| Server IP : 108.174.197.172 / Your IP : 216.73.217.162 Web Server : nginx/1.14.1 System : Linux hwsrv-1092325.hostwindsdns.com 4.18.0-553.5.1.el8.x86_64 #1 SMP Tue May 21 05:46:01 UTC 2024 x86_64 User : nginx ( 993) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /var/log/letsencrypt/ |
Upload File : |
2025-04-15 18:44:34,462:DEBUG:certbot._internal.main:certbot version: 1.22.0
2025-04-15 18:44:34,465:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
2025-04-15 18:44:34,465:DEBUG:certbot._internal.main:Arguments: ['--noninteractive', '--no-random-sleep-on-renew']
2025-04-15 18:44:34,467:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2025-04-15 18:44:34,557:DEBUG:certbot._internal.log:Root logging level set at 30
2025-04-15 18:44:34,560:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/aranoinvestmentsgroup.com.conf
2025-04-15 18:44:34,618:DEBUG:certbot._internal.plugins.selection:Requested authenticator <certbot._internal.cli.cli_utils._Default object at 0x7f632c9f7518> and installer <certbot._internal.cli.cli_utils._Default object at 0x7f632c9f7518>
2025-04-15 18:44:34,654:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r11.o.lencr.org:80
2025-04-15 18:44:34,701:DEBUG:urllib3.connectionpool:http://r11.o.lencr.org:80 "POST / HTTP/1.1" 200 504
2025-04-15 18:44:34,704:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/aranoinvestmentsgroup.com/cert8.pem is signed by the certificate's issuer.
2025-04-15 18:44:34,712:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/aranoinvestmentsgroup.com/cert8.pem is: OCSPCertStatus.GOOD
2025-04-15 18:44:34,720:DEBUG:certbot._internal.display.obj:Notifying user: Certificate not yet due for renewal
2025-04-15 18:44:34,722:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-04-15 18:44:34,732:DEBUG:certbot._internal.plugins.selection:Selecting plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632c9eec18>
2025-04-15 18:44:34,735:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/aranotinsurance.com.conf
2025-04-15 18:44:34,780:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r10.o.lencr.org:80
2025-04-15 18:44:34,866:DEBUG:urllib3.connectionpool:http://r10.o.lencr.org:80 "POST / HTTP/1.1" 200 504
2025-04-15 18:44:34,869:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/aranotinsurance.com/cert9.pem is signed by the certificate's issuer.
2025-04-15 18:44:34,870:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/aranotinsurance.com/cert9.pem is: OCSPCertStatus.GOOD
2025-04-15 18:44:34,873:DEBUG:certbot._internal.display.obj:Notifying user: Certificate not yet due for renewal
2025-04-15 18:44:34,875:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-04-15 18:44:34,890:DEBUG:certbot._internal.plugins.selection:Selecting plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632e8172e8>
2025-04-15 18:44:34,891:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/frontlineconstructionga.com.conf
2025-04-15 18:44:34,948:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2024-12-28 08:14:01 UTC.
2025-04-15 18:44:34,949:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2025-04-15 18:44:34,949:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-04-15 18:44:35,422:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632d6f87f0>
Prep: True
2025-04-15 18:44:35,423:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632d6f87f0>
Prep: True
2025-04-15 18:44:35,424:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632d6f87f0> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632d6f87f0>
2025-04-15 18:44:35,424:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2025-04-15 18:44:35,436:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/1496881526', new_authzr_uri=None, terms_of_service=None), 6eef7b6e72a83da2cef2f162ab0fae14, Meta(creation_dt=datetime.datetime(2024, 1, 3, 5, 42, 22, tzinfo=<UTC>), creation_host='hwsrv-1092325.hostwindsdns.com', register_to_eff=None))>
2025-04-15 18:44:35,439:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2025-04-15 18:44:35,441:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2025-04-15 18:44:35,551:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 1042
2025-04-15 18:44:35,552:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:35 GMT
Content-Type: application/json
Content-Length: 1042
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"OF_crsFEHiY": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"profiles": {
"classic": "https://letsencrypt.org/docs/profiles#classic",
"shortlived": "https://letsencrypt.org/docs/profiles#shortlived (not yet generally available)",
"tlsserver": "https://letsencrypt.org/docs/profiles#tlsserver (not yet generally available)"
},
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.5-February-24-2025.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-03/renewalInfo",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2025-04-15 18:44:35,554:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for frontlineconstructionga.com
2025-04-15 18:44:36,002:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/1057_key-certbot.pem
2025-04-15 18:44:36,037:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/1057_csr-certbot.pem
2025-04-15 18:44:36,038:DEBUG:acme.client:Requesting fresh nonce
2025-04-15 18:44:36,038:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2025-04-15 18:44:36,077:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2025-04-15 18:44:36,077:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:36 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: D5oHpcUThFaMOkpA_cQevADnEV0_QhQpx2Sd4vQM_FUqqwRxD_I
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2025-04-15 18:44:36,078:DEBUG:acme.client:Storing nonce: D5oHpcUThFaMOkpA_cQevADnEV0_QhQpx2Sd4vQM_FUqqwRxD_I
2025-04-15 18:44:36,078:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "frontlineconstructionga.com"\n }\n ]\n}'
2025-04-15 18:44:36,082:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJENW9IcGNVVGhGYU1Pa3BBX2NRZXZBRG5FVjBfUWhRcHgyU2Q0dlFNX0ZVcXF3UnhEX0kiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
"signature": "ooy1soL8Hklt7CB2yUeB_eDb_6eEXUiodVz_3qQC1a8Hu5AVYb_GhjTSwnx8yWKJbPGhkgi91J0yvbDElPj3Lnn5295UHr1Ybx0jgKvipDGE0y-ZXtsnjshRMKsmwhSTNCe0Hpp6abJ3VcYR911FjxCCIYROTUiXsIW5mO_v7TBD-rxmFZBQIGeXuHBkoDbh1siKJsBR_rpW39_kCiajv3UIqcUw6hZjHgNvdqKwRvQFesTAMuR5NOXmJvON2Pi6eKv8wCI3bl5qN7lMHSKbWLDoj-zldU1yLFg1hvSFAoMewD-oD27-x3HU75jRFT77ev8SmQTn3NMASMKQ5MrSXw",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImZyb250bGluZWNvbnN0cnVjdGlvbmdhLmNvbSIKICAgIH0KICBdCn0"
}
2025-04-15 18:44:36,164:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 361
2025-04-15 18:44:36,165:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Tue, 15 Apr 2025 18:44:36 GMT
Content-Type: application/json
Content-Length: 361
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/374505044357
Replay-Nonce: 7V2_3F5ef8Z5QKEQn6AkOppmO80Bg_yZarPpIkl1YwtX4fuuXGY
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"status": "pending",
"expires": "2025-04-22T18:44:36Z",
"identifiers": [
{
"type": "dns",
"value": "frontlineconstructionga.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070134887"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/374505044357"
}
2025-04-15 18:44:36,165:DEBUG:acme.client:Storing nonce: 7V2_3F5ef8Z5QKEQn6AkOppmO80Bg_yZarPpIkl1YwtX4fuuXGY
2025-04-15 18:44:36,165:DEBUG:acme.client:JWS payload:
b''
2025-04-15 18:44:36,168:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070134887:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICI3VjJfM0Y1ZWY4WjVRS0VRbjZBa09wcG1PODBCZ195WmFyUHBJa2wxWXd0WDRmdXVYR1kiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNTA2MDcwMTM0ODg3In0",
"signature": "amYLQRwsxK7xgjopGaBuKF7S5lg83V170Pp5puekrRKEVfGOWDZOzyV0U487MdpYaerbhtrTNoY6uKLxvXLefU9MVHj9mzTfO_tjrzY3-Zim5L-OagDyxGPkQ_KhC-w9ISOsX1WLbmdGnu8vP3pMGPaNUNvkKbcVHtCTgbt8lCF0mBcFE0WBf9-r7oK47uG7LzCR_ETxzt3Vmb5Z5UnV53kT1eryWa9ZjXD1YPVUoNY8QUEPL15ACjLe15TJUcscm3kssL9B7ZbW8xA8oubfbspKP-wVVJOfMwfsaT1u5mt3xmJ615XRSN9jb4xVcuJYrcLq7lE-S6jMw1_3vg69tA",
"payload": ""
}
2025-04-15 18:44:36,210:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/506070134887 HTTP/1.1" 200 835
2025-04-15 18:44:36,211:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:36 GMT
Content-Type: application/json
Content-Length: 835
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: D5oHpcUTuLFbKtPAaJYBX310gRqFt6SwfTRl8Hr52BZe8O2C7o0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "frontlineconstructionga.com"
},
"status": "pending",
"expires": "2025-04-22T18:44:36Z",
"challenges": [
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070134887/nvv6uw",
"status": "pending",
"token": "7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM"
},
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070134887/jBKoTg",
"status": "pending",
"token": "7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM"
},
{
"type": "tls-alpn-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070134887/ArxNog",
"status": "pending",
"token": "7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM"
}
]
}
2025-04-15 18:44:36,211:DEBUG:acme.client:Storing nonce: D5oHpcUTuLFbKtPAaJYBX310gRqFt6SwfTRl8Hr52BZe8O2C7o0
2025-04-15 18:44:36,212:INFO:certbot._internal.auth_handler:Performing the following challenges:
2025-04-15 18:44:36,212:INFO:certbot._internal.auth_handler:http-01 challenge for frontlineconstructionga.com
2025-04-15 18:44:36,289:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2025-04-15 18:44:36,290:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
2025-04-15 18:44:36,290:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
2025-04-15 18:44:36,291:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/frontlineconstructionga.com.conf
2025-04-15 18:44:36,291:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
2025-04-15 18:44:36,291:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranoinvestmentsgroup.com.conf
2025-04-15 18:44:36,292:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
2025-04-15 18:44:36,292:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
2025-04-15 18:44:36,293:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2025-04-15 18:44:36,293:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranotinsurance.com.conf
2025-04-15 18:44:36,294:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
2025-04-15 18:44:36,294:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php-fpm.conf
2025-04-15 18:44:36,295:DEBUG:certbot.reverter:Creating backup of /etc/nginx/default.d/php.conf
2025-04-15 18:44:36,295:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2025-04-15 18:44:36,298:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
# For more information on configuration, see:
# * Official English Documentation: http://nginx.org/en/docs/
# * Official Russian Documentation: http://nginx.org/ru/docs/
user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;
# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;
events {
worker_connections 1024;
}
http {
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /var/log/nginx/access.log main;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
include /etc/nginx/mime.types;
default_type application/octet-stream;
# Load modular configuration files from the /etc/nginx/conf.d directory.
# See http://nginx.org/en/docs/ngx_core_module.html#include
# for more information.
include /etc/nginx/conf.d/*.conf;
server {
listen 80 default_server;
listen [::]:80 default_server;
server_name _;
root /usr/share/nginx/html;
# Load configuration files for the default server block.
include /etc/nginx/default.d/*.conf;
location / {
}
error_page 404 /404.html;
location = /40x.html {
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
}
}
# Settings for a TLS enabled server.
#
# server {
# listen 443 ssl http2 default_server;
# listen [::]:443 ssl http2 default_server;
# server_name _;
# root /usr/share/nginx/html;
#
# ssl_certificate "/etc/pki/nginx/server.crt";
# ssl_certificate_key "/etc/pki/nginx/private/server.key";
# ssl_session_cache shared:SSL:1m;
# ssl_session_timeout 10m;
# ssl_ciphers PROFILE=SYSTEM;
# ssl_prefer_server_ciphers on;
#
# # Load configuration files for the default server block.
# include /etc/nginx/default.d/*.conf;
#
# location / {
# }
#
# error_page 404 /404.html;
# location = /40x.html {
# }
#
# error_page 500 502 503 504 /50x.html;
# location = /50x.html {
# }
# }
}
2025-04-15 18:44:36,302:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/conf.d/frontlineconstructionga.com.conf:
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
server_name frontlineconstructionga.com;
root /var/www/frontlineconstructionga.com/public_html;
index index.php index.html index.htm index.nginx-debian.html;
client_max_body_size 110M;
client_header_buffer_size 1024k;
large_client_header_buffers 16 1024k;
location / {
try_files $uri $uri/ /index.php$is_args$args;
}
error_page 404 /404.html;
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root /usr/share/nginx/html;
}
location ~ \.php$ {
try_files $uri =404;
fastcgi_pass unix:/var/run/php-fpm/www.sock;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
include fastcgi_params;
fastcgi_connect_timeout 300s;
fastcgi_read_timeout 300s;
fastcgi_send_timeout 300s;
}
location ~ /\.ht {
deny all;
}
location = /favicon.ico { log_not_found off; access_log off; }
location = /robots.txt { log_not_found off; access_log off; allow all; }
location ~* \.(css|gif|ico|jpeg|jpg|js|png)$ {
expires max;
log_not_found off;
}
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/frontlineconstructionga.com/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/frontlineconstructionga.com/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
location = /.well-known/acme-challenge/7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM{default_type text/plain;return 200 7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot
}
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
if ($host = frontlineconstructionga.com) {
return 301 https://$host$request_uri;
} # managed by Certbot
server_name frontlineconstructionga.com;
listen 80;
return 404; # managed by Certbot
location = /.well-known/acme-challenge/7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM{default_type text/plain;return 200 7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot
}
2025-04-15 18:44:37,340:DEBUG:acme.client:JWS payload:
b'{}'
2025-04-15 18:44:37,344:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070134887/jBKoTg:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJENW9IcGNVVHVMRmJLdFBBYUpZQlgzMTBnUnFGdDZTd2ZUUmw4SHI1MkJaZThPMkM3bzAiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzE0OTY4ODE1MjYvNTA2MDcwMTM0ODg3L2pCS29UZyJ9",
"signature": "U6pI3wbLzNka0U_YaksSv0mydr1mTAtrwpALpgGw6ycYjEEsGsERw4veQwNn2t3i7mWvzAnEeHVsXjwINaCK05_PFC9R2RlLJLuO8-OFuT3mMIRtKLSDYlxJYD2G5GenkYjT8635eGzp61EXnZuC-MrgeUxBULPbztHWLKR9HdrUx1rprWGbbKLAzImvlr3OnzS0Gl9cEyj_zmakLu-wUFpJWbc9vLqzpDBsLOVAi23IrWDwdavKt83YppPVTpybY0leLCTn9iOEXRfFwNgvmvcIonFz7RHBQBK-aHlbkR2pFYcKqffFgNNWXaKR18j_3E4cUhT_0m8MhGGLn3FsZw",
"payload": "e30"
}
2025-04-15 18:44:37,401:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall/1496881526/506070134887/jBKoTg HTTP/1.1" 200 195
2025-04-15 18:44:37,402:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:37 GMT
Content-Type: application/json
Content-Length: 195
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070134887>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070134887/jBKoTg
Replay-Nonce: 7V2_3F5eHCVj-sPK75CMtjFnE4yCRrNxo-39sZlQO7QXBpTJF6o
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070134887/jBKoTg",
"status": "pending",
"token": "7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM"
}
2025-04-15 18:44:37,403:DEBUG:acme.client:Storing nonce: 7V2_3F5eHCVj-sPK75CMtjFnE4yCRrNxo-39sZlQO7QXBpTJF6o
2025-04-15 18:44:37,403:INFO:certbot._internal.auth_handler:Waiting for verification...
2025-04-15 18:44:38,405:DEBUG:acme.client:JWS payload:
b''
2025-04-15 18:44:38,408:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070134887:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICI3VjJfM0Y1ZUhDVmotc1BLNzVDTXRqRm5FNHlDUnJOeG8tMzlzWmxRTzdRWEJwVEpGNm8iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNTA2MDcwMTM0ODg3In0",
"signature": "lV7Sud66JH-nF-kz-vsC9DWowJ4U3Bub5e7jjGkr5attvHYYaDgYB872VLXPWkPYpR1KDVw9nI3dRP-Z3G_MWdzo0IMT43QEVk7a-X0ZnINtUPyP2XOou30w2WvpNDJitw8AuzjRtmoqoCi1CHIFg7XybfoomvLv4azjEAx9DM79liUlY3U6Ti9VEk5a0UMDN9X3jEh-kleGZRTn_m8WRpZJcL-zygx361MKHuszwYWOxEh9JDH0jE7PEbbxEl7P2OFGbKK9VkdSrmZC33KJm0RD-KW0cGLr55W8mIzWBuwmKGaJqLsNWhIk36Dyqaf1wTcqjD1t7KB9KDV6gTxk0Q",
"payload": ""
}
2025-04-15 18:44:38,450:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/506070134887 HTTP/1.1" 200 788
2025-04-15 18:44:38,450:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:38 GMT
Content-Type: application/json
Content-Length: 788
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 7V2_3F5eUFJw4vDyMWCezJjq_6wDH51ZwbkqFK6iGFLN8y5EAHo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "frontlineconstructionga.com"
},
"status": "invalid",
"expires": "2025-04-22T18:44:36Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070134887/jBKoTg",
"status": "invalid",
"validated": "2025-04-15T18:44:37Z",
"error": {
"type": "urn:ietf:params:acme:error:dns",
"detail": "DNS problem: SERVFAIL looking up A for frontlineconstructionga.com - the domain's nameservers may be malfunctioning; DNS problem: SERVFAIL looking up AAAA for frontlineconstructionga.com - the domain's nameservers may be malfunctioning",
"status": 400
},
"token": "7Eh5ny_cTaHqYlSPNQF5G75xms_xxngtQ3XIogS0kNM"
}
]
}
2025-04-15 18:44:38,451:DEBUG:acme.client:Storing nonce: 7V2_3F5eUFJw4vDyMWCezJjq_6wDH51ZwbkqFK6iGFLN8y5EAHo
2025-04-15 18:44:38,451:INFO:certbot._internal.auth_handler:Challenge failed for domain frontlineconstructionga.com
2025-04-15 18:44:38,452:INFO:certbot._internal.auth_handler:http-01 challenge for frontlineconstructionga.com
2025-04-15 18:44:38,452:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: frontlineconstructionga.com
Type: dns
Detail: DNS problem: SERVFAIL looking up A for frontlineconstructionga.com - the domain's nameservers may be malfunctioning; DNS problem: SERVFAIL looking up AAAA for frontlineconstructionga.com - the domain's nameservers may be malfunctioning
Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.
2025-04-15 18:44:38,453:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2025-04-15 18:44:38,453:DEBUG:certbot._internal.error_handler:Calling registered functions
2025-04-15 18:44:38,453:INFO:certbot._internal.auth_handler:Cleaning up challenges
2025-04-15 18:44:39,870:ERROR:certbot._internal.renewal:Failed to renew certificate frontlineconstructionga.com with error: Some challenges have failed.
2025-04-15 18:44:39,872:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 485, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1441, in renew_cert
renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 127, in _get_and_save_cert
renewal.renew_cert(config, domains, le_client, lineage)
File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 345, in renew_cert
new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 424, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 476, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2025-04-15 18:44:39,873:DEBUG:certbot._internal.display.obj:Notifying user: Processing /etc/letsencrypt/renewal/somospueblo.com.conf
2025-04-15 18:44:39,903:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2024-05-01 12:57:39 UTC.
2025-04-15 18:44:39,904:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2025-04-15 18:44:39,904:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2025-04-15 18:44:40,316:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632c9e6208>
Prep: True
2025-04-15 18:44:40,317:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Installer, Authenticator, Plugin
Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632c9e6208>
Prep: True
2025-04-15 18:44:40,317:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632c9e6208> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7f632c9e6208>
2025-04-15 18:44:40,317:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2025-04-15 18:44:40,329:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/1496881526', new_authzr_uri=None, terms_of_service=None), 6eef7b6e72a83da2cef2f162ab0fae14, Meta(creation_dt=datetime.datetime(2024, 1, 3, 5, 42, 22, tzinfo=<UTC>), creation_host='hwsrv-1092325.hostwindsdns.com', register_to_eff=None))>
2025-04-15 18:44:40,330:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2025-04-15 18:44:40,333:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2025-04-15 18:44:40,408:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 1042
2025-04-15 18:44:40,409:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:40 GMT
Content-Type: application/json
Content-Length: 1042
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"profiles": {
"classic": "https://letsencrypt.org/docs/profiles#classic",
"shortlived": "https://letsencrypt.org/docs/profiles#shortlived (not yet generally available)",
"tlsserver": "https://letsencrypt.org/docs/profiles#tlsserver (not yet generally available)"
},
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.5-February-24-2025.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-03/renewalInfo",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert",
"rr4GFiwTjds": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417"
}
2025-04-15 18:44:40,411:DEBUG:certbot._internal.display.obj:Notifying user: Renewing an existing certificate for somospueblo.com
2025-04-15 18:44:40,522:DEBUG:certbot.crypto_util:Generating RSA key (2048 bits): /etc/letsencrypt/keys/1058_key-certbot.pem
2025-04-15 18:44:40,548:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/1058_csr-certbot.pem
2025-04-15 18:44:40,549:DEBUG:acme.client:Requesting fresh nonce
2025-04-15 18:44:40,549:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2025-04-15 18:44:40,576:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2025-04-15 18:44:40,576:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:40 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: JYccJeq-eiljrk9EldJWMh-lLJnm-4P0IGhgLwUjX9PDNjzHQGU
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2025-04-15 18:44:40,577:DEBUG:acme.client:Storing nonce: JYccJeq-eiljrk9EldJWMh-lLJnm-4P0IGhgLwUjX9PDNjzHQGU
2025-04-15 18:44:40,577:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "somospueblo.com"\n }\n ]\n}'
2025-04-15 18:44:40,580:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJKWWNjSmVxLWVpbGpyazlFbGRKV01oLWxMSm5tLTRQMElHaGdMd1VqWDlQRE5qekhRR1UiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
"signature": "TyickK3FBgRPpjZ5V3_oh3CBcmk487ZFfkZifS4hA7dGo6xMD6Jl-HRlNAzWNzZVLrepkU17KLjk_xvYlErLyVc-KNCI0XFg_TPeOZ6QldnaeN09XPSIKh_OWwwxUBjgbJQOaPNiKuCRxIgjZEwjpsjaqC9VbodlK2_mT15MIsz9PBRc4U5IZNFkM1OuY7Oyr25kWXyiMUKQx4E632_xLnpLn77rAGDwRLiqdBNM4_s2s8PvjmGfLXf5cedrAgyNc8R-bXUDFVcZh0qag1SNcGR1QkGYvM1gEbNZ8O40y6mCBAj03hquk0F9WNzjs2SxLUhl2isLhlRvZ9B7T6qJng",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInNvbW9zcHVlYmxvLmNvbSIKICAgIH0KICBdCn0"
}
2025-04-15 18:44:40,764:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 349
2025-04-15 18:44:40,765:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Tue, 15 Apr 2025 18:44:40 GMT
Content-Type: application/json
Content-Length: 349
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/1496881526/374505061877
Replay-Nonce: y-2E8CztsWlKHXR3VU0ndvs5QdiaYOdJid_x9nvP0ms7kdWcgXs
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"status": "pending",
"expires": "2025-04-22T18:44:40Z",
"identifiers": [
{
"type": "dns",
"value": "somospueblo.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070162167"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1496881526/374505061877"
}
2025-04-15 18:44:40,765:DEBUG:acme.client:Storing nonce: y-2E8CztsWlKHXR3VU0ndvs5QdiaYOdJid_x9nvP0ms7kdWcgXs
2025-04-15 18:44:40,766:DEBUG:acme.client:JWS payload:
b''
2025-04-15 18:44:40,768:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070162167:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJ5LTJFOEN6dHNXbEtIWFIzVlUwbmR2czVRZGlhWU9kSmlkX3g5bnZQMG1zN2tkV2NnWHMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNTA2MDcwMTYyMTY3In0",
"signature": "sjzr1XJ-gKs9BcrRLe9Z2fVma3kwSdGpCQdH1VubzbXcOJqu6b19bnujIFf_Cdx_pfPBdMKgl6Yuyp_QdSDqNrm-4cZzrDjjibYUBVHaX3FxggrwSeUn2L4tuJJPIlSuCErabgvpoySjg6ykZkozfZLMtj8F5ikvToEncTFibXvXRTTkRDCU0JaYQVQ6OH-zim-cshI1byhjbp-dScLnX1cgMTGwjvNW93Nt8JTWXUFpiLnXziV3M2HuSvN7adsiZE8cotkx731wyd6hez0Be-i7jklvU3lv6Yc_Ngg5IvPsk5pJvpUonRKLbu3hyj8v-c38mfDUtudDmTFG99CyJQ",
"payload": ""
}
2025-04-15 18:44:40,804:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/506070162167 HTTP/1.1" 200 823
2025-04-15 18:44:40,804:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:40 GMT
Content-Type: application/json
Content-Length: 823
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: y-2E8CztDfJM31CcRx377Vq61YhxuaWt2oHKdYbUxFUKQHKgvU8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "somospueblo.com"
},
"status": "pending",
"expires": "2025-04-22T18:44:40Z",
"challenges": [
{
"type": "tls-alpn-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/ACz8lA",
"status": "pending",
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k"
},
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/taCsXg",
"status": "pending",
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k"
},
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/yywTMw",
"status": "pending",
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k"
}
]
}
2025-04-15 18:44:40,805:DEBUG:acme.client:Storing nonce: y-2E8CztDfJM31CcRx377Vq61YhxuaWt2oHKdYbUxFUKQHKgvU8
2025-04-15 18:44:40,805:INFO:certbot._internal.auth_handler:Performing the following challenges:
2025-04-15 18:44:40,806:INFO:certbot._internal.auth_handler:http-01 challenge for somospueblo.com
2025-04-15 18:44:40,875:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2025-04-15 18:44:40,876:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-xslt-filter.conf
2025-04-15 18:44:40,876:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-mail.conf
2025-04-15 18:44:40,877:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/frontlineconstructionga.com.conf
2025-04-15 18:44:40,877:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-stream.conf
2025-04-15 18:44:40,878:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranoinvestmentsgroup.com.conf
2025-04-15 18:44:40,878:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
2025-04-15 18:44:40,878:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-image-filter.conf
2025-04-15 18:44:40,879:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2025-04-15 18:44:40,879:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/aranotinsurance.com.conf
2025-04-15 18:44:40,880:DEBUG:certbot.reverter:Creating backup of /usr/share/nginx/modules/mod-http-perl.conf
2025-04-15 18:44:40,880:DEBUG:certbot.reverter:Creating backup of /etc/nginx/conf.d/php-fpm.conf
2025-04-15 18:44:40,880:DEBUG:certbot.reverter:Creating backup of /etc/nginx/default.d/php.conf
2025-04-15 18:44:40,881:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2025-04-15 18:44:40,883:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
# For more information on configuration, see:
# * Official English Documentation: http://nginx.org/en/docs/
# * Official Russian Documentation: http://nginx.org/ru/docs/
user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;
# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;
events {
worker_connections 1024;
}
http {
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /var/log/nginx/access.log main;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
include /etc/nginx/mime.types;
default_type application/octet-stream;
# Load modular configuration files from the /etc/nginx/conf.d directory.
# See http://nginx.org/en/docs/ngx_core_module.html#include
# for more information.
include /etc/nginx/conf.d/*.conf;
server {
listen 80 default_server;
listen [::]:80 default_server;
server_name _;
root /usr/share/nginx/html;
# Load configuration files for the default server block.
include /etc/nginx/default.d/*.conf;
location / {
}
error_page 404 /404.html;
location = /40x.html {
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
}
}
# Settings for a TLS enabled server.
#
# server {
# listen 443 ssl http2 default_server;
# listen [::]:443 ssl http2 default_server;
# server_name _;
# root /usr/share/nginx/html;
#
# ssl_certificate "/etc/pki/nginx/server.crt";
# ssl_certificate_key "/etc/pki/nginx/private/server.key";
# ssl_session_cache shared:SSL:1m;
# ssl_session_timeout 10m;
# ssl_ciphers PROFILE=SYSTEM;
# ssl_prefer_server_ciphers on;
#
# # Load configuration files for the default server block.
# include /etc/nginx/default.d/*.conf;
#
# location / {
# }
#
# error_page 404 /404.html;
# location = /40x.html {
# }
#
# error_page 500 502 503 504 /50x.html;
# location = /50x.html {
# }
# }
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
listen 80 ;
listen [::]:80 ;
server_name somospueblo.com; # managed by Certbot
root /usr/share/nginx/html;
# Load configuration files for the default server block.
include /etc/nginx/default.d/*.conf;
location / {
}
error_page 404 /404.html;
location = /40x.html {
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
}
location = /.well-known/acme-challenge/cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k{default_type text/plain;return 200 cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k.bgYKXwAkgLP4FMH56-69uX6dxSaULhqWhsRvoPpjip4;} # managed by Certbot
}}
2025-04-15 18:44:41,919:DEBUG:acme.client:JWS payload:
b'{}'
2025-04-15 18:44:41,922:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/yywTMw:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJ5LTJFOEN6dERmSk0zMUNjUngzNzdWcTYxWWh4dWFXdDJvSEtkWWJVeEZVS1FIS2d2VTgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzE0OTY4ODE1MjYvNTA2MDcwMTYyMTY3L3l5d1RNdyJ9",
"signature": "gRqeyguXy5nTHAnxJup13cpQKNtrW5t_W6eMqEHlQrF4-sdnEKxLbSUL0y31f7FzYl3OVJBJ2DPNYPZA6SRdVfUc81nFaXfA1iBcvUmZAtyQS99bXdDpBYUtl9Lzng6GmV0-tUB2dvSSOrTTwa9wwjJYxWgSdTjHx3DgApnE4gLaD3J4CSbf2PZTx2v0YA6A3Hla6eiSSj5HGX2FGx8TwSO-jwb-_KhEHA9bhla8VNJjS2YXpDdnPurN1foHB94mUZq8bo-zyp9Utw4ht9ihrC2BlWWHyuI9OIN7OAc7ZFZp4uIZxzodje98y_4UZ_OmP8FhRaFdKaTIc6O66O_cHg",
"payload": "e30"
}
2025-04-15 18:44:41,971:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall/1496881526/506070162167/yywTMw HTTP/1.1" 200 195
2025-04-15 18:44:41,972:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:41 GMT
Content-Type: application/json
Content-Length: 195
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070162167>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/yywTMw
Replay-Nonce: y-2E8CztGcRhgzfFil6WKg_OuUR_-7g6z_XHjjNlrcrYgbBRjoM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/yywTMw",
"status": "pending",
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k"
}
2025-04-15 18:44:41,972:DEBUG:acme.client:Storing nonce: y-2E8CztGcRhgzfFil6WKg_OuUR_-7g6z_XHjjNlrcrYgbBRjoM
2025-04-15 18:44:41,973:INFO:certbot._internal.auth_handler:Waiting for verification...
2025-04-15 18:44:42,974:DEBUG:acme.client:JWS payload:
b''
2025-04-15 18:44:42,978:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070162167:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJ5LTJFOEN6dEdjUmhnemZGaWw2V0tnX091VVJfLTdnNnpfWEhqak5scmNyWWdiQlJqb00iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNTA2MDcwMTYyMTY3In0",
"signature": "gmv9Vaj18l3lKTBc2fwisTAAaWM5N1Bjdfqm4lwMwen9DWwt-5jbcC_ITO7EoHxjBYW93RaZhifQJ5c_2sVooHNc-hECo2d-I3Js-uz33QHRLivz5IlH2NC60jg712UHVLHyaqhvzvq7Howo8OjRW0CmDiwirIs-KCe76UwKSWdm5x4DgxPkaLMlrvtH3c1SZywlUP9Iy7lVrIV73sKiYki4gjxkmPiWkVciJliEbAW9tNM1i3AZDt5xEDZR94WQfYFgh-pV0hZwqoeqboamhIKuwHzlu28BehJ2pF5E4CGbBhQi1bllqj0UMMWTk05UFJyCLD6udFnNFUyEgWfP-Q",
"payload": ""
}
2025-04-15 18:44:43,025:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/506070162167 HTTP/1.1" 200 823
2025-04-15 18:44:43,026:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:43 GMT
Content-Type: application/json
Content-Length: 823
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: y-2E8CztnL9f2sjwF4aI4T0CaaEr6usd6vpsUfKzlIHTnkaBh1M
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "somospueblo.com"
},
"status": "pending",
"expires": "2025-04-22T18:44:40Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/yywTMw",
"status": "pending",
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k"
},
{
"type": "tls-alpn-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/ACz8lA",
"status": "pending",
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k"
},
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/taCsXg",
"status": "pending",
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k"
}
]
}
2025-04-15 18:44:43,026:DEBUG:acme.client:Storing nonce: y-2E8CztnL9f2sjwF4aI4T0CaaEr6usd6vpsUfKzlIHTnkaBh1M
2025-04-15 18:44:46,030:DEBUG:acme.client:JWS payload:
b''
2025-04-15 18:44:46,033:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/1496881526/506070162167:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTQ5Njg4MTUyNiIsICJub25jZSI6ICJ5LTJFOEN6dG5MOWYyc2p3RjRhSTRUMENhYUVyNnVzZDZ2cHNVZkt6bElIVG5rYUJoMU0iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzE0OTY4ODE1MjYvNTA2MDcwMTYyMTY3In0",
"signature": "Ca1qx4aFBv_CTIIF4ZrpuzI1oh5kKyBh9Z5XuZHa1IpNDgNsfZlCd3ZM1O7vWtbItLMNhmcSFi29tJxNiBK4xJFbjqR0x1GfUhoVWOG2H_X4PtrLxRce7PNlkOao6rAV1BRQgFW7YlkdOTZ29aj1q5Gw6l9kY50F9a2FGKCJVkAibYLPZsUlhn40nwdKhPP68oO0LfS4Mg2ohWvF4i4HBpvoJb7XGBlnHPmQ6fMbhHlkx-RDLnvIEqrL6qNSGCUBxk3HSzkbgLDPaKS42NxtjUpzcMDlyuBzwLGDKoIQP7rT27hM-NV8HuZOaoe4HnJP1AatvAER_KnDAEuCCc0QxA",
"payload": ""
}
2025-04-15 18:44:46,083:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz/1496881526/506070162167 HTTP/1.1" 200 1042
2025-04-15 18:44:46,084:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Tue, 15 Apr 2025 18:44:46 GMT
Content-Type: application/json
Content-Length: 1042
Connection: keep-alive
Boulder-Requester: 1496881526
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: y-2E8CztkWO-Uj9OvhQ4MoKN7VtyNWooPPmvdWedJeokIzM6PU8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "somospueblo.com"
},
"status": "invalid",
"expires": "2025-04-22T18:44:40Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1496881526/506070162167/yywTMw",
"status": "invalid",
"validated": "2025-04-15T18:44:41Z",
"error": {
"type": "urn:ietf:params:acme:error:unauthorized",
"detail": "146.190.135.150: Invalid response from http://somospueblo.com/.well-known/acme-challenge/cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k: 404",
"status": 403
},
"token": "cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k",
"validationRecord": [
{
"url": "http://somospueblo.com/.well-known/acme-challenge/cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k",
"hostname": "somospueblo.com",
"port": "80",
"addressesResolved": [
"146.190.135.150"
],
"addressUsed": "146.190.135.150"
}
]
}
]
}
2025-04-15 18:44:46,084:DEBUG:acme.client:Storing nonce: y-2E8CztkWO-Uj9OvhQ4MoKN7VtyNWooPPmvdWedJeokIzM6PU8
2025-04-15 18:44:46,085:INFO:certbot._internal.auth_handler:Challenge failed for domain somospueblo.com
2025-04-15 18:44:46,085:INFO:certbot._internal.auth_handler:http-01 challenge for somospueblo.com
2025-04-15 18:44:46,086:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: somospueblo.com
Type: unauthorized
Detail: 146.190.135.150: Invalid response from http://somospueblo.com/.well-known/acme-challenge/cS5VzUpyhGhxnNk34Cd-Cc-w7mPDtXoEELV4B5ByW2k: 404
Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.
2025-04-15 18:44:46,086:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2025-04-15 18:44:46,086:DEBUG:certbot._internal.error_handler:Calling registered functions
2025-04-15 18:44:46,086:INFO:certbot._internal.auth_handler:Cleaning up challenges
2025-04-15 18:44:47,482:ERROR:certbot._internal.renewal:Failed to renew certificate somospueblo.com with error: Some challenges have failed.
2025-04-15 18:44:47,483:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 485, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1441, in renew_cert
renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 127, in _get_and_save_cert
renewal.renew_cert(config, domains, le_client, lineage)
File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 345, in renew_cert
new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 424, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/usr/lib/python3.6/site-packages/certbot/_internal/client.py", line 476, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 105, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python3.6/site-packages/certbot/_internal/auth_handler.py", line 205, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2025-04-15 18:44:47,483:DEBUG:certbot._internal.display.obj:Notifying user:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2025-04-15 18:44:47,483:DEBUG:certbot._internal.display.obj:Notifying user: The following certificates are not due for renewal yet:
2025-04-15 18:44:47,484:DEBUG:certbot._internal.display.obj:Notifying user: /etc/letsencrypt/live/aranoinvestmentsgroup.com/fullchain.pem expires on 2025-07-09 (skipped)
/etc/letsencrypt/live/aranotinsurance.com/fullchain.pem expires on 2025-06-17 (skipped)
2025-04-15 18:44:47,484:ERROR:certbot._internal.renewal:All renewals failed. The following certificates could not be renewed:
2025-04-15 18:44:47,484:ERROR:certbot._internal.renewal: /etc/letsencrypt/live/frontlineconstructionga.com/fullchain.pem (failure)
/etc/letsencrypt/live/somospueblo.com/fullchain.pem (failure)
2025-04-15 18:44:47,484:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2025-04-15 18:44:47,484:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 11, in <module>
load_entry_point('certbot==1.22.0', 'console_scripts', 'certbot')()
File "/usr/lib/python3.6/site-packages/certbot/main.py", line 19, in main
return internal_main.main(cli_args)
File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1632, in main
return config.func(config, plugins)
File "/usr/lib/python3.6/site-packages/certbot/_internal/main.py", line 1518, in renew
renewal.handle_renewal_request(config)
File "/usr/lib/python3.6/site-packages/certbot/_internal/renewal.py", line 512, in handle_renewal_request
len(renew_failures), len(parse_failures)))
certbot.errors.Error: 2 renew failure(s), 0 parse failure(s)
2025-04-15 18:44:47,485:ERROR:certbot._internal.log:2 renew failure(s), 0 parse failure(s)