SSL Letsencrypt Error renewing SSL certificate

My system:

• CentOS Version: CentOS Linux release 7.7.1908 (Core)
• Centmin Mod Version Installed: 123.09beta01.b291
• Nginx Version Installed: 1.17.1
• PHP Version Installed: 7.2.20
• When was last time updated Centmin Mod code base ? : Today
• Persistent Config:
  
  Code (Text):

  LETSENCRYPT_DETECT='y'
  

Hello,
I am facing the issue that I can't renew my SSL certificates. Currently I am working on a Magento shop. I put the shop in maintance mode while whitelisting my own IP. I think this was not very wise because now the SSL certificate is expired.

I switched back to normal mode.

After that I started acmetool.sh with 8). Renew ALL Live Certs.

This is the output:

Code (Text):

[10:33][root@hostname.myshop.url addons]# ./acmetool.sh acme-menu

-------------------------------------------------
acmetool.sh is in beta testing phase
please read & provide bug reports &
feedback for this tool via the forums
https://centminmod.com/acmetool
-------------------------------------------------

continue [y/n] ? y

--------------------------------------------------------
        SSL Management
--------------------------------------------------------
1).  acemtool.sh install
2).  acmetool.sh update
3).  acmetool.sh setup
4).  Issue SSL Management
5).  Renew SSL Management
6).  Reissue SSL Management
7).  Renew All Staging /Test Certs
8).  Renew ALL Live Certs
9).  Renew All Live Certs HTTPS Default
10). Exit
--------------------------------------------------------
Enter option [ 1 - 10 ] 8
--------------------------------------------------------

...

-------------------------------------------------
acmetool.sh is in beta testing phase
please read & provide bug reports &
feedback for this tool via the forums
https://centminmod.com/acmetool
-------------------------------------------------

continue [y/n] ? y

-----------------------------------------------------
updating acme.sh client...
-----------------------------------------------------
Cloning into 'acme.sh'...
[Thu Oct 17 10:33:28 UTC 2019] It is recommended to install socat first.
[Thu Oct 17 10:33:28 UTC 2019] We use socat for standalone server if you use standalone mode.
[Thu Oct 17 10:33:28 UTC 2019] If you don't use standalone mode, just ignore this warning.
[Thu Oct 17 10:33:28 UTC 2019] Installing to /root/.acme.sh
[Thu Oct 17 10:33:28 UTC 2019] Installed to /root/.acme.sh/acme.sh
[Thu Oct 17 10:33:28 UTC 2019] Installing alias to '/root/.bashrc'
[Thu Oct 17 10:33:28 UTC 2019] OK, Close and reopen your terminal to start using acme.sh
[Thu Oct 17 10:33:28 UTC 2019] Installing alias to '/root/.cshrc'
[Thu Oct 17 10:33:28 UTC 2019] Installing alias to '/root/.tcshrc'
[Thu Oct 17 10:33:29 UTC 2019] Installing cron job
19 0 * * * "/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" > /dev/null
[Thu Oct 17 10:33:29 UTC 2019] Good, bash is found, so change the shebang to use bash as preferred.
[Thu Oct 17 10:33:30 UTC 2019] OK
https://github.com/Neilpang/acme.sh
v2.8.4
-----------------------------------------------------
acme.sh updated
-----------------------------------------------------
grep 'root' /usr/local/nginx/conf/conf.d/myshop.url.ssl.conf
  error_log /home/nginx/domains/myshop.url/log/error.log; set $MAGE_ROOT /home/nginx/domains/myshop.url/public; root $MAGE_ROOT/pub; include
    root $MAGE_ROOT;
    root $MAGE_ROOT;

-----------------------------------------------------------
renew & install letsencrypt ssl certificate for myshop.url
-----------------------------------------------------------
testcert value =
/root/.acme.sh/acme.sh --staging --issue -d myshop.url -d www.myshop.url --days 60 -w /home/nginx/domains/myshop.url/public -k 2048 --useragent centminmod-centos7-acmesh-webroot --log /root/centminlogs/acmetool.sh-debug-log-171019-103322.log --log-level 2
[Thu Oct 17 10:33:30 UTC 2019] Using stage ACME_DIRECTORY: https://acme-staging-v02.api.letsencrypt.org/directory
[Thu Oct 17 10:33:32 UTC 2019] Multi domain='DNS:myshop.url,DNS:www.myshop.url'
[Thu Oct 17 10:33:32 UTC 2019] Getting domain auth token for each domain
[Thu Oct 17 10:33:36 UTC 2019] Getting webroot for domain='myshop.url'
[Thu Oct 17 10:33:36 UTC 2019] Getting webroot for domain='www.myshop.url'
[Thu Oct 17 10:33:36 UTC 2019] Verifying: myshop.url
[Thu Oct 17 10:33:40 UTC 2019] myshop.url:Verify error:Invalid response from https://myshop.url/.well-known/acme-challenge/tu70ta9B_z7ALAWuK291tToSWvOz5tDg2T8vHkALyQc [195.201.93.60]:
[Thu Oct 17 10:33:40 UTC 2019] Please check log file for more details: /root/centminlogs/acmetool.sh-debug-log-171019-103322.log
LECHECK = 1

log files saved at /root/centminlogs
-rw-r--r--  1 root root  44K Oct 17 10:33 acmetool.sh-debug-log-171019-103322.log
-rw-r--r--  1 root root 3.2K Oct 17 10:33 acmetool-menu__171019-103312_menu3-submenu8.log
-rw-r--r--  1 root root 2.9K Oct 17 10:33 acmesh-renew_171019-103322.log

---

This is the output for acmetool.sh-debug-log-171019-103322.log:

This is the output for acmetool.sh-debug-log-171019-103322.log: [Thu Oct 17 1 - Pastebin.com

I could not insert the code here because Cloudflare thinks this is an attack.

Could you help me please renewing the SSL certificate?

Thank you all.

 

Thank you, eva200.

After your hint I decided to look into my myshop.url.ssl.conf Nginx vhost. I added this block:

Code:

location ~* ^/.well-known/acme-challenge {
    root $MAGE_ROOT;
    allow all;
}

After that https://myshop.url/.well-known/acme-challenge/* was reachable again.

I started acmetool.sh with 8). Renew ALL Live Certs again. This time ordering the certificate went through, however I am getting an invalid certificate. It seems that the script is using the staging url?. Here is the output:

Code:

-----------------------------------------------------
grep 'root' /usr/local/nginx/conf/conf.d/myshop.url.ssl.conf
  error_log /home/nginx/domains/myshop.url/log/error.log; set $MAGE_ROOT /home/nginx/domains/myshop.url/public; root $MAGE_ROOT/pub;
    root $MAGE_ROOT;
    root $MAGE_ROOT;
    root $MAGE_ROOT;

-----------------------------------------------------------
renew & install letsencrypt ssl certificate for myshop.url
-----------------------------------------------------------
testcert value =
/root/.acme.sh/acme.sh --staging --issue -d myshop.url -d www.myshop.url --days 60 -w /home/nginx/domains/myshop.url/public -k 2048 --useragent centminmod-centos7-acmesh-webroot --log /root/centminlogs/acmetool.sh-debug-log-171019-132048.log --log-level 2
[Thu Oct 17 13:20:56 UTC 2019] Using stage ACME_DIRECTORY: https://acme-staging-v02.api.letsencrypt.org/directory
[Thu Oct 17 13:20:58 UTC 2019] Multi domain='DNS:myshop.url,DNS:www.myshop.url'
[Thu Oct 17 13:20:58 UTC 2019] Getting domain auth token for each domain
[Thu Oct 17 13:21:01 UTC 2019] Getting webroot for domain='myshop.url'
[Thu Oct 17 13:21:02 UTC 2019] Getting webroot for domain='www.myshop.url'
[Thu Oct 17 13:21:03 UTC 2019] Verifying: myshop.url
[Thu Oct 17 13:21:07 UTC 2019] Success
[Thu Oct 17 13:21:07 UTC 2019] Verifying: www.myshop.url
[Thu Oct 17 13:21:11 UTC 2019] Success
[Thu Oct 17 13:21:11 UTC 2019] Verify finished, start to sign.
[Thu Oct 17 13:21:11 UTC 2019] Lets finalize the order, Le_OrderFinalize: https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56549106
[Thu Oct 17 13:21:12 UTC 2019] Download cert, Le_LinkCert: https://acme-staging-v02.api.letsencrypt.org/acme/cert/fa46e0eeffaeda0751109857d0655ae3eb3d
[Thu Oct 17 13:21:13 UTC 2019] Cert success.
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
[Thu Oct 17 13:21:13 UTC 2019] Your cert is in  /root/.acme.sh/myshop.url/myshop.url.cer
[Thu Oct 17 13:21:13 UTC 2019] Your cert key is in  /root/.acme.sh/myshop.url/myshop.url.key
[Thu Oct 17 13:21:13 UTC 2019] The intermediate CA cert is in  /root/.acme.sh/myshop.url/ca.cer
[Thu Oct 17 13:21:13 UTC 2019] And the full chain certs is there:  /root/.acme.sh/myshop.url/fullchain.cer
LECHECK = 0
  ssl_dhparam /usr/local/nginx/conf/ssl/myshop.url/dhparam.pem;
  ssl_certificate      /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer;
  ssl_certificate_key  /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.key;
  ssl_trusted_certificate /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer;

-----------------------------------------------------------
install cert
-----------------------------------------------------------
/root/.acme.sh/acme.sh --installcert -d myshop.url -d www.myshop.url --certpath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer --keypath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.key --capath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer --reloadCmd /usr/bin/ngxreload --fullchainpath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-fullchain-acme.key
[Thu Oct 17 13:21:14 UTC 2019] Installing cert to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
[Thu Oct 17 13:21:14 UTC 2019] Installing CA to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
[Thu Oct 17 13:21:14 UTC 2019] Installing key to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.key
[Thu Oct 17 13:21:14 UTC 2019] Installing full chain to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-fullchain-acme.key
[Thu Oct 17 13:21:14 UTC 2019] Run reload cmd: /usr/bin/ngxreload
Reloading nginx configuration (via systemctl):  [  OK  ]
[Thu Oct 17 13:21:14 UTC 2019] Reload success

letsencrypt ssl certificate setup completed
ssl certs located at: /usr/local/nginx/conf/ssl/myshop.url

openssl x509 -noout -text < /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            fa:46:e0:ee:ff:ae:da:07:51:10:98:57:d0:65:5a:e3:eb:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=Fake LE Intermediate X1
        Validity
            Not Before: Oct 17 12:21:12 2019 GMT
            Not After : Jan 15 12:21:12 2020 GMT
        Subject: CN=myshop.url
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ec:43:a8:c2:0b:bd:cd:fb:83:28:89:a7:89:99:
                    8b:46:ec:6b:e1:95:96:2d:fb:77:8b:bd:31:4d:17:
                    a3:38:5a:88:ef:8e:e7:2e:62:2d:bf:d6:b5:70:2b:
                    d1:87:10:9d:cd:26:a6:79:43:50:01:e2:ca:5d:ed:
                    3a:b5:e9:5e:d7:ca:7e:55:f1:e8:ce:88:89:d9:b2:
                    e5:24:ee:58:cb:6c:5d:96:30:9b:66:43:65:3b:b2:
                    72:1c:5f:49:1c:b6:27:08:b9:27:ec:92:ca:06:50:
                    98:d2:99:46:ee:d0:56:36:92:e6:a6:43:52:40:a0:
                    f1:77:d1:86:0d:05:84:ab:13:99:df:af:5a:1b:d9:
                    23:51:ef:5b:91:83:10:e1:0f:0c:b0:0e:d0:6f:0d:
                    34:ef:dd:74:f8:b7:6c:9a:72:a0:aa:41:96:3e:7d:
                    7f:0a:07:5e:45:df:83:b7:ef:f6:32:64:e1:a2:04:
                    f8:f3:26:32:a2:55:09:71:3c:76:ce:b4:a0:74:9a:
                    7c:5a:9a:65:92:6c:2f:6a:c5:81:f9:98:a9:4e:d4:
                    7a:b4:9c:e7:4d:fd:7b:e5:b8:c7:bf:e9:eb:f2:8e:
                    df:bf:ca:40:f5:a6:cd:30:8c:aa:87:be:e0:e6:2d:
                    ac:50:e6:a2:c6:d9:1e:8f:84:b4:08:9b:2e:f3:74:
                    67:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage:
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier:
                26:6E:FB:F2:2A:22:3C:CB:78:3C:88:25:40:16:61:DC:E7:7A:3E:B2
            X509v3 Authority Key Identifier:
                keyid:C0:CC:03:46:B9:58:20:CC:5C:72:70:F3:E1:2E:CB:20:A6:F5:68:3A

            Authority Information Access:
                OCSP - URI:http://ocsp.stg-int-x1.letsencrypt.org
                CA Issuers - URI:http://cert.stg-int-x1.letsencrypt.org/

            X509v3 Subject Alternative Name:
                DNS:myshop.url, DNS:www.myshop.url
            X509v3 Certificate Policies:
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org

            CT Precertificate SCTs:
                Signed Certificate Timestamp:
                    Version   : v1(0)
                    Log ID    : DD:99:34:FC:A5:E7:24:80:C9:56:68:7D:81:34:99:08:
                                49:B2:49:F7:B5:69:D8:C7:BC:AB:3F:5C:C1:F3:6E:64
                    Timestamp : Oct 17 13:21:12.567 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:77:13:DE:6D:5C:91:97:FD:52:97:F8:21:
                                AC:5C:ED:D9:7B:5F:CB:21:96:7D:22:6B:A0:33:B0:4D:
                                D8:BC:A6:A0:02:21:00:BF:AC:20:5C:CB:08:D9:99:6A:
                                1E:B3:47:52:EB:08:EF:42:63:AA:76:71:C9:74:83:BA:
                                93:E7:C0:54:17:81:54
                Signed Certificate Timestamp:
                    Version   : v1(0)
                    Log ID    : B0:CC:83:E5:A5:F9:7D:6B:AF:7C:09:CC:28:49:04:87:
                                2A:C7:E8:8B:13:2C:63:50:B7:C6:FD:26:E1:6C:6C:77
                    Timestamp : Oct 17 13:21:12.532 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:64:47:76:B2:76:F7:5B:8E:9C:2C:E3:16:
                                5E:78:48:51:1A:FD:84:55:A7:44:95:14:3C:C9:83:B3:
                                27:57:DE:2C:02:21:00:E0:9D:13:D6:66:55:7F:54:29:
                                EF:4B:9B:DA:0E:46:BF:97:81:C2:FD:25:5F:FC:9B:3F:
                                3B:7B:92:1A:BF:F9:49
    Signature Algorithm: sha256WithRSAEncryption
         8e:f0:75:b4:eb:27:9b:99:f5:2d:6a:e3:85:0d:e1:83:a6:3a:
         6f:27:44:e7:24:05:92:a7:37:65:81:6f:b7:01:fa:9a:a6:a5:
         ad:e4:a0:7e:6f:7b:fe:0f:06:27:df:1e:d0:ec:7c:d3:db:5b:
         46:0a:e7:94:36:15:43:0c:4c:8f:e2:4d:4f:9e:31:d4:25:f1:
         3c:1c:b8:4b:41:a7:11:1e:f6:2b:ca:9d:5b:9d:df:5b:07:96:
         a8:64:42:b7:71:5d:45:48:ef:ba:c3:bb:e9:cf:aa:de:01:f5:
         b9:83:6d:97:8d:e8:ec:12:c3:3d:9c:e4:25:00:6a:b4:af:cc:
         91:d1:b6:29:bb:7a:f6:3a:7f:7b:a9:bf:01:55:f7:a4:94:42:
         df:1d:98:20:d1:01:27:bb:bf:20:fa:55:c8:42:3d:a5:a3:18:
         a4:5a:c9:d0:41:bb:a6:8e:f4:e5:35:4e:88:5b:56:9f:18:d0:
         a3:58:a0:a5:36:b4:a7:ce:1e:8d:73:08:9a:91:1d:17:bd:b7:
         91:66:ec:97:8f:3c:0e:92:b8:4d:42:88:ee:dd:0b:0a:ed:1b:
         c9:8a:5c:12:fe:c3:38:f2:c9:26:c6:b9:01:6f:5c:63:cd:a0:
         9d:b7:45:a4:69:ba:45:66:1f:d6:bb:90:67:a7:f8:94:f3:05:
         38:2d:20:20

log files saved at /root/centminlogs
-rw-r--r--  1 root root  61K Oct 17 13:21 acmetool.sh-debug-log-171019-132048.log
-rw-r--r--  1 root root  13K Oct 17 13:21 acmetool-menu__171019-132034_menu3-submenu8.log
-rw-r--r--  1 root root  13K Oct 17 13:21 acmesh-renew_171019-132048.log

The issuer is: CN=Fake LE Intermediate X1
My browsers don't trust this certificate.

Do you have a hint?

Thank you very much.

 

Thank you,
the problem still exists. Even using reissue-only.

Before I made the thread I went through the script several times completing with the old error.

I went through Google, could this be a rate limiting thing because of the unfinished cert orders before?

 

/root/centminlogs/acmesh-reissue-only_171019-135151.log:

Code:

-----------------------------------------------------
updating acme.sh client...
-----------------------------------------------------
Cloning into 'acme.sh'...
[Thu Oct 17 13:51:57 UTC 2019] It is recommended to install socat first.
[Thu Oct 17 13:51:57 UTC 2019] We use socat for standalone server if you use standalone mode.
[Thu Oct 17 13:51:57 UTC 2019] If you don't use standalone mode, just ignore this warning.
[Thu Oct 17 13:51:57 UTC 2019] Installing to /root/.acme.sh
[Thu Oct 17 13:51:57 UTC 2019] Installed to /root/.acme.sh/acme.sh
[Thu Oct 17 13:51:57 UTC 2019] Installing alias to '/root/.bashrc'
[Thu Oct 17 13:51:57 UTC 2019] OK, Close and reopen your terminal to start using acme.sh
[Thu Oct 17 13:51:57 UTC 2019] Installing alias to '/root/.cshrc'
[Thu Oct 17 13:51:57 UTC 2019] Installing alias to '/root/.tcshrc'
[Thu Oct 17 13:51:57 UTC 2019] Installing cron job
19 0 * * * "/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" > /dev/null
[Thu Oct 17 13:51:57 UTC 2019] Good, bash is found, so change the shebang to use bash as preferred.
[Thu Oct 17 13:51:58 UTC 2019] OK
https://github.com/Neilpang/acme.sh
v2.8.4
-----------------------------------------------------
acme.sh updated
-----------------------------------------------------
grep 'root' /usr/local/nginx/conf/conf.d/myshop.url.ssl.conf
  error_log /home/nginx/domains/myshop.url/log/error.log; set $MAGE_ROOT /home/nginx/domains/myshop.url/public; root $MAGE_ROOT/pub;
    root $MAGE_ROOT;
    root $MAGE_ROOT;
    root $MAGE_ROOT;

-----------------------------------------------------------
reissue & install letsencrypt ssl certificate for myshop.url
-----------------------------------------------------------
/root/.acme.sh/acme.sh --force --createDomainKey -d myshop.url -d www.myshop.url -k 2048 --useragent centminmod-centos7-acmesh-webroot
[Thu Oct 17 13:51:59 UTC 2019] Creating domain key
[Thu Oct 17 13:51:59 UTC 2019] The domain key is here: /root/.acme.sh/myshop.url/myshop.url.key
testcert value = www.myshop.url
/root/.acme.sh/acme.sh --force --staging --issue -d myshop.url -d www.myshop.url --days 60 -w /home/nginx/domains/myshop.url/public -k 2048 --useragent centminmod-centos7-acmesh-webroot --log /root/centminlogs/acmetool.sh-debug-log-171019-135151.log --log-level 2
[Thu Oct 17 13:51:59 UTC 2019] Using stage ACME_DIRECTORY: https://acme-staging-v02.api.letsencrypt.org/directory
[Thu Oct 17 13:52:01 UTC 2019] Multi domain='DNS:myshop.url,DNS:www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] Getting domain auth token for each domain
[Thu Oct 17 13:52:06 UTC 2019] Getting webroot for domain='myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] Getting webroot for domain='www.myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] myshop.url is already verified, skip http-01.
[Thu Oct 17 13:52:07 UTC 2019] www.myshop.url is already verified, skip http-01.
[Thu Oct 17 13:52:07 UTC 2019] Verify finished, start to sign.
[Thu Oct 17 13:52:07 UTC 2019] Lets finalize the order, Le_OrderFinalize: https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821
[Thu Oct 17 13:52:08 UTC 2019] Download cert, Le_LinkCert: https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0
[Thu Oct 17 13:52:09 UTC 2019] Cert success.
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
[Thu Oct 17 13:52:09 UTC 2019] Your cert is in  /root/.acme.sh/myshop.url/myshop.url.cer
[Thu Oct 17 13:52:09 UTC 2019] Your cert key is in  /root/.acme.sh/myshop.url/myshop.url.key
[Thu Oct 17 13:52:09 UTC 2019] The intermediate CA cert is in  /root/.acme.sh/myshop.url/ca.cer
[Thu Oct 17 13:52:09 UTC 2019] And the full chain certs is there:  /root/.acme.sh/myshop.url/fullchain.cer
LECHECK = 0
  ssl_dhparam /usr/local/nginx/conf/ssl/myshop.url/dhparam.pem;
  ssl_certificate      /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer;
  ssl_certificate_key  /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.key;
  ssl_trusted_certificate /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer;

-----------------------------------------------------------
install cert
-----------------------------------------------------------
/root/.acme.sh/acme.sh --installcert -d myshop.url -d www.myshop.url --certpath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer --keypath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.key --capath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer --reloadCmd /usr/bin/ngxreload --fullchainpath /usr/local/nginx/conf/ssl/myshop.url/myshop.url-fullchain-acme.key
[Thu Oct 17 13:52:10 UTC 2019] Installing cert to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
[Thu Oct 17 13:52:10 UTC 2019] Installing CA to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
[Thu Oct 17 13:52:10 UTC 2019] Installing key to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.key
[Thu Oct 17 13:52:10 UTC 2019] Installing full chain to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-fullchain-acme.key
[Thu Oct 17 13:52:10 UTC 2019] Run reload cmd: /usr/bin/ngxreload
Reloading nginx configuration (via systemctl):  [  OK  ]
[Thu Oct 17 13:52:10 UTC 2019] Reload success

letsencrypt ssl certificate setup completed
ssl certs located at: /usr/local/nginx/conf/ssl/myshop.url

openssl x509 -noout -text < /usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            fa:e2:1e:97:fb:56:54:d0:91:0e:c7:40:35:9f:0a:13:2a:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=Fake LE Intermediate X1
        Validity
            Not Before: Oct 17 12:52:08 2019 GMT
            Not After : Jan 15 12:52:08 2020 GMT
        Subject: CN=myshop.url
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c7:a6:01:71:f7:86:18:b7:58:3e:7f:52:f4:9d:
                    6c:cd:78:9d:8a:fd:96:11:35:55:93:03:c8:33:6b:
                    76:66:2f:c6:74:43:6c:7a:fd:80:54:73:76:7d:ff:
                    a7:09:84:eb:1f:7a:4a:15:40:06:d3:04:b0:e0:64:
                    91:91:22:42:0a:b5:94:c2:83:1e:67:3d:30:28:c5:
                    c6:6b:73:d9:68:32:62:d5:80:3f:7c:53:bc:c6:8d:
                    57:22:19:57:24:da:8f:de:cf:95:4a:ef:7c:6e:0e:
                    5b:68:eb:38:80:1f:7d:cf:ab:87:29:b2:1c:dd:23:
                    73:89:af:a8:db:83:2f:f7:b8:48:64:32:a9:ee:19:
                    cf:a0:01:cd:a2:d7:0e:14:78:32:05:91:f5:3a:ed:
                    c1:6f:f7:26:a4:56:e4:4a:70:4d:a5:d8:5b:ed:3b:
                    c8:01:2a:93:f9:25:05:21:ca:26:d3:b7:01:6e:c3:
                    60:e9:a2:7b:02:40:a9:84:e9:21:fd:b9:ef:32:4e:
                    a5:d5:b3:2f:89:9d:97:f7:12:ac:a4:2f:f4:08:f2:
                    7e:40:75:c1:af:8b:3b:32:7c:f5:2b:2c:86:61:0b:
                    96:44:53:13:35:ac:df:3c:c1:3e:52:f2:2f:4f:74:
                    ae:eb:39:cc:f3:77:14:03:be:05:cf:9f:f0:0b:34:
                    a8:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage:
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier:
                2E:8A:F7:B3:21:5C:51:3F:53:94:14:B2:F4:4F:73:82:74:B7:17:51
            X509v3 Authority Key Identifier:
                keyid:C0:CC:03:46:B9:58:20:CC:5C:72:70:F3:E1:2E:CB:20:A6:F5:68:3A

            Authority Information Access:
                OCSP - URI:http://ocsp.stg-int-x1.letsencrypt.org
                CA Issuers - URI:http://cert.stg-int-x1.letsencrypt.org/

            X509v3 Subject Alternative Name:
                DNS:myshop.url, DNS:www.myshop.url
            X509v3 Certificate Policies:
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org

            CT Precertificate SCTs:
                Signed Certificate Timestamp:
                    Version   : v1(0)
                    Log ID    : 16:E8:69:C1:D1:95:EA:D7:C3:F8:97:1A:E3:F0:76:01:
                                F7:8C:E1:B6:9D:31:A8:52:18:B6:83:7F:31:A8:15:08
                    Timestamp : Oct 17 13:52:08.063 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:01:5E:26:10:D2:C7:85:22:54:40:65:67:
                                87:B5:9D:47:39:5E:DD:42:0C:86:53:7D:2F:32:82:A5:
                                E5:48:98:E1:02:20:0C:CF:7C:F7:2D:E3:05:5F:E1:68:
                                E9:2C:4C:CF:3E:78:34:92:01:38:2E:25:FA:2D:95:32:
                                34:49:69:E5:48:47
                Signed Certificate Timestamp:
                    Version   : v1(0)
                    Log ID    : C6:3F:22:18:C3:7D:56:A6:AA:06:B5:96:DA:8E:53:D4:
                                D7:15:6D:1E:9B:AC:8E:44:D2:20:2D:E6:4D:69:D9:DC
                    Timestamp : Oct 17 13:52:08.571 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:73:2C:95:85:5B:78:21:80:A0:4C:57:01:
                                35:04:95:9C:EE:E5:FB:12:89:CB:29:7E:D7:D1:AB:77:
                                1B:94:36:FA:02:20:6A:44:0A:F8:0C:97:17:2A:00:66:
                                BD:D4:81:20:5B:CC:8B:FC:02:D5:5F:FC:7D:8C:06:33:
                                86:68:1C:F2:08:2C
    Signature Algorithm: sha256WithRSAEncryption
         07:61:e6:a2:48:2f:bc:77:55:42:f2:bb:57:f4:07:2a:8c:da:
         d0:40:6d:2e:ab:e0:d3:f8:cc:a8:f8:f8:fb:f2:17:ee:09:37:
         34:66:61:14:37:6a:e3:b3:af:21:3b:c3:5c:c9:a3:a0:92:e3:
         f0:7b:d1:3f:d1:2d:5f:b2:6f:19:9b:90:2e:3c:7d:55:6c:43:
         c0:ce:65:99:4a:f1:97:3d:df:ac:5d:29:e5:c5:d1:bf:0e:ba:
         e3:81:47:cb:36:36:10:7e:08:41:76:37:22:04:1f:95:d1:e9:
         73:f6:0a:eb:fb:85:95:ab:08:ce:86:c8:a9:98:02:c1:f1:d8:
         d1:f0:66:73:11:d5:a2:70:e6:6d:a3:d5:76:38:84:f3:d1:e3:
         d7:27:6e:bf:e0:03:e6:5e:ee:9c:d1:e0:65:e8:24:69:7f:47:
         c1:07:3f:a5:f9:c1:6d:58:a8:21:44:4f:83:aa:d4:96:04:e5:
         ef:42:ab:8b:c4:5d:03:65:c9:7a:25:27:16:1d:9c:c9:29:d3:
         d9:bd:b1:f3:d6:3a:90:b4:ba:bd:b4:a3:ca:ce:ae:37:9e:f6:
         5b:cd:6b:eb:8f:6f:c6:65:85:1c:dd:26:8f:87:69:de:bf:a4:
         66:e5:26:ca:fe:c8:6b:38:67:7c:06:b1:e1:d5:c7:80:f7:bb:
         6a:ad:48:b1

log files saved at /root/centminlogs
-rw-r--r--  1 root root  48K Oct 17 13:52 acmetool.sh-debug-log-171019-135151.log
-rw-r--r--  1 root root  13K Oct 17 13:52 acmesh-reissue-only_171019-135151.log

cat /root/centminlogs/acmetool.sh-debug-log-171019-135151.log:

Code:

[Thu Oct 17 13:51:59 UTC 2019] Lets find script dir.
[Thu Oct 17 13:51:59 UTC 2019] _SCRIPT_='/root/.acme.sh/acme.sh'
[Thu Oct 17 13:51:59 UTC 2019] _script='/root/.acme.sh/acme.sh'
[Thu Oct 17 13:51:59 UTC 2019] _script_home='/root/.acme.sh'
[Thu Oct 17 13:51:59 UTC 2019] Using config home:/root/.acme.sh
[Thu Oct 17 13:51:59 UTC 2019] LE_WORKING_DIR='/root/.acme.sh'
[Thu Oct 17 13:51:59 UTC 2019] Running cmd: issue
[Thu Oct 17 13:51:59 UTC 2019] _main_domain='myshop.url'
[Thu Oct 17 13:51:59 UTC 2019] _alt_domains='www.myshop.url'
[Thu Oct 17 13:51:59 UTC 2019] Using config home:/root/.acme.sh
[Thu Oct 17 13:51:59 UTC 2019] Using stage ACME_DIRECTORY: https://acme-staging-v02.api.letsencrypt.org/directory
[Thu Oct 17 13:51:59 UTC 2019] ACME_DIRECTORY='https://acme-staging-v02.api.letsencrypt.org/directory'
[Thu Oct 17 13:51:59 UTC 2019] _ACME_SERVER_HOST='acme-staging-v02.api.letsencrypt.org'
[Thu Oct 17 13:51:59 UTC 2019] DOMAIN_PATH='/root/.acme.sh/myshop.url'
[Thu Oct 17 13:51:59 UTC 2019] '/home/nginx/domains/myshop.url/public' does not contain 'dns'
[Thu Oct 17 13:51:59 UTC 2019] Using ACME_DIRECTORY: https://acme-staging-v02.api.letsencrypt.org/directory
[Thu Oct 17 13:51:59 UTC 2019] _init api for server: https://acme-staging-v02.api.letsencrypt.org/directory
[Thu Oct 17 13:51:59 UTC 2019] GET
[Thu Oct 17 13:51:59 UTC 2019] url='https://acme-staging-v02.api.letsencrypt.org/directory'
[Thu Oct 17 13:51:59 UTC 2019] timeout=
[Thu Oct 17 13:51:59 UTC 2019] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Thu Oct 17 13:52:00 UTC 2019] ret='0'
[Thu Oct 17 13:52:00 UTC 2019] response='{
  "Q-SXNrFvVGU": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
    "website": "https://letsencrypt.org/docs/staging-environment/"
  },
  "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order",
  "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert"
}'
[Thu Oct 17 13:52:00 UTC 2019] ACME_KEY_CHANGE='https://acme-staging-v02.api.letsencrypt.org/acme/key-change'
[Thu Oct 17 13:52:00 UTC 2019] ACME_NEW_AUTHZ
[Thu Oct 17 13:52:00 UTC 2019] ACME_NEW_ORDER='https://acme-staging-v02.api.letsencrypt.org/acme/new-order'
[Thu Oct 17 13:52:00 UTC 2019] ACME_NEW_ACCOUNT='https://acme-staging-v02.api.letsencrypt.org/acme/new-acct'
[Thu Oct 17 13:52:00 UTC 2019] ACME_REVOKE_CERT='https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert'
[Thu Oct 17 13:52:00 UTC 2019] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Thu Oct 17 13:52:00 UTC 2019] ACME_NEW_NONCE='https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Oct 17 13:52:00 UTC 2019] ACME_VERSION='2'
[Thu Oct 17 13:52:00 UTC 2019] Le_NextRenewTime='1576416073'
[Thu Oct 17 13:52:00 UTC 2019] _on_before_issue
[Thu Oct 17 13:52:00 UTC 2019] _chk_main_domain='myshop.url'
[Thu Oct 17 13:52:00 UTC 2019] _chk_alt_domains='www.myshop.url'
[Thu Oct 17 13:52:00 UTC 2019] '/home/nginx/domains/myshop.url/public' does not contain 'no'
[Thu Oct 17 13:52:00 UTC 2019] Le_LocalAddress
[Thu Oct 17 13:52:00 UTC 2019] d='myshop.url'
[Thu Oct 17 13:52:00 UTC 2019] Check for domain='myshop.url'
[Thu Oct 17 13:52:00 UTC 2019] _currentRoot='/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:00 UTC 2019] d='www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] Check for domain='www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _currentRoot='/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:01 UTC 2019] d
[Thu Oct 17 13:52:01 UTC 2019] '/home/nginx/domains/myshop.url/public' does not contain 'apache'
[Thu Oct 17 13:52:01 UTC 2019] _saved_account_key_hash='A5zoqzycVq4nW3gNdabXvCzg65tlR57ZRczhUKFWpEw='
[Thu Oct 17 13:52:01 UTC 2019] _saved_account_key_hash is not changed, skip register account.
[Thu Oct 17 13:52:01 UTC 2019] Read key length:2048
[Thu Oct 17 13:52:01 UTC 2019] _createcsr
[Thu Oct 17 13:52:01 UTC 2019] domain='myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] domainlist='www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] csrkey='/root/.acme.sh/myshop.url/myshop.url.key'
[Thu Oct 17 13:52:01 UTC 2019] csr='/root/.acme.sh/myshop.url/myshop.url.csr'
[Thu Oct 17 13:52:01 UTC 2019] csrconf='/root/.acme.sh/myshop.url/myshop.url.csr.conf'
[Thu Oct 17 13:52:01 UTC 2019] _is_idn_d='www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _idn_temp
[Thu Oct 17 13:52:01 UTC 2019] domainlist='www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _is_idn_d='myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _idn_temp
[Thu Oct 17 13:52:01 UTC 2019] Multi domain='DNS:myshop.url,DNS:www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _is_idn_d='myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _idn_temp
[Thu Oct 17 13:52:01 UTC 2019] _csr_cn='myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] Getting domain auth token for each domain
[Thu Oct 17 13:52:01 UTC 2019] _is_idn_d='myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _idn_temp
[Thu Oct 17 13:52:01 UTC 2019] d='www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _is_idn_d='www.myshop.url'
[Thu Oct 17 13:52:01 UTC 2019] _idn_temp
[Thu Oct 17 13:52:01 UTC 2019] d
[Thu Oct 17 13:52:01 UTC 2019] _identifiers='{"type":"dns","value":"myshop.url"},{"type":"dns","value":"www.myshop.url"}'
[Thu Oct 17 13:52:01 UTC 2019] url='https://acme-staging-v02.api.letsencrypt.org/acme/new-order'
[Thu Oct 17 13:52:01 UTC 2019] payload='{"identifiers": [{"type":"dns","value":"myshop.url"},{"type":"dns","value":"www.myshop.url"}]}'
[Thu Oct 17 13:52:01 UTC 2019] RSA key
[Thu Oct 17 13:52:01 UTC 2019] _URGLY_PRINTF
[Thu Oct 17 13:52:01 UTC 2019] xargs
[Thu Oct 17 13:52:01 UTC 2019] _URGLY_PRINTF
[Thu Oct 17 13:52:01 UTC 2019] xargs
[Thu Oct 17 13:52:01 UTC 2019] Get nonce with HEAD. ACME_NEW_NONCE='https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Oct 17 13:52:01 UTC 2019] HEAD
[Thu Oct 17 13:52:01 UTC 2019] _post_url='https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Oct 17 13:52:01 UTC 2019] body
[Thu Oct 17 13:52:01 UTC 2019] _postContentType='application/jose+json'
[Thu Oct 17 13:52:01 UTC 2019] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g  -I  '
[Thu Oct 17 13:52:02 UTC 2019] _ret='0'
[Thu Oct 17 13:52:02 UTC 2019] _headers='HTTP/1.1 200 OK
Server: nginx
Date: Thu, 17 Oct 2019 13:52:02 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002XlX-6Qh9rxiCjjLYTog9vZbreT_jerLXFELrBnVVjFE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
'
[Thu Oct 17 13:52:02 UTC 2019] _CACHED_NONCE='0002XlX-6Qh9rxiCjjLYTog9vZbreT_jerLXFELrBnVVjFE'
[Thu Oct 17 13:52:02 UTC 2019] nonce='0002XlX-6Qh9rxiCjjLYTog9vZbreT_jerLXFELrBnVVjFE'
[Thu Oct 17 13:52:02 UTC 2019] POST
[Thu Oct 17 13:52:02 UTC 2019] _post_url='https://acme-staging-v02.api.letsencrypt.org/acme/new-order'
[Thu Oct 17 13:52:02 UTC 2019] body='{"protected": "eyJub25jZSI6ICIwMDAyWGxYLTZRaDlyeGlDampMWVRvZzl2WmJyZVRfamVyTFhGRUxyQm5WVmpGRSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIiLCAiYWxnIjogIlJTMjU2IiwgImtpZCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTEzNTAzOTYifQ", "payload": "eyJpZGVudGlmaWVycyI6IFt7InR5cGUiOiJkbnMiLCJ2YWx1ZSI6IndhdGNoLXNob3AyNC5kZSJ9LHsidHlwZSI6ImRucyIsInZhbHVlIjoid3d3LndhdGNoLXNob3AyNC5kZSJ9XX0", "signature": "ENNsnkRQD0mCDCYYyI067xuk96bzWI4QcG5vJNIjARwgewytJmW_xul0zakzDEhT1nmeiaRM_SHRTlUKzJj-cVEULHVcVvO9cGF1Toy4e5eFRX8uOoVEBqUMBgsMb0irW4bZ5Wi11eJRO-wJgpTmNit9PxOqwCsPTaLd1ie8o1xng46skcqkZ-kyVgfxtJLKZQF_4hVz2uLZjoEgtkAnf8kewyu5pOykyBZRXL7NWjbZNmceZXNG11bHhpEi5lo_OUPr7EPjgUp0kFr4k_-CrceKbJxsHLyfsbN5XoP4abPqhcSeZU6GWRIwRFtRFWzHB0F40iaDJe3vJNUglKam0A"}'
[Thu Oct 17 13:52:02 UTC 2019] _postContentType='application/jose+json'
[Thu Oct 17 13:52:02 UTC 2019] Http already initialized.
[Thu Oct 17 13:52:02 UTC 2019] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Thu Oct 17 13:52:03 UTC 2019] _ret='0'
[Thu Oct 17 13:52:03 UTC 2019] responseHeaders='HTTP/1.1 201 Created
Server: nginx
Date: Thu, 17 Oct 2019 13:52:03 GMT
Content-Type: application/json
Content-Length: 501
Connection: keep-alive
Boulder-Requester: 11350396
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/11350396/56552821
Replay-Nonce: 0001Bn7GpeTAhdk8yo3xX989-HaULobMssQDydykCZWkKOQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
'
[Thu Oct 17 13:52:03 UTC 2019] code='201'
[Thu Oct 17 13:52:03 UTC 2019] original='{
  "status": "ready",
  "expires": "2019-10-24T13:52:03.432976606Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "myshop.url"
    },
    {
      "type": "dns",
      "value": "www.myshop.url"
    }
  ],
  "authorizations": [
    "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266",
    "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267"
  ],
  "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821"
}'
[Thu Oct 17 13:52:03 UTC 2019] response='{"status":"ready","expires":"2019-10-24T13:52:03.432976606Z","identifiers":[{"type":"dns","value":"myshop.url"},{"type":"dns","value":"www.myshop.url"}],"authorizations":["https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266","https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267"],"finalize":"https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821"}'
[Thu Oct 17 13:52:03 UTC 2019] Le_LinkOrder='https://acme-staging-v02.api.letsencrypt.org/acme/order/11350396/56552821'
[Thu Oct 17 13:52:03 UTC 2019] Le_OrderFinalize='https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821'
[Thu Oct 17 13:52:03 UTC 2019] _authorizations_seg='https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266,https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267'
[Thu Oct 17 13:52:03 UTC 2019] _authz_url='https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266'
[Thu Oct 17 13:52:03 UTC 2019] url='https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266'
[Thu Oct 17 13:52:03 UTC 2019] payload
[Thu Oct 17 13:52:03 UTC 2019] Use cached jwk for file: /root/.acme.sh/ca/acme-staging-v02.api.letsencrypt.org/account.key
[Thu Oct 17 13:52:03 UTC 2019] Use _CACHED_NONCE='0001Bn7GpeTAhdk8yo3xX989-HaULobMssQDydykCZWkKOQ'
[Thu Oct 17 13:52:03 UTC 2019] nonce='0001Bn7GpeTAhdk8yo3xX989-HaULobMssQDydykCZWkKOQ'
[Thu Oct 17 13:52:03 UTC 2019] POST
[Thu Oct 17 13:52:03 UTC 2019] _post_url='https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266'
[Thu Oct 17 13:52:03 UTC 2019] body='{"protected": "eyJub25jZSI6ICIwMDAxQm43R3BlVEFoZGs4eW8zeFg5ODktSGFVTG9iTXNzUUR5ZHlrQ1pXa0tPUSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTM2NDI2NiIsICJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMTM1MDM5NiJ9", "payload": "", "signature": "Xxn9sxHeE5zNrXaiWWwCaBqJdOo60EVJ2xhyCA-YKB8PYge7kGbfXJntjTUggyYJYUQgzXuZfciwVv2q_qlyV6LH84G7IPasu4T0ny_SzFO3kkBIljFZpsxtjYs_Sg8MEmtnpeRKzInzwlVVHNw1IiBhFyUSjMJ0-_GkzmHiRON_qxiDhTHmhHOuRrQoozJHRTV47HW7YO1xUvgheONU0hDYf5MjeMuEvc9gQynh-s9anjslBwnL_Def1fs2d73toJg3m9WD-YW8wTEQZusHOFZQHX1rO3Fp6rdsiJxJZX7n6kcpYzf1E4pmEJ3GPadBHKokWdm_K2Q1eYiaQBDJMw"}'
[Thu Oct 17 13:52:03 UTC 2019] _postContentType='application/jose+json'
[Thu Oct 17 13:52:03 UTC 2019] Http already initialized.
[Thu Oct 17 13:52:03 UTC 2019] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Thu Oct 17 13:52:04 UTC 2019] _ret='0'
[Thu Oct 17 13:52:04 UTC 2019] responseHeaders='HTTP/1.1 200 OK
Server: nginx
Date: Thu, 17 Oct 2019 13:52:04 GMT
Content-Type: application/json
Content-Length: 1475
Connection: keep-alive
Boulder-Requester: 11350396
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0001wcx8wfHYRZ9fsz008YzrlvIWlykv4sNhgBeUpzvPWpQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
'
[Thu Oct 17 13:52:04 UTC 2019] code='200'
[Thu Oct 17 13:52:04 UTC 2019] original='{
  "identifier": {
    "type": "dns",
    "value": "myshop.url"
  },
  "status": "valid",
  "expires": "2019-11-23T13:20:59Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "valid",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg",
      "token": "gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270",
      "validationRecord": [
        {
          "url": "http://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270",
          "hostname": "myshop.url",
          "port": "80",
          "addressesResolved": [
            "195.201.93.60"
          ],
          "addressUsed": "195.201.93.60"
        },
        {
          "url": "https://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270",
          "hostname": "myshop.url",
          "port": "443",
          "addressesResolved": [
            "195.201.93.60"
          ],
          "addressUsed": "195.201.93.60"
        }
      ]
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/GsnabQ",
      "token": "gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/KJk1dg",
      "token": "gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"
    }
  ]
}'
[Thu Oct 17 13:52:05 UTC 2019] response='{"identifier":{"type":"dns","value":"myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","validationRecord":[{"url":"http://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/GsnabQ","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/KJk1dg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"}]}'
[Thu Oct 17 13:52:05 UTC 2019] response='{"identifier":{"type":"dns","value":"myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","validationRecord":[{"url":"http://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/GsnabQ","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/KJk1dg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"}]}'
[Thu Oct 17 13:52:05 UTC 2019] _d='myshop.url'
[Thu Oct 17 13:52:05 UTC 2019] _authz_url='https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267'
[Thu Oct 17 13:52:05 UTC 2019] url='https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267'
[Thu Oct 17 13:52:05 UTC 2019] payload
[Thu Oct 17 13:52:05 UTC 2019] Use cached jwk for file: /root/.acme.sh/ca/acme-staging-v02.api.letsencrypt.org/account.key
[Thu Oct 17 13:52:05 UTC 2019] Use _CACHED_NONCE='0001wcx8wfHYRZ9fsz008YzrlvIWlykv4sNhgBeUpzvPWpQ'
[Thu Oct 17 13:52:05 UTC 2019] nonce='0001wcx8wfHYRZ9fsz008YzrlvIWlykv4sNhgBeUpzvPWpQ'
[Thu Oct 17 13:52:05 UTC 2019] POST
[Thu Oct 17 13:52:05 UTC 2019] _post_url='https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267'
[Thu Oct 17 13:52:05 UTC 2019] body='{"protected": "eyJub25jZSI6ICIwMDAxd2N4OHdmSFlSWjlmc3owMDhZenJsdklXbHlrdjRzTmhnQmVVcHp2UFdwUSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8xNTM2NDI2NyIsICJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMTM1MDM5NiJ9", "payload": "", "signature": "rBDGC9RnXxNq5NzipuKmxFuU18vTbFvA_EU8hQwiHozSlkVjrXFZmEEV0wJsBYWatgOeVCo6-aoykza1Hqtshw-iFE6vTtSuKX_wtdth8HAXZDVjPuvYfASUSBJf6EZUWThgnwmvvnRN13gfqicXtKnl1OSA2he87rbU3JzfuEGyt--qNBR1S9zqyMSc-epulXB8uGwvC6HWt6TgqT2GN8NwndF6iXZ95fAYTs3jdBQobjbWubP2LO4nEAIiqapne7FzN6XVRzSAKkvqDUQ70f0Q6NUEjlxAztH35JQWPWciZjPoGOYMrJFX2BcSySAaFKDoOtkK1kVu8pvr17IhEw"}'
[Thu Oct 17 13:52:05 UTC 2019] _postContentType='application/jose+json'
[Thu Oct 17 13:52:05 UTC 2019] Http already initialized.
[Thu Oct 17 13:52:05 UTC 2019] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Thu Oct 17 13:52:06 UTC 2019] _ret='0'
[Thu Oct 17 13:52:06 UTC 2019] responseHeaders='HTTP/1.1 200 OK
Server: nginx
Date: Thu, 17 Oct 2019 13:52:06 GMT
Content-Type: application/json
Content-Length: 1487
Connection: keep-alive
Boulder-Requester: 11350396
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0002COJX6v4q_BqIRCnM82ckHZIg9RvMyKkdpq-cxgCN9Cw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
'
[Thu Oct 17 13:52:06 UTC 2019] code='200'
[Thu Oct 17 13:52:06 UTC 2019] original='{
  "identifier": {
    "type": "dns",
    "value": "www.myshop.url"
  },
  "status": "valid",
  "expires": "2019-11-23T13:20:59Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "valid",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A",
      "token": "foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI",
      "validationRecord": [
        {
          "url": "http://www.myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI",
          "hostname": "www.myshop.url",
          "port": "80",
          "addressesResolved": [
            "195.201.93.60"
          ],
          "addressUsed": "195.201.93.60"
        },
        {
          "url": "https://myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI",
          "hostname": "myshop.url",
          "port": "443",
          "addressesResolved": [
            "195.201.93.60"
          ],
          "addressUsed": "195.201.93.60"
        }
      ]
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/Zwkx-w",
      "token": "foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/-yzv-Q",
      "token": "foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"
    }
  ]
}'
[Thu Oct 17 13:52:06 UTC 2019] response='{"identifier":{"type":"dns","value":"www.myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","validationRecord":[{"url":"http://www.myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"www.myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/Zwkx-w","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/-yzv-Q","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"}]}'
[Thu Oct 17 13:52:06 UTC 2019] response='{"identifier":{"type":"dns","value":"www.myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","validationRecord":[{"url":"http://www.myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"www.myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/Zwkx-w","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/-yzv-Q","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"}]}'
[Thu Oct 17 13:52:06 UTC 2019] _d='www.myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] _authorizations_map='www.myshop.url,{"identifier":{"type":"dns","value":"www.myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","validationRecord":[{"url":"http://www.myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"www.myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/Zwkx-w","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/-yzv-Q","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"}]}
myshop.url,{"identifier":{"type":"dns","value":"myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","validationRecord":[{"url":"http://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/GsnabQ","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/KJk1dg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"}]}
'
[Thu Oct 17 13:52:06 UTC 2019] d='myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] Getting webroot for domain='myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] _w='/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:06 UTC 2019] _currentRoot='/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:06 UTC 2019] _is_idn_d='myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] _idn_temp
[Thu Oct 17 13:52:06 UTC 2019] response='{"identifier":{"type":"dns","value":"myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","validationRecord":[{"url":"http://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/GsnabQ","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/KJk1dg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270"}]}'
[Thu Oct 17 13:52:06 UTC 2019] entry='"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg","token":"gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","validationRecord":[{"url":"http://myshop.url/.well-known/acme-challenge/gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270","hostname":"myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"'
[Thu Oct 17 13:52:06 UTC 2019] token='gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270'
[Thu Oct 17 13:52:06 UTC 2019] uri='https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg'
[Thu Oct 17 13:52:06 UTC 2019] keyauthorization='gJbDJdbvsaaliHdlcnvQn0u4GW3RGyLKB3P0MrDR270.7gKoVN_muIly8XBce-RU2EftIUQvO9Na6v6bJnusBaw'
[Thu Oct 17 13:52:06 UTC 2019] myshop.url is already verified.
[Thu Oct 17 13:52:06 UTC 2019] keyauthorization='verified_ok'
[Thu Oct 17 13:52:06 UTC 2019] dvlist='myshop.url#verified_ok#https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg#http-01#/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:06 UTC 2019] d='www.myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] Getting webroot for domain='www.myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] _w='/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:06 UTC 2019] _currentRoot='/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:06 UTC 2019] _is_idn_d='www.myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] _idn_temp
[Thu Oct 17 13:52:06 UTC 2019] response='{"identifier":{"type":"dns","value":"www.myshop.url"},"status":"valid","expires":"2019-11-23T13:20:59Z","challenges":[{"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","validationRecord":[{"url":"http://www.myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"www.myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"},{"url":"https://myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"myshop.url","port":"443","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"}]},{"type":"dns-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/Zwkx-w","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/-yzv-Q","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI"}]}'
[Thu Oct 17 13:52:06 UTC 2019] entry='"type":"http-01","status":"valid","url":"https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A","token":"foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","validationRecord":[{"url":"http://www.myshop.url/.well-known/acme-challenge/foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI","hostname":"www.myshop.url","port":"80","addressesResolved":["195.201.93.60"],"addressUsed":"195.201.93.60"'
[Thu Oct 17 13:52:06 UTC 2019] token='foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI'
[Thu Oct 17 13:52:06 UTC 2019] uri='https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A'
[Thu Oct 17 13:52:06 UTC 2019] keyauthorization='foaE551WIvuCFh2d0ElIpB2Q587bXutb2evNlaNDUSI.7gKoVN_muIly8XBce-RU2EftIUQvO9Na6v6bJnusBaw'
[Thu Oct 17 13:52:06 UTC 2019] www.myshop.url is already verified.
[Thu Oct 17 13:52:06 UTC 2019] keyauthorization='verified_ok'
[Thu Oct 17 13:52:06 UTC 2019] dvlist='www.myshop.url#verified_ok#https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A#http-01#/home/nginx/domains/myshop.url/public'
[Thu Oct 17 13:52:06 UTC 2019] d
[Thu Oct 17 13:52:06 UTC 2019] vlist='myshop.url#verified_ok#https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364266/Jupqfg#http-01#/home/nginx/domains/myshop.url/public,www.myshop.url#verified_ok#https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/15364267/r76w6A#http-01#/home/nginx/domains/myshop.url/public,'
[Thu Oct 17 13:52:06 UTC 2019] d='myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] myshop.url is already verified, skip http-01.
[Thu Oct 17 13:52:06 UTC 2019] d='www.myshop.url'
[Thu Oct 17 13:52:06 UTC 2019] www.myshop.url is already verified, skip http-01.
[Thu Oct 17 13:52:06 UTC 2019] ok, let's start to verify
[Thu Oct 17 13:52:06 UTC 2019] myshop.url is already verified, skip http-01.
[Thu Oct 17 13:52:06 UTC 2019] www.myshop.url is already verified, skip http-01.
[Thu Oct 17 13:52:07 UTC 2019] pid
[Thu Oct 17 13:52:07 UTC 2019] No need to restore nginx, skip.
[Thu Oct 17 13:52:07 UTC 2019] _clearupdns
[Thu Oct 17 13:52:07 UTC 2019] dns_entries
[Thu Oct 17 13:52:07 UTC 2019] skip dns.
[Thu Oct 17 13:52:07 UTC 2019] Verify finished, start to sign.
[Thu Oct 17 13:52:07 UTC 2019] i='2'
[Thu Oct 17 13:52:07 UTC 2019] j='16'
[Thu Oct 17 13:52:07 UTC 2019] Lets finalize the order, Le_OrderFinalize: https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821
[Thu Oct 17 13:52:07 UTC 2019] url='https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821'
[Thu Oct 17 13:52:07 UTC 2019] payload='{"csr": "MIICrjCCAZYCAQAwGjEYMBYGA1UEAwwPd2F0Y2gtc2hvcDI0LmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6YBcfeGGLdYPn9S9J1szXidiv2WETVVkwPIM2t2Zi_GdENsev2AVHN2ff-nCYTrH3pKFUAG0wSw4GSRkSJCCrWUwoMeZz0wKMXGa3PZaDJi1YA_fFO8xo1XIhlXJNqP3s-VSu98bg5baOs4gB99z6uHKbIc3SNzia-o24Mv97hIZDKp7hnPoAHNotcOFHgyBZH1Ou3Bb_cmpFbkSnBNpdhb7TvIASqT-SUFIcom07cBbsNg6aJ7AkCphOkh_bnvMk6l1bMviZ2X9xKspC_0CPJ-QHXBr4s7Mnz1KyyGYQuWRFMTNazfPME-UvIvT3Su6znM83cUA74Fz5_wCzSo9QIDAQABoE8wTQYJKoZIhvcNAQkOMUAwPjALBgNVHQ8EBAMCBeAwLwYDVR0RBCgwJoIPd2F0Y2gtc2hvcDI0LmRlghN3d3cud2F0Y2gtc2hvcDI0LmRlMA0GCSqGSIb3DQEBCwUAA4IBAQAyqX_R2XEkJpgHaMpo4pMuSN-A5uk6CvjvTYvL6PAVZxO3FQjSYsFf9qZiVxp77JqKnXpWOEPaGFBHKpdQqN-CeaShkWng3NXyLy2nT6UGn3ZtYrvUtddjrXSKBWYG2Hw-9-ORHMpwBhNAD3Coh4CJfoVEy1yu4_n_cIIsy0zFj6aj0CeUCsdcDHQSqYOsT7trOzTSsa7lJST-26C9DXovz0d_hjZHRJCbJICK9qor23Qa8FnhELThINF8-CSUABgtqSWZ1cynYHBlGwWKJhC9q903GNuYulTg8pr4Q4jRzmexXTWaUwdFj7iMn-twYwHnheQwtiezDycuSHMQgVuv"}'
[Thu Oct 17 13:52:07 UTC 2019] Use cached jwk for file: /root/.acme.sh/ca/acme-staging-v02.api.letsencrypt.org/account.key
[Thu Oct 17 13:52:07 UTC 2019] Use _CACHED_NONCE='0002COJX6v4q_BqIRCnM82ckHZIg9RvMyKkdpq-cxgCN9Cw'
[Thu Oct 17 13:52:07 UTC 2019] nonce='0002COJX6v4q_BqIRCnM82ckHZIg9RvMyKkdpq-cxgCN9Cw'
[Thu Oct 17 13:52:07 UTC 2019] POST
[Thu Oct 17 13:52:07 UTC 2019] _post_url='https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821'
[Thu Oct 17 13:52:07 UTC 2019] body='{"protected": "eyJub25jZSI6ICIwMDAyQ09KWDZ2NHFfQnFJUkNuTTgyY2tIWklnOVJ2TXlLa2RwcS1jeGdDTjlDdyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9maW5hbGl6ZS8xMTM1MDM5Ni81NjU1MjgyMSIsICJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMTM1MDM5NiJ9", "payload": "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", "signature": "Yb42si37e_EsdNjK9zJAw8tZyNS6XB3QK3FHrousMM4QORe7PNqn1qHb7M2bzdG-gULVYuC30Lx-uwSFMnmwfq11KcvUX_QEHAOeeWLAN9gml_iihjZIfv1JfW-0IhvSjSx3xlEb7DrW5oNsEF87fwDx1hyCXpPwTWKfuwJ1hFNpzaDmYsgB-FwCbLnCk8eKVwWPYh05xDCbUw1UaT_Ie7VZMA8bW0eXeCgzLC6oeewQ24SjyW-xCPbxA0sFasdq71WARl_Axsl_Ma2XHeqi0deKJldjqCu90IfdluBejkcEvxZAtH7kHz2LrPgYl-LMOb2lhOvtT0udFWxboA_djw"}'
[Thu Oct 17 13:52:07 UTC 2019] _postContentType='application/jose+json'
[Thu Oct 17 13:52:07 UTC 2019] Http already initialized.
[Thu Oct 17 13:52:07 UTC 2019] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Thu Oct 17 13:52:08 UTC 2019] _ret='0'
[Thu Oct 17 13:52:08 UTC 2019] responseHeaders='HTTP/1.1 100 Continue

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 17 Oct 2019 13:52:08 GMT
Content-Type: application/json
Content-Length: 603
Connection: keep-alive
Boulder-Requester: 11350396
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/11350396/56552821
Replay-Nonce: 0001KL6ccPJybBwnHgflysxqmuSm5dwKEKJaEnlcmbRE2Sk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
'
[Thu Oct 17 13:52:08 UTC 2019] code='200'
[Thu Oct 17 13:52:08 UTC 2019] original='{
  "status": "valid",
  "expires": "2019-10-24T13:52:03Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "myshop.url"
    },
    {
      "type": "dns",
      "value": "www.myshop.url"
    }
  ],
  "authorizations": [
    "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266",
    "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267"
  ],
  "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821",
  "certificate": "https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0"
}'
[Thu Oct 17 13:52:08 UTC 2019] response='{"status":"valid","expires":"2019-10-24T13:52:03Z","identifiers":[{"type":"dns","value":"myshop.url"},{"type":"dns","value":"www.myshop.url"}],"authorizations":["https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364266","https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/15364267"],"finalize":"https://acme-staging-v02.api.letsencrypt.org/acme/finalize/11350396/56552821","certificate":"https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0"}'
[Thu Oct 17 13:52:08 UTC 2019] Order status is valid.
[Thu Oct 17 13:52:08 UTC 2019] Le_LinkCert='https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0'
[Thu Oct 17 13:52:08 UTC 2019] Download cert, Le_LinkCert: https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0
[Thu Oct 17 13:52:08 UTC 2019] url='https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0'
[Thu Oct 17 13:52:08 UTC 2019] payload
[Thu Oct 17 13:52:08 UTC 2019] Use cached jwk for file: /root/.acme.sh/ca/acme-staging-v02.api.letsencrypt.org/account.key
[Thu Oct 17 13:52:08 UTC 2019] Use _CACHED_NONCE='0001KL6ccPJybBwnHgflysxqmuSm5dwKEKJaEnlcmbRE2Sk'
[Thu Oct 17 13:52:08 UTC 2019] nonce='0001KL6ccPJybBwnHgflysxqmuSm5dwKEKJaEnlcmbRE2Sk'
[Thu Oct 17 13:52:08 UTC 2019] POST
[Thu Oct 17 13:52:08 UTC 2019] _post_url='https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0'
[Thu Oct 17 13:52:08 UTC 2019] body='{"protected": "eyJub25jZSI6ICIwMDAxS0w2Y2NQSnliQnduSGdmbHlzeHFtdVNtNWR3S0VLSmFFbmxjbWJSRTJTayIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jZXJ0L2ZhZTIxZTk3ZmI1NjU0ZDA5MTBlYzc0MDM1OWYwYTEzMmFhMCIsICJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMTM1MDM5NiJ9", "payload": "", "signature": "KxRJ-M7553IpeTnPjh8hmW4xdAQrZ7bAONcaUfDAkm788ikbSCdeGxlEOsG91Nh_H_KXMbgNTSTdzbAOzeK-uC4pVALJ4PFHSxzS7xeYxGY7FVI3hBhY3adatVVNHSwPBRDzvaCOAM322tawzWKeh0ieV4wnlBZHo5wphkMHlqXuOGs331NB87Sj-1rqv93AqDF_SBxvI8hrGaiFNuYTEjNs8VxygXfcpZJPBENgc7Xuzix4IfftpETC-g2lb0K7vekuUWjliq2y5zpzVkDelElJBtU-XeJ7hoTg_7xv1IjiglK3XA_zwRD1sDB_c2rMp-ha6YnFwIeJL5ugYbewtw"}'
[Thu Oct 17 13:52:08 UTC 2019] _postContentType='application/jose+json'
[Thu Oct 17 13:52:08 UTC 2019] Http already initialized.
[Thu Oct 17 13:52:08 UTC 2019] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  -g '
[Thu Oct 17 13:52:09 UTC 2019] _ret='0'
[Thu Oct 17 13:52:09 UTC 2019] responseHeaders='HTTP/1.1 200 OK
Server: nginx
Date: Thu, 17 Oct 2019 13:52:09 GMT
Content-Type: application/pem-certificate-chain
Content-Length: 3575
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 00011q6RC1YNGpxfNnEMtBlVI-KM86NplbVHvb_EjurdtLk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
'
[Thu Oct 17 13:52:09 UTC 2019] code='200'
[Thu Oct 17 13:52:09 UTC 2019] original='-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----
MIIEqzCCApOgAwIBAgIRAIvhKg5ZRO08VGQx8JdhT+UwDQYJKoZIhvcNAQELBQAw
GjEYMBYGA1UEAwwPRmFrZSBMRSBSb290IFgxMB4XDTE2MDUyMzIyMDc1OVoXDTM2
MDUyMzIyMDc1OVowIjEgMB4GA1UEAwwXRmFrZSBMRSBJbnRlcm1lZGlhdGUgWDEw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtWKySDn7rWZc5ggjz3ZB0
8jO4xti3uzINfD5sQ7Lj7hzetUT+wQob+iXSZkhnvx+IvdbXF5/yt8aWPpUKnPym
oLxsYiI5gQBLxNDzIec0OIaflWqAr29m7J8+NNtApEN8nZFnf3bhehZW7AxmS1m0
ZnSsdHw0Fw+bgixPg2MQ9k9oefFeqa+7Kqdlz5bbrUYV2volxhDFtnI4Mh8BiWCN
xDH1Hizq+GKCcHsinDZWurCqder/afJBnQs+SBSL6MVApHt+d35zjBD92fO2Je56
dhMfzCgOKXeJ340WhW3TjD1zqLZXeaCyUNRnfOmWZV8nEhtHOFbUCU7r/KkjMZO9
AgMBAAGjgeMwgeAwDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAw
HQYDVR0OBBYEFMDMA0a5WCDMXHJw8+EuyyCm9Wg6MHoGCCsGAQUFBwEBBG4wbDA0
BggrBgEFBQcwAYYoaHR0cDovL29jc3Auc3RnLXJvb3QteDEubGV0c2VuY3J5cHQu
b3JnLzA0BggrBgEFBQcwAoYoaHR0cDovL2NlcnQuc3RnLXJvb3QteDEubGV0c2Vu
Y3J5cHQub3JnLzAfBgNVHSMEGDAWgBTBJnSkikSg5vogKNhcI5pFiBh54DANBgkq
hkiG9w0BAQsFAAOCAgEABYSu4Il+fI0MYU42OTmEj+1HqQ5DvyAeyCA6sGuZdwjF
UGeVOv3NnLyfofuUOjEbY5irFCDtnv+0ckukUZN9lz4Q2YjWGUpW4TTu3ieTsaC9
AFvCSgNHJyWSVtWvB5XDxsqawl1KzHzzwr132bF2rtGtazSqVqK9E07sGHMCf+zp
DQVDVVGtqZPHwX3KqUtefE621b8RI6VCl4oD30Olf8pjuzG4JKBFRFclzLRjo/h7
IkkfjZ8wDa7faOjVXx6n+eUQ29cIMCzr8/rNWHS9pYGGQKJiY2xmVC9h12H99Xyf
zWE9vb5zKP3MVG6neX1hSdo7PEAb9fqRhHkqVsqUvJlIRmvXvVKTwNCP3eCjRCCI
PTAvjV+4ni786iXwwFYNz8l3PmPLCyQXWGohnJ8iBm+5nk7O2ynaPVW0U2W+pt2w
SVuvdDM5zGv2f9ltNWUiYZHJ1mmO97jSY/6YfdOUH66iRtQtDkHBRdkNBsMbD+Em
2TgBldtHNSJBfB3pm9FblgOcJ0FSWcUDWJ7vO0+NTXlgrRofRT6pVywzxVo6dND0
WzYlTWeUVsO40xJqhgUQRER9YLOLxJ0O6C8i0xFxAMKOtSdodMB3RIwt7RFQ0uyt
n5Z5MqkYhlMI3J1tPRTp1nEt9fyGspBOO05gi148Qasp+3N+svqKomoQglNoAxU=
-----END CERTIFICATE-----'
[Thu Oct 17 13:52:09 UTC 2019] response='-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----'
[Thu Oct 17 13:52:09 UTC 2019] Found cert chain
[Thu Oct 17 13:52:09 UTC 2019] _end_n='31'
[Thu Oct 17 13:52:09 UTC 2019] Le_LinkCert='https://acme-staging-v02.api.letsencrypt.org/acme/cert/fae21e97fb5654d0910ec740359f0a132aa0'
[Thu Oct 17 13:52:09 UTC 2019] Cert success.
[Thu Oct 17 13:52:09 UTC 2019] Your cert is in  /root/.acme.sh/myshop.url/myshop.url.cer
[Thu Oct 17 13:52:09 UTC 2019] Your cert key is in  /root/.acme.sh/myshop.url/myshop.url.key
[Thu Oct 17 13:52:09 UTC 2019] v2 chain.
[Thu Oct 17 13:52:09 UTC 2019] The intermediate CA cert is in  /root/.acme.sh/myshop.url/ca.cer
[Thu Oct 17 13:52:09 UTC 2019] And the full chain certs is there:  /root/.acme.sh/myshop.url/fullchain.cer
[Thu Oct 17 13:52:09 UTC 2019] _on_issue_success
[Thu Oct 17 13:52:09 UTC 2019] '' does not contain 'dns'
[Thu Oct 17 13:52:10 UTC 2019] LE_WORKING_DIR='/root/.acme.sh'
[Thu Oct 17 13:52:10 UTC 2019] Running cmd: installcert
[Thu Oct 17 13:52:10 UTC 2019] Using config home:/root/.acme.sh
[Thu Oct 17 13:52:10 UTC 2019] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Thu Oct 17 13:52:10 UTC 2019] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org'
[Thu Oct 17 13:52:10 UTC 2019] DOMAIN_PATH='/root/.acme.sh/myshop.url'
[Thu Oct 17 13:52:10 UTC 2019] Installing cert to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
[Thu Oct 17 13:52:10 UTC 2019] Installing CA to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.cer
[Thu Oct 17 13:52:10 UTC 2019] Installing key to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-acme.key
[Thu Oct 17 13:52:10 UTC 2019] Installing full chain to:/usr/local/nginx/conf/ssl/myshop.url/myshop.url-fullchain-acme.key
[Thu Oct 17 13:52:10 UTC 2019] Run reload cmd: /usr/bin/ngxreload
[Thu Oct 17 13:52:10 UTC 2019] Reload success

 

I finally succeeded my mission to reissue the certificates. Everything is working now.

Being desperate I used very dirty methods to force https://acme-v02.api.letsencrypt.org/directory and not the staging url.

In acmetool.sh & acme.sh I replaced every letsencrypt api url with https://acme-v02.api.letsencrypt.org/directory .

acmetool.sh always updates acme.sh to the newest version also containing the staging url so I deletet every update function in it.

Now it works. Tomorrow I will investigate the problem further.

If anybody has hints what could cause this bug(?) please let me now.

Special thanks to eva2000!