jkhsjdhjs/certbot_cli.log Secret

## certbot_cli.log
Full cli log: Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx

-------------------------------------------------------------------------------
You have an existing certificate that contains a portion of the domains you
requested (ref: /etc/letsencrypt/renewal/totally.rip.conf)

It contains these names: totally.rip, files.totally.rip, fpaste.totally.rip,
kf2.totally.rip, mcs.totally.rip, screens.totally.rip, znc.totally.rip

You requested these names for the new certificate: totally.rip,
files.totally.rip, fpaste.totally.rip, kf2.totally.rip, mcs.totally.rip,
screens.totally.rip, znc.totally.rip, syncthing.totally.rip.

Do you want to expand and replace this existing certificate with the new
certificate?
-------------------------------------------------------------------------------
(E)xpand/(C)ancel: E
Renewing an existing certificate
/usr/lib/python3.6/site-packages/josepy/jwa.py:107: CryptographyDeprecationWarning: signer and verifier have been deprecated. Please use sign and verify instead.
  signer = key.signer(self.padding, self.hash)
Performing the following challenges:
tls-sni-01 challenge for totally.rip
tls-sni-01 challenge for files.totally.rip
tls-sni-01 challenge for fpaste.totally.rip
tls-sni-01 challenge for kf2.totally.rip
tls-sni-01 challenge for mcs.totally.rip
tls-sni-01 challenge for screens.totally.rip
tls-sni-01 challenge for znc.totally.rip
http-01 challenge for syncthing.totally.rip
Cleaning up challenges
2018/04/21 21:40:48 [warn] 32566#32566: could not build optimal types_hash, you should increase either types_hash_max_size: 1024 or types_hash_bucket_size: 64; ignoring types_hash_bucket_size
2018/04/21 21:40:48 [notice] 32566#32566: signal process started
An unexpected error occurred:
AttributeError: 'str' object has no attribute 'append'
Please see the logfiles in /var/log/letsencrypt for more details.

## letsencrypt.log
2018-04-21 21:40:40,626:DEBUG:certbot.main:certbot version: 0.23.0
2018-04-21 21:40:40,626:DEBUG:certbot.main:Arguments: ['--rsa-key-size', '4096', '-d', 'totally.rip', '-d', 'files.totally.rip', '-d', 'fpaste.totally.rip', '-d', 'kf2.totally.rip', '-d', 'mcs.totally.rip', '-d', 'screens.totally.rip', '-d', 'znc.totally.rip', '-d', 'syncthing.totally.rip', '--nginx']
2018-04-21 21:40:40,627:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2018-04-21 21:40:40,634:DEBUG:certbot.log:Root logging level set at 20
2018-04-21 21:40:40,635:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2018-04-21 21:40:40,635:DEBUG:certbot.plugins.selection:Requested authenticator nginx and installer nginx
2018-04-21 21:40:41,244:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin - Alpha
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7f685be538d0>
Prep: True
2018-04-21 21:40:41,260:DEBUG:certbot.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin - Alpha
Interfaces: IAuthenticator, IInstaller, IPlugin
Entry point: nginx = certbot_nginx.configurator:NginxConfigurator
Initialized: <certbot_nginx.configurator.NginxConfigurator object at 0x7f685be538d0>
Prep: True
2018-04-21 21:40:41,260:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nginx.configurator.NginxConfigurator object at 0x7f685be538d0> and installer <certbot_nginx.configurator.NginxConfigurator object at 0x7f685be538d0>
2018-04-21 21:40:41,260:INFO:certbot.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2018-04-21 21:40:41,266:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x7f68551715f8>)>), contact=('mailto:leon.moeller@yahoo.de',), agreement='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf', status='valid', terms_of_service_agreed=None), uri='https://acme-v01.api.letsencrypt.org/acme/reg/31654239', new_authzr_uri='https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'), 438c56018bf114c31667f62896f30d3d, Meta(creation_dt=datetime.datetime(2018, 3, 22, 16, 12, 32, tzinfo=<UTC>), creation_host='totally.rip'))>
2018-04-21 21:40:41,266:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
2018-04-21 21:40:41,268:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
2018-04-21 21:40:41,651:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
2018-04-21 21:40:41,652:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 658
Replay-Nonce: ixVS40HyTz5ae5wWWdZc7bWr6wWsBY2_szBP_d6LbRk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:41 GMT
Connection: keep-alive

b'{\n  "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",\n  "l-o_ntGW7GY": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",\n  "meta": {\n    "caaIdentities": [\n      "letsencrypt.org"\n    ],\n    "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",\n    "website": "https://letsencrypt.org"\n  },\n  "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",\n  "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",\n  "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",\n  "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"\n}'
2018-04-21 21:40:42,907:INFO:certbot.main:Renewing an existing certificate
2018-04-21 21:40:43,396:DEBUG:certbot.crypto_util:Generating key (4096 bits): /etc/letsencrypt/keys/0009_key-certbot.pem
2018-04-21 21:40:43,404:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0009_csr-certbot.pem
2018-04-21 21:40:43,404:DEBUG:acme.client:Requesting fresh nonce
2018-04-21 21:40:43,404:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz.
2018-04-21 21:40:43,677:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0
2018-04-21 21:40:43,677:DEBUG:acme.client:Received response:
HTTP 405
Server: nginx
Content-Type: application/problem+json
Content-Length: 91
Allow: POST
Replay-Nonce: H_b7tISji4ysFXTNdmtHabXzyCurs5uW8xmFGFBNJfU
Expires: Sat, 21 Apr 2018 21:40:43 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:43 GMT
Connection: keep-alive

b''
2018-04-21 21:40:43,677:DEBUG:acme.client:Storing nonce: H_b7tISji4ysFXTNdmtHabXzyCurs5uW8xmFGFBNJfU
2018-04-21 21:40:43,677:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:43,686:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "signature": "cTuPrgch1YgObPQrBPQm_bLRVqrot7sw4a9FOeJRaUfa-69M-H6VEoLaHMj11kNSgI7SXZR4XC4pl2RowowgpbdWqUWinX7VAIKGOxWvk2iBL13xFr9O_VcjHzwj41NMFrivBO7k8Onlp-bci67KD5W0OaSjWysoyHqO7_-3FJP7e3rdsKeJMiTx6jigCWW3ZeZHZQGMWh4Jv7n58_XLZP5bg6fi2GR6EBw5U9g7FGhdOmjPVi9OIhSCAryyqSUnuCYYTZJQiZ77pjjWaFqip4k_32n49pRj8T__U7IxMzmcRZANpUmMCtpJSneKfPCnhTANc0nN_tKeH7Bbqa8GT38oBzdU61HAI0aNxgq9JZsZ-qaqKEpPpdhW5ZoyyVbDgfq2DyB9JYWw0NkFTP6h4UWf6WPyDOUj6rx2B1btF61ASiW7eP8YKY0b-nH2qnHjXlIP-bgezYg1F66i1eV9exXA62kIMlKhoH_Wf8rVkG0DR0ZWIKmVUJaYXXC_gPFSpQlBebm85XgHw1G-EBBWjROz94XNI4_w1UjR7dDVbbQ046k0YST3ZADuWZVNHtvYx1XurCkU75IpySfph4zgDasf6_aurrQY7gqqkv9DOG9nHr65ZflY0YWxKQkNLk-o8-VzQnj-65AsPYgyr65J1T0gj4vdMvhPwtiP_sSjlMg",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJ0b3RhbGx5LnJpcCIKICB9LAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0"
}
2018-04-21 21:40:44,019:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 989
2018-04-21 21:40:44,019:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 989
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/Dj_iGL8tC7u5GXlD-trp4BodTreHTa6Cl0McocKmJHw
Replay-Nonce: 1aqqWVX-yA0WC0Y_QwyVttiomzphNUifHORVtj3nNtk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:44 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:46Z",\n  "challenges": [\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Dj_iGL8tC7u5GXlD-trp4BodTreHTa6Cl0McocKmJHw/4318359457",\n      "token": "yOC6cY2-XufIzT4txHY_7ctukgvjNz0eKvhhDhWbzWI"\n    },\n    {\n      "type": "tls-sni-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Dj_iGL8tC7u5GXlD-trp4BodTreHTa6Cl0McocKmJHw/4318359458",\n      "token": "xJ425zHwR1yEUR2qR5L_Nj2KbQnY7d3e0wGGQ6HqKZ4"\n    },\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Dj_iGL8tC7u5GXlD-trp4BodTreHTa6Cl0McocKmJHw/4318359459",\n      "token": "CGzniaesmHMzX6vjcHQ_ciP616MCp4K74c5uWgoqQJg"\n    }\n  ],\n  "combinations": [\n    [\n      1\n    ],\n    [\n      2\n    ],\n    [\n      0\n    ]\n  ]\n}'
2018-04-21 21:40:44,019:DEBUG:acme.client:Storing nonce: 1aqqWVX-yA0WC0Y_QwyVttiomzphNUifHORVtj3nNtk
2018-04-21 21:40:44,020:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "files.totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:44,028:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "signature": "gFhfv35gyHMj5VKS4zOiQSp9og1d7MYAl4wbPUKl6_6M-f54KIK4gVhxVAXwPZTkQiWwWBVZsSfeDX540ayXE9AVdR8u4fGmhoczbP4hf33Bq6TKQgBa9yeaZuJUKgl6qhcFy0R7-L6TavJkKnY_B_f91OAQbhzjl75-avvs88yIV3VwXt0J2gROovwWYBgdLE-0bAUBpMs4lLWN6jamS-G3yHmIcLjrhWeXxVNw5xPtXdvmNCKP4Gvfc_Rw1UOHoArPi-0Qdb9Fr8RZ3-eZCqiFcLYZdXK810jtn1JP6aCELugwW1NPGwTOsWYVxjcphfZKQIDoM40fgSi9_l-dmoNYCQBTFLCSPEDqyZ9VLN3UrfP9rjfqOSi096KJtCFBnOvBa6fC14NMUCRLZMke6NpETjtR2ZmMa-XGDvpedVTJ9fT_U94BR-_pCU_RJRsxsrx_vx7xZldxRH9SBK_mJPZlJRbhhULaYmdWZOqYwVXzKScrHV_U9ch0mre2AGSPYULkZEuSR15iALIpG75c0cJBQazf8Jel4mGX59C5EofjUgBE9vdYC-tJROAfYjYZcZQjVN1KwJXY--ho2f1xfeqbajdhpG_lXms1uaIM0AhAEkO4kREuvh5Rro03FWWGlw4nu57jQo5VUv-JwMV6fwex0z3IbUpbos6D5QQkZ-s",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJmaWxlcy50b3RhbGx5LnJpcCIKICB9LAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0"
}
2018-04-21 21:40:44,859:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 995
2018-04-21 21:40:44,859:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 995
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/7QetaVLTm7knT3ZscdCO4Yd_r5mv7aqgtSvo91j6apw
Replay-Nonce: zSDccKE0FlcmetKOfB7LnTsnWpYqTYoBw-d7whUBKuM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:44 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "files.totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:46Z",\n  "challenges": [\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/7QetaVLTm7knT3ZscdCO4Yd_r5mv7aqgtSvo91j6apw/4318359504",\n      "token": "uh1ZTdVWVIQYsVI1ZuxYDCJI6hweUBeda0qY8j45phY"\n    },\n    {\n      "type": "tls-sni-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/7QetaVLTm7knT3ZscdCO4Yd_r5mv7aqgtSvo91j6apw/4318359505",\n      "token": "X78N3nM4zh-fqpFokfvykBfYN3Bkb1mkZCVNwC9Db28"\n    },\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/7QetaVLTm7knT3ZscdCO4Yd_r5mv7aqgtSvo91j6apw/4318359506",\n      "token": "fc3cReNRolb5Vd6WxAGrF20l-Kj_DyeEwDNjI2caDAA"\n    }\n  ],\n  "combinations": [\n    [\n      0\n    ],\n    [\n      2\n    ],\n    [\n      1\n    ]\n  ]\n}'
2018-04-21 21:40:44,859:DEBUG:acme.client:Storing nonce: zSDccKE0FlcmetKOfB7LnTsnWpYqTYoBw-d7whUBKuM
2018-04-21 21:40:44,860:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "fpaste.totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:44,869:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAiandrIjogeyJuIjogIjNiUk8zeGZPQ0F2VTVmenB1d0pRbzBuMnl6RFRXTkY5d1AyRmQxZTI1YWpyd3hBUGRHZWIwVU5IaTJuWWtTTWk5eWtsSEJTUk95Y0JfMWJta3hTM2RxVHViSEM3Y0xERUxuZXJlb091d3dKMGc2ZENoT05iYjJaTmc2aVU0MXVrS0ZWUlAyQTNObTZmTGtVZU8wTjJ3X1l4bmxyNnZqY2cwdmhYdnhFMFVGU0habUtkVldMWDdmRkNOci15dGNNRWlOZDlTLXpvTFFaWS1WVjF4YUFERnJ6TVhOY2ZRbjBLZ2EtMEJzTFRZQnRMdTh2ZnhsM05tanVER1hQUDhOSjB1T1lvdkVzWHhScTI1b0NWQU10RGxIVlp5UmdWQ2h0cVJzbkFSak1ETUtuWlNGYnBlZGdFYnZUU3d4WnctQlFiTDhSRFQ2SWUzNUpSY016RXRWU29OZTJpRmxsLWFGcWpuY3ZsdUVZVm5pQ0piY1hVZkZfdlQtdmpGMG1SR3A5SFRJRlR6UWlZcFZDUXdrQTdIdVY1SHVWQXpGNnJnUE9ka3RRUDFnMHpUWHNjZEdkLUZ2c2VGMlBzWlZFYW85MFk1M3NVRGZkcktZOFpIQjlIWDlKbUFtZUtRRU5iN3RVbENuYndUUS1kQ29ZbVExTW5reUlldTFMZUcxNDVtZlNael9wU1ZaMmJKb0JQTlVodlkyVXhOSV9hVGxDcE43aHRid0txUkQyQUpRb2lMeTJVcHVMcUhDV0k4YkhGQ0FMTjJpNjdRM0dyX09TRG5mVEZkOGstQXJ4VTd2dWhvWmZvSGlPUzgzYWkzWFl1QklrWVREUXNLTU1GYy1CSE51ZlRDRTEwcFp4QklrWjFXQ1dtdWh2b3BVN2VSc3BKUElKamVkUXpkcWFhS2s4IiwgImUiOiAiQVFBQiIsICJrdHkiOiAiUlNBIn0sICJub25jZSI6ICJ6U0RjY0tFMEZsY21ldEtPZkI3TG5Uc25XcFlxVFlvQnctZDd3aFVCS3VNIn0",
  "signature": "mZ6Hkl6JU5q6YKP7TmSVGrrmc8OUdHM8eVz14lb2GD_aEFpUt2Jrqm80v9jCClhBcAYajI42dsYyoBpQfb8-8wz96CcbzjtT9JUadhr5B5wViiFaWTZhF2mpeJxHoj9j4P071m8Zek9uBEPzem2ISBBkbqg-2QhUmlCBEs7P__gcouEje1bHHDZYlOiZW8cxIy7B2JxsbdWav0HnPA1keygALwiiQp5iQrkVQ4P0ud-lel9LV_L_JjTro6EDYNZRHufFdMm-g-xxPdyy3tQu_zSyKAbWaNii0LtgHDZy0IwxlluJGB-eBF1ZItquqS40bFYo8ox2PbRDiMdF0URV-yy65LIDOxiZklOiirI-zv0XWjmNQC_f42xWja4BAfJHttF7DVpNA8j7MhZqhorkNL3zVp7ru487TQYhvzUs32WVHWovUuxkHimZilMTq8mZetWoH5hNleQVqeMIKzwfvJqtWXVs_4kgDUjQNhrbC0vJBwWW3UV5H84RDJdO9pMwyI3CUGd7a2Uun2Ax_bWdaqnijVbRkAIMbe3abSh_Suh2dX46JqSQeYg_TlRRdfbjps_x0pJKLzQggLwaYqtOOPp1_mDgoVMRjdYFVe_DzoK2NbriU8ABl9eABq-icppJuiIMWAwRZ3_jpEXaSN975c8To0oXTZzK-dM0TYdeSmA",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJmcGFzdGUudG90YWxseS5yaXAiCiAgfSwKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9"
}
2018-04-21 21:40:45,230:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 996
2018-04-21 21:40:45,230:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 996
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/F0xUZPA7I2E5hoLsmG6k9TQ48bD7EjdbrZ_QRIG8Tw8
Replay-Nonce: ubt2rrLChsxrdDnH3I7xg_xM9Un0BTxO6Gfufc1CsQ4
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:45 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:45 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "fpaste.totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:47Z",\n  "challenges": [\n    {\n      "type": "tls-sni-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/F0xUZPA7I2E5hoLsmG6k9TQ48bD7EjdbrZ_QRIG8Tw8/4318359552",\n      "token": "2kEyFOaCWu4d751Fs5-OzpEb8HPV8hr0m6hgK50VMFk"\n    },\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/F0xUZPA7I2E5hoLsmG6k9TQ48bD7EjdbrZ_QRIG8Tw8/4318359553",\n      "token": "boT83RALoCKzxdcUdE0WoOILCFgXZV50Nz87PykOZTs"\n    },\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/F0xUZPA7I2E5hoLsmG6k9TQ48bD7EjdbrZ_QRIG8Tw8/4318359554",\n      "token": "XxQx2xJKS3BLEIJO9ogcjEQVmf0lR8AFfOoX9L77Htg"\n    }\n  ],\n  "combinations": [\n    [\n      0\n    ],\n    [\n      2\n    ],\n    [\n      1\n    ]\n  ]\n}'
2018-04-21 21:40:45,230:DEBUG:acme.client:Storing nonce: ubt2rrLChsxrdDnH3I7xg_xM9Un0BTxO6Gfufc1CsQ4
2018-04-21 21:40:45,231:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "kf2.totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:45,238:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "signature": "jCIaAdQbDLTdzEuPcNF5LSQ6ssEx4rcMWDxz7otKmWxOrInApEdk_TymkwtptDfjG1FfihBpX1zwwKm65pFYLD8mKTnUpqnGy3eGA5OXMNfsU698Njgyz7mKl3rnvuJPD9i6cRCwoEdd_b_BLg9hIxKVcvLOGW-a8CW4Ryc7RojyJZlj1vQf5uob8aHr8ECkkFg4tMNrxVsRB1gxE2kgph6nRth4VARWUKRCTrmwEISGNpaAhsc_cLGDuMjcWzuO3dqC5GwsAFtgyyCo4yWkwmdfELE_kHSwr_ALFUKzvXi0c0jRhLFT5nsZ59aSPNUrUlPs2SPz0mVgFNKx_uZ6ZqenXAjH_rNGVjebYnvusJ5WxWuqmHHSb9DrXlGsNvex7sRLkkWqGXcdlWXRTccZDxOOMbza6C8YxFn96q8KVez3dHMK_vtl7wugnVYASr1IHyztGuehu7ySnlE5mfRDmICns9_BQhbF1yaAcxqx8hGsPgbJu0VXDrQMXe5Qfs6mQ8U40BreCL0sGN94f2PVcK4WAj1PVbyNW7cg1aOj2MDSrIwzzm8o7FDXQtA76n6or3W8pGtUfgtRavSS1psmDD0elM4P2GklXb0GjSPd1qh7vcQrvVgIiWhfpddgH2dJ0uad32_pQ1iOmydcU3GVG66BozEscUBRS2FjcBbj_0U",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJrZjIudG90YWxseS5yaXAiCiAgfSwKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9"
}
2018-04-21 21:40:45,597:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 993
2018-04-21 21:40:45,597:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 993
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/u3Y1ObkaD7TSMhVlEN_6MoDDTWJ0PzlelcCs-RPokhs
Replay-Nonce: PFlpguS7BCsRYcLi-O1zLjFJFD7trb2IhljmfTWTR4k
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:45 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:45 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "kf2.totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:47Z",\n  "challenges": [\n    {\n      "type": "tls-sni-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/u3Y1ObkaD7TSMhVlEN_6MoDDTWJ0PzlelcCs-RPokhs/4318359607",\n      "token": "2a7JQ4ebofZnp0OoeTKjf12-F5IKDGuG8QGx8kh5WL8"\n    },\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/u3Y1ObkaD7TSMhVlEN_6MoDDTWJ0PzlelcCs-RPokhs/4318359608",\n      "token": "pzcbjWKZ9qvnU6ImqEZMbz_ZploipQjLHU7jiM_fsUw"\n    },\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/u3Y1ObkaD7TSMhVlEN_6MoDDTWJ0PzlelcCs-RPokhs/4318359609",\n      "token": "Ujeixo6fukfJYkXCaNc7gVay1kZhGVnuQAAo98Y3TEs"\n    }\n  ],\n  "combinations": [\n    [\n      0\n    ],\n    [\n      2\n    ],\n    [\n      1\n    ]\n  ]\n}'
2018-04-21 21:40:45,597:DEBUG:acme.client:Storing nonce: PFlpguS7BCsRYcLi-O1zLjFJFD7trb2IhljmfTWTR4k
2018-04-21 21:40:45,598:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "mcs.totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:45,605:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "signature": "wjhWgA5NXRgemW84Ql4eHPH-kuBm7uIsTL7a63pse4si_yLNlYvsTDnAdqJ_mL5_7kPV5F0DaxjI_1-6EitKQPzDsVZRfKl076bxTtotwolrBC2MXvEcbLFTxZD-WnvwSs5DHEj-WTF9J7PCRhrFHjffm_lcTXGakynXEUtMIp_KXMDDBaqXTTUaGO5CLcyUNuvbwGQMNDgGrbFfRdzNP-k5EytsuPY3PemkBVO-wVcP6ZHLI5gYgyVU9t9al4NIB9sfT4f-kNCyQNcixZTRH5bC4o0q-_T9G6EGf47aylSnyRin26_R8wqiSDjYJQl16GdwH3jgI_nHrafLUBDoLMP0WxcVk-GanijuRtsUzZgSetRH2n1nhx7IidnOzC4bMTwVoTWFJ9dFMa2vXNHAMMBcxe0LcMpVKQ4Emjkd7OBtlc_TDs9ir-BY3r7uRTMWoHUdpVexV3sbDAGeYTr38yf-uPE4JvTRYeSQiZyAvixMFWJBV1tVi1zVsWAkD78ac9ufsAoNsY_n55X95EJR_kQRmhLoOu7M2Mx4QjjhsPEHBylfbEUVFgrnwECcS8pthZGyZ6xOjtjXe4yU9FYshCl7ymge8u4EDnn12MeH7S_A8rCW8uss93eOei91axDC8hUvrHJydiFAlZQixQVxGYJJQbbyDxCBqnxwQBs8PEg",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJtY3MudG90YWxseS5yaXAiCiAgfSwKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9"
}
2018-04-21 21:40:45,972:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 993
2018-04-21 21:40:45,973:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 993
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/n6xe1QExK-FDxhbczeKMPb7GKHwjnQcpGHojFISEEck
Replay-Nonce: vNV8Ssnp3RV-dd-0gRa78pVWo66BxsUo9K3BGcih2Ts
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:45 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:45 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "mcs.totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:47Z",\n  "challenges": [\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/n6xe1QExK-FDxhbczeKMPb7GKHwjnQcpGHojFISEEck/4318359637",\n      "token": "stiseE2rXrh4OxOIR34sp_YILN8hRdsxDJapdCZ6_8U"\n    },\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/n6xe1QExK-FDxhbczeKMPb7GKHwjnQcpGHojFISEEck/4318359638",\n      "token": "mLNfK0GRO3ZnOynDhjakr1JKyzYzUpAbX_tJml3LABg"\n    },\n    {\n      "type": "tls-sni-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/n6xe1QExK-FDxhbczeKMPb7GKHwjnQcpGHojFISEEck/4318359639",\n      "token": "iBi4EIC_qRyI4bXRXS_9CijEaw-JB860X3WgUIjm0HU"\n    }\n  ],\n  "combinations": [\n    [\n      0\n    ],\n    [\n      2\n    ],\n    [\n      1\n    ]\n  ]\n}'
2018-04-21 21:40:45,973:DEBUG:acme.client:Storing nonce: vNV8Ssnp3RV-dd-0gRa78pVWo66BxsUo9K3BGcih2Ts
2018-04-21 21:40:45,974:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "screens.totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:45,983:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "signature": "aG4E6FYOQJQ-VzZ-GPfILEF9a0SFLRk1bNSfWlwN6C2aedp7kXWtH9gQVpAA2FoIxe84tSR3HB1BN444egAL9mDsWVynOsR0eCCuELr9RyqoiZIv7iAtKVViYI_5l7nDEJwGt7E0ArzRyZ0H9wIoutmaq5FC6lQeBoNIvARNx7V-FU1oRisDYTJVgQXZZrlEW2TZg0CjU5HGDNPublaiIeoMiTxkPru3t_gqLye95naJAw1WgYjpSNPhk5oqhIBRpSaJm9nwyplLpCXZO6wZinSbYGQhTpdsq1PqSGlE9u3PNZEsL0j-Vua4nh56G9ryKjZ2PL6ASbo2syBeIzXSe1Gr8HMZn62A7249hCO2eB7Nv2wVmFPQIusaMEaO4_MgNxmLOP_TEbilJ18Tn2k0Eg6QN1PjWqDxMwQmSPJJ5j0hZ8xrRo-oox8RvtsFDdSLZnJ_Ex0EgzF8B9jinb_5yZ_WRscDxNpg8k-WHpvGf--GxzSWTKt4vWHVBXmZ4lfm621VUEWKLG372vsVuszPUhiUs7z2_MBhK6gWRlEKHRPN6Z6sp00qym3U_sPUHnO_h5N53c0VmgCqz9vnfACZONvYbLhTwnVHxWmsNlqBr_yLVW60MrKaYZg1zxuGSFjdGjzd4ZOAHijqVyTqowNjAukYM3TLeRWFAn03NF8aJw0",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJzY3JlZW5zLnRvdGFsbHkucmlwIgogIH0sCiAgInJlc291cmNlIjogIm5ldy1hdXRoeiIKfQ"
}
2018-04-21 21:40:46,352:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 997
2018-04-21 21:40:46,352:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 997
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/eGB3ugnv9nnp2qSbQShtdS5f000qLK0ZoZwTEV0q-wc
Replay-Nonce: ud1-fxW-U3jLXnxxF-G00ewp0puJE8MHKFFFeAJtrTM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:46 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "screens.totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:48Z",\n  "challenges": [\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eGB3ugnv9nnp2qSbQShtdS5f000qLK0ZoZwTEV0q-wc/4318359740",\n      "token": "KbpIT2yZdNb7As88Ijj2jsDYr0BlWdtUEbLAOMz9Scs"\n    },\n    {\n      "type": "tls-sni-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eGB3ugnv9nnp2qSbQShtdS5f000qLK0ZoZwTEV0q-wc/4318359741",\n      "token": "xV6aOFG7PMqKeNK41tiHxSAY9bEemRLC_nD5NlMFOeE"\n    },\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eGB3ugnv9nnp2qSbQShtdS5f000qLK0ZoZwTEV0q-wc/4318359743",\n      "token": "5D9MOeILaNu8WYJyppingtiY7oURr1IcgMP7TO0QByU"\n    }\n  ],\n  "combinations": [\n    [\n      0\n    ],\n    [\n      2\n    ],\n    [\n      1\n    ]\n  ]\n}'
2018-04-21 21:40:46,352:DEBUG:acme.client:Storing nonce: ud1-fxW-U3jLXnxxF-G00ewp0puJE8MHKFFFeAJtrTM
2018-04-21 21:40:46,353:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "znc.totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:46,361:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "signature": "ZnCV8PPFaZQO7GYICL-dr3GGcRtHoIKgfd-8Lar3aaY6mt6323qtwalslh1Ybf6l_UY_PwnAAFp-6cXC-1aTLAhhbduOFsOuSYACdI4FPSAmzaR-6m8bG1s0F3uoOHq0nMmamCfwD-UhE1EDtp7CbiTJ5Jx9xd9LTUKEpUQgmfEIlPOO3-rgXe8u8AJ79qAFvplAztkncnqtse13SpMXmvrceLBlkLukihlVmnCQg3EU3ufpo9uJDwOFhWqjxXbSgvlnAhIIC_e80cM4-n_w7EQ1H0_10fVpJs1GC8KjloEbZjiFsoC3Vib3uj0tAZpa8WHY3yCCREI3Rahs4QxHFEazM6TEEBAwr3yjbEmj5J93VbfWZneY3vgi13u_Wxof33MPQ6rv0ON9YWMW0Jd294YDkpt8pbEjASpD_NwsHCs3xK8MtYDNhW-HoRWmYI9R1b_duWVRSZpFyOoIExad1z5SSWGTzcbv8njn4w34XWuuJoDULnUmfrcy09z1srrUeTXAefqCPuFJys6K6OeOcGr47DonS8nww74HMNmgycOaliiRPRgwTSY31toyKxpsM5Wjsb1rgjKRa7p5C5gIgUwR7UOhjwZDoHU-YYlQLSY-r-J2Svft68H4-26qJ5F5hHKvzGYovyG5xRda9XhexT6rBmnPocXp5camKo0eayc",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJ6bmMudG90YWxseS5yaXAiCiAgfSwKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9"
}
2018-04-21 21:40:46,642:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 993
2018-04-21 21:40:46,643:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 993
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/WxQjrMOMGIQHZ3WoTcIRQ4TPDyS2T1vDcsSq-Wqo8EQ
Replay-Nonce: L-xPm4XxTa4um8iEuUmzXqNQfm4ULVfbDv8dbuypBEw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:46 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "znc.totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:48Z",\n  "challenges": [\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/WxQjrMOMGIQHZ3WoTcIRQ4TPDyS2T1vDcsSq-Wqo8EQ/4318359845",\n      "token": "36lcf53U-hS50qnOma8NVRRJV3hWubBMeRopveTE5CI"\n    },\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/WxQjrMOMGIQHZ3WoTcIRQ4TPDyS2T1vDcsSq-Wqo8EQ/4318359846",\n      "token": "eGjllw4ZPHpRY8cL9pJjvSTuMOQWZQ3EnTmQ6XAIKrg"\n    },\n    {\n      "type": "tls-sni-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/WxQjrMOMGIQHZ3WoTcIRQ4TPDyS2T1vDcsSq-Wqo8EQ/4318359848",\n      "token": "_N2xSNOtkL-RdtU6wtHjn3KnZMJ71DP1_kXIyyB1aaM"\n    }\n  ],\n  "combinations": [\n    [\n      1\n    ],\n    [\n      0\n    ],\n    [\n      2\n    ]\n  ]\n}'
2018-04-21 21:40:46,643:DEBUG:acme.client:Storing nonce: L-xPm4XxTa4um8iEuUmzXqNQfm4ULVfbDv8dbuypBEw
2018-04-21 21:40:46,643:DEBUG:acme.client:JWS payload:
b'{\n  "identifier": {\n    "type": "dns",\n    "value": "syncthing.totally.rip"\n  },\n  "resource": "new-authz"\n}'
2018-04-21 21:40:46,651:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "protected": "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",
  "signature": "pKP2jiOklFUj5ItOVqyTLhPFLqEFw8Jy7QqfXy9fYJBCcmZTwW_ZE-Iih1vGMWP-alYi3u4pJdth7Njsb-23uh1b-aWEfWzFNY5i8NNfbDkQ-jjsBfip29Qc56QOE9sU52tIjWB9BfnDyFChX8VFoYUoD-n96cFCRH1Mvk8swQKYBQHkOz9-D78wTKhz0dThKGJACa9zs7ag_jailxbOIke0ppkUh4u8UqIB2CM5XJE-WLp4nLDsyQXJ_R6-Fyox0h4UUt-gEjuhHKdvPlPOE2L_Ytm7gEEHqBg6RX1N6y9ro4xiORb8__YhGxVl7mZsRqR3Bv8P5fTVP9PII4BJ4eBD-oo0SRBTNl4JPA3O5yevUK_6IUBNWb7w3DAoeprn6kWT_OUNSQXtkkX0VEBro1NtSAQ9sSAiZh29L6MriZIi-Z1VyrXw_w9f4yVWSt4yFNa0XlmDabpVsw6haklDtZxOIz5XGQst-WrNOn1F0yZRcc_Qp2jmCuDZPZPiVloqdGa96hHxZgbCW60QVJJzOCnTzGl0Bcyk6mtjuuRL8J0_h6Gmafg4JvG2KbLz6nsOz2aCILDyyvrZZjN8QU-rS6P93iSofQ2Qfi8A5ns71eiNVSIErywnhH7Sv7XpfwAqEIZIRkefEccqryppSGL7iRfQVT_LeWWFv1vfeDWCIWA",
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwKICAgICJ2YWx1ZSI6ICJzeW5jdGhpbmcudG90YWxseS5yaXAiCiAgfSwKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9"
}
2018-04-21 21:40:47,031:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 726
2018-04-21 21:40:47,031:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 726
Boulder-Requester: 31654239
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/CPpB0l31EVZiGNKLwVuMUM5unI8GLk8T-gqcF3qXpYI
Replay-Nonce: 1UCyfjntnz7nFcOkIA1IX4QvOvYxuDK2_bDRqDeFG0E
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sat, 21 Apr 2018 21:40:47 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 21 Apr 2018 21:40:47 GMT
Connection: keep-alive

b'{\n  "identifier": {\n    "type": "dns",\n    "value": "syncthing.totally.rip"\n  },\n  "status": "pending",\n  "expires": "2018-04-28T21:28:48Z",\n  "challenges": [\n    {\n      "type": "dns-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/CPpB0l31EVZiGNKLwVuMUM5unI8GLk8T-gqcF3qXpYI/4318359911",\n      "token": "hd4kgX8kpcbmpARf-9Moc86Afh7I_WZzYdDZ-qTRQkc"\n    },\n    {\n      "type": "http-01",\n      "status": "pending",\n      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/CPpB0l31EVZiGNKLwVuMUM5unI8GLk8T-gqcF3qXpYI/4318359912",\n      "token": "Mop-4xaeUV9xsdjira8ztz4jtq5jUxN2tdV-paF9pPE"\n    }\n  ],\n  "combinations": [\n    [\n      0\n    ],\n    [\n      1\n    ]\n  ]\n}'
2018-04-21 21:40:47,032:DEBUG:acme.client:Storing nonce: 1UCyfjntnz7nFcOkIA1IX4QvOvYxuDK2_bDRqDeFG0E
2018-04-21 21:40:47,032:INFO:certbot.auth_handler:Performing the following challenges:
2018-04-21 21:40:47,032:INFO:certbot.auth_handler:tls-sni-01 challenge for totally.rip
2018-04-21 21:40:47,032:INFO:certbot.auth_handler:tls-sni-01 challenge for files.totally.rip
2018-04-21 21:40:47,032:INFO:certbot.auth_handler:tls-sni-01 challenge for fpaste.totally.rip
2018-04-21 21:40:47,032:INFO:certbot.auth_handler:tls-sni-01 challenge for kf2.totally.rip
2018-04-21 21:40:47,032:INFO:certbot.auth_handler:tls-sni-01 challenge for mcs.totally.rip
2018-04-21 21:40:47,033:INFO:certbot.auth_handler:tls-sni-01 challenge for screens.totally.rip
2018-04-21 21:40:47,033:INFO:certbot.auth_handler:tls-sni-01 challenge for znc.totally.rip
2018-04-21 21:40:47,033:INFO:certbot.auth_handler:http-01 challenge for syncthing.totally.rip
2018-04-21 21:40:47,121:DEBUG:certbot.crypto_util:Generating key (1024 bits): /var/lib/letsencrypt/snakeoil/0005_key.pem
2018-04-21 21:40:47,790:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/totally.rip.conf
2018-04-21 21:40:47,790:DEBUG:certbot.reverter:Creating backup of /etc/nginx/listen_ssl.conf
2018-04-21 21:40:47,790:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2018-04-21 21:40:47,790:DEBUG:certbot.reverter:Creating backup of /etc/nginx/php.conf
2018-04-21 21:40:47,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2018-04-21 21:40:47,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/znc.totally.rip.conf
2018-04-21 21:40:47,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/syncthing.totally.rip.conf
2018-04-21 21:40:47,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/files.totally.rip.conf
2018-04-21 21:40:47,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/ssl.conf
2018-04-21 21:40:47,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/kf2.totally.rip.conf
2018-04-21 21:40:47,791:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/mcs.totally.rip.conf
2018-04-21 21:40:47,792:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/screens.totally.rip.conf
2018-04-21 21:40:47,793:DEBUG:certbot_nginx.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:

user http;
worker_processes  auto;

#error_log  logs/error.log;
#error_log  logs/error.log  notice;
#error_log  logs/error.log  info;

#pid        logs/nginx.pid;


events {
    worker_connections  1024;
}


http {
include /etc/letsencrypt/le_tls_sni_01_cert_challenge.conf;
server_names_hash_bucket_size 128;
    include       mime.types;
    default_type  application/octet-stream;

    # Custom
    ########################################################################

    # Redirect all http requests to https
    server {
        listen 80 default_server;
        listen [::]:80 default_server;
        return 301 https://$host$request_uri;
    }

    include ssl.conf;
    include sites-enabled/*.conf;

    ########################################################################
    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    #                  '$status $body_bytes_sent "$http_referer" '
    #                  '"$http_user_agent" "$http_x_forwarded_for"';

    #access_log  logs/access.log  main;

    sendfile        on;
    #tcp_nopush     on;

    #keepalive_timeout  0;
    keepalive_timeout  65;

    #gzip  on;

    #server {
    #    listen       80;
    #    server_name  localhost;

    #    #charset koi8-r;

    #    #access_log  logs/host.access.log  main;

    #    location / {
    #        root   /usr/share/nginx/html;
    #        index  index.html index.htm;
    #    }

    #    #error_page  404              /404.html;

    #    # redirect server error pages to the static page /50x.html
    #    #
    #    error_page   500 502 503 504  /50x.html;
    #    location = /50x.html {
    #        root   /usr/share/nginx/html;
    #    }

    #    # proxy the PHP scripts to Apache listening on 127.0.0.1:80
    #    #
    #    #location ~ \.php$ {
    #    #    proxy_pass   http://127.0.0.1;
    #    #}

    #    # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
    #    #
    #    #location ~ \.php$ {
    #    #    root           html;
    #    #    fastcgi_pass   127.0.0.1:9000;
    #    #    fastcgi_index  index.php;
    #    #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
    #    #    include        fastcgi_params;
    #    #}

    #    # deny access to .htaccess files, if Apache's document root
    #    # concurs with nginx's one
    #    #
    #    #location ~ /\.ht {
    #    #    deny  all;
    #    #}
    #}


    # another virtual host using mix of IP-, name-, and port-based configuration
    #
    #server {
    #    listen       8000;
    #    listen       somename:8080;
    #    server_name  somename  alias  another.alias;

    #    location / {
    #        root   html;
    #        index  index.html index.htm;
    #    }
    #}


    # HTTPS server
    #
    #server {
    #    listen       443 ssl;
    #    server_name  localhost;

    #    ssl_certificate      cert.pem;
    #    ssl_certificate_key  cert.key;

    #    ssl_session_cache    shared:SSL:1m;
    #    ssl_session_timeout  5m;

    #    ssl_ciphers  HIGH:!aNULL:!MD5;
    #    ssl_prefer_server_ciphers  on;

    #    location / {
    #        root   html;
    #        index  index.html index.htm;
    #    }
    #}


    server {
        listen 80 ;
        listen [::]:80 ;
        return 301 https://$host$request_uri;

    server_name fpaste.totally.rip; # managed by Certbot

    listen [::]:443 ssl ipv6only=on; # managed by Certbot
    listen 443 ssl; # managed by Certbot
    ssl_certificate /var/lib/letsencrypt/snakeoil/0005_cert.pem; # managed by Certbot
    ssl_certificate_key /var/lib/letsencrypt/snakeoil/0005_key.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}}

2018-04-21 21:40:47,804:DEBUG:certbot.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/certbot/auth_handler.py", line 73, in handle_authorizations
    resp = self._solve_challenges(aauthzrs)
  File "/usr/lib/python3.6/site-packages/certbot/auth_handler.py", line 124, in _solve_challenges
    resp = self.auth.perform(all_achalls)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 1033, in perform
    http_response = http_doer.perform()
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 58, in perform
    self._mod_config()
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 101, in _mod_config
    config = [self._make_or_mod_server_block(achall) for achall in self.achalls]
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 101, in <listcomp>
    config = [self._make_or_mod_server_block(achall) for achall in self.achalls]
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 189, in _make_or_mod_server_block
    '%i' % self.configurator.config.http01_port, create_if_no_match=True)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 471, in choose_redirect_vhosts
    vhosts = [self._vhost_from_duplicated_default(target_name, port=port)]
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 339, in _vhost_from_duplicated_default
    self._add_server_name_to_vhost(self.new_vhost, domain)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 348, in _add_server_name_to_vhost
    self.parser.update_or_add_server_directives(vhost, name_block)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 320, in update_or_add_server_directives
    functools.partial(_update_or_add_directives, directives, insert_at_top))
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 351, in _modify_server_directives
    block_func(result)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 562, in _update_or_add_directives
    _update_or_add_directive(block, directive, insert_at_top)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 698, in _update_or_add_directive
    _add_directive(block, directive, insert_at_top)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 674, in _add_directive
    block.append(directive)
AttributeError: 'str' object has no attribute 'append'

2018-04-21 21:40:47,804:DEBUG:certbot.error_handler:Calling registered functions
2018-04-21 21:40:47,804:INFO:certbot.auth_handler:Cleaning up challenges
2018-04-21 21:40:49,403:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 11, in <module>
    load_entry_point('certbot==0.23.0', 'console_scripts', 'certbot')()
  File "/usr/lib/python3.6/site-packages/certbot/main.py", line 1266, in main
    return config.func(config, plugins)
  File "/usr/lib/python3.6/site-packages/certbot/main.py", line 1157, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  File "/usr/lib/python3.6/site-packages/certbot/main.py", line 113, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/usr/lib/python3.6/site-packages/certbot/renewal.py", line 297, in renew_cert
    new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains)
  File "/usr/lib/python3.6/site-packages/certbot/client.py", line 294, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/usr/lib/python3.6/site-packages/certbot/client.py", line 330, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
  File "/usr/lib/python3.6/site-packages/certbot/auth_handler.py", line 73, in handle_authorizations
    resp = self._solve_challenges(aauthzrs)
  File "/usr/lib/python3.6/site-packages/certbot/auth_handler.py", line 124, in _solve_challenges
    resp = self.auth.perform(all_achalls)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 1033, in perform
    http_response = http_doer.perform()
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 58, in perform
    self._mod_config()
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 101, in _mod_config
    config = [self._make_or_mod_server_block(achall) for achall in self.achalls]
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 101, in <listcomp>
    config = [self._make_or_mod_server_block(achall) for achall in self.achalls]
  File "/usr/lib/python3.6/site-packages/certbot_nginx/http_01.py", line 189, in _make_or_mod_server_block
    '%i' % self.configurator.config.http01_port, create_if_no_match=True)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 471, in choose_redirect_vhosts
    vhosts = [self._vhost_from_duplicated_default(target_name, port=port)]
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 339, in _vhost_from_duplicated_default
    self._add_server_name_to_vhost(self.new_vhost, domain)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/configurator.py", line 348, in _add_server_name_to_vhost
    self.parser.update_or_add_server_directives(vhost, name_block)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 320, in update_or_add_server_directives
    functools.partial(_update_or_add_directives, directives, insert_at_top))
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 351, in _modify_server_directives
    block_func(result)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 562, in _update_or_add_directives
    _update_or_add_directive(block, directive, insert_at_top)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 698, in _update_or_add_directive
    _add_directive(block, directive, insert_at_top)
  File "/usr/lib/python3.6/site-packages/certbot_nginx/parser.py", line 674, in _add_directive
    block.append(directive)
AttributeError: 'str' object has no attribute 'append'
2018-04-21 21:40:49,404:ERROR:certbot.log:An unexpected error occurred:
	Full cli log: Saving debug log to /var/log/letsencrypt/letsencrypt.log
	Plugins selected: Authenticator nginx, Installer nginx

	-------------------------------------------------------------------------------
	You have an existing certificate that contains a portion of the domains you
	requested (ref: /etc/letsencrypt/renewal/totally.rip.conf)

	It contains these names: totally.rip, files.totally.rip, fpaste.totally.rip,
	kf2.totally.rip, mcs.totally.rip, screens.totally.rip, znc.totally.rip

	You requested these names for the new certificate: totally.rip,
	files.totally.rip, fpaste.totally.rip, kf2.totally.rip, mcs.totally.rip,
	screens.totally.rip, znc.totally.rip, syncthing.totally.rip.

	Do you want to expand and replace this existing certificate with the new
	certificate?
	-------------------------------------------------------------------------------
	(E)xpand/(C)ancel: E
	Renewing an existing certificate
	/usr/lib/python3.6/site-packages/josepy/jwa.py:107: CryptographyDeprecationWarning: signer and verifier have been deprecated. Please use sign and verify instead.
	signer = key.signer(self.padding, self.hash)
	Performing the following challenges:
	tls-sni-01 challenge for totally.rip
	tls-sni-01 challenge for files.totally.rip
	tls-sni-01 challenge for fpaste.totally.rip
	tls-sni-01 challenge for kf2.totally.rip
	tls-sni-01 challenge for mcs.totally.rip
	tls-sni-01 challenge for screens.totally.rip
	tls-sni-01 challenge for znc.totally.rip
	http-01 challenge for syncthing.totally.rip
	Cleaning up challenges
	2018/04/21 21:40:48 [warn] 32566#32566: could not build optimal types_hash, you should increase either types_hash_max_size: 1024 or types_hash_bucket_size: 64; ignoring types_hash_bucket_size
	2018/04/21 21:40:48 [notice] 32566#32566: signal process started
	An unexpected error occurred:
	AttributeError: 'str' object has no attribute 'append'
	Please see the logfiles in /var/log/letsencrypt for more details.