2017-10-31 23:35:42,330:DEBUG:certbot.main:certbot version: 0.14.2
2017-10-31 23:35:42,330:DEBUG:certbot.main:Arguments: []
2017-10-31 23:35:42,330:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2017-10-31 23:35:42,348:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0x7fda1eae7a90> and installer <certbot.cli._Default object at 0x7fda1eae7a90>
2017-10-31 23:35:42,348:DEBUG:certbot.cli:Default Detector is Namespace(account=<certbot.cli._Default object at 0x7fda1eb62e50>, agree_dev_preview=None, allow_subset_of_names=<certbot.cli._Default object at 0x7fda1eb62c10>, apache=<certbot.cli._Default object at 0x7fda1eae7d90>, apache_challenge_location=<certbot.cli._Default object at 0x7fda1eaeb9d0>, apache_ctl=<certbot.cli._Default object at 0x7fda1eaebdd0>, apache_dismod=<certbot.cli._Default object at 0x7fda1eaeb410>, apache_enmod=<certbot.cli._Default object at 0x7fda1eaeb310>, apache_handle_modules=<certbot.cli._Default object at 0x7fda1eaebb50>, apache_handle_sites=<certbot.cli._Default object at 0x7fda1eaebcd0>, apache_init_script=<certbot.cli._Default object at 0x7fda1eaebf10>, apache_le_vhost_ext=<certbot.cli._Default object at 0x7fda1eaeb550>, apache_logs_root=<certbot.cli._Default object at 0x7fda1eaeb890>, apache_server_root=<certbot.cli._Default object at 0x7fda1eaeb690>, apache_vhost_root=<certbot.cli._Default object at 0x7fda1eaeb790>, authenticator=<certbot.cli._Default object at 0x7fda1eae7a90>, break_my_certs=<certbot.cli._Default object at 0x7fda1eb622d0>, cert_path=<certbot.cli._Default object at 0x7fda1eae7310>, certname=<certbot.cli._Default object at 0x7fda1eb62050>, chain_path=<certbot.cli._Default object at 0x7fda1eae7590>, checkpoints=<certbot.cli._Default object at 0x7fda1eb43550>, config_dir=<certbot.cli._Default object at 0x7fda1eae7690>, config_file=None, configurator=<certbot.cli._Default object at 0x7fda1eae7a90>, csr=<certbot.cli._Default object at 0x7fda1eb3af50>, debug=<certbot.cli._Default object at 0x7fda1eb62cd0>, debug_challenges=<certbot.cli._Default object at 0x7fda1eb62a90>, dialog=None, domains=<certbot.cli._Default object at 0x7fda1eb56f10>, dry_run=<certbot.cli._Default object at 0x7fda1eb62150>, duplicate=<certbot.cli._Default object at 0x7fda1eb62f50>, eff_email=<certbot.cli._Default object at 0x7fda1eb62550>, email=<certbot.cli._Default object at 0x7fda1eb62450>, expand=<certbot.cli._Default object at 0x7fda1eb62850>, force_interactive=<certbot.cli._Default object at 0x7fda1eb56e10>, fullchain_path=<certbot.cli._Default object at 0x7fda1eae7490>, func=<function renew at 0x7fda18ac1398>, hsts=<certbot.cli._Default object at 0x7fda1eb56390>, http01_port=<certbot.cli._Default object at 0x7fda1eb624d0>, ifaces=<certbot.cli._Default object at 0x7fda1eb43c10>, init=<certbot.cli._Default object at 0x7fda1eb43790>, installer=<certbot.cli._Default object at 0x7fda1eae7a90>, key_path=<certbot.cli._Default object at 0x7fda1eae7110>, logs_dir=<certbot.cli._Default object at 0x7fda1eae7890>, manual=<certbot.cli._Default object at 0x7fda1eaeb0d0>, manual_auth_hook=<certbot.cli._Default object at 0x7fda1eaeb2d0>, manual_cleanup_hook=<certbot.cli._Default object at 0x7fda1eaef190>, manual_public_ip_logging_ok=<certbot.cli._Default object at 0x7fda1eaef290>, must_staple=<certbot.cli._Default object at 0x7fda1eb56e90>, nginx=<certbot.cli._Default object at 0x7fda1eae7e90>, no_bootstrap=<certbot.cli._Default object at 0x7fda1eae7290>, no_self_upgrade=<certbot.cli._Default object at 0x7fda1eae7190>, no_verify_ssl=<certbot.cli._Default object at 0x7fda1eb628d0>, noninteractive_mode=<certbot.cli._Default object at 0x7fda1eb56d10>, num=<certbot.cli._Default object at 0x7fda1eb3abd0>, os_packages_only=<certbot.cli._Default object at 0x7fda1eae7090>, post_hook=<certbot.cli._Default object at 0x7fda1eb4a850>, pre_hook=<certbot.cli._Default object at 0x7fda1eb4a510>, pref_challs=<certbot.cli._Default object at 0x7fda1eb4a210>, prepare=<certbot.cli._Default object at 0x7fda1eb439d0>, quiet=<certbot.cli._Default object at 0x7fda1eae7390>, reason=<certbot.cli._Default object at 0x7fda1eb43310>, redirect=<certbot.cli._Default object at 0x7fda1eb56c90>, register_unsafely_without_email=<certbot.cli._Default object at 0x7fda1eb62250>, reinstall=<certbot.cli._Default object at 0x7fda1eb62750>, renew_by_default=<certbot.cli._Default object at 0x7fda1eb62a10>, renew_hook=<certbot.cli._Default object at 0x7fda1eb3a510>, renew_with_new_domains=<certbot.cli._Default object at 0x7fda1eb62b10>, rsa_key_size=<certbot.cli._Default object at 0x7fda1eb620d0>, server=<certbot.cli._Default object at 0x7fda1eae7990>, staging=<certbot.cli._Default object at 0x7fda1eb62ed0>, standalone=<certbot.cli._Default object at 0x7fda1eae7f90>, standalone_supported_challenges=<certbot.cli._Default object at 0x7fda1eaef3d0>, staple=<certbot.cli._Default object at 0x7fda1eb4acd0>, strict_permissions=<certbot.cli._Default object at 0x7fda1eb4a890>, text_mode=<certbot.cli._Default object at 0x7fda1eb56c10>, tls_sni_01_port=<certbot.cli._Default object at 0x7fda1eb626d0>, tos=<certbot.cli._Default object at 0x7fda1eb62d50>, uir=<certbot.cli._Default object at 0x7fda1eb560d0>, update_registration=<certbot.cli._Default object at 0x7fda1eb62350>, user_agent=<certbot.cli._Default object at 0x7fda1eb3ae10>, validate_hooks=<certbot.cli._Default object at 0x7fda1eb3a250>, verb='renew', verbose_count=<certbot.cli._Default object at 0x7fda1eb56b10>, webroot=<certbot.cli._Default object at 0x7fda1eaeb1d0>, webroot_map=<certbot.cli._Default object at 0x7fda1eaef5d0>, webroot_path=<certbot.cli._Default object at 0x7fda1eaef050>, work_dir=<certbot.cli._Default object at 0x7fda1eae7790>)
2017-10-31 23:35:42,364:DEBUG:certbot.log:Root logging level set at 20
2017-10-31 23:35:42,365:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2017-10-31 23:35:42,380:INFO:certbot.renewal:Cert not yet due for renewal
2017-10-31 23:35:42,384:INFO:certbot.renewal:Cert not yet due for renewal
2017-10-31 23:35:42,386:INFO:certbot.renewal:Cert not yet due for renewal
2017-10-31 23:35:42,389:DEBUG:certbot.storage:Should renew, less than 30 days before certificate expiry 2017-11-11 14:12:00 UTC.
2017-10-31 23:35:42,389:INFO:certbot.renewal:Cert is due for renewal, auto-renewing...
2017-10-31 23:35:42,390:DEBUG:certbot.plugins.selection:Requested authenticator webroot and installer None
2017-10-31 23:35:42,391:DEBUG:certbot.plugins.selection:Single candidate plugin: * webroot
Description: Place files in webroot directory
Interfaces: IAuthenticator, IPlugin
Entry point: webroot = certbot.plugins.webroot:Authenticator
Initialized: <certbot.plugins.webroot.Authenticator object at 0x7fda1eaebe50>
Prep: True
2017-10-31 23:35:42,392:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.webroot.Authenticator object at 0x7fda1eaebe50> and installer None
2017-10-31 23:35:42,395:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, contact=(u'mailto:mitchel.nieto@gmail.com',), agreement=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf', key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x7fda1d521090>)>)), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/19579857', new_authzr_uri=u'https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), 2ad4190bcda1a78305d711860d103bc7, Meta(creation_host=u'li-web-01.nietostack.com', creation_dt=datetime.datetime(2017, 8, 5, 14, 33, 19, tzinfo=<UTC>)))>
2017-10-31 23:35:42,396:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
2017-10-31 23:35:42,419:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
2017-10-31 23:35:42,509:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 561
2017-10-31 23:35:42,510:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 561
Replay-Nonce: 4BmEzN3k-kdefdvmXuVwti4hMFQjiijDO14rs7s1e5I
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 31 Oct 2017 23:35:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 31 Oct 2017 23:35:42 GMT
Connection: keep-alive

{
  "1OHsry-eyaw": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",
  "meta": {
    "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf"
  },
  "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",
  "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",
  "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",
  "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"
}
2017-10-31 23:35:42,511:INFO:certbot.main:Renewing an existing certificate
2017-10-31 23:35:42,512:DEBUG:acme.client:Requesting fresh nonce
2017-10-31 23:35:42,512:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz.
2017-10-31 23:35:42,574:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0
2017-10-31 23:35:42,575:DEBUG:acme.client:Received response:
HTTP 405
Server: nginx
Content-Type: application/problem+json
Content-Length: 91
Allow: POST
Replay-Nonce: eyorbY6kSsDyvOFG4Mu8FtIjCP_vvgwsDeotf419pzI
Expires: Tue, 31 Oct 2017 23:35:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 31 Oct 2017 23:35:42 GMT
Connection: keep-alive


2017-10-31 23:35:42,575:DEBUG:acme.client:Storing nonce: eyorbY6kSsDyvOFG4Mu8FtIjCP_vvgwsDeotf419pzI
2017-10-31 23:35:42,575:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns", 
    "value": "mail.nietostack.com"
  }, 
  "resource": "new-authz"
}
2017-10-31 23:35:42,579:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "header": {
    "alg": "RS256", 
    "jwk": {
      "e": "AQAB", 
      "kty": "RSA", 
      "n": "w--6zJ75ghIEW7jp4gkbR08bJrNXVjaBImsxWtlRTcOiXWTKuAQgoF8Hetp246_G_FX4BJfGrWVNL2e_sLSwigShJPD1KGeeMPQaNP3MYB94dyASH40XY4DF0LDqvEVzced5ADNhZyhm5NqtNmLT39ZHvKLiaEzhJkARvPHFsomradYPn-SbfExOmVGTvIBjBEF3rhY0WfoKmUjcU8Y5vD7hdOnwNpY0ZzeJjZKEBSAfVDRS13voE_b3mtMg5rcm-KsJVrnPlhnfPfxL6h5r-hjTOIwiXOzOXwTkSpxiENTRC97KMQ97vaP1iqM3LOq6hoWLbdBUmZPn47L_UNzmcw"
    }
  }, 
  "protected": "eyJub25jZSI6ICJleW9yYlk2a1NzRHl2T0ZHNE11OEZ0SWpDUF92dmd3c0Rlb3RmNDE5cHpJIn0", 
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAibWFpbC5uaWV0b3N0YWNrLmNvbSIKICB9LCAKICAicmVzb3VyY2UiOiAibmV3LWF1dGh6Igp9", 
  "signature": "vUgoXap6m9h_ua74g3TPUiznsi5If59QrNkX_miXpHNxhIvFHVdYCIley-ij6RKTqeZ4xFRo9Z_EbZZDnb9DUHTvrD5SIJiwB61Br6cQ_ibBpiLrUoBZms1zhvNuPQMO4_KAL31ypsVcnua0Fr2z7T62SP80Z1marSJAzg72nUSN4N1vWAsAUulheofuBoA_f0fPAtfqL_Oz_FM4rO7hWIMuYS2ylkxyZWol7lIAU_dWlqc7ol_lbAGmL3u1sniwsOJBS4Tkm2U3VfqDhnEuJEys7U3CUkdwnaJyr2bk1VH6ceNdXKb37BdbSWShgCEGjxv79g0bfpp1o_0tb629BA"
}
2017-10-31 23:35:42,661:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1007
2017-10-31 23:35:42,662:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1007
Boulder-Requester: 19579857
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8
Replay-Nonce: KTjSKIL75RiCxXtGO1Zqn93xqo4fzuFKQJ_RQhIL5fs
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 31 Oct 2017 23:35:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 31 Oct 2017 23:35:42 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "mail.nietostack.com"
  },
  "status": "pending",
  "expires": "2017-11-07T23:35:42.615150342Z",
  "challenges": [
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030043",
      "token": "W9S8TuhZpym3FHX22eRl6es1mFMmjwTXXUqqNjf7u8M"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030044",
      "token": "-nAdG3cHR_-rFETG6szVkNorO3XKoHSOOnq4R1Jmv00"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030045",
      "token": "j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0"
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      0
    ],
    [
      1
    ]
  ]
}
2017-10-31 23:35:42,663:DEBUG:acme.client:Storing nonce: KTjSKIL75RiCxXtGO1Zqn93xqo4fzuFKQJ_RQhIL5fs
2017-10-31 23:35:42,663:INFO:certbot.auth_handler:Performing the following challenges:
2017-10-31 23:35:42,663:INFO:certbot.auth_handler:http-01 challenge for mail.nietostack.com
2017-10-31 23:35:42,664:DEBUG:certbot.plugins.webroot:Creating root challenges validation dir at /var/www/html/mail.nietostack.com/.well-known/acme-challenge
2017-10-31 23:35:42,668:DEBUG:certbot.plugins.webroot:Attempting to save validation to /var/www/html/mail.nietostack.com/.well-known/acme-challenge/j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0
2017-10-31 23:35:42,668:INFO:certbot.auth_handler:Waiting for verification...
2017-10-31 23:35:42,668:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0.NCY2KJMEq-6tH-DP8W1_2AnRem9JKKUikCKJbfH8WWU", 
  "type": "http-01", 
  "resource": "challenge"
}
2017-10-31 23:35:42,671:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030045:
{
  "header": {
    "alg": "RS256", 
    "jwk": {
      "e": "AQAB", 
      "kty": "RSA", 
      "n": "w--6zJ75ghIEW7jp4gkbR08bJrNXVjaBImsxWtlRTcOiXWTKuAQgoF8Hetp246_G_FX4BJfGrWVNL2e_sLSwigShJPD1KGeeMPQaNP3MYB94dyASH40XY4DF0LDqvEVzced5ADNhZyhm5NqtNmLT39ZHvKLiaEzhJkARvPHFsomradYPn-SbfExOmVGTvIBjBEF3rhY0WfoKmUjcU8Y5vD7hdOnwNpY0ZzeJjZKEBSAfVDRS13voE_b3mtMg5rcm-KsJVrnPlhnfPfxL6h5r-hjTOIwiXOzOXwTkSpxiENTRC97KMQ97vaP1iqM3LOq6hoWLbdBUmZPn47L_UNzmcw"
    }
  }, 
  "protected": "eyJub25jZSI6ICJLVGpTS0lMNzVSaUN4WHRHTzFacW45M3hxbzRmenVGS1FKX1JRaElMNWZzIn0", 
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogImo0dE9JMWVXZU1fNjlfQ0s0UHpKSzFNTnk1WDJURnpTcDJiSUZBa2o4RjAuTkNZMktKTUVxLTZ0SC1EUDhXMV8yQW5SZW05SktLVWlrQ0tKYmZIOFdXVSIsIAogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", 
  "signature": "wN2Zec3eoSkDToRdID0bJMicCa5VFzNttbFRIzRMiOvU_yDbmHCZCWuOWGeF3XS4w-fSviUsca03xl98xcNoJh_RNPM3cQv8aqKB9bpg_12xYDoRFl5b-gx87Kyk1xR3CvkGBWcKQgmZaqjm2i6DdkWfLa5OZj9otiPHTquuywKAlCTIM3AHvj1Lh5wrXq9lHPQ3AxBJal46CshdddwELDcg1s_Iz2Lq-4FDESbYjOwyGt4bR3N5VuR1O-JbnzrY8ci3Dl54VOgpkEmaf-VTbSA7JSp2fFhlp3X0Qw0McMQIHqxjAvcTvBU-BD_QeFwc1_4n5UDVf1uf46HYSTP8aQ"
}
2017-10-31 23:35:42,745:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030045 HTTP/1.1" 202 336
2017-10-31 23:35:42,746:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 336
Boulder-Requester: 19579857
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030045
Replay-Nonce: W7V_QiDyvYJNGOPgsCaSHfCvZs6TIoWoz-nhvn6NfLg
Expires: Tue, 31 Oct 2017 23:35:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 31 Oct 2017 23:35:42 GMT
Connection: keep-alive

{
  "type": "http-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030045",
  "token": "j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0",
  "keyAuthorization": "j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0.NCY2KJMEq-6tH-DP8W1_2AnRem9JKKUikCKJbfH8WWU"
}
2017-10-31 23:35:42,747:DEBUG:acme.client:Storing nonce: W7V_QiDyvYJNGOPgsCaSHfCvZs6TIoWoz-nhvn6NfLg
2017-10-31 23:35:45,750:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8.
2017-10-31 23:35:45,888:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8 HTTP/1.1" 200 2039
2017-10-31 23:35:45,889:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 2039
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: XVPJLlzKWM7f1hUeeU0tqB1nRRqwlq1nNUQ2L2w4KdA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 31 Oct 2017 23:35:45 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 31 Oct 2017 23:35:45 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "mail.nietostack.com"
  },
  "status": "invalid",
  "expires": "2017-11-07T23:35:42Z",
  "challenges": [
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030043",
      "token": "W9S8TuhZpym3FHX22eRl6es1mFMmjwTXXUqqNjf7u8M"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030044",
      "token": "-nAdG3cHR_-rFETG6szVkNorO3XKoHSOOnq4R1Jmv00"
    },
    {
      "type": "http-01",
      "status": "invalid",
      "error": {
        "type": "urn:acme:error:unauthorized",
        "detail": "Invalid response from http://mail.nietostack.com/.well-known/acme-challenge/j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0: \"\u003c!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\"\u003e\n\u003chtml\u003e\u003chead\u003e\n\u003ctitle\u003e404 Not Found\u003c/title\u003e\n\u003c/head\u003e\u003cbody\u003e\n\u003ch1\u003eNot Found\u003c/h1\u003e\n\u003cp\"",
        "status": 403
      },
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/nBH7oT8rZ3I9PnhMgemZGFUzI0BLhr_QviSBXYg6QB8/2357030045",
      "token": "j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0",
      "keyAuthorization": "j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0.NCY2KJMEq-6tH-DP8W1_2AnRem9JKKUikCKJbfH8WWU",
      "validationRecord": [
        {
          "url": "http://mail.nietostack.com/.well-known/acme-challenge/j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0",
          "hostname": "mail.nietostack.com",
          "port": "80",
          "addressesResolved": [
            "72.14.182.15",
            "2600:3c00::f03c:91ff:fe3e:5bbb"
          ],
          "addressUsed": "2600:3c00::f03c:91ff:fe3e:5bbb",
          "addressesTried": []
        }
      ]
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      0
    ],
    [
      1
    ]
  ]
}
2017-10-31 23:35:45,890:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:

Domain: mail.nietostack.com
Type:   unauthorized
Detail: Invalid response from http://mail.nietostack.com/.well-known/acme-challenge/j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p"

To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address.
2017-10-31 23:35:45,890:INFO:certbot.auth_handler:Cleaning up challenges
2017-10-31 23:35:45,891:DEBUG:certbot.plugins.webroot:Removing /var/www/html/mail.nietostack.com/.well-known/acme-challenge/j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0
2017-10-31 23:35:45,891:INFO:certbot.plugins.webroot:Unable to clean up challenge directory /var/www/html/mail.nietostack.com/.well-known/acme-challenge
2017-10-31 23:35:45,891:DEBUG:certbot.plugins.webroot:Error was: [Errno 39] Directory not empty: '/var/www/html/mail.nietostack.com/.well-known/acme-challenge'
2017-10-31 23:35:45,892:WARNING:certbot.renewal:Attempting to renew cert from /etc/letsencrypt/renewal/mail.nietostack.com.conf produced an unexpected error: Failed authorization procedure. mail.nietostack.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://mail.nietostack.com/.well-known/acme-challenge/j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p". Skipping.
2017-10-31 23:35:45,893:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
  File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 418, in handle_renewal_request
    main.renew_cert(lineage_config, plugins, renewal_candidate)
  File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 640, in renew_cert
    _get_and_save_cert(le_client, config, lineage=lineage)
  File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 77, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 296, in renew_cert
    new_certr, new_chain, new_key, _ = le_client.obtain_certificate(domains)
  File "/usr/lib/python2.7/dist-packages/certbot/client.py", line 313, in obtain_certificate
    self.config.allow_subset_of_names)
  File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 81, in get_authorizations
    self._respond(resp, best_effort)
  File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 138, in _respond
    self._poll_challenges(chall_update, best_effort)
  File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 202, in _poll_challenges
    raise errors.FailedChallenges(all_failed_achalls)
FailedChallenges: Failed authorization procedure. mail.nietostack.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://mail.nietostack.com/.well-known/acme-challenge/j4tOI1eWeM_69_CK4PzJK1MNy5X2TFzSp2bIFAkj8F0: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p"

2017-10-31 23:35:45,897:INFO:certbot.renewal:Cert not yet due for renewal
2017-10-31 23:35:45,898:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 11, in <module>
    load_entry_point('certbot==0.14.2', 'console_scripts', 'certbot')()
  File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 742, in main
    return config.func(config, plugins)
  File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 692, in renew
    renewal.handle_renewal_request(config)
  File "/usr/lib/python2.7/dist-packages/certbot/renewal.py", line 435, in handle_renewal_request
    len(renew_failures), len(parse_failures)))
Error: 1 renew failure(s), 0 parse failure(s)