2026-02-23 16:42:35,404:DEBUG:certbot._internal.main:certbot version: 1.22.0
2026-02-23 16:42:35,406:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
2026-02-23 16:42:35,406:DEBUG:certbot._internal.main:Arguments: ['--noninteractive', '--no-random-sleep-on-renew']
2026-02-23 16:42:35,407:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2026-02-23 16:42:35,484:DEBUG:certbot._internal.log:Root logging level set at 30
2026-02-23 16:42:35,487:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/aranoinvestmentsgroup.com.conf
2026-02-23 16:42:35,532:DEBUG:certbot._internal.plugins.selection:Requested authenticator <certbot._internal.cli.cli_utils._Default object at 0x7f1379360518> and installer <certbot._internal.cli.cli_utils._Default object at 0x7f1379360518>
2026-02-23 16:42:35,572:INFO:certbot.ocsp:Cannot extract OCSP URI from /etc/letsencrypt/archive/aranoinvestmentsgroup.com/cert13.pem
2026-02-23 16:42:35,577:DEBUG:certbot._internal.display.obj:Notifying user: Certificate not yet due for renewal
2026-02-23 16:42:35,579:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2026-02-23 16:42:35,584:DEBUG:certbot._internal.plugins.selection:Selecting plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f1379350780>
2026-02-23 16:42:35,586:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/aranotinsurance.com.conf
2026-02-23 16:42:35,615:INFO:certbot.ocsp:Cannot extract OCSP URI from /etc/letsencrypt/archive/aranotinsurance.com/cert14.pem
2026-02-23 16:42:35,617:DEBUG:certbot._internal.display.obj:Notifying user: Certificate not yet due for renewal
2026-02-23 16:42:35,618:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2026-02-23 16:42:35,623:DEBUG:certbot._internal.plugins.selection:Selecting plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f137c491ac8>
2026-02-23 16:42:35,623:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/frontlineconstructionga.com.conf
2026-02-23 16:42:35,666:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2024-12-28 08:14:01 UTC.
2026-02-23 16:42:35,666:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2026-02-23 16:42:35,666:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2026-02-23 16:42:36,124:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f137c581470>
Prep: True
2026-02-23 16:42:36,124:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f137c581470>
Prep: True
2026-02-23 16:42:36,125:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f137c581470> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f137c581470>
2026-02-23 16:42:36,125:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2026-02-23 16:42:36,141:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/1496881526', new_authzr_uri=None, terms_of_service=None), 6eef7b6e72a83da2cef2f162ab0fae14, Meta(creation_dt=datetime.datetime(2024, 1, 3, 5, 42, 22, tzinfo=<UTC>), creation_host='hwsrv-1092325.hostwindsdns.com', register_to_eff=None))>
2026-02-23 16:42:36,148:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2026-02-23 16:42:36,153:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2026-02-23 16:42:36,273:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 1033
2026-02-23 16:42:36,274:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:36 GMT
Content-Type: application/json
Content-Length: 1033
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "profiles": {
      "classic": "https://letsencrypt.org/docs/profiles#classic",
      "shortlived": "https://letsencrypt.org/docs/profiles#shortlived",
      "tlsclient": "https://letsencrypt.org/docs/profiles#tlsclient",
      "tlsserver": "https://letsencrypt.org/docs/profiles#tlsserver"
    },
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.6-August-18-2025.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "oEqG2JVqjIw": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/acme/renewal-info",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2026-02-23 16:42:36,276:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for frontlineconstructionga.com
2026-02-23 16:42:36,506:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/2215_key-certbot.pem
2026-02-23 16:42:36,565:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/2215_csr-certbot.pem
2026-02-23 16:42:36,566:DEBUG:acme.client:Requesting fresh nonce
2026-02-23 16:42:36,566:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2026-02-23 16:42:36,605:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2026-02-23 16:42:36,606:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:36 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 4AH-2vvBam-7zHsak8S_k-XrQE0toRZfDTealEiTUHN7_QYGbOI
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2026-02-23 16:42:36,606:DEBUG:acme.client:Storing nonce: 4AH-2vvBam-7zHsak8S_k-XrQE0toRZfDTealEiTUHN7_QYGbOI
2026-02-23 16:42:36,607:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "frontlineconstructionga.com"\n    }\n  ]\n}'
2026-02-23 16:42:36,611:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICI0QUgtMnZ2QmFtLTd6SHNhazhTX2stWHJRRTB0b1JaZkRUZWFsRWlUVUhON19RWUdiT0kiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  "signature": "Y34SZPJv4eAnk6SGvec2zAh1LBr3YmYop_5296NDzcDuujSGuMRt7_6gjFu6_lIpKYt9Vv9b1GJp8Qspmohmcib9YtA89-Kj02snnZb7qJQBlnCg6mznLneM00kTFHeitdSfQG6hwQ2YWc3lf6g6s03-nPy06UDXbC3CynseEBDf9t1FUlxxPseP0yEuX6t3nr2-ge_aebiwKrZsyXMEYgAFbiAXwYLVdD6mWT4hNW1UNoMsiqX4fHvXJOcf_lPKqBeTCEH4b1sDC1oUGmBl2OJ40NYXRn8gzVCZQu3UgcQReONiXEVH66yCMuEXWKGzJ4_QwZAMqhUb2nfsMN9jTw",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImZyb250bGluZWNvbnN0cnVjdGlvbmdhLmNvbSIKICAgIH0KICBdCn0"
}
2026-02-23 16:42:36,711:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 361
2026-02-23 16:42:36,712:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Mon, 23 Feb 2026 16:42:36 GMT
Content-Type: application/json
Content-Length: 361
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/483583901166
Replay-Nonce: 4AH-2vvBK9ENuP58CuPiNBaTQ7HEz1ENvWyVyGHOq3AWXNwfipE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2026-03-02T16:42:36Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "frontlineconstructionga.com"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307423446"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/483583901166"
}
2026-02-23 16:42:36,713:DEBUG:acme.client:Storing nonce: 4AH-2vvBK9ENuP58CuPiNBaTQ7HEz1ENvWyVyGHOq3AWXNwfipE
2026-02-23 16:42:36,713:DEBUG:acme.client:JWS payload:
b''
2026-02-23 16:42:36,716:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307423446:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICI0QUgtMnZ2Qks5RU51UDU4Q3VQaU5CYVRRN0hFejFFTnZXeVZ5R0hPcTNBV1hOd2ZpcEUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjYzMzA3NDIzNDQ2In0",
  "signature": "kkbNHIil3X7lpckXWYWRLJRjx1tyC6UMxyOry-t3Kw7wVC4Uv0DgsZkjH7OhhLdi-k7W-vECB2g63MzKsklT7VdCkVzIza1yNNnYou6fVPXUOQu_fjCpU2H2eqmUaqSYGU_YmEYsYOS0EothkRRtAk9ts9jxFxYsEbsSYMUTSnfNWoRPYpItGRJgfHAEW-nVX2558Oq1lvd-Ege6x34iJea_-3ODg5igkixgMRmWcpj0dcKSBvTY3945HVrokCNZNE6z-Q02D5xclAeL7i6lBGX81lfkQZzlFOQ0id_cJtR8P__qZZWchuHyqjchXhcBhnxl2WL0iBCGK84A3cN6Tw",
  "payload": ""
}
2026-02-23 16:42:36,756:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/663307423446 HTTP/1.1" 200 835
2026-02-23 16:42:36,757:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:36 GMT
Content-Type: application/json
Content-Length: 835
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 4AH-2vvBUGfRU2LjaVl-IoDGTZHfibEcGk_g0TvLSkBZPySCaFw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "pending",
  "expires": "2026-03-02T16:42:36Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/PqS8AQ",
      "status": "pending",
      "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/C0DKJg",
      "status": "pending",
      "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c"
    },
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/_ILFiQ",
      "status": "pending",
      "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c"
    }
  ]
}
2026-02-23 16:42:36,758:DEBUG:acme.client:Storing nonce: 4AH-2vvBUGfRU2LjaVl-IoDGTZHfibEcGk_g0TvLSkBZPySCaFw
2026-02-23 16:42:36,759:INFO:certbot._internal.auth_handler:Performing the following challenges:
2026-02-23 16:42:36,759:INFO:certbot._internal.auth_handler:http-01 challenge for frontlineconstructionga.com
2026-02-23 16:42:36,826:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2026-02-23 16:42:36,827:DEBUG:certbot.reverter:Creating backup of /etc/nginx/default.d/php.conf
2026-02-23 16:42:36,828:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
2026-02-23 16:42:36,828:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
2026-02-23 16:42:36,828:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
2026-02-23 16:42:36,829:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2026-02-23 16:42:36,829:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranotinsurance.com.conf
2026-02-23 16:42:36,830:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
2026-02-23 16:42:36,830:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
2026-02-23 16:42:36,830:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/frontlineconstructionga.com.conf
2026-02-23 16:42:36,831:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranoinvestmentsgroup.com.conf
2026-02-23 16:42:36,831:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php-fpm.conf
2026-02-23 16:42:36,832:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2026-02-23 16:42:36,832:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
2026-02-23 16:42:36,834:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
# For more information on configuration, see:
#   * Official English Documentation: http://nginx.org/en/docs/
#   * Official Russian Documentation: http://nginx.org/ru/docs/

user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;

# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;

events {
    worker_connections 1024;
}

http {
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile            on;
    tcp_nopush          on;
    tcp_nodelay         on;
    keepalive_timeout   65;
    types_hash_max_size 2048;

    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;

    # Load modular configuration files from the /etc/nginx/conf.d directory.
    # See http://nginx.org/en/docs/ngx_core_module.html#include
    # for more information.
    include /etc/nginx/conf.d/*.conf;

    server {
        listen       80 default_server;
        listen       [::]:80 default_server;
        server_name  _;
        root         /usr/share/nginx/html;

        # Load configuration files for the default server block.
        include /etc/nginx/default.d/*.conf;

        location / {
        }

        error_page 404 /404.html;
            location = /40x.html {
        }

        error_page 500 502 503 504 /50x.html;
            location = /50x.html {
        }
    }

# Settings for a TLS enabled server.
#
#    server {
#        listen       443 ssl http2 default_server;
#        listen       [::]:443 ssl http2 default_server;
#        server_name  _;
#        root         /usr/share/nginx/html;
#
#        ssl_certificate "/etc/pki/nginx/server.crt";
#        ssl_certificate_key "/etc/pki/nginx/private/server.key";
#        ssl_session_cache shared:SSL:1m;
#        ssl_session_timeout  10m;
#        ssl_ciphers PROFILE=SYSTEM;
#        ssl_prefer_server_ciphers on;
#
#        # Load configuration files for the default server block.
#        include /etc/nginx/default.d/*.conf;
#
#        location / {
#        }
#
#        error_page 404 /404.html;
#            location = /40x.html {
#        }
#
#        error_page 500 502 503 504 /50x.html;
#            location = /50x.html {
#        }
#    }

}


2026-02-23 16:42:36,836:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/conf.d/frontlineconstructionga.com.conf:
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


	server_name frontlineconstructionga.com;

        root /var/www/frontlineconstructionga.com/public_html;
        index index.php index.html index.htm index.nginx-debian.html;

	client_max_body_size 110M;
	client_header_buffer_size 1024k;
	large_client_header_buffers 16 1024k;
        
	location / {
                try_files $uri $uri/ /index.php$is_args$args;
        }

	error_page 404 /404.html;
	error_page 500 502 503 504 /50x.html;
	location = /50x.html {
		root /usr/share/nginx/html;
	}

	location ~ \.php$ {
		try_files $uri =404;
		fastcgi_pass unix:/var/run/php-fpm/www.sock;
		fastcgi_index index.php;
		fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
		include fastcgi_params;
		fastcgi_connect_timeout 300s;
		fastcgi_read_timeout 300s;
		fastcgi_send_timeout 300s;
	}

        location ~ /\.ht {
                deny all;
        }

	location = /favicon.ico { log_not_found off; access_log off; }
	location = /robots.txt { log_not_found off; access_log off; allow all; }
	location ~* \.(css|gif|ico|jpeg|jpg|js|png)$ {
        expires max;
        log_not_found off;
    }


    listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/frontlineconstructionga.com/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/frontlineconstructionga.com/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

location = /.well-known/acme-challenge/UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c{default_type text/plain;return 200 UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


    if ($host = frontlineconstructionga.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


	server_name frontlineconstructionga.com;
    listen 80;
    return 404; # managed by Certbot


location = /.well-known/acme-challenge/UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c{default_type text/plain;return 200 UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}
2026-02-23 16:42:37,879:DEBUG:acme.client:JWS payload:
b'{}'
2026-02-23 16:42:37,882:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/PqS8AQ:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICI0QUgtMnZ2QlVHZlJVMkxqYVZsLUlvREdUWkhmaWJFY0drX2cwVHZMU2tCWlB5U0NhRnciLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzE0OTY4ODE1MjYvNjYzMzA3NDIzNDQ2L1BxUzhBUSJ9",
  "signature": "FuzcoyVwngWNl-Xur1mP1S393ur6uGrDBoWmPugE5xQPKS21-Ems7oa6A5_KMfNlah9_cDVhB9PiPNBeDBcYecYPDk8IgJnBk58qXAOo0JbtexT1HPbOMIrSLCKOCcclvomEmkBU7eBCCD-p1bQiNqO88E9RLix_GnpT0abtz5lPHt61XdMbRVzMDfkc0dZBqNC4WSEe3pY9tuLDVBM62fpe5BXWSBe-NPmdBz1Y72uhk46gYHVO-GN4wQ8w0CZbg7lOxwMMiaBGocKbUoRPHBH3FjmZgkexVOX2Et7ExOdmU-d_PBYUCGbpDBNZ6-g75vi__D0zNWwN556FPHNo_w",
  "payload": "e30"
}
2026-02-23 16:42:37,926:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall/1496881526/663307423446/PqS8AQ HTTP/1.1" 200 195
2026-02-23 16:42:37,927:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:37 GMT
Content-Type: application/json
Content-Length: 195
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307423446>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/PqS8AQ
Replay-Nonce: 4AH-2vvBirsDXc1rJHsmVjte2trkVUUhPAytWvJzFrwPRbZgZ84
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/PqS8AQ",
  "status": "pending",
  "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c"
}
2026-02-23 16:42:37,927:DEBUG:acme.client:Storing nonce: 4AH-2vvBirsDXc1rJHsmVjte2trkVUUhPAytWvJzFrwPRbZgZ84
2026-02-23 16:42:37,928:INFO:certbot._internal.auth_handler:Waiting for verification...
2026-02-23 16:42:38,930:DEBUG:acme.client:JWS payload:
b''
2026-02-23 16:42:38,934:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307423446:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICI0QUgtMnZ2Qmlyc0RYYzFySkhzbVZqdGUydHJrVlVVaFBBeXRXdkp6RnJ3UFJiWmdaODQiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjYzMzA3NDIzNDQ2In0",
  "signature": "LNeUK4Vh6stKV8TWExrqyNhR_S63u6kVE22ghyRtj9wl1xRRsxnqalytpsrWfqcLUG6rud92babVTadgVBe17lPeX4nCcVGaAPmlz2wlFhSVD_yhnwnmavEtBAIC94NbFe_vZTV5rSltkipVQ5BMUmW803cNS8jioURLb1ZLO3TK9PZfmErNXHJ7VMYnskCsvFepTsfW2HhBdyKzauWnHHfZRI744DumwWmloL0K4Px2yEyR8vxPhASx75Z1F3V0eV2HdEtHtqIg2lh0n3MB94eof6DOI4VHNrSzlEvf74qiSbRuG6MZTdxs09kqRqtfBsveoUWNnt4Hx9htCMf0Nw",
  "payload": ""
}
2026-02-23 16:42:38,976:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/663307423446 HTTP/1.1" 200 835
2026-02-23 16:42:38,977:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:38 GMT
Content-Type: application/json
Content-Length: 835
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: NeKnt8TG6korPUZG7pHzb2o7XPj2qP3_QTzHjp4Cc8OkpshbeMY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "pending",
  "expires": "2026-03-02T16:42:36Z",
  "challenges": [
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/_ILFiQ",
      "status": "pending",
      "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c"
    },
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/PqS8AQ",
      "status": "pending",
      "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/C0DKJg",
      "status": "pending",
      "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c"
    }
  ]
}
2026-02-23 16:42:38,978:DEBUG:acme.client:Storing nonce: NeKnt8TG6korPUZG7pHzb2o7XPj2qP3_QTzHjp4Cc8OkpshbeMY
2026-02-23 16:42:41,982:DEBUG:acme.client:JWS payload:
b''
2026-02-23 16:42:41,986:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307423446:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJOZUtudDhURzZrb3JQVVpHN3BIemIybzdYUGoycVAzX1FUekhqcDRDYzhPa3BzaGJlTVkiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjYzMzA3NDIzNDQ2In0",
  "signature": "vVNEtNhig6j6ULsY4G6uWAGig9OkKFXtdD7Er_ehV7XhDCytzys06bTx1f2cJX4c6YuhGzVG0AbIsamHUGBMtTHmUYboK7dGbEwAhlhU3OUwjiwO_BDxgyKmklJz2iUN4Ri1u3sTpUGp2uJo92qR9YO4tPDRq96vSyX72lgKQN9_f7DefJFzFObRHO9rC1ASkpSdhLpElnQKEjVdwWRbLwsG4lSD9xmCQ5VbFJUx8x5wuesubywXhi0GFaFA6ycPzPrbdqyxqh0EcK0q01uysSGKL_00RA_YBrpA--RlmxqF1hHhGIZ2xhBQaDLGIw4H63EkpAwxdY-2gbcO6k5rtg",
  "payload": ""
}
2026-02-23 16:42:42,028:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/663307423446 HTTP/1.1" 200 1084
2026-02-23 16:42:42,029:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:42 GMT
Content-Type: application/json
Content-Length: 1084
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: NeKnt8TGhzDvoQyCfsEM45IQz4VLND2aTnx-PdrP0JQVFMJkaxk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "frontlineconstructionga.com"
  },
  "status": "invalid",
  "expires": "2026-03-02T16:42:36Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307423446/PqS8AQ",
      "status": "invalid",
      "validated": "2026-02-23T16:42:37Z",
      "error": {
        "type": "urn:ietf:params:acme:error:unauthorized",
        "detail": "65.109.65.153: Invalid response from http://frontlineconstructionga.com/.well-known/acme-challenge/UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c: 404",
        "status": 403
      },
      "token": "UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c",
      "validationRecord": [
        {
          "url": "http://frontlineconstructionga.com/.well-known/acme-challenge/UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c",
          "hostname": "frontlineconstructionga.com",
          "port": "80",
          "addressesResolved": [
            "65.109.65.153"
          ],
          "addressUsed": "65.109.65.153"
        }
      ]
    }
  ]
}
2026-02-23 16:42:42,029:DEBUG:acme.client:Storing nonce: NeKnt8TGhzDvoQyCfsEM45IQz4VLND2aTnx-PdrP0JQVFMJkaxk
2026-02-23 16:42:42,030:INFO:certbot._internal.auth_handler:Challenge failed for domain frontlineconstructionga.com
2026-02-23 16:42:42,030:INFO:certbot._internal.auth_handler:http-01 challenge for frontlineconstructionga.com
2026-02-23 16:42:42,031:DEBUG:certbot._internal.display.obj:Notifying user: 
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
  Domain: frontlineconstructionga.com
  Type:   unauthorized
  Detail: 65.109.65.153: Invalid response from http://frontlineconstructionga.com/.well-known/acme-challenge/UTFRFt4C-NCTtcM7RiRMlTVW_mEzWUe-GclnULFqC2c: 404

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

2026-02-23 16:42:42,033:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2026-02-23 16:42:42,033:DEBUG:certbot._internal.error_handler:Calling registered functions
2026-02-23 16:42:42,033:INFO:certbot._internal.auth_handler:Cleaning up challenges
2026-02-23 16:42:43,474:ERROR:certbot._internal.renewal:Failed to renew certificate frontlineconstructionga.com with error: Some challenges have failed.
2026-02-23 16:42:43,477:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 485, in handle_renewal_request
    main.renew_cert(lineage_config, plugins, renewal_candidate)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1441, in renew_cert
    renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 127, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 345, in renew_cert
    new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 424, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 476, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2026-02-23 16:42:43,478:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/somospueblo.com.conf
2026-02-23 16:42:43,517:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2024-05-01 12:57:39 UTC.
2026-02-23 16:42:43,518:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2026-02-23 16:42:43,518:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2026-02-23 16:42:43,997:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f1379286438>
Prep: True
2026-02-23 16:42:43,998:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f1379286438>
Prep: True
2026-02-23 16:42:43,998:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f1379286438> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f1379286438>
2026-02-23 16:42:43,998:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2026-02-23 16:42:44,011:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/1496881526', new_authzr_uri=None, terms_of_service=None), 6eef7b6e72a83da2cef2f162ab0fae14, Meta(creation_dt=datetime.datetime(2024, 1, 3, 5, 42, 22, tzinfo=<UTC>), creation_host='hwsrv-1092325.hostwindsdns.com', register_to_eff=None))>
2026-02-23 16:42:44,013:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2026-02-23 16:42:44,015:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2026-02-23 16:42:44,232:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 1033
2026-02-23 16:42:44,233:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:44 GMT
Content-Type: application/json
Content-Length: 1033
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "profiles": {
      "classic": "https://letsencrypt.org/docs/profiles#classic",
      "shortlived": "https://letsencrypt.org/docs/profiles#shortlived",
      "tlsclient": "https://letsencrypt.org/docs/profiles#tlsclient",
      "tlsserver": "https://letsencrypt.org/docs/profiles#tlsserver"
    },
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.6-August-18-2025.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "r2xda9s_7AM": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/acme/renewal-info",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2026-02-23 16:42:44,235:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for somospueblo.com
2026-02-23 16:42:44,428:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/2216_key-certbot.pem
2026-02-23 16:42:44,504:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/2216_csr-certbot.pem
2026-02-23 16:42:44,506:DEBUG:acme.client:Requesting fresh nonce
2026-02-23 16:42:44,506:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2026-02-23 16:42:44,544:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2026-02-23 16:42:44,545:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:44 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: NeKnt8TGbGrJQhgIA9BxGSZJGR2TDxJOv5c5uETdZBD61EcHkfk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2026-02-23 16:42:44,545:DEBUG:acme.client:Storing nonce: NeKnt8TGbGrJQhgIA9BxGSZJGR2TDxJOv5c5uETdZBD61EcHkfk
2026-02-23 16:42:44,546:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "somospueblo.com"\n    }\n  ]\n}'
2026-02-23 16:42:44,549:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJOZUtudDhUR2JHckpRaGdJQTlCeEdTWkpHUjJURHhKT3Y1YzV1RVRkWkJENjFFY0hrZmsiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  "signature": "B_Kjt5gSCNbkRaQdY27AulIGLCJy9ZnDAUsuAaUsKzFvmtZ2Qp30-lnL2eQucGAFFK2vSq4SxQiuihs-l6czctVujjUoYaK4fAhyQrpTx805hq-0O_AKdikV1U0JBltrScjnhe_q7La4posNIpecXxitRv_FAldNU8k3QgECnuG6UNU2kHr3oHbMiB-k8Cu_0ioXR2X_FwcjHgXWAX3oIneOyib7K9iLO_PHzAeFiOfrth7kOrhoQ5UMFp2mHiEY7vKQ8oeFMyfbVIKqfOZ7qd5evAwccIbUiwSZGS5H7e7xGTY03srSQffVQgk2UtIok8jm0_FuscaTxHW7AItYNQ",
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInNvbW9zcHVlYmxvLmNvbSIKICAgIH0KICBdCn0"
}
2026-02-23 16:42:44,632:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 349
2026-02-23 16:42:44,633:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Mon, 23 Feb 2026 16:42:44 GMT
Content-Type: application/json
Content-Length: 349
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/483583931806
Replay-Nonce: 4AH-2vvBtu317W9jSW59VZyoDVhomT5QBUoIjWZw29xTFjd3Pl0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2026-03-02T16:42:44Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "somospueblo.com"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307467966"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/483583931806"
}
2026-02-23 16:42:44,634:DEBUG:acme.client:Storing nonce: 4AH-2vvBtu317W9jSW59VZyoDVhomT5QBUoIjWZw29xTFjd3Pl0
2026-02-23 16:42:44,634:DEBUG:acme.client:JWS payload:
b''
2026-02-23 16:42:44,637:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307467966:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICI0QUgtMnZ2QnR1MzE3VzlqU1c1OVZaeW9EVmhvbVQ1UUJVb0lqV1p3Mjl4VEZqZDNQbDAiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjYzMzA3NDY3OTY2In0",
  "signature": "SI6QFh2VoT8Vs8q21tLW3PoRlv6A3JDuJez_Uy2NusMDteILcv2Lc_wcyqeGJEzwONRrn1kmInCaTAPp9wbpFDqBEXGDmELuK8s_x8AROf-QBRGS9YhEHOXa6_J5JuZg2QC2_Mosqz1v4BzcpSZQCizNvPbDqtZgif9SyGTkFzsRW5osu9hvrGnlmV7VwiJjZ4SF4W_gkiHj67BtFSVD3njDpvZ6V37JkLf4xQh6parfDVPZhtrWDkx0uOyqLGaAr0pyGmUHFXUvI9iY53eEaqPX1_CF6UEi90CKlSUi7ObqA6ZCdAEHyeJY-JpkBNhCxgaWqIa0qmYz12SzKttXeA",
  "payload": ""
}
2026-02-23 16:42:44,690:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/663307467966 HTTP/1.1" 200 823
2026-02-23 16:42:44,692:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:44 GMT
Content-Type: application/json
Content-Length: 823
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: NeKnt8TGG6QkwzN03kEln5DpGl5Jy4S70nbYo6X-qXuV-lQG9gc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "somospueblo.com"
  },
  "status": "pending",
  "expires": "2026-03-02T16:42:44Z",
  "challenges": [
    {
      "type": "dns-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307467966/FFLU0g",
      "status": "pending",
      "token": "xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc"
    },
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307467966/j6Ruxg",
      "status": "pending",
      "token": "xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc"
    },
    {
      "type": "tls-alpn-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307467966/-11rkg",
      "status": "pending",
      "token": "xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc"
    }
  ]
}
2026-02-23 16:42:44,692:DEBUG:acme.client:Storing nonce: NeKnt8TGG6QkwzN03kEln5DpGl5Jy4S70nbYo6X-qXuV-lQG9gc
2026-02-23 16:42:44,695:INFO:certbot._internal.auth_handler:Performing the following challenges:
2026-02-23 16:42:44,695:INFO:certbot._internal.auth_handler:http-01 challenge for somospueblo.com
2026-02-23 16:42:44,780:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2026-02-23 16:42:44,782:DEBUG:certbot.reverter:Creating backup of /etc/nginx/default.d/php.conf
2026-02-23 16:42:44,783:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
2026-02-23 16:42:44,784:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
2026-02-23 16:42:44,785:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
2026-02-23 16:42:44,785:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2026-02-23 16:42:44,786:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranotinsurance.com.conf
2026-02-23 16:42:44,787:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
2026-02-23 16:42:44,788:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
2026-02-23 16:42:44,789:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/frontlineconstructionga.com.conf
2026-02-23 16:42:44,789:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranoinvestmentsgroup.com.conf
2026-02-23 16:42:44,790:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php-fpm.conf
2026-02-23 16:42:44,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2026-02-23 16:42:44,792:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
2026-02-23 16:42:44,798:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
# For more information on configuration, see:
#   * Official English Documentation: http://nginx.org/en/docs/
#   * Official Russian Documentation: http://nginx.org/ru/docs/

user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;

# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;

events {
    worker_connections 1024;
}

http {
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile            on;
    tcp_nopush          on;
    tcp_nodelay         on;
    keepalive_timeout   65;
    types_hash_max_size 2048;

    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;

    # Load modular configuration files from the /etc/nginx/conf.d directory.
    # See http://nginx.org/en/docs/ngx_core_module.html#include
    # for more information.
    include /etc/nginx/conf.d/*.conf;

    server {
        listen       80 default_server;
        listen       [::]:80 default_server;
        server_name  _;
        root         /usr/share/nginx/html;

        # Load configuration files for the default server block.
        include /etc/nginx/default.d/*.conf;

        location / {
        }

        error_page 404 /404.html;
            location = /40x.html {
        }

        error_page 500 502 503 504 /50x.html;
            location = /50x.html {
        }
    }

# Settings for a TLS enabled server.
#
#    server {
#        listen       443 ssl http2 default_server;
#        listen       [::]:443 ssl http2 default_server;
#        server_name  _;
#        root         /usr/share/nginx/html;
#
#        ssl_certificate "/etc/pki/nginx/server.crt";
#        ssl_certificate_key "/etc/pki/nginx/private/server.key";
#        ssl_session_cache shared:SSL:1m;
#        ssl_session_timeout  10m;
#        ssl_ciphers PROFILE=SYSTEM;
#        ssl_prefer_server_ciphers on;
#
#        # Load configuration files for the default server block.
#        include /etc/nginx/default.d/*.conf;
#
#        location / {
#        }
#
#        error_page 404 /404.html;
#            location = /40x.html {
#        }
#
#        error_page 500 502 503 504 /50x.html;
#            location = /50x.html {
#        }
#    }



    server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot


        listen       80 ;
        listen       [::]:80 ;
    server_name somospueblo.com; # managed by Certbot
        root         /usr/share/nginx/html;

        # Load configuration files for the default server block.
        include /etc/nginx/default.d/*.conf;

        location / {
        }

        error_page 404 /404.html;
            location = /40x.html {
        }

        error_page 500 502 503 504 /50x.html;
            location = /50x.html {
        }
    
location = /.well-known/acme-challenge/xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc{default_type text/plain;return 200 xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot

}}


2026-02-23 16:42:45,840:DEBUG:acme.client:JWS payload:
b'{}'
2026-02-23 16:42:45,848:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307467966/j6Ruxg:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJOZUtudDhUR0c2UWt3ek4wM2tFbG41RHBHbDVKeTRTNzBuYllvNlgtcVh1Vi1sUUc5Z2MiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzE0OTY4ODE1MjYvNjYzMzA3NDY3OTY2L2o2UnV4ZyJ9",
  "signature": "g_q8IAz-Omeiq13XEzKME9eR_QAc_eNBd9RA_x-SmJEcQ_JN1_IaFmJCssSABkkxzO_SW4Mdyf9hDc7wxMrtk-MS5Lk_el4IIJHJ_HGhun5vuNGyM9pVh7Z6BiKOBKZDN6fE4IzfzFIF7or2VqerOweuZYRt_qhY3QQ2XzZgk0RIt7NnYlN1xW1u2fDtKkuirQkn_RGvPpJjfGhhPQttpTL-HOxDjIw1fPd8p9q55AssJHLX0b8mwim19Tw1VPUJGE1xr8TTH9SQlpBplzkSdUf5sVYkbWhhDTu9JYhRg6P0emcAdjt_DT-v7n0nVfsAnD7omaCv8TzbOYZT8DYrbQ",
  "payload": "e30"
}
2026-02-23 16:42:45,894:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall/1496881526/663307467966/j6Ruxg HTTP/1.1" 200 195
2026-02-23 16:42:45,895:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:45 GMT
Content-Type: application/json
Content-Length: 195
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307467966>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307467966/j6Ruxg
Replay-Nonce: NeKnt8TG40Ehp9WFz_1kfbez81ue_fiPUSvJYmZwCCeRdJHhhb4
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307467966/j6Ruxg",
  "status": "pending",
  "token": "xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc"
}
2026-02-23 16:42:45,896:DEBUG:acme.client:Storing nonce: NeKnt8TG40Ehp9WFz_1kfbez81ue_fiPUSvJYmZwCCeRdJHhhb4
2026-02-23 16:42:45,896:INFO:certbot._internal.auth_handler:Waiting for verification...
2026-02-23 16:42:46,898:DEBUG:acme.client:JWS payload:
b''
2026-02-23 16:42:46,901:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/663307467966:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJOZUtudDhURzQwRWhwOVdGel8xa2ZiZXo4MXVlX2ZpUFVTdkpZbVp3Q0NlUmRKSGhoYjQiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNjYzMzA3NDY3OTY2In0",
  "signature": "dJeClPRxdqInhzVO3StVTEqzwaeLnDtLMOWkIQIyIpE-jv4jUQ_wvUZp1jm24LqrYkWmGxfPSXhkILnlsvBxoVdWdGVd-OWxA2R4iNd3tPn-8BAfD_t7I0BRYRc8NmqtDDmIrD8Kxhq0J9fXpLoTGG6-OTfLG2cDaq4m8G-OsX_MYjo7GHjDi1eDFVMrTw5w2kvlIGPAcLF8K-EZeYSlS8DSZUnsJNLanMM9438KoPuIXiJBJkB_fDK48F0qYAaZ3syDDDo9Rx5RzTPHr5WnEjNOCvvFQSSudMXDuw0KTBZvdak47YFD76v5NTMNmME1ZoJwf01QqStK0reJIR2uVQ",
  "payload": ""
}
2026-02-23 16:42:46,941:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/663307467966 HTTP/1.1" 200 1364
2026-02-23 16:42:46,942:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 23 Feb 2026 16:42:46 GMT
Content-Type: application/json
Content-Length: 1364
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: NeKnt8TG_bUIhkAcLoo50-QaefaU-apfrTI8_nfOfgyxYEU7nqc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "somospueblo.com"
  },
  "status": "invalid",
  "expires": "2026-03-02T16:42:44Z",
  "challenges": [
    {
      "type": "http-01",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/663307467966/j6Ruxg",
      "status": "invalid",
      "validated": "2026-02-23T16:42:45Z",
      "error": {
        "type": "urn:ietf:params:acme:error:unauthorized",
        "detail": "146.190.135.150: Invalid response from https://somospueblo.com/.well-known/acme-challenge/xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc: 404",
        "status": 403
      },
      "token": "xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc",
      "validationRecord": [
        {
          "url": "http://somospueblo.com/.well-known/acme-challenge/xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc",
          "hostname": "somospueblo.com",
          "port": "80",
          "addressesResolved": [
            "146.190.135.150"
          ],
          "addressUsed": "146.190.135.150"
        },
        {
          "url": "https://somospueblo.com/.well-known/acme-challenge/xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc",
          "hostname": "somospueblo.com",
          "port": "443",
          "addressesResolved": [
            "146.190.135.150"
          ],
          "addressUsed": "146.190.135.150"
        }
      ]
    }
  ]
}
2026-02-23 16:42:46,942:DEBUG:acme.client:Storing nonce: NeKnt8TG_bUIhkAcLoo50-QaefaU-apfrTI8_nfOfgyxYEU7nqc
2026-02-23 16:42:46,943:INFO:certbot._internal.auth_handler:Challenge failed for domain somospueblo.com
2026-02-23 16:42:46,944:INFO:certbot._internal.auth_handler:http-01 challenge for somospueblo.com
2026-02-23 16:42:46,944:DEBUG:certbot._internal.display.obj:Notifying user: 
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
  Domain: somospueblo.com
  Type:   unauthorized
  Detail: 146.190.135.150: Invalid response from https://somospueblo.com/.well-known/acme-challenge/xE4Rr9rePUtqkVzcQkuV8vLjdJhqsIUZ-uBIC88RKSc: 404

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

2026-02-23 16:42:46,944:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2026-02-23 16:42:46,944:DEBUG:certbot._internal.error_handler:Calling registered functions
2026-02-23 16:42:46,945:INFO:certbot._internal.auth_handler:Cleaning up challenges
2026-02-23 16:42:48,392:ERROR:certbot._internal.renewal:Failed to renew certificate somospueblo.com with error: Some challenges have failed.
2026-02-23 16:42:48,394:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 485, in handle_renewal_request
    main.renew_cert(lineage_config, plugins, renewal_candidate)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1441, in renew_cert
    renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 127, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 345, in renew_cert
    new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 424, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 476, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2026-02-23 16:42:48,394:DEBUG:certbot._internal.display.obj:Notifying user: 
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2026-02-23 16:42:48,394:DEBUG:certbot._internal.display.obj:Notifying user: The following certificates are not due for renewal yet:
2026-02-23 16:42:48,395:DEBUG:certbot._internal.display.obj:Notifying user:   /etc/letsencrypt/live/aranoinvestmentsgroup.com/fullchain.pem expires on 2026-05-06 (skipped)
  /etc/letsencrypt/live/aranotinsurance.com/fullchain.pem expires on 2026-04-28 (skipped)
2026-02-23 16:42:48,395:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed:
2026-02-23 16:42:48,395:ERROR:certbot._internal.renewal:  /etc/letsencrypt/live/frontlineconstructionga.com/fullchain.pem (failure)
  /etc/letsencrypt/live/somospueblo.com/fullchain.pem (failure)
2026-02-23 16:42:48,395:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2026-02-23 16:42:48,396:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 11, in <module>
    load_entry_point('certbot==1.22.0', 'console_scripts', 'certbot')()
  File "/usr/lib/python3.6/site-packages/certbot/main.py", line 19, in main
    return internal_main.main(cli_args)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1632, in main
    return config.func(config, plugins)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1518, in renew
    renewal.handle_renewal_request(config)
  File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 512, in handle_renewal_request
    len(renew_failures), len(parse_failures)))
certbot.errors.Error: 2 renew failure(s), 0 parse failure(s)
2026-02-23 16:42:48,397:ERROR:certbot._internal.log:2 renew failure(s), 0 parse failure(s)