2024-04-29 11:01:01,051:DEBUG:certbot._internal.main:certbot version: 2.10.0 2024-04-29 11:01:01,051:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/local/bin/certbot 2024-04-29 11:01:01,052:DEBUG:certbot._internal.main:Arguments: ['--webroot', '--webroot-path=/usr/share/nginx/html/letsencrypt', '--email', 'najia@slc-assurances.fr', '--agree-tos', '--no-eff-email', '--staging', '-d', 'comparateur.slc-assurances.fr'] 2024-04-29 11:01:01,052:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2024-04-29 11:01:01,070:DEBUG:certbot._internal.log:Root logging level set at 30 2024-04-29 11:01:01,071:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None 2024-04-29 11:01:01,071:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HTTP challenge only (wildcards not supported). Interfaces: Authenticator, Plugin Entry point: EntryPoint(name='webroot', value='certbot._internal.plugins.webroot:Authenticator', group='certbot.plugins') Initialized: Prep: True 2024-04-29 11:01:01,072:DEBUG:certbot._internal.plugins.selection:Selected authenticator and installer None 2024-04-29 11:01:01,072:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None 2024-04-29 11:01:01,148:DEBUG:certbot._internal.main:Picked account: ), creation_host='724f11395b0d', register_to_eff=None))> 2024-04-29 11:01:01,148:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory. 2024-04-29 11:01:01,151:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443 2024-04-29 11:01:02,635:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 821 2024-04-29 11:01:02,636:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 29 Apr 2024 11:01:02 GMT Content-Type: application/json Content-Length: 821 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "c348aPB8Nnw": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf", "website": "https://letsencrypt.org/docs/staging-environment/" }, "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order", "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/draft-ietf-acme-ari-02/renewalInfo/", "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert" } 2024-04-29 11:01:02,644:DEBUG:certbot._internal.display.obj:Notifying user: Requesting a certificate for comparateur.slc-assurances.fr 2024-04-29 11:01:02,649:DEBUG:acme.client:Requesting fresh nonce 2024-04-29 11:01:02,649:DEBUG:acme.client:Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce. 2024-04-29 11:01:02,806:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0 2024-04-29 11:01:02,807:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 29 Apr 2024 11:01:02 GMT Connection: keep-alive Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: vU6liGrn9pWOvxUPPfefE9pzNDXS3hMBEDfbla_G_8o2PTy2m1I X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 2024-04-29 11:01:02,807:DEBUG:acme.client:Storing nonce: vU6liGrn9pWOvxUPPfefE9pzNDXS3hMBEDfbla_G_8o2PTy2m1I 2024-04-29 11:01:02,808:DEBUG:acme.client:JWS payload: b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "comparateur.slc-assurances.fr"\n }\n ]\n}' 2024-04-29 11:01:02,813:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xNDQ3NDg0NzQiLCAibm9uY2UiOiAidlU2bGlHcm45cFdPdnhVUFBmZWZFOXB6TkRYUzNoTUJFRGZibGFfR184bzJQVHkybTFJIiwgInVybCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9", "signature": "FM3il0n7WBrcQ6G-WvAasRFNyu6GCQjgdyF9v8r_FJylEzeYUsaR0Vxdusy_hCTDpnBlwLyCLVfxbBQDZSquTXhhF2C_uCL6cOuj9XdKS3JChPYNjxhEcLw9VNc7rJcg4yx2Z6T2rcuKYDqHuTWZwkvTR1DZYiBkwjqNROGYkbcv57vGaXUhFCPZOa5Sq_2Ef1KOGEI3rpUJAHT0YiKg6WxkwfWxKP-6iDnyJSJSx6PbFzIvoaRLg2HvWkxID_obZrsV8CaJxVp7mEzXSE6zwW8A5HvXMq97u-kcpOIH-A12X-YYZt4wzefRPKeCeksbNftJ1Xio6xEzQXUu8BfYeg", "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImNvbXBhcmF0ZXVyLnNsYy1hc3N1cmFuY2VzLmZyIgogICAgfQogIF0KfQ" } 2024-04-29 11:01:03,012:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 368 2024-04-29 11:01:03,013:DEBUG:acme.client:Received response: HTTP 201 Server: nginx Date: Mon, 29 Apr 2024 11:01:02 GMT Content-Type: application/json Content-Length: 368 Connection: keep-alive Boulder-Requester: 144748474 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/144748474/16218383874 Replay-Nonce: vU6liGrn4QJibwutkhIi35uySZguRh78cUVh9b8uE1dNgmqBIwU X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "status": "pending", "expires": "2024-05-06T11:01:02Z", "identifiers": [ { "type": "dns", "value": "comparateur.slc-assurances.fr" } ], "authorizations": [ "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/12184478074" ], "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/144748474/16218383874" } 2024-04-29 11:01:03,014:DEBUG:acme.client:Storing nonce: vU6liGrn4QJibwutkhIi35uySZguRh78cUVh9b8uE1dNgmqBIwU 2024-04-29 11:01:03,015:DEBUG:acme.client:JWS payload: b'' 2024-04-29 11:01:03,017:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/12184478074: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xNDQ3NDg0NzQiLCAibm9uY2UiOiAidlU2bGlHcm40UUppYnd1dGtoSWkzNXV5U1pndVJoNzhjVVZoOWI4dUUxZE5nbXFCSXdVIiwgInVybCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzEyMTg0NDc4MDc0In0", "signature": "QJXSwefuAKrejharQ0aQzBultI9Hb3KBchJqUMXAdd-zuefAaBtoBv9WwM-sTBPWqZRZDQ5yTSXY-TmeWYgibLCmkN-sNK8mYNLjsmRn9j2TSmyC3xTqFegaKK_VD_JgfsSBGsA1d1G1aU5V6nNx53nlMaC2hXY3m-4ZYglt5zMuCb9trH1D7YAb8aVO-gR0IYfULmDRT--kf03HXS4Yn6FFknzwLTSLAJ898n4snGaR__HVIuTzUqLdIQqt_Qxd-ljIvRN7K_2ukdMKL_44Z9AQHxNDxvieOpSfPvg7Co_lbRmzE1cuSx4e9-jLUL8HNRkaSX4IE58xSaMUnE4nWg", "payload": "" } 2024-04-29 11:01:03,183:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/12184478074 HTTP/1.1" 200 834 2024-04-29 11:01:03,184:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 29 Apr 2024 11:01:03 GMT Content-Type: application/json Content-Length: 834 Connection: keep-alive Boulder-Requester: 144748474 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: vU6liGrn-pt5T2o7RDeW4aGs9WjKA9WszNoAFk3Ulb1gUrVwp7c X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "comparateur.slc-assurances.fr" }, "status": "pending", "expires": "2024-05-06T11:01:02Z", "challenges": [ { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/12184478074/LI8wGQ", "token": "PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA" }, { "type": "dns-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/12184478074/3FBvmA", "token": "PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA" }, { "type": "tls-alpn-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/12184478074/h-AjZg", "token": "PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA" } ] } 2024-04-29 11:01:03,184:DEBUG:acme.client:Storing nonce: vU6liGrn-pt5T2o7RDeW4aGs9WjKA9WszNoAFk3Ulb1gUrVwp7c 2024-04-29 11:01:03,185:INFO:certbot._internal.auth_handler:Performing the following challenges: 2024-04-29 11:01:03,185:INFO:certbot._internal.auth_handler:http-01 challenge for comparateur.slc-assurances.fr 2024-04-29 11:01:03,186:INFO:certbot._internal.plugins.webroot:Using the webroot path /usr/share/nginx/html/letsencrypt for all unmatched domains. 2024-04-29 11:01:03,186:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /usr/share/nginx/html/letsencrypt/.well-known/acme-challenge 2024-04-29 11:01:03,188:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /usr/share/nginx/html/letsencrypt/.well-known/acme-challenge/PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA 2024-04-29 11:01:03,188:DEBUG:acme.client:JWS payload: b'{}' 2024-04-29 11:01:03,191:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/12184478074/LI8wGQ: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xNDQ3NDg0NzQiLCAibm9uY2UiOiAidlU2bGlHcm4tcHQ1VDJvN1JEZVc0YUdzOVdqS0E5V3N6Tm9BRmszVWxiMWdVclZ3cDdjIiwgInVybCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzEyMTg0NDc4MDc0L0xJOHdHUSJ9", "signature": "rCUOETepgIOfBOHaGMhSm6dztwhYUg1zNRU4JzJ96B69qmCf1xtO3RSUED_ct7esSk3F3CwzEO9dHbPPcs4qVRmmzIeRQz9UxMhT1tH9lD8_cHhmQaNQ_iblX9Uct04q3662mqiMYlBPIh7D7MTV1fH_cobhD85eV6nbJYgyO0IFzliLx2I-cAqkW5JyJAy2ngWn8ahri9pwS96xgZLmpthEH-DdBriENz0vIzkfGiEjO_utjTmc5TMkncah7wJoBuOYcsgCEZmWaiKBGdKYkq3Ki9fT65gXGu_zoAA_EacOs_ezmhvHx-AUPU-TBxLq-DQbly2zL5McU_A__ZEfWg", "payload": "e30" } 2024-04-29 11:01:03,360:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/12184478074/LI8wGQ HTTP/1.1" 200 194 2024-04-29 11:01:03,360:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 29 Apr 2024 11:01:03 GMT Content-Type: application/json Content-Length: 194 Connection: keep-alive Boulder-Requester: 144748474 Cache-Control: public, max-age=0, no-cache Link: ;rel="index", ;rel="up" Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/12184478074/LI8wGQ Replay-Nonce: vU6liGrn_hnvpbyTtR-E38qvhh2Lq7CP6ktHFWNZwTAOQ5IkrXo X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "type": "http-01", "status": "pending", "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/12184478074/LI8wGQ", "token": "PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA" } 2024-04-29 11:01:03,361:DEBUG:acme.client:Storing nonce: vU6liGrn_hnvpbyTtR-E38qvhh2Lq7CP6ktHFWNZwTAOQ5IkrXo 2024-04-29 11:01:03,361:INFO:certbot._internal.auth_handler:Waiting for verification... 2024-04-29 11:01:04,361:DEBUG:acme.client:JWS payload: b'' 2024-04-29 11:01:04,365:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/12184478074: { "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xNDQ3NDg0NzQiLCAibm9uY2UiOiAidlU2bGlHcm5faG52cGJ5VHRSLUUzOHF2aGgyTHE3Q1A2a3RIRldOWndUQU9RNUlrclhvIiwgInVybCI6ICJodHRwczovL2FjbWUtc3RhZ2luZy12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzEyMTg0NDc4MDc0In0", "signature": "hwkS-d5Yfikb4j_s9ba08iey6QfWVjbYcBMFUyTFimvgBBqu9_C5WLwlG0FozTw3Yayp5REK3GbmDeTVYBQXyzv2pamyKz_eFsxNfo_qGOg-gVHXi0vmBybcHh5cj3CvD8e4K2EFfkW0BAP4M12a9KteZpf1Qf5Y6jVIM2Hrsy_jwXXgBmj42WU32tjESbOI9n7Kun25BHFTgF5oEe4i3DLbzGQCo9UwSrMSUi2Jsx19kxzWtURIwC_iopfhwtw4gmUFGkWKviNrKRxvm-lG9s1dEjG3lcEvHL25fuyBrcVnVxKEA8lHYZ9pWun3M3wfCHK4keVh208b7x5W6aMr9Q", "payload": "" } 2024-04-29 11:01:04,678:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/12184478074 HTTP/1.1" 200 1203 2024-04-29 11:01:04,680:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 29 Apr 2024 11:01:04 GMT Content-Type: application/json Content-Length: 1203 Connection: keep-alive Boulder-Requester: 144748474 Cache-Control: public, max-age=0, no-cache Link: ;rel="index" Replay-Nonce: gP7UL-1g3ZbGpwAeoQ_TldpP8cvPOi6bmRbb0WkIuunt_01vjl8 X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "identifier": { "type": "dns", "value": "comparateur.slc-assurances.fr" }, "status": "invalid", "expires": "2024-05-06T11:01:02Z", "challenges": [ { "type": "http-01", "status": "invalid", "error": { "type": "urn:ietf:params:acme:error:connection", "detail": "51.255.71.144: Fetching http://comparateur.slc-assurances.fr/.well-known/acme-challenge/PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA: Connection refused", "status": 400 }, "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/12184478074/LI8wGQ", "token": "PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA", "validationRecord": [ { "url": "http://comparateur.slc-assurances.fr/.well-known/acme-challenge/PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA", "hostname": "comparateur.slc-assurances.fr", "port": "80", "addressesResolved": [ "51.255.71.144" ], "addressUsed": "51.255.71.144", "resolverAddrs": [ "A:10.0.32.85:28460", "AAAA:10.0.32.82:23095" ] } ], "validated": "2024-04-29T11:01:03Z" } ] } 2024-04-29 11:01:04,680:DEBUG:acme.client:Storing nonce: gP7UL-1g3ZbGpwAeoQ_TldpP8cvPOi6bmRbb0WkIuunt_01vjl8 2024-04-29 11:01:04,681:INFO:certbot._internal.auth_handler:Challenge failed for domain comparateur.slc-assurances.fr 2024-04-29 11:01:04,681:INFO:certbot._internal.auth_handler:http-01 challenge for comparateur.slc-assurances.fr 2024-04-29 11:01:04,681:DEBUG:certbot._internal.display.obj:Notifying user: Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems: Domain: comparateur.slc-assurances.fr Type: connection Detail: 51.255.71.144: Fetching http://comparateur.slc-assurances.fr/.well-known/acme-challenge/PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA: Connection refused Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet. 2024-04-29 11:01:04,683:DEBUG:certbot._internal.error_handler:Encountered exception: Traceback (most recent call last): File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2024-04-29 11:01:04,684:DEBUG:certbot._internal.error_handler:Calling registered functions 2024-04-29 11:01:04,684:INFO:certbot._internal.auth_handler:Cleaning up challenges 2024-04-29 11:01:04,684:DEBUG:certbot._internal.plugins.webroot:Removing /usr/share/nginx/html/letsencrypt/.well-known/acme-challenge/PZPj2MUKbIKUi3MpoXrb5WeALEfY-kVvErVR9DJgLbA 2024-04-29 11:01:04,685:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up 2024-04-29 11:01:04,685:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/usr/local/bin/certbot", line 33, in sys.exit(load_entry_point('certbot', 'console_scripts', 'certbot')()) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/main.py", line 19, in main return internal_main.main(cli_args) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 1894, in main return config.func(config, plugins) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 1600, in certonly lineage = _get_and_save_cert(le_client, config, domains, certname, lineage) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 143, in _get_and_save_cert lineage = le_client.obtain_and_enroll_certificate(domains, certname) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/_internal/client.py", line 517, in obtain_and_enroll_certificate cert, chain, key, _ = self.obtain_certificate(domains) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/_internal/client.py", line 428, in obtain_certificate orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/_internal/client.py", line 496, in _get_order_and_authorizations authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 108, in handle_authorizations self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort) File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations raise errors.AuthorizationError('Some challenges have failed.') certbot.errors.AuthorizationError: Some challenges have failed. 2024-04-29 11:01:04,690:ERROR:certbot._internal.log:Some challenges have failed.