/rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw{default_type text/plain;return 200 rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


    if ($host = aranotinsurance.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


	server_name aranotinsurance.com;
    listen 80;
    return 404; # managed by Certbot


location = /.well-known/acme-challenge/rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw{default_type text/plain;return 200 rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}
2025-11-29 01:03:27,357:DEBUG:certbot_nginx._internal.configurator:nginx reload failed:
nginx: [error] invalid PID number "" in "/run/nginx.pid"

2025-11-29 01:03:28,391:DEBUG:acme.client:JWS payload:
b'{}'
2025-11-29 01:03:28,395:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/J_Vbxw:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJqa3pJUWtoZDdfRDg0RlNQY2c3VXNvVHR0TUoxMDA4QkZ6cFNQNkpQWWpBdmdlbElDYkUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzE0OTY4ODE1MjYvNjE5ODk0OTQzMTQ2L0pfVmJ4dyJ9",
  "signature": "E1ULgjqxJsqz58BQlwBegxocIsUCHjc25RovR8aVgTUg6fAPswpxmvnX4YaqA_RHu-yqW34eLIfJmghQWDnmNBR-_JEW5nCkgZm-gRkn7W0V9Gq8HgGVbZSKyKO5NVAmiCOqRyniW_pNl9iYt6I6zMWWs9rNyEVRm5iUG0S6qRRMZS84mlQT-C_S5vm3nxT4d8PcVPzc_LbmWfgpOSNKci_neJ3ZlygCoXYvMsV-JtNzKELHhJ6wSt87ylUR2BgFUzzrOe_Xh-fs_2JfZWF4YxyJqntVwzTS3_JCntycCNcQbAZQ_yDT117Fj-odndouCP011qWBRXsywPqOhF7LJQ",
  "payload": "e30"
}
2025-11-29 01:03:28,426:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall/1496881526/619894943146/J_Vbxw HTTP/1.1" 200 195
2025-11-29 01:03:28,427:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:29 GMT
Content-Type: application/json
Content-Length: 195
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619894943146>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/J_Vbxw
Replay-Nonce: zahUfOdGOARF3g2jtjdXa11FjepFzePCHJXrEmf165eb5BQva2U
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/J_Vbxw",
  "status": "pending",
  "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw"
}
2025-11-29 01:03:28,427:DEBUG:acme.client:Storing nonce: zahUfOdGOARF3g2jtjdXa11FjepFzePCHJXrEmf165eb5BQva2U
2025-11-29 01:03:28,428:INFO:certbot._internal.auth_handler:Waiting for verification...
2025-11-29 01:03:29,440:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:03:29,443:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619894943146:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJ6YWhVZk9kR09BUkYzZzJqdGpkWGExMUZqZXBGemVQQ0hKWHJFbWYxNjVlYjVCUXZhMlUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk0OTQzMTQ2In0",
  "signature": "OJQX1gQrBnCyNfTeT20wZRp8Lplna2kwNZTaSUoCHiMjxVNAvdn-x-0G4lP6kiNXE7I6IuvsH0hCcQLXb39ARvOk6iVxlsPRg6t8cUmKJcY6VNgIG1j301kFFksek3MGx1zrLt_MQPdBe7EJZiD_Q7eB8AU-avhrwQXlkqcI7w3xSBD_rGJQ2FCgfxemgrpUDv1z627U0XKMbEJHBXDvSyT54-ym3bKzdp8QWRqE_tQoCyPK2rR19A-lrfsWwtwQM9pignZ-0PRwa_HoxOD1YSUcpxhkpb2d1xaM6BR6w5NIVwwVtnYxS2G37yRxzSRkpc9sCK5UsAob3jGDd4Op6A",
  "payload": ""
}
2025-11-29 01:03:29,476:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619894943146 HTTP/1.1" 200 827
2025-11-29 01:03:29,476:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:30 GMT
Content-Type: application/json
Content-Length: 827
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: jkzIQkhdPjtcKp2G9a4NgRpXqb1-cb8dFWCd-YNkbRGDjSuTRMs
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "aranotinsurance.com"
  },
  "status": "pending",
  "expires": "2025-12-06T01:03:27Z",
  "challenges": [
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/zPhM7A",
      "status": "pending",
      "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/omrIFg",
      "status": "pending",
      "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw"
    },
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/J_Vbxw",
      "status": "pending",
      "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw"
    }
  ]
}
2025-11-29 01:03:29,477:DEBUG:acme.client:Storing nonce: jkzIQkhdPjtcKp2G9a4NgRpXqb1-cb8dFWCd-YNkbRGDjSuTRMs
2025-11-29 01:03:32,481:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:03:32,484:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619894943146:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJqa3pJUWtoZFBqdGNLcDJHOWE0TmdScFhxYjEtY2I4ZEZXQ2QtWU5rYlJHRGpTdVRSTXMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk0OTQzMTQ2In0",
  "signature": "b_Nd0CysvdbZIKreyE-EyllZJfGG6fc162pDMjTHYgIIchXBpMx9Urk4joU_ZjUTkkET_3y-G-Z9DaGhKhNQMg7wxfix0F2Pxs9hgZDzQQ-gWBIgUZbPrkRCVYn8T3DHK9z0V9xScQ9fp3M8HZT89WYwCjU76VXVqbKHtO-uDbdNOE5cjHzKW9OejrohB3l_MT2q2CbAwctveUZuuCQcxhRx_1ro5h4mvfT3JOSKtfz-yMuMTOCs2kH8P1g1G6sV2G0I7KrooAqzASf6-th8oyMtIPSD7v-O32OKsiSDtxdBceRF4YByBuKR2HEE2TGGg6KNMBy85_5bfh6z8QMc7w",
  "payload": ""
}
2025-11-29 01:03:32,964:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619894943146 HTTP/1.1" 200 784
2025-11-29 01:03:32,965:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:33 GMT
Content-Type: application/json
Content-Length: 784
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: jkzIQkhdbaFGigKfFCahYNiPgys_OoYR4Ah9yUe-fVAR3n6-E8o
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "aranotinsurance.com"
  },
  "status": "valid",
  "expires": "2025-12-29T01:03:30Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619894943146/J_Vbxw",
      "status": "valid",
      "validated": "2025-11-29T01:03:29Z",
      "token": "rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw",
      "validationRecord": [
        {
          "url": "http://aranotinsurance.com/.well-known/acme-challenge/rx30mmS-qh4_wrNiHZzj81z-yKbQJi6sH1RsQpSyHlw",
          "hostname": "aranotinsurance.com",
          "port": "80",
          "addressesResolved": [
            "108.174.197.172"
          ],
          "addressUsed": "108.174.197.172"
        }
      ]
    }
  ]
}
2025-11-29 01:03:32,966:DEBUG:acme.client:Storing nonce: jkzIQkhdbaFGigKfFCahYNiPgys_OoYR4Ah9yUe-fVAR3n6-E8o
2025-11-29 01:03:32,966:DEBUG:certbot._internal.error_handler:Calling registered functions
2025-11-29 01:03:32,966:INFO:certbot._internal.auth_handler:Cleaning up challenges
2025-11-29 01:03:34,387:DEBUG:certbot._internal.client:CSR: CSR(file='/etc/letsencrypt/csr/1865_csr-certbot.pem', data=b'-----BEGIN CERTIFICATE REQUEST-----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\nHvjeYHp4PuME3A==\n-----END CERTIFICATE REQUEST-----\n', form='pem')
2025-11-29 01:03:34,392:DEBUG:certbot._internal.client:Will poll for certificate issuance until 2025-11-29 01:05:04.392761
2025-11-29 01:03:34,396:DEBUG:acme.client:JWS payload:
b'{\n  "csr": "MIICdjCCAV4CAQAwADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALPoT8zTBmE6BinxSxa3pOZw9nRxaTSVUk66a32Q_1Aamh_jLqmJPw1HAqa_0FM4LOLOMPkySAt3eeSAYkJp4_7fMefGWyRKHujrBi64jVuuaHy8NUQR2Dzo43S1sN-D31PzYJOGLoaQNSkVjkGNTKh6BpZcD28nxds1kv8IMiJtgcI-Lrns5qlYMCC9R0hJzrwJ-u7K4MGzwrt6B1WBBOgSewVN_w1mdCtPJIrXcxaYvGb8w7I-NSPUKV_197JfZyHCsg1emloRc0z4Q5FHAVrQ0bVOHeu1B3z0lrqXpgLlJRhbFxtPt9BB16l_f_bKHLoGc5g0oNLtJPbAn3g9TKUCAwEAAaAxMC8GCSqGSIb3DQEJDjEiMCAwHgYDVR0RBBcwFYITYXJhbm90aW5zdXJhbmNlLmNvbTANBgkqhkiG9w0BAQsFAAOCAQEAZti0Zr7cl5R6Ao9RDYXl-kNmkgVM8EZlaik4wbtuM0h9WisJ6mLg9vIcT6f1SMs2aNUWJGW3H2n7oOhQBcQraqSGopUkvpLMdXNdnp26xbB_dXjOkKClgXJv2SM88l5YQ3NrxAQSHpvtIqpfyP_vk6agI70ps_UY-zzoS8W0-XZI4qEeohrkgWFnFrTIqqi6L3gVzqYHusH4greeESNwy_APcYhWg32FmMpLeCM5x8dIyhETEyXPId5V-Lf72YMbbdrNLQ3QMcEbZW5vzA6gjLfr8BUe1-N-nmPnH_qOnZKZSewI32gJenqQn_nAlimWHIXTIyuOHvjeYHp4PuME3A"\n}'
2025-11-29 01:03:34,400:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/453558791396:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJqa3pJUWtoZGJhRkdpZ0tmRkNhaFlOaVBneXNfT29ZUjRBaDl5VWUtZlZBUjNuNi1FOG8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2ZpbmFsaXplLzE0OTY4ODE1MjYvNDUzNTU4NzkxMzk2In0",
  "signature": "u6c_rumBGqFUBQk1lzLb-N8_mXindI96y3dfUw6oKNcgZA3KhUff-rgVOKXMTBXJqDi7lZF-UPA0uY86UPiS3W-I1oCn6PnUPzhYvkYxLPcePlWj0okwVPMrvbXxA_p4h3GnwRkiczErwR2EQTpKW7wD3EWgkSDS11JuMuRCSzEKnAC817CLP5LJcaC9dZE8WDGdiVf-w6NCZC6HXV6M2Uebvbz_tFG5QSjGxzfFxgnvDWdMR7Mece1bT2vSiEibTi7kbmDl8aaa-abcBpuPzDePWcwJ-dYZtP09MGvH994hRX_v2Si34ROyotoI-yeipOICoBu4TpRzdOuC-4jS4w",
  "payload": "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"
}
2025-11-29 01:03:34,914:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/finalize/1496881526/453558791396 HTTP/1.1" 200 455
2025-11-29 01:03:34,915:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:35 GMT
Content-Type: application/json
Content-Length: 455
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/453558791396
Replay-Nonce: zahUfOdGDq5B29Y_2_0yGWw1mcEE0lH0kP4O1BZyW09rxZ-yGuI
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "valid",
  "expires": "2025-12-06T01:03:27Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "aranotinsurance.com"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619894943146"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/453558791396",
  "certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/066fecef4d6a33d312e849da0c6452a07eb3"
}
2025-11-29 01:03:34,916:DEBUG:acme.client:Storing nonce: zahUfOdGDq5B29Y_2_0yGWw1mcEE0lH0kP4O1BZyW09rxZ-yGuI
2025-11-29 01:03:35,919:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:03:35,923:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/order/1496881526/453558791396:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJ6YWhVZk9kR0RxNUIyOVlfMl8weUdXdzFtY0VFMGxIMGtQNE8xQlp5VzA5cnhaLXlHdUkiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL29yZGVyLzE0OTY4ODE1MjYvNDUzNTU4NzkxMzk2In0",
  "signature": "oovZrl_x8dxzaiBww4tgoRA2J9g-NjswoDViQ4gtX997feIl0Thk-5q0Z-FEMgI9fZShI_uFO54s7xfy9v0bSJKb9_Q_6_mGbUaPAoAjv2vdXqfGX86wYWFCchJuCxCJCmQK3LFZfYvrgj1zkR-7HU_kbLS9-iyte4pGwznmlvZuFVBxmtAGa6WpTahvzfovQu_1DZ_y2JdcS79bG3erkjSnDwdCItCHaJa8d3hRmg5rHFBTBRjw3UPpNKGkLpJcMS1DxZeSlui_xGUz5mrRLEG5Sk0iQBt14TV5HK94uSMXGJAWya7OCpo9_cb_GRJKWnvfU0PWFan_VmbcB6dPYg",
  "payload": ""
}
2025-11-29 01:03:36,021:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/order/1496881526/453558791396 HTTP/1.1" 200 455
2025-11-29 01:03:36,022:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:36 GMT
Content-Type: application/json
Content-Length: 455
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/453558791396
Replay-Nonce: jkzIQkhdAdEZ-GrvpDRA2mFO00D3tUEIrBpMQLjXvaKMW4b7zqY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "valid",
  "expires": "2025-12-06T01:03:27Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "aranotinsurance.com"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619894943146"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/453558791396",
  "certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/066fecef4d6a33d312e849da0c6452a07eb3"
}
2025-11-29 01:03:36,022:DEBUG:acme.client:Storing nonce: jkzIQkhdAdEZ-GrvpDRA2mFO00D3tUEIrBpMQLjXvaKMW4b7zqY
2025-11-29 01:03:36,023:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:03:36,025:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/cert/066fecef4d6a33d312e849da0c6452a07eb3:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJqa3pJUWtoZEFkRVotR3J2cERSQTJtRk8wMEQzdFVFSXJCcE1RTGpYdmFLTVc0Yjd6cVkiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NlcnQvMDY2ZmVjZWY0ZDZhMzNkMzEyZTg0OWRhMGM2NDUyYTA3ZWIzIn0",
  "signature": "OxAixbhGHw2VRUxRh4PdrmJQuTj14U_daWZvAePLpPlv8DQ6pAAl66eeEaOUh9gw6w0dn6i1xmpjknpno-sw7CjqR1jU6lU_Idph7Lit2VOeKqj1gm2bAtn2eV7RnDc18FNpA3jbW1G613BhkIokbgNtUveJOYVB1DYRZtuQJjeI896njl_M9DDLZ5WLPDNJ70sMANrS1RkWTx6wBjBk8MEAtStocQLWNEGavyI9nVEWJLgXyZ5kV9sGKKd0jpN6T1g0jQMUkfU1tjQL5k6BahSI1dlVTinK4J3eNFeT54UFT-pL8EgpdGUKfV7f5eb-zpPDJz6Eb57n-RIt5rrW4w",
  "payload": ""
}
2025-11-29 01:03:36,058:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/cert/066fecef4d6a33d312e849da0c6452a07eb3 HTTP/1.1" 200 3599
2025-11-29 01:03:36,059:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:03:36 GMT
Content-Type: application/pem-certificate-chain
Content-Length: 3599
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: zahUfOdGWQOSmsJ2fWO1YVxJlHKJP4N8MrR8tYLjf0okQzSpnlw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

2025-11-29 01:03:36,060:DEBUG:acme.client:Storing nonce: zahUfOdGWQOSmsJ2fWO1YVxJlHKJP4N8MrR8tYLjf0okQzSpnlw
2025-11-29 01:03:36,063:DEBUG:certbot._internal.storage:Writing new private key to /etc/letsencrypt/archive/aranotinsurance.com/privkey13.pem.
2025-11-29 01:03:36,063:DEBUG:certbot._internal.storage:Writing certificate to /etc/letsencrypt/archive/aranotinsurance.com/cert13.pem.
2025-11-29 01:03:36,063:DEBUG:certbot._internal.storage:Writing chain to /etc/letsencrypt/archive/aranotinsurance.com/chain13.pem.
2025-11-29 01:03:36,064:DEBUG:certbot._internal.storage:Writing full chain to /etc/letsencrypt/archive/aranotinsurance.com/fullchain13.pem.
2025-11-29 01:03:36,108:DEBUG:certbot._internal.storage:Writing new config /etc/letsencrypt/renewal/aranotinsurance.com.conf.new.
2025-11-29 01:03:36,116:DEBUG:certbot._internal.display.obj:Notifying user: Reloading nginx server after certificate renewal
2025-11-29 01:03:37,162:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-11-29 01:03:37,163:DEBUG:certbot._internal.plugins.selection:Selecting plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09d1ca8f60>
Prep: True
2025-11-29 01:03:37,164:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/frontlineconstructionga.com.conf
2025-11-29 01:03:37,224:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2024-12-28 08:14:01 UTC.
2025-11-29 01:03:37,224:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2025-11-29 01:03:37,224:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-11-29 01:03:37,851:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09cea87748>
Prep: True
2025-11-29 01:03:37,852:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09cea87748>
Prep: True
2025-11-29 01:03:37,853:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09cea87748> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09cea87748>
2025-11-29 01:03:37,853:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2025-11-29 01:03:37,870:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/1496881526', new_authzr_uri=None, terms_of_service=None), 6eef7b6e72a83da2cef2f162ab0fae14, Meta(creation_dt=datetime.datetime(2024, 1, 3, 5, 42, 22, tzinfo=<UTC>), creation_host='hwsrv-1092325.hostwindsdns.com', register_to_eff=None))>
2025-11-29 01:03:37,872:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2025-11-29 01:03:37,875:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2025-11-29 01:04:23,063:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 1063
2025-11-29 01:04:23,064:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:23 GMT
Content-Type: application/json
Content-Length: 1063
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "dCQDJ1j-aYU": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "profiles": {
      "classic": "https://letsencrypt.org/docs/profiles#classic",
      "shortlived": "https://letsencrypt.org/docs/profiles#shortlived (not yet generally available)",
      "tlsclient": "https://letsencrypt.org/docs/profiles#tlsclient",
      "tlsserver": "https://letsencrypt.org/docs/profiles#tlsserver"
    },
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.6-August-18-2025.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/acme/renewal-info",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2025-11-29 01:04:23,066:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for frontlineconstructionga.com
2025-11-29 01:04:23,212:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/1866_key-certbot.pem
2025-11-29 01:04:23,253:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/1866_csr-certbot.pem
2025-11-29 01:04:23,254:DEBUG:acme.client:Requesting fresh nonce
2025-11-29 01:04:23,254:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2025-11-29 01:04:23,292:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2025-11-29 01:04:23,293:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:23 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: So3nmrngHewSxU_ETJ4e0W3FoH8nUs_cVztgoViEg0KhyY65W_I
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2025-11-29 01:04:23,293:DEBUG:acme.client:Storing nonce: So3nmrngHewSxU_ETJ4e0W3FoH8nUs_cVztgoViEg0KhyY65W_I
2025-11-29 01:04:23,294:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "frontlineconstructionga.com"\n    }\n  ]\n}'
2025-11-29 01:04:23,296:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJTbzNubXJuZ0hld1N4VV9FVEo0ZTBXM0ZvSDhuVXNfY1Z6dGdvVmlFZzBLaHlZNjVXX0kiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  "signature": "UlHOEURcwa-ScsoCM81hAb8Br0B7H5oY5v6KognqRWIDWazozPbJ9Kc_xldV2JOnEqsptZKJ_TXklZduMvwJeYxo-jVXFygvxWaf-TmgWmV4BZ9sPGHVLc4brnQaKXzk_NpTI7ZQxpNpEJ9O0ViEfzQl1bhxqAP9Spad4sanpYyWjmDHe_LE_hpqg-caQZ331o6H7YTjhkNkXlCMue64dJuvhdmxrhV3OpDoheGc4-HWXJtKrEeL1C8kgrPinF2L7HYlOfWg-fr8xAt3OAFYwRdJZXW2jDKIihrxyh5vv6A6F4nbdako103dfhYgHYkX0sxVVsRNg8ZlcoPBP0Llkg",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImZyb250bGluZWNvbnN0cnVjdGlvbmdhLmNvbSIKICAgIH0KICBdCn0"
}
2025-11-29 01:04:23,397:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 361
2025-11-29 01:04:23,398:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Sat, 29 Nov 2025 01:04:23 GMT
Content-Type: application/json
Content-Length: 361
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/453559033016
Replay-Nonce: So3nmrngJyOwE6QLkTXCmlfvDUMTNe8LmO75JcRUGAIVkH9qiI8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2025-12-06T01:04:23Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "frontlineconstructionga.com"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895288766"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/453559033016"
}
2025-11-29 01:04:23,399:DEBUG:acme.client:Storing nonce: So3nmrngJyOwE6QLkTXCmlfvDUMTNe8LmO75JcRUGAIVkH9qiI8
2025-11-29 01:04:23,399:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:04:23,402:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895288766:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJTbzNubXJuZ0p5T3dFNlFMa1RYQ21sZnZEVU1UTmU4TG1PNzVKY1JVR0FJVmtIOXFpSTgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk1Mjg4NzY2In0",
  "signature": "rRswtqvXxESIR7eAWiCDgqoiVHn8otIND-ASWlvlOElG_vWx6ldV3u0EiMJSP6lvDh2EjubI5FMMy08uj8e6PDv6yXjRiQ64-tWoyRWtPbP4lnAeJv_GEM4EZgmq-JPD76vK71_fyigNRo9DW19cgHSQd8xY5D64drV_WW5fNqJwxecsZVAbIp_f2o1rlBRaJzq3vNDUILQyADDz2MueMsXjQ2DS4aCNFijTFG2wdf0C56Tqk6SjgtHBf6EC8e34UnFQksCvd4euXSVGHYY6nt4Y77NjBjM1GsnQDMGEAkiFo8iAxZWhbdQKInTxUsro3xg2WrfQSgpOZIuHKWtWPA",
  "payload": ""
}
2025-11-29 01:04:23,441:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619895288766 HTTP/1.1" 200 835
2025-11-29 01:04:23,442:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:23 GMT
Content-Type: application/json
Content-Length: 835
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: So3nmrngCz20fXslYq5-Rf6nVJqdltAouT3Js0pv1TLvaGRVQuo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "pending",
  "expires": "2025-12-06T01:04:23Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Yxyxhg",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Dbocxw",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    }
  ]
}
2025-11-29 01:04:23,443:DEBUG:acme.client:Storing nonce: So3nmrngCz20fXslYq5-Rf6nVJqdltAouT3Js0pv1TLvaGRVQuo
2025-11-29 01:04:23,443:INFO:certbot._internal.auth_handler:Performing the following challenges:
2025-11-29 01:04:23,444:INFO:certbot._internal.auth_handler:http-01 challenge for frontlineconstructionga.com
2025-11-29 01:04:23,514:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2025-11-29 01:04:23,514:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php-fpm.conf
2025-11-29 01:04:23,515:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/frontlineconstructionga.com.conf
2025-11-29 01:04:23,515:DEBUG:certbot.reverter:Creating backup of /etc/nginx/default.d/php.conf
2025-11-29 01:04:23,516:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
2025-11-29 01:04:23,516:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranotinsurance.com.conf
2025-11-29 01:04:23,517:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranoinvestmentsgroup.com.conf
2025-11-29 01:04:23,517:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
2025-11-29 01:04:23,517:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
2025-11-29 01:04:23,518:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2025-11-29 01:04:23,518:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
2025-11-29 01:04:23,519:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2025-11-29 01:04:23,519:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
2025-11-29 01:04:23,519:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
2025-11-29 01:04:23,521:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
# For more information on configuration, see:
#   * Official English Documentation: http://nginx.org/en/docs/
#   * Official Russian Documentation: http://nginx.org/ru/docs/

user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;

# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;

events {
    worker_connections 1024;
}

http {
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile            on;
    tcp_nopush          on;
    tcp_nodelay         on;
    keepalive_timeout   65;
    types_hash_max_size 2048;

    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;

    # Load modular configuration files from the /etc/nginx/conf.d directory.
    # See http://nginx.org/en/docs/ngx_core_module.html#include
    # for more information.
    include /etc/nginx/conf.d/*.conf;

    server {
        listen       80 default_server;
        listen       [::]:80 default_server;
        server_name  _;
        root         /usr/share/nginx/html;

        # Load configuration files for the default server block.
        include /etc/nginx/default.d/*.conf;

        location / {
        }

        error_page 404 /404.html;
            location = /40x.html {
        }

        error_page 500 502 503 504 /50x.html;
            location = /50x.html {
        }
    }

# Settings for a TLS enabled server.
#
#    server {
#        listen       443 ssl http2 default_server;
#        listen       [::]:443 ssl http2 default_server;
#        server_name  _;
#        root         /usr/share/nginx/html;
#
#        ssl_certificate "/etc/pki/nginx/server.crt";
#        ssl_certificate_key "/etc/pki/nginx/private/server.key";
#        ssl_session_cache shared:SSL:1m;
#        ssl_session_timeout  10m;
#        ssl_ciphers PROFILE=SYSTEM;
#        ssl_prefer_server_ciphers on;
#
#        # Load configuration files for the default server block.
#        include /etc/nginx/default.d/*.conf;
#
#        location / {
#        }
#
#        error_page 404 /404.html;
#            location = /40x.html {
#        }
#
#        error_page 500 502 503 504 /50x.html;
#            location = /50x.html {
#        }
#    }

}


2025-11-29 01:04:23,524:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/conf.d/frontlineconstructionga.com.conf:
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


	server_name frontlineconstructionga.com;

        root /var/www/frontlineconstructionga.com/public_html;
        index index.php index.html index.htm index.nginx-debian.html;

	client_max_body_size 110M;
	client_header_buffer_size 1024k;
	large_client_header_buffers 16 1024k;
        
	location / {
                try_files $uri $uri/ /index.php$is_args$args;
        }

	error_page 404 /404.html;
	error_page 500 502 503 504 /50x.html;
	location = /50x.html {
		root /usr/share/nginx/html;
	}

	location ~ \.php$ {
		try_files $uri =404;
		fastcgi_pass unix:/var/run/php-fpm/www.sock;
		fastcgi_index index.php;
		fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
		include fastcgi_params;
		fastcgi_connect_timeout 300s;
		fastcgi_read_timeout 300s;
		fastcgi_send_timeout 300s;
	}

        location ~ /\.ht {
                deny all;
        }

	location = /favicon.ico { log_not_found off; access_log off; }
	location = /robots.txt { log_not_found off; access_log off; allow all; }
	location ~* \.(css|gif|ico|jpeg|jpg|js|png)$ {
        expires max;
        log_not_found off;
    }


    listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/frontlineconstructionga.com/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/frontlineconstructionga.com/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

location = /.well-known/acme-challenge/YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI{default_type text/plain;return 200 YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


    if ($host = frontlineconstructionga.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


	server_name frontlineconstructionga.com;
    listen 80;
    return 404; # managed by Certbot


location = /.well-known/acme-challenge/YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI{default_type text/plain;return 200 YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}
2025-11-29 01:04:24,558:DEBUG:acme.client:JWS payload:
b'{}'
2025-11-29 01:04:24,562:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJTbzNubXJuZ0N6MjBmWHNsWXE1LVJmNm5WSnFkbHRBb3VUM0pzMHB2MVRMdmFHUlZRdW8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzE0OTY4ODE1MjYvNjE5ODk1Mjg4NzY2L3h2eHhfZyJ9",
  "signature": "pMRHXfNc386rVHDJ2KB7CbxPZZFwT8eb6fbO57G34CkGpxlQCOWm9QZEfiR1VIgGXp21qM2ccFNFFBtWxvb_Ky2deHy0Xw2GJ9Z0XqRag_hpzl7i2slKHKnt3bTsKKGC1TLRQztczugOLxDOu9N5Z6Yu078ZbakcrsDIymOJQO1BOcabFCxwYNQla2kYr53kMxLQU4Z_Sdo57Xbgx-0tH97LLmNABNOuNBp1XrWsD9cv6g0oXFtW_Z0UJvkKrmNfLpbAgwNZdLl5IA_PVY9o6Ef1mgIcQ-sBry0BYQo7S3f-RVUF7GA8Pr0NRjyU-SrjchZoAAa0X40pN6AZ9UcuZw",
  "payload": "e30"
}
2025-11-29 01:04:24,604:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall/1496881526/619895288766/xvxx_g HTTP/1.1" 200 195
2025-11-29 01:04:24,605:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:24 GMT
Content-Type: application/json
Content-Length: 195
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895288766>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g
Replay-Nonce: -l2dNf_XfPIdA8FcYYd2Zwn-ONKUCEvo9cQNCDOl5wicakrvheQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g",
  "status": "pending",
  "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
}
2025-11-29 01:04:24,605:DEBUG:acme.client:Storing nonce: -l2dNf_XfPIdA8FcYYd2Zwn-ONKUCEvo9cQNCDOl5wicakrvheQ
2025-11-29 01:04:24,606:INFO:certbot._internal.auth_handler:Waiting for verification...
2025-11-29 01:04:25,607:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:04:25,610:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895288766:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICItbDJkTmZfWGZQSWRBOEZjWVlkMlp3bi1PTktVQ0V2bzljUU5DRE9sNXdpY2FrcnZoZVEiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk1Mjg4NzY2In0",
  "signature": "tI-7zWV-dFeeuLFVy3F63YUddM29mDiccXCL9OSb4GDu6ffcWVcrTWIERjbsqeHL53zOuRu1qHtfEqvFcayrzCnulghKWGF4ZOCo0HFnDSfWYlpUiiTuN_MtuFnFYcYMvhq9QKErJd-_s54YSLClKX-3cJtVQEwHnSqNsPhekZsx4m9kd3bpqVPbn4RGWdbnAwpvORvD3j3EkgFUfH04ZlgCeE5LlqXE2cIjKc6juviFeCLgG2SkmR8JY0H7YuK20_HVNirl4assUHj0yz_j3Kx3VJgEl-Nce7A6BwWKsR-YoSfJJd85fgUR4DCvPqtH_5z9MjxU9vMZxZ46JLDSXQ",
  "payload": ""
}
2025-11-29 01:04:25,650:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619895288766 HTTP/1.1" 200 835
2025-11-29 01:04:25,651:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:25 GMT
Content-Type: application/json
Content-Length: 835
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: -l2dNf_XyS5sX731T2DO0Qe-ZejQJ3h9xnzPIk_PfdALLe_jevo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "pending",
  "expires": "2025-12-06T01:04:23Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Yxyxhg",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Dbocxw",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    }
  ]
}
2025-11-29 01:04:25,651:DEBUG:acme.client:Storing nonce: -l2dNf_XyS5sX731T2DO0Qe-ZejQJ3h9xnzPIk_PfdALLe_jevo
2025-11-29 01:04:28,656:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:04:28,660:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895288766:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICItbDJkTmZfWHlTNXNYNzMxVDJETzBRZS1aZWpRSjNoOXhuelBJa19QZmRBTExlX2pldm8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk1Mjg4NzY2In0",
  "signature": "oqV3Uqldpon3_JpV9LmetavmODV5YnCaah8pIrJAz46AtFb3UZ-N_X4D8hd_LwgvKCFNMOca-oA-DMMkENTnLVRYIKqBy4DzBdBhfksB4xLginuiusJB_Q-3eT3xXHBbBPclP43EtWvQS9VXhDnzLrzNXpa8CeKWQYcXctyZaMxE5ZjYCiT2EN9ionuVZysd283hgZ4fHcTZPeDRwJH3bV8fJuo9TfjyLALQG-kAbf8RaAMdzphTfw-cS9zQCd1hzFnmMKqsLk3eleTqlD5TYylgFVgd4O1-V_QA97RZ-IJr0EgQ55fiWl-cl0Jr36bW-hfzJ3_64xlhWbc7g9yUdQ",
  "payload": ""
}
2025-11-29 01:04:28,701:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619895288766 HTTP/1.1" 200 835
2025-11-29 01:04:28,702:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:28 GMT
Content-Type: application/json
Content-Length: 835
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: -l2dNf_XEkOl9MjqmnmxIgRCUOHIQAGQtYPt1T5i6IuiENG6pmk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "pending",
  "expires": "2025-12-06T01:04:23Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Yxyxhg",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Dbocxw",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    }
  ]
}
2025-11-29 01:04:28,703:DEBUG:acme.client:Storing nonce: -l2dNf_XEkOl9MjqmnmxIgRCUOHIQAGQtYPt1T5i6IuiENG6pmk
2025-11-29 01:04:31,707:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:04:31,709:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895288766:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICItbDJkTmZfWEVrT2w5TWpxbW5teElnUkNVT0hJUUFHUXRZUHQxVDVpNkl1aUVORzZwbWsiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk1Mjg4NzY2In0",
  "signature": "m18g7jw1vgn-6ZEanEHO9grxrXw0x_uqgJOwjB3zXD0HhVFXAXtWOSDuOakZYpxTDxcLIvyNVCSrfKl0wQMo7NM-TF0yNcdfzMyJhVqErOTV1FWa2ojJQMT64MyHw3vIE-OLsSskZ5XjRHieC4arRG3F93fAOFYJn_RVYfFYyOCtT-UlkJJ8V8GR1o6aHpuH7YvQbgJYugm7Z4GPyVSfVy0cOlD2FHK78znBeRpM6MPd6_Gqr6RtwssMPHFEQIwb6-PW9Ae9eWzALFyH2u9yC5CbuBVL27_WXsIRSS6lVbQ1BbjOVoRZt8o-amI06jO8QnRBJDntVVlzIWhL-51_PQ",
  "payload": ""
}
2025-11-29 01:04:31,751:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619895288766 HTTP/1.1" 200 835
2025-11-29 01:04:31,751:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:31 GMT
Content-Type: application/json
Content-Length: 835
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: -l2dNf_XQIw7THHuj27e9PqFf_XPsrcA4Czc4i7jbsjoHauzUkc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "pending",
  "expires": "2025-12-06T01:04:23Z",
  "challenges": [
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Dbocxw",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/Yxyxhg",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    },
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g",
      "status": "pending",
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI"
    }
  ]
}
2025-11-29 01:04:31,752:DEBUG:acme.client:Storing nonce: -l2dNf_XQIw7THHuj27e9PqFf_XPsrcA4Czc4i7jbsjoHauzUkc
2025-11-29 01:04:34,756:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:04:34,759:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895288766:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICItbDJkTmZfWFFJdzdUSEh1ajI3ZTlQcUZmX1hQc3JjQTRDemM0aTdqYnNqb0hhdXpVa2MiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk1Mjg4NzY2In0",
  "signature": "JFqw4X8K98LXiTdPEC1eQEsaWGuFFeTufIBDF6HQ4HIMDeb1GlvXx6H7kLkU7ekkkyA8n1NfxBO5FtSmyc8rbMx-G7NnsI3IvmoPpSTsU0f_-4Tb5VgO2lzaMTVFBs2NEBWxaasiqhbN2l27t8CObbh3KAN46LvEtls4z3Oj_KR7nDNt0cR5DfyTbUjF7DmWq7Gu5ZnZ1d7taWTYcGh_f07N52dwqMeoAhXLYih1143Bjm2hnSqZdEH5BrbCMbVbRFReH6bSzjaIakP9OyAJiS5WoJ4Iww5pa4t5KMjGh-jiE9QDI7YVtnNGTTloJbS6168YcqqnLswGo4qopN-yUg",
  "payload": ""
}
2025-11-29 01:04:34,811:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619895288766 HTTP/1.1" 200 1114
2025-11-29 01:04:34,811:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:04:34 GMT
Content-Type: application/json
Content-Length: 1114
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: -l2dNf_XNBZ9qLqtoVOx-8dnDM8GVjq49TwHBb4nhHlRTbgvCpU
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "invalid",
  "expires": "2025-12-06T01:04:23Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895288766/xvxx_g",
      "status": "invalid",
      "validated": "2025-11-29T01:04:24Z",
      "error": {
        "type": "urn:ietf:params:acme:error:connection",
        "detail": "65.109.65.153: Fetching http://frontlineconstructionga.com/.well-known/acme-challenge/YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI: Timeout during connect (likely firewall problem)",
        "status": 400
      },
      "token": "YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI",
      "validationRecord": [
        {
          "url": "http://frontlineconstructionga.com/.well-known/acme-challenge/YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI",
          "hostname": "frontlineconstructionga.com",
          "port": "80",
          "addressesResolved": [
            "65.109.65.153"
          ],
          "addressUsed": "65.109.65.153"
        }
      ]
    }
  ]
}
2025-11-29 01:04:34,812:DEBUG:acme.client:Storing nonce: -l2dNf_XNBZ9qLqtoVOx-8dnDM8GVjq49TwHBb4nhHlRTbgvCpU
2025-11-29 01:04:34,812:INFO:certbot._internal.auth_handler:Challenge failed for domain frontlineconstructionga.com
2025-11-29 01:04:34,813:INFO:certbot._internal.auth_handler:http-01 challenge for frontlineconstructionga.com
2025-11-29 01:04:34,813:DEBUG:certbot._internal.display.obj:Notifying user: 
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
  Domain: frontlineconstructionga.com
  Type:   connection
  Detail: 65.109.65.153: Fetching http://frontlineconstructionga.com/.well-known/acme-challenge/YgM6nXdagAUmVWTBpc-yvDrrWqXGlYVP8ExSw4PtaPI: Timeout during connect (likely firewall problem)

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

2025-11-29 01:04:34,818:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2025-11-29 01:04:34,819:DEBUG:certbot._internal.error_handler:Calling registered functions
2025-11-29 01:04:34,819:INFO:certbot._internal.auth_handler:Cleaning up challenges
2025-11-29 01:04:36,214:ERROR:certbot._internal.renewal:Failed to renew certificate frontlineconstructionga.com with error: Some challenges have failed.
2025-11-29 01:04:36,219:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 485, in handle_renewal_request
    main.renew_cert(lineage_config, plugins, renewal_candidate)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1441, in renew_cert
    renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 127, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 345, in renew_cert
    new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 424, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 476, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2025-11-29 01:04:36,220:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/somospueblo.com.conf
2025-11-29 01:04:36,256:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2024-05-01 12:57:39 UTC.
2025-11-29 01:04:36,257:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2025-11-29 01:04:36,257:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-11-29 01:04:36,797:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09ce4d89e8>
Prep: True
2025-11-29 01:04:36,798:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09ce4d89e8>
Prep: True
2025-11-29 01:04:36,799:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09ce4d89e8> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f09ce4d89e8>
2025-11-29 01:04:36,799:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2025-11-29 01:04:36,817:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/1496881526', new_authzr_uri=None, terms_of_service=None), 6eef7b6e72a83da2cef2f162ab0fae14, Meta(creation_dt=datetime.datetime(2024, 1, 3, 5, 42, 22, tzinfo=<UTC>), creation_host='hwsrv-1092325.hostwindsdns.com', register_to_eff=None))>
2025-11-29 01:04:36,820:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2025-11-29 01:04:36,823:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2025-11-29 01:05:22,219:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 1063
2025-11-29 01:05:22,220:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:05:22 GMT
Content-Type: application/json
Content-Length: 1063
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "0rMjct4WEgo": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "profiles": {
      "classic": "https://letsencrypt.org/docs/profiles#classic",
      "shortlived": "https://letsencrypt.org/docs/profiles#shortlived (not yet generally available)",
      "tlsclient": "https://letsencrypt.org/docs/profiles#tlsclient",
      "tlsserver": "https://letsencrypt.org/docs/profiles#tlsserver"
    },
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.6-August-18-2025.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/acme/renewal-info",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2025-11-29 01:05:22,222:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for somospueblo.com
2025-11-29 01:05:22,454:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/1867_key-certbot.pem
2025-11-29 01:05:22,520:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/1867_csr-certbot.pem
2025-11-29 01:05:22,521:DEBUG:acme.client:Requesting fresh nonce
2025-11-29 01:05:22,521:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2025-11-29 01:05:22,559:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2025-11-29 01:05:22,560:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:05:22 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: -l2dNf_XLc5PnnuFfqbV6AMn_KJ6cCRYyRlrya_GA8kbJs5_YKQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2025-11-29 01:05:22,560:DEBUG:acme.client:Storing nonce: -l2dNf_XLc5PnnuFfqbV6AMn_KJ6cCRYyRlrya_GA8kbJs5_YKQ
2025-11-29 01:05:22,560:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "somospueblo.com"\n    }\n  ]\n}'
2025-11-29 01:05:22,563:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICItbDJkTmZfWExjNVBubnVGZnFiVjZBTW5fS0o2Y0NSWXlSbHJ5YV9HQThrYkpzNV9ZS1EiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  "signature": "aADx-xH2kdcrtqENS8Jbqqwq9EgfYEd9kCCNXNfKzKVC88PJBpngmZN2hqCuEOlBo_cmhOKiAC9jwFPqdBSSllrVPJF-Krk_dRrg_7NSicd7H_r1pD51YRy-s2iZyI2TO_drRftC1eiP8XOpnmBov2hUSyiaqMk11EvOW_xoyASHR2azveaKK6bjNWgGY_WU1unh1VrJSJy7gORx2kgn_kFbs9LYZyyxAfDr3fQmuXWW9vXmN6w7vc-JmZOz1EZWYfhrtvcRBwLaFPXa1JAjaLwFh5e-V17yjkO6ZJ6ub699upWUL4SJLJSnYKAxtuqfZ9tFKyGbwxPsP0XS34neTA",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInNvbW9zcHVlYmxvLmNvbSIKICAgIH0KICBdCn0"
}
2025-11-29 01:05:22,646:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 349
2025-11-29 01:05:22,647:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Sat, 29 Nov 2025 01:05:22 GMT
Content-Type: application/json
Content-Length: 349
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/453559289816
Replay-Nonce: So3nmrng4t-77FuHEH4Bzc9IyERQP7VCfeQqoFA5uEjreXMLtDU
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2025-12-06T01:05:22Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "somospueblo.com"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895657036"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/453559289816"
}
2025-11-29 01:05:22,647:DEBUG:acme.client:Storing nonce: So3nmrng4t-77FuHEH4Bzc9IyERQP7VCfeQqoFA5uEjreXMLtDU
2025-11-29 01:05:22,648:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:05:22,650:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895657036:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJTbzNubXJuZzR0LTc3RnVIRUg0QnpjOUl5RVJRUDdWQ2ZlUXFvRkE1dUVqcmVYTUx0RFUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk1NjU3MDM2In0",
  "signature": "F6FtvquiIWVNefh2UlyvOLWW3y8fkZs28OzMUQ7idnnaHtBd-_6DFShQ-R-6LlO5o36sSf0EKWnwUoj6FuJLUAtZG4OwhlAHr8lrRTp88UyGUzaxbwN3rrXb_gughHywvYLHfM5sA7aBFdQ5u2rML_p36HD6YAfBypMExDxfXP2ojfpwi-pJgGCMR6ygvdeImywS7LuA5wdf7pcL-FtdBNCHBHrzvnOd3giSeioR1dQdbieIkB_2NVM6u4_xM4QfLOwNaMoCOVoVgBg-HwkfboUWLiQtxKfW6LDiW0fdluJuzHof-XcYEwobsC_uyKGWmnqE_hPmdxoxOp5VP3kARw",
  "payload": ""
}
2025-11-29 01:05:22,690:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619895657036 HTTP/1.1" 200 823
2025-11-29 01:05:22,692:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:05:22 GMT
Content-Type: application/json
Content-Length: 823
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: -l2dNf_XcI5RykDA79nCoZRhAuALEbAFnS8vI6wwvo1j5e9e86U
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "somospueblo.com"
  },
  "status": "pending",
  "expires": "2025-12-06T01:05:22Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895657036/QUvhyQ",
      "status": "pending",
      "token": "8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4"
    },
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895657036/vQtLrg",
      "status": "pending",
      "token": "8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895657036/1uqQqw",
      "status": "pending",
      "token": "8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4"
    }
  ]
}
2025-11-29 01:05:22,692:DEBUG:acme.client:Storing nonce: -l2dNf_XcI5RykDA79nCoZRhAuALEbAFnS8vI6wwvo1j5e9e86U
2025-11-29 01:05:22,693:INFO:certbot._internal.auth_handler:Performing the following challenges:
2025-11-29 01:05:22,694:INFO:certbot._internal.auth_handler:http-01 challenge for somospueblo.com
2025-11-29 01:05:22,782:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2025-11-29 01:05:22,784:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php-fpm.conf
2025-11-29 01:05:22,784:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/frontlineconstructionga.com.conf
2025-11-29 01:05:22,785:DEBUG:certbot.reverter:Creating backup of /etc/nginx/default.d/php.conf
2025-11-29 01:05:22,786:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
2025-11-29 01:05:22,786:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranotinsurance.com.conf
2025-11-29 01:05:22,787:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranoinvestmentsgroup.com.conf
2025-11-29 01:05:22,788:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
2025-11-29 01:05:22,788:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
2025-11-29 01:05:22,789:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2025-11-29 01:05:22,789:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
2025-11-29 01:05:22,790:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2025-11-29 01:05:22,790:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
2025-11-29 01:05:22,791:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
2025-11-29 01:05:22,796:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
# For more information on configuration, see:
#   * Official English Documentation: http://nginx.org/en/docs/
#   * Official Russian Documentation: http://nginx.org/ru/docs/

user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;

# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;

events {
    worker_connections 1024;
}

http {
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile            on;
    tcp_nopush          on;
    tcp_nodelay         on;
    keepalive_timeout   65;
    types_hash_max_size 2048;

    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;

    # Load modular configuration files from the /etc/nginx/conf.d directory.
    # See http://nginx.org/en/docs/ngx_core_module.html#include
    # for more information.
    include /etc/nginx/conf.d/*.conf;

    server {
        listen       80 default_server;
        listen       [::]:80 default_server;
        server_name  _;
        root         /usr/share/nginx/html;

        # Load configuration files for the default server block.
        include /etc/nginx/default.d/*.conf;

        location / {
        }

        error_page 404 /404.html;
            location = /40x.html {
        }

        error_page 500 502 503 504 /50x.html;
            location = /50x.html {
        }
    }

# Settings for a TLS enabled server.
#
#    server {
#        listen       443 ssl http2 default_server;
#        listen       [::]:443 ssl http2 default_server;
#        server_name  _;
#        root         /usr/share/nginx/html;
#
#        ssl_certificate "/etc/pki/nginx/server.crt";
#        ssl_certificate_key "/etc/pki/nginx/private/server.key";
#        ssl_session_cache shared:SSL:1m;
#        ssl_session_timeout  10m;
#        ssl_ciphers PROFILE=SYSTEM;
#        ssl_prefer_server_ciphers on;
#
#        # Load configuration files for the default server block.
#        include /etc/nginx/default.d/*.conf;
#
#        location / {
#        }
#
#        error_page 404 /404.html;
#            location = /40x.html {
#        }
#
#        error_page 500 502 503 504 /50x.html;
#            location = /50x.html {
#        }
#    }



    server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


        listen       80 ;
        listen       [::]:80 ;
    server_name somospueblo.com; # managed by Certbot
        root         /usr/share/nginx/html;

        # Load configuration files for the default server block.
        include /etc/nginx/default.d/*.conf;

        location / {
        }

        error_page 404 /404.html;
            location = /40x.html {
        }

        error_page 500 502 503 504 /50x.html;
            location = /50x.html {
        }
    
location = /.well-known/acme-challenge/8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4{default_type text/plain;return 200 8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}}


2025-11-29 01:05:23,838:DEBUG:acme.client:JWS payload:
b'{}'
2025-11-29 01:05:23,842:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895657036/QUvhyQ:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICItbDJkTmZfWGNJNVJ5a0RBNzluQ29aUmhBdUFMRWJBRm5TOHZJNnd3dm8xajVlOWU4NlUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzE0OTY4ODE1MjYvNjE5ODk1NjU3MDM2L1FVdmh5USJ9",
  "signature": "GEQJJmLTbkLKLcsMASaCKBeQ6Fi4ls3ZajPr4JVBVKl6qT7zRH6OvutZH56yGlMzv0NDsHnnysORaymO6ZerUXV8J63ebSeQGGVYQ2LUDis0AfjTD6mxwuPoEBH-YH3G2hzsIe5MRnjXKFlbMaHulWYbGgF2vliaieXSLk2wWd_6l8lulC7lwqplYgspJbkvphP0lI15HySQ1f2yDv1THDCJ3qgYMGyJKk6tPqHeo7Rfv-Yxq6DH0M0R8pbougT6sIgiijiLVxnr8F5wzRcaETV-LOAk44WQxKzwbLSVdvEDYOGn_iv9Isn9DLFdr1mvXvpNzjkdjg0s5DMEDIyLYA",
  "payload": "e30"
}
2025-11-29 01:05:23,885:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall/1496881526/619895657036/QUvhyQ HTTP/1.1" 200 195
2025-11-29 01:05:23,886:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:05:23 GMT
Content-Type: application/json
Content-Length: 195
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895657036>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895657036/QUvhyQ
Replay-Nonce: -l2dNf_XyaASc06_aKQqW7_Vczb8GRVFc6oBiRw5FVynlTewYYE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895657036/QUvhyQ",
  "status": "pending",
  "token": "8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4"
}
2025-11-29 01:05:23,886:DEBUG:acme.client:Storing nonce: -l2dNf_XyaASc06_aKQqW7_Vczb8GRVFc6oBiRw5FVynlTewYYE
2025-11-29 01:05:23,886:INFO:certbot._internal.auth_handler:Waiting for verification...
2025-11-29 01:05:24,888:DEBUG:acme.client:JWS payload:
b''
2025-11-29 01:05:24,893:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/619895657036:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICItbDJkTmZfWHlhQVNjMDZfYUtRcVc3X1ZjemI4R1JWRmM2b0JpUnc1RlZ5bmxUZXdZWUUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjE5ODk1NjU3MDM2In0",
  "signature": "RL3mo297Rp0_zLdPcpXH72qkfKc9wzO44PlDUmhNVriIlSNHCY4hKRMmbu_NZFa2Qw1U9K3Hbfy-0XJZHTktGWpVBCffhz5OBooMhafB7EyckDX8TqXOtGwKMqiifKxjs_pNdxLcUIY60YBSoqdr1m4s-q98MfUL3b0f5X9nfM7MEMmb5oBA-iotluoZs1RR2WMWW0YDHsKtCVaba9GrUaWKScimNGiL64-2Sd7EiyZSRHCkCFlZo0JCmG8f-xbjOjYZ9hpNxqvTsbWPaE0aAnC1UNj4HHffYDQfG4Y9wy_euQ-CZX1COu_v1hUDuFv7yfsQi3qI7WJtTk9YxS3A6A",
  "payload": ""
}
2025-11-29 01:05:24,933:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/619895657036 HTTP/1.1" 200 1364
2025-11-29 01:05:24,934:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 29 Nov 2025 01:05:24 GMT
Content-Type: application/json
Content-Length: 1364
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: -l2dNf_XW6ttvKxT9WBQ6RZata2IAdBDF4HKKuE0gUCE3AjaS_Y
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "somospueblo.com"
  },
  "status": "invalid",
  "expires": "2025-12-06T01:05:22Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/619895657036/QUvhyQ",
      "status": "invalid",
      "validated": "2025-11-29T01:05:23Z",
      "error": {
        "type": "urn:ietf:params:acme:error:unauthorized",
        "detail": "146.190.135.150: Invalid response from https://somospueblo.com/.well-known/acme-challenge/8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4: 404",
        "status": 403
      },
      "token": "8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4",
      "validationRecord": [
        {
          "url": "http://somospueblo.com/.well-known/acme-challenge/8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4",
          "hostname": "somospueblo.com",
          "port": "80",
          "addressesResolved": [
            "146.190.135.150"
          ],
          "addressUsed": "146.190.135.150"
        },
        {
          "url": "https://somospueblo.com/.well-known/acme-challenge/8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4",
          "hostname": "somospueblo.com",
          "port": "443",
          "addressesResolved": [
            "146.190.135.150"
          ],
          "addressUsed": "146.190.135.150"
        }
      ]
    }
  ]
}
2025-11-29 01:05:24,934:DEBUG:acme.client:Storing nonce: -l2dNf_XW6ttvKxT9WBQ6RZata2IAdBDF4HKKuE0gUCE3AjaS_Y
2025-11-29 01:05:24,936:INFO:certbot._internal.auth_handler:Challenge failed for domain somospueblo.com
2025-11-29 01:05:24,936:INFO:certbot._internal.auth_handler:http-01 challenge for somospueblo.com
2025-11-29 01:05:24,936:DEBUG:certbot._internal.display.obj:Notifying user: 
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
  Domain: somospueblo.com
  Type:   unauthorized
  Detail: 146.190.135.150: Invalid response from https://somospueblo.com/.well-known/acme-challenge/8a_rGp7Z7tm5kI9ky5PlmGkJExC_4Y2mv4LjsE1-Ko4: 404

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

2025-11-29 01:05:24,937:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2025-11-29 01:05:24,937:DEBUG:certbot._internal.error_handler:Calling registered functions
2025-11-29 01:05:24,938:INFO:certbot._internal.auth_handler:Cleaning up challenges
2025-11-29 01:05:26,337:ERROR:certbot._internal.renewal:Failed to renew certificate somospueblo.com with error: Some challenges have failed.
2025-11-29 01:05:26,338:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 485, in handle_renewal_request
    main.renew_cert(lineage_config, plugins, renewal_candidate)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1441, in renew_cert
    renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 127, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 345, in renew_cert
    new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 424, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 476, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2025-11-29 01:05:26,338:DEBUG:certbot._internal.display.obj:Notifying user: 
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2025-11-29 01:05:26,338:DEBUG:certbot._internal.display.obj:Notifying user: The following certificates are not due for renewal yet:
2025-11-29 01:05:26,339:DEBUG:certbot._internal.display.obj:Notifying user:   /etc/letsencrypt/live/aranoinvestmentsgroup.com/fullchain.pem expires on 2026-01-05 (skipped)
2025-11-29 01:05:26,339:DEBUG:certbot._internal.display.obj:Notifying user: The following renewals succeeded:
2025-11-29 01:05:26,339:DEBUG:certbot._internal.display.obj:Notifying user:   /etc/letsencrypt/live/aranotinsurance.com/fullchain.pem (success)

2025-11-29 01:05:26,339:ERROR:certbot._internal.renewal:The following renewals failed:
2025-11-29 01:05:26,339:ERROR:certbot._internal.renewal:  /etc/letsencrypt/live/frontlineconstructionga.com/fullchain.pem (failure)
  /etc/letsencrypt/live/somospueblo.com/fullchain.pem (failure)
2025-11-29 01:05:26,339:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2025-11-29 01:05:26,340:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 11, in <module>
    load_entry_point('certbot==1.22.0', 'console_scripts', 'certbot')()
  File "/usr/lib/python3.6/site-packages/certbot/main.py", line 19, in main
    return internal_main.main(cli_args)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1632, in main
    return config.func(config, plugins)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1518, in renew
    renewal.handle_renewal_request(config)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 512, in handle_renewal_request
    len(renew_failures), len(parse_failures)))
certbot.errors.Error: 2 renew failure(s), 0 parse failure(s)
2025-11-29 01:05:26,341:ERROR:certbot._internal.log:2 renew failure(s), 0 parse failure(s)
Hry