Issueing cert fails for combined domain and wildcard cert using Servercow API

[Miyamoto72]

Been using acme.sh since v2.8.x, but now the renew of my combined domain and wildcard cert failed. After backuping the .acme.sh directory I was able to get a domain cert, but not a wildcard or combined cert.

Using acme.sh v3.0.1 on a Debian Buster machine

Steps to reproduce

Exported relevant username and password for Servercow API and ran the following command:

acme.sh --issue --staging --dns dns_servercow --keylength 4096 -d schorers.org -d *.schorers.org -f --server letsencrypt

Results in the following output:

Mi 29. Sep 18:17:23 CEST 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Mi 29. Sep 18:17:24 CEST 2021] Multi domain='DNS:schorers.org,DNS:*.schorers.org'
[Mi 29. Sep 18:17:24 CEST 2021] Getting domain auth token for each domain
[Mi 29. Sep 18:17:26 CEST 2021] Getting webroot for domain='schorers.org'
[Mi 29. Sep 18:17:27 CEST 2021] Getting webroot for domain='*.schorers.org'
[Mi 29. Sep 18:17:27 CEST 2021] Adding txt value: UgvdaLtEBVzq856e44XTLdbXf9dykByBXul6rI6CeV8 for domain:  _acme-challenge.schorers.org
[Mi 29. Sep 18:17:27 CEST 2021] Using servercow
[Mi 29. Sep 18:17:30 CEST 2021] There is no txt record with the name yet.
[Mi 29. Sep 18:17:37 CEST 2021] add txt record error.
[Mi 29. Sep 18:17:37 CEST 2021] Error add txt for domain:_acme-challenge.schorers.org
[Mi 29. Sep 18:17:37 CEST 2021] Please check log file for more details: /home/acmeuser/.acme.sh/acme.sh.log

I'm a bit puzzled about the short time between "using servercow" and "add txt record error". AFAIK the DNS has a TTL of 120 seconds or so.

Debug log

acme.sh --issue --staging --dns dns_servercow --keylength 4096 -d schorers.org -d *.schorers.org -f --server letsencrypt --debug 2
[Mi 29. Sep 21:02:15 CEST 2021] _selectServer try snames='zerossl.com,zerossl'
[Mi 29. Sep 21:02:15 CEST 2021] _selectServer try snames='letsencrypt.org,letsencrypt'
[Mi 29. Sep 21:02:15 CEST 2021] _selectServer match letsencrypt
[Mi 29. Sep 21:02:15 CEST 2021] Selected server: https://acme-v02.api.letsencrypt.org/directory
[Mi 29. Sep 21:02:15 CEST 2021] Lets find script dir.
[Mi 29. Sep 21:02:15 CEST 2021] _SCRIPT_='/home/acmeuser/.acme.sh/acme.sh'
[Mi 29. Sep 21:02:15 CEST 2021] _script='/home/acmeuser/.acme.sh/acme.sh'
[Mi 29. Sep 21:02:15 CEST 2021] _script_home='/home/acmeuser/.acme.sh'
[Mi 29. Sep 21:02:15 CEST 2021] Using config home:/home/acmeuser/.acme.sh
[Mi 29. Sep 21:02:15 CEST 2021] LE_WORKING_DIR='/home/acmeuser/.acme.sh'
https://github.com/acmesh-official/acme.sh
v3.0.1
[Mi 29. Sep 21:02:15 CEST 2021] Using server: letsencrypt
[Mi 29. Sep 21:02:15 CEST 2021] Running cmd: issue
[Mi 29. Sep 21:02:15 CEST 2021] _main_domain='schorers.org'
[Mi 29. Sep 21:02:15 CEST 2021] _alt_domains='*.schorers.org'
[Mi 29. Sep 21:02:15 CEST 2021] Using config home:/home/acmeuser/.acme.sh
[Mi 29. Sep 21:02:15 CEST 2021] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Mi 29. Sep 21:02:15 CEST 2021] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org'
[Mi 29. Sep 21:02:15 CEST 2021] _ACME_SERVER_PATH='directory'
[Mi 29. Sep 21:02:15 CEST 2021] DOMAIN_PATH='/home/acmeuser/.acme.sh/schorers.org'
[Mi 29. Sep 21:02:15 CEST 2021] 'dns_servercow' does not contain 'dns'
[Mi 29. Sep 21:02:15 CEST 2021] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Mi 29. Sep 21:02:15 CEST 2021] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Mi 29. Sep 21:02:15 CEST 2021] Retrying GET
[Mi 29. Sep 21:02:15 CEST 2021] GET
[Mi 29. Sep 21:02:15 CEST 2021] url='https://acme-v02.api.letsencrypt.org/directory'
[Mi 29. Sep 21:02:15 CEST 2021] timeout=
[Mi 29. Sep 21:02:15 CEST 2021] displayError='1'
[Mi 29. Sep 21:02:15 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.eZsTm6i5S6 '
[Mi 29. Sep 21:02:15 CEST 2021] ret='0'
[Mi 29. Sep 21:02:15 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:15 CEST 2021] response='{
  "AWvfubtJNbk": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}'
[Mi 29. Sep 21:02:15 CEST 2021] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Mi 29. Sep 21:02:15 CEST 2021] ACME_NEW_AUTHZ
[Mi 29. Sep 21:02:15 CEST 2021] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Mi 29. Sep 21:02:15 CEST 2021] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Mi 29. Sep 21:02:15 CEST 2021] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Mi 29. Sep 21:02:15 CEST 2021] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Mi 29. Sep 21:02:15 CEST 2021] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Mi 29. Sep 21:02:15 CEST 2021] Le_NextRenewTime
[Mi 29. Sep 21:02:15 CEST 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Mi 29. Sep 21:02:15 CEST 2021] _on_before_issue
[Mi 29. Sep 21:02:16 CEST 2021] _chk_main_domain='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _chk_alt_domains='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] 'dns_servercow' does not contain 'no'
[Mi 29. Sep 21:02:16 CEST 2021] Le_LocalAddress
[Mi 29. Sep 21:02:16 CEST 2021] d='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] Check for domain='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _currentRoot='dns_servercow'
[Mi 29. Sep 21:02:16 CEST 2021] d='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] Check for domain='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _currentRoot='dns_servercow'
[Mi 29. Sep 21:02:16 CEST 2021] d
[Mi 29. Sep 21:02:16 CEST 2021] 'dns_servercow' does not contain 'apache'
[Mi 29. Sep 21:02:16 CEST 2021] _saved_account_key_hash='WXx2R6jeRjGXx3PEPRf8evP/e3WceOgl++BhB8eEAnc='
[Mi 29. Sep 21:02:16 CEST 2021] _saved_account_key_hash is not changed, skip register account.
[Mi 29. Sep 21:02:16 CEST 2021] Read key length:4096
[Mi 29. Sep 21:02:16 CEST 2021] _createcsr
[Mi 29. Sep 21:02:16 CEST 2021] domain='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] domainlist='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] csrkey='/home/acmeuser/.acme.sh/schorers.org/schorers.org.key'
[Mi 29. Sep 21:02:16 CEST 2021] csr='/home/acmeuser/.acme.sh/schorers.org/schorers.org.csr'
[Mi 29. Sep 21:02:16 CEST 2021] csrconf='/home/acmeuser/.acme.sh/schorers.org/schorers.org.csr.conf'
[Mi 29. Sep 21:02:16 CEST 2021] _is_idn_d='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _idn_temp
[Mi 29. Sep 21:02:16 CEST 2021] domainlist='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _is_idn_d='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _idn_temp
[Mi 29. Sep 21:02:16 CEST 2021] Multi domain='DNS:schorers.org,DNS:*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _is_idn_d='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _idn_temp
[Mi 29. Sep 21:02:16 CEST 2021] _csr_cn='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] Getting domain auth token for each domain
[Mi 29. Sep 21:02:16 CEST 2021] _is_idn_d='schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _idn_temp
[Mi 29. Sep 21:02:16 CEST 2021] d='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _is_idn_d='*.schorers.org'
[Mi 29. Sep 21:02:16 CEST 2021] _idn_temp
[Mi 29. Sep 21:02:16 CEST 2021] d
[Mi 29. Sep 21:02:16 CEST 2021] _identifiers='{"type":"dns","value":"schorers.org"},{"type":"dns","value":"*.schorers.org"}'
[Mi 29. Sep 21:02:16 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Mi 29. Sep 21:02:16 CEST 2021] payload='{"identifiers": [{"type":"dns","value":"schorers.org"},{"type":"dns","value":"*.schorers.org"}]}'
[Mi 29. Sep 21:02:16 CEST 2021] RSA key
[Mi 29. Sep 21:02:16 CEST 2021] Get nonce with HEAD. ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Mi 29. Sep 21:02:16 CEST 2021] Retrying post
[Mi 29. Sep 21:02:16 CEST 2021] HEAD
[Mi 29. Sep 21:02:16 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Mi 29. Sep 21:02:16 CEST 2021] body
[Mi 29. Sep 21:02:16 CEST 2021] _postContentType='application/jose+json'
[Mi 29. Sep 21:02:16 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD  -I  '
[Mi 29. Sep 21:02:16 CEST 2021] _ret='0'
[Mi 29. Sep 21:02:16 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:16 CEST 2021] _headers='HTTP/2 200 
server: nginx
date: Wed, 29 Sep 2021 19:02:16 GMT
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: 0101C-YAcrKltL4sepkqana41E9_-p8xmVD7aK42Z-aWLQw
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Mi 29. Sep 21:02:16 CEST 2021] _CACHED_NONCE='0101C-YAcrKltL4sepkqana41E9_-p8xmVD7aK42Z-aWLQw'
[Mi 29. Sep 21:02:16 CEST 2021] nonce='0101C-YAcrKltL4sepkqana41E9_-p8xmVD7aK42Z-aWLQw'
[Mi 29. Sep 21:02:16 CEST 2021] Retrying post
[Mi 29. Sep 21:02:16 CEST 2021] POST
[Mi 29. Sep 21:02:16 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Mi 29. Sep 21:02:16 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMTAxQy1ZQWNyS2x0TDRzZXBrcWFuYTQxRTlfLXA4eG1WRDdhSzQyWi1hV0xRdyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvbmV3LW9yZGVyIiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8yMTkyNjcxNDAifQ", "payload": "eyJpZGVudGlmaWVycyI6IFt7InR5cGUiOiJkbnMiLCJ2YWx1ZSI6InNjaG9yZXJzLm9yZyJ9LHsidHlwZSI6ImRucyIsInZhbHVlIjoiKi5zY2hvcmVycy5vcmcifV19", "signature": "bKDSAG04WCsDVrkgfc78au4UyX1G-PqZA7W3TElNPIY896gBK0yy50Pz8vg8RVe8fszDtrttjYVxHKJWL_Qnyz5a56HD9w6IA9ns3S1kZ85gel-CiDS3JGUjX6HQrd8PitRooCh4N0rybeHqzoSAXURQc4LcrJmqR2N3fkMdjCyhavPHzSx8Bez8A3ORSj8jpMfpJm7Gnl5OIs4Z6US2ILzoWO8P8Q72I2CM4GYfU91ixUBOjD-or6eG82UDrRMNBHalCVYRCSbw6rUpL9VnKPJJNlaRU9mPzpEsLfi4f9PqsGN2LzubH6lYIyKRxBtrV1wBXj-e8gn8bqOt8lAbWw"}'
[Mi 29. Sep 21:02:16 CEST 2021] _postContentType='application/jose+json'
[Mi 29. Sep 21:02:16 CEST 2021] Http already initialized.
[Mi 29. Sep 21:02:16 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD '
[Mi 29. Sep 21:02:17 CEST 2021] _ret='0'
[Mi 29. Sep 21:02:17 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:17 CEST 2021] responseHeaders='HTTP/2 201 
server: nginx
date: Wed, 29 Sep 2021 19:02:17 GMT
content-type: application/json
content-length: 471
boulder-requester: 219267140
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
location: https://acme-v02.api.letsencrypt.org/acme/order/219267140/28144149630
replay-nonce: 0002p_D3w-EuRNrZnjafCAg8CPzx-qMRiFD5nM0cnpEtXPM
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Mi 29. Sep 21:02:17 CEST 2021] code='201'
[Mi 29. Sep 21:02:17 CEST 2021] original='{
  "status": "pending",
  "expires": "2021-10-06T19:02:17Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "*.schorers.org"
    },
    {
      "type": "dns",
      "value": "schorers.org"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012620",
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012630"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/219267140/28144149630"
}'
[Mi 29. Sep 21:02:17 CEST 2021] response='{"status":"pending","expires":"2021-10-06T19:02:17Z","identifiers":[{"type":"dns","value":"*.schorers.org"},{"type":"dns","value":"schorers.org"}],"authorizations":["https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012620","https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012630"],"finalize":"https://acme-v02.api.letsencrypt.org/acme/finalize/219267140/28144149630"}'
[Mi 29. Sep 21:02:17 CEST 2021] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/219267140/28144149630'
[Mi 29. Sep 21:02:17 CEST 2021] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/219267140/28144149630'
[Mi 29. Sep 21:02:17 CEST 2021] _authorizations_seg='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012620,https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012630'
[Mi 29. Sep 21:02:17 CEST 2021] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012620'
[Mi 29. Sep 21:02:17 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012620'
[Mi 29. Sep 21:02:17 CEST 2021] payload
[Mi 29. Sep 21:02:17 CEST 2021] Use cached jwk for file: /home/acmeuser/.acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Mi 29. Sep 21:02:17 CEST 2021] Use _CACHED_NONCE='0002p_D3w-EuRNrZnjafCAg8CPzx-qMRiFD5nM0cnpEtXPM'
[Mi 29. Sep 21:02:17 CEST 2021] nonce='0002p_D3w-EuRNrZnjafCAg8CPzx-qMRiFD5nM0cnpEtXPM'
[Mi 29. Sep 21:02:17 CEST 2021] Retrying post
[Mi 29. Sep 21:02:17 CEST 2021] POST
[Mi 29. Sep 21:02:17 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012620'
[Mi 29. Sep 21:02:17 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMDAycF9EM3ctRXVSTnJabmphZkNBZzhDUHp4LXFNUmlGRDVuTTBjbnBFdFhQTSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvMzU0ODAwMTI2MjAiLCAiYWxnIjogIlJTMjU2IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzIxOTI2NzE0MCJ9", "payload": "", "signature": "KwGDGuD61q191qDrg8gLHZJVhlM2K9AmhFdzxteHkmSvVZR-Z5q2E1UFHSf3sQwEAkXtBTx8tYsSIXtZZ_ChF_BJ49t0xlqc0UY8IakeMeH7MbMugywTFHN6l5HLiTA6FgoDbv1hT0-LIB607ETDS3p0X-pjJWtoBrtTez6E1Fme_HgpRnfz_EUxsZ8z0oatR7jBdB6vDOIoGqkIl3u8DiLHtpvyQp4K61tKUoWZyFesOatM_lpT_wSL-f-uU_dbfqHEEZzsC2dGIJ_zE4lSJ3jjf2nrGE35O0qjmu4eCKBUcnB_cN5aqU0SHWGqubOAcHPZCnnFlQUv0u8KipKQjg"}'
[Mi 29. Sep 21:02:17 CEST 2021] _postContentType='application/jose+json'
[Mi 29. Sep 21:02:17 CEST 2021] Http already initialized.
[Mi 29. Sep 21:02:17 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD '
[Mi 29. Sep 21:02:18 CEST 2021] _ret='0'
[Mi 29. Sep 21:02:18 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:18 CEST 2021] responseHeaders='HTTP/2 200 
server: nginx
date: Wed, 29 Sep 2021 19:02:18 GMT
content-type: application/json
content-length: 385
boulder-requester: 219267140
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: 0001iErw3Ul-hxd80kCsAXPs5JDPlwxJZeGv70JiaheMmH4
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Mi 29. Sep 21:02:18 CEST 2021] code='200'
[Mi 29. Sep 21:02:18 CEST 2021] original='{
  "identifier": {
    "type": "dns",
    "value": "schorers.org"
  },
  "status": "pending",
  "expires": "2021-10-06T19:02:17Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ",
      "token": "smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"
    }
  ],
  "wildcard": true
}'
[Mi 29. Sep 21:02:18 CEST 2021] response='{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ","token":"smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"}],"wildcard": true}'
[Mi 29. Sep 21:02:18 CEST 2021] response='{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ","token":"smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"}],"wildcard": true}'
[Mi 29. Sep 21:02:18 CEST 2021] _d='*.schorers.org'
[Mi 29. Sep 21:02:18 CEST 2021] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012630'
[Mi 29. Sep 21:02:18 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012630'
[Mi 29. Sep 21:02:18 CEST 2021] payload
[Mi 29. Sep 21:02:18 CEST 2021] Use cached jwk for file: /home/acmeuser/.acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Mi 29. Sep 21:02:18 CEST 2021] Use _CACHED_NONCE='0001iErw3Ul-hxd80kCsAXPs5JDPlwxJZeGv70JiaheMmH4'
[Mi 29. Sep 21:02:18 CEST 2021] nonce='0001iErw3Ul-hxd80kCsAXPs5JDPlwxJZeGv70JiaheMmH4'
[Mi 29. Sep 21:02:18 CEST 2021] Retrying post
[Mi 29. Sep 21:02:18 CEST 2021] POST
[Mi 29. Sep 21:02:18 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012630'
[Mi 29. Sep 21:02:18 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMDAxaUVydzNVbC1oeGQ4MGtDc0FYUHM1SkRQbHd4SlplR3Y3MEppYWhlTW1INCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYXV0aHotdjMvMzU0ODAwMTI2MzAiLCAiYWxnIjogIlJTMjU2IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzIxOTI2NzE0MCJ9", "payload": "", "signature": "D5Y4U0RPPJQIiQJ8h2Dgpj9DN73aJN0fHwChjBcoWrvyeSbd7nSHRjSAM2fcH2p37yj8Nv1ZQY52gFsaLCYBpXBBBW1a0H9xd1_XgUW2ZoK2PMf0I8f6-BrrsqgHf8T5HMOPACH9hTk2yyr0JHp1tB4LY6mPLckWoNQkAzOQJYql8y5HaOV3eKOFmiSkKJVnYzQsFEZuWV-blmqVAS-ExLgVnQF1GVf0uBqs4GgUze8C3M4kLtSaydis1C-JRn0tr6U5VqwXtTKuebufp-L_FxQ1JFEcB7bnV4OwW5wMswWb-EdkwCXGDglFVLvdSd4BhsoEVe9MZGtZ-1meUDgvfg"}'
[Mi 29. Sep 21:02:18 CEST 2021] _postContentType='application/jose+json'
[Mi 29. Sep 21:02:18 CEST 2021] Http already initialized.
[Mi 29. Sep 21:02:18 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD '
[Mi 29. Sep 21:02:19 CEST 2021] _ret='0'
[Mi 29. Sep 21:02:19 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:19 CEST 2021] responseHeaders='HTTP/2 200 
server: nginx
date: Wed, 29 Sep 2021 19:02:19 GMT
content-type: application/json
content-length: 793
boulder-requester: 219267140
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: 0002g36qgphMmlXYMI-F9YKO7ZQktRUtF31WZNe63bBu7wc
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Mi 29. Sep 21:02:19 CEST 2021] code='200'
[Mi 29. Sep 21:02:19 CEST 2021] original='{
  "identifier": {
    "type": "dns",
    "value": "schorers.org"
  },
  "status": "pending",
  "expires": "2021-10-06T19:02:17Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/n9oyaQ",
      "token": "x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew",
      "token": "x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/rLtCbg",
      "token": "x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"
    }
  ]
}'
[Mi 29. Sep 21:02:19 CEST 2021] response='{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/n9oyaQ","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/rLtCbg","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"}]}'
[Mi 29. Sep 21:02:19 CEST 2021] response='{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/n9oyaQ","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/rLtCbg","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"}]}'
[Mi 29. Sep 21:02:19 CEST 2021] _d='schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] _authorizations_map='schorers.org,{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/n9oyaQ","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/rLtCbg","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"}]}
*.schorers.org,{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ","token":"smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"}],"wildcard": true}
'
[Mi 29. Sep 21:02:19 CEST 2021] d='schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] Getting webroot for domain='schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] _w='dns_servercow'
[Mi 29. Sep 21:02:19 CEST 2021] _currentRoot='dns_servercow'
[Mi 29. Sep 21:02:19 CEST 2021] _is_idn_d='schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] _idn_temp
[Mi 29. Sep 21:02:19 CEST 2021] _candidates='schorers.org,{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/n9oyaQ","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/rLtCbg","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"}]}'
[Mi 29. Sep 21:02:19 CEST 2021] response='{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/n9oyaQ","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/rLtCbg","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"}]}'
[Mi 29. Sep 21:02:19 CEST 2021] entry='"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"'
[Mi 29. Sep 21:02:19 CEST 2021] token='x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4'
[Mi 29. Sep 21:02:19 CEST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew'
[Mi 29. Sep 21:02:19 CEST 2021] keyauthorization='x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw'
[Mi 29. Sep 21:02:19 CEST 2021] dvlist='schorers.org#x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw#https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew#dns-01#dns_servercow'
[Mi 29. Sep 21:02:19 CEST 2021] d='*.schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] Getting webroot for domain='*.schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] _w='dns_servercow'
[Mi 29. Sep 21:02:19 CEST 2021] _currentRoot='dns_servercow'
[Mi 29. Sep 21:02:19 CEST 2021] _is_idn_d='*.schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] _idn_temp
[Mi 29. Sep 21:02:19 CEST 2021] _candidates='*.schorers.org,{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ","token":"smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"}],"wildcard": true}'
[Mi 29. Sep 21:02:19 CEST 2021] response='{"identifier":{"type":"dns","value":"schorers.org"},"status":"pending","expires":"2021-10-06T19:02:17Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ","token":"smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"}],"wildcard": true}'
[Mi 29. Sep 21:02:19 CEST 2021] entry='"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ","token":"smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"'
[Mi 29. Sep 21:02:19 CEST 2021] token='smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA'
[Mi 29. Sep 21:02:19 CEST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ'
[Mi 29. Sep 21:02:19 CEST 2021] keyauthorization='smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw'
[Mi 29. Sep 21:02:19 CEST 2021] dvlist='*.schorers.org#smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw#https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ#dns-01#dns_servercow'
[Mi 29. Sep 21:02:19 CEST 2021] d
[Mi 29. Sep 21:02:19 CEST 2021] vlist='schorers.org#x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw#https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew#dns-01#dns_servercow,*.schorers.org#smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw#https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ#dns-01#dns_servercow,'
[Mi 29. Sep 21:02:19 CEST 2021] d='schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] _d_alias
[Mi 29. Sep 21:02:19 CEST 2021] txtdomain='_acme-challenge.schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] txt='MGpUuSvCrDSSSmNrc4P7Edf6e9-1avGXH3Q7QlnFw2g'
[Mi 29. Sep 21:02:19 CEST 2021] d_api='/home/acmeuser/.acme.sh/dnsapi/dns_servercow.sh'
[Mi 29. Sep 21:02:19 CEST 2021] dns_entry='schorers.org,_acme-challenge.schorers.org,,dns_servercow,MGpUuSvCrDSSSmNrc4P7Edf6e9-1avGXH3Q7QlnFw2g,/home/acmeuser/.acme.sh/dnsapi/dns_servercow.sh'
[Mi 29. Sep 21:02:19 CEST 2021] Found domain api file: /home/acmeuser/.acme.sh/dnsapi/dns_servercow.sh
[Mi 29. Sep 21:02:19 CEST 2021] Adding txt value: MGpUuSvCrDSSSmNrc4P7Edf6e9-1avGXH3Q7QlnFw2g for domain:  _acme-challenge.schorers.org
[Mi 29. Sep 21:02:19 CEST 2021] Using servercow
[Mi 29. Sep 21:02:19 CEST 2021] fulldomain='_acme-challenge.schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] txtvalue='MGpUuSvCrDSSSmNrc4P7Edf6e9-1avGXH3Q7QlnFw2g'
[Mi 29. Sep 21:02:19 CEST 2021] First detect the root zone
[Mi 29. Sep 21:02:19 CEST 2021] _domain='schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] Retrying GET
[Mi 29. Sep 21:02:19 CEST 2021] GET
[Mi 29. Sep 21:02:19 CEST 2021] url='https://api.servercow.de/dns/v1/domains/schorers.org'
[Mi 29. Sep 21:02:19 CEST 2021] timeout=
[Mi 29. Sep 21:02:19 CEST 2021] displayError='1'
[Mi 29. Sep 21:02:19 CEST 2021] Http already initialized.
[Mi 29. Sep 21:02:19 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD '
[Mi 29. Sep 21:02:22 CEST 2021] ret='0'
[Mi 29. Sep 21:02:22 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:22 CEST 2021] response='{"error":"authentication failed"}'
[Mi 29. Sep 21:02:22 CEST 2021] _sub_domain='_acme-challenge'
[Mi 29. Sep 21:02:22 CEST 2021] _domain='schorers.org'
[Mi 29. Sep 21:02:22 CEST 2021] There is no txt record with the name yet.
[Mi 29. Sep 21:02:22 CEST 2021] data='{"type":"TXT","name":"_acme-challenge.schorers.org","content":"MGpUuSvCrDSSSmNrc4P7Edf6e9-1avGXH3Q7QlnFw2g","ttl":20}'
[Mi 29. Sep 21:02:22 CEST 2021] Retrying post
[Mi 29. Sep 21:02:22 CEST 2021] POST
[Mi 29. Sep 21:02:22 CEST 2021] _post_url='https://api.servercow.de/dns/v1/domains/schorers.org'
[Mi 29. Sep 21:02:22 CEST 2021] body='{"type":"TXT","name":"_acme-challenge.schorers.org","content":"MGpUuSvCrDSSSmNrc4P7Edf6e9-1avGXH3Q7QlnFw2g","ttl":20}'
[Mi 29. Sep 21:02:22 CEST 2021] _postContentType
[Mi 29. Sep 21:02:22 CEST 2021] Http already initialized.
[Mi 29. Sep 21:02:22 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD '
[Mi 29. Sep 21:02:29 CEST 2021] _ret='0'
[Mi 29. Sep 21:02:29 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:29 CEST 2021] response='{"error":"authentication failed"}'
[Mi 29. Sep 21:02:29 CEST 2021] add txt record error.
[Mi 29. Sep 21:02:29 CEST 2021] Error add txt for domain:_acme-challenge.schorers.org
[Mi 29. Sep 21:02:29 CEST 2021] _on_issue_err
[Mi 29. Sep 21:02:29 CEST 2021] Please check log file for more details: /home/acmeuser/.acme.sh/acme.sh.log
[Mi 29. Sep 21:02:29 CEST 2021] _chk_vlist='schorers.org#x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw#https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew#dns-01#dns_servercow,*.schorers.org#smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw#https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ#dns-01#dns_servercow,'
[Mi 29. Sep 21:02:29 CEST 2021] start to deactivate authz
[Mi 29. Sep 21:02:29 CEST 2021] Trigger domain validation.
[Mi 29. Sep 21:02:29 CEST 2021] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew'
[Mi 29. Sep 21:02:29 CEST 2021] _t_key_authz='x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw'
[Mi 29. Sep 21:02:29 CEST 2021] _t_vtype
[Mi 29. Sep 21:02:29 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew'
[Mi 29. Sep 21:02:29 CEST 2021] payload='{}'
[Mi 29. Sep 21:02:29 CEST 2021] Use cached jwk for file: /home/acmeuser/.acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Mi 29. Sep 21:02:29 CEST 2021] Use _CACHED_NONCE='0002g36qgphMmlXYMI-F9YKO7ZQktRUtF31WZNe63bBu7wc'
[Mi 29. Sep 21:02:29 CEST 2021] nonce='0002g36qgphMmlXYMI-F9YKO7ZQktRUtF31WZNe63bBu7wc'
[Mi 29. Sep 21:02:29 CEST 2021] Retrying post
[Mi 29. Sep 21:02:29 CEST 2021] POST
[Mi 29. Sep 21:02:29 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew'
[Mi 29. Sep 21:02:29 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMDAyZzM2cWdwaE1tbFhZTUktRjlZS083WlFrdFJVdEYzMVdaTmU2M2JCdTd3YyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMzU0ODAwMTI2MzAvN3VVZmV3IiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8yMTkyNjcxNDAifQ", "payload": "e30", "signature": "cb-WFF1T08ey_sg1z8rwHIWvQGzDn7ShaE8xZb1C0-xzx9aOILOohIKEiqeGSXBsAc3wLNOYJHfFzJOGue5T993agCgE15Lx3TeqhaAwSVwNniXP7oahwVBdby4H_E9WCSQxnpCZQAI2eJ6yd4NXp1UEFMzp2wIHxtEVmf_F5DdwpBb6t1tXscDb1OLhrrqXgEI5gVC_6wNR2RTbiWimGABqn3PHRxNS6wQVSbm5Mv0mqRoHVvf5nnHW0As-VVAKR5Fb8c17rjU5QBQN_P6h0FPsIgr0jYcOlSspJBLjSDNttAoO0drlGMzgm-ZnkZ_hiDDEvI2I_7w5jNjYVqgNGA"}'
[Mi 29. Sep 21:02:29 CEST 2021] _postContentType='application/jose+json'
[Mi 29. Sep 21:02:29 CEST 2021] Http already initialized.
[Mi 29. Sep 21:02:29 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD '
[Mi 29. Sep 21:02:30 CEST 2021] _ret='0'
[Mi 29. Sep 21:02:30 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:30 CEST 2021] responseHeaders='HTTP/2 200 
server: nginx
date: Wed, 29 Sep 2021 19:02:30 GMT
content-type: application/json
content-length: 185
boulder-requester: 219267140
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012630>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew
replay-nonce: 0001Yqn3DujZeWVlhh5xa6StaNQyV6vFfGhFeVmdnqfLqXc
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Mi 29. Sep 21:02:30 CEST 2021] code='200'
[Mi 29. Sep 21:02:30 CEST 2021] original='{
  "type": "dns-01",
  "status": "pending",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew",
  "token": "x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"
}'
[Mi 29. Sep 21:02:30 CEST 2021] response='{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012630/7uUfew","token":"x0XG5vqwhJFraatPSC0Q1UDX3e0gJ9qMhSB-pExJGZ4"}'
[Mi 29. Sep 21:02:30 CEST 2021] Trigger domain validation.
[Mi 29. Sep 21:02:30 CEST 2021] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ'
[Mi 29. Sep 21:02:30 CEST 2021] _t_key_authz='smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA.5i51C6_9mD4mHVP3yUGldC5sz3r-oAv6StAx1ps1uJw'
[Mi 29. Sep 21:02:30 CEST 2021] _t_vtype
[Mi 29. Sep 21:02:30 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ'
[Mi 29. Sep 21:02:30 CEST 2021] payload='{}'
[Mi 29. Sep 21:02:30 CEST 2021] Use cached jwk for file: /home/acmeuser/.acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Mi 29. Sep 21:02:30 CEST 2021] Use _CACHED_NONCE='0001Yqn3DujZeWVlhh5xa6StaNQyV6vFfGhFeVmdnqfLqXc'
[Mi 29. Sep 21:02:30 CEST 2021] nonce='0001Yqn3DujZeWVlhh5xa6StaNQyV6vFfGhFeVmdnqfLqXc'
[Mi 29. Sep 21:02:30 CEST 2021] Retrying post
[Mi 29. Sep 21:02:30 CEST 2021] POST
[Mi 29. Sep 21:02:30 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ'
[Mi 29. Sep 21:02:30 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMDAxWXFuM0R1alplV1ZsaGg1eGE2U3RhTlF5VjZ2RmZHaEZlVm1kbnFmTHFYYyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMzU0ODAwMTI2MjAvV21ZNmFRIiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8yMTkyNjcxNDAifQ", "payload": "e30", "signature": "k6wU0VWO1YQ1hpZogOOK10E_Tn9yomayctj91jYbGqbjYrQ3Xr1dYC7kK9b7i9ps8ZVi9BgOhdqMg_OJNhU0NlDjinGC1Niy5BgwK2HzpoJ_UG_cmYRkKZIYNzhDjvsPyyiqpOwDvHnEL1oFpcAH9k2Mnig8sZ825CvWTG4DymF0a8fRKd4Xhl71JtpJoXDDjJed7Nv66-B6n7tojSQttcfdUOsSKgyLZxnJpM1AWImdWU4t-KyeCYzNSJK7Iu_PR-FNxkLqlAobEeMgYLdg7TB5UJkR8HBNuCCjcqzdn8Z3HHMIsBS8eyrKxRwbluiHoAx6avDAyHj2bwXv6YGzZQ"}'
[Mi 29. Sep 21:02:30 CEST 2021] _postContentType='application/jose+json'
[Mi 29. Sep 21:02:30 CEST 2021] Http already initialized.
[Mi 29. Sep 21:02:30 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  --trace-ascii /tmp/tmp.oseDDjQByD '
[Mi 29. Sep 21:02:30 CEST 2021] _ret='0'
[Mi 29. Sep 21:02:30 CEST 2021] _hcode='0'
[Mi 29. Sep 21:02:30 CEST 2021] responseHeaders='HTTP/2 200 
server: nginx
date: Wed, 29 Sep 2021 19:02:30 GMT
content-type: application/json
content-length: 185
boulder-requester: 219267140
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://acme-v02.api.letsencrypt.org/acme/authz-v3/35480012620>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ
replay-nonce: 0101QEIjkbpcVR50BQ14466S-rlrHcH065f78Vh5ThEqZJk
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Mi 29. Sep 21:02:30 CEST 2021] code='200'
[Mi 29. Sep 21:02:30 CEST 2021] original='{
  "type": "dns-01",
  "status": "pending",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ",
  "token": "smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"
}'
[Mi 29. Sep 21:02:30 CEST 2021] response='{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/35480012620/WmY6aQ","token":"smK_vkd1lMpWAuQSRblw5y9W-WcUw2hucozrrdXe3jA"}'
[Mi 29. Sep 21:02:30 CEST 2021] Diagnosis versions: 
openssl:openssl
OpenSSL 1.1.1d  10 Sep 2019
apache:
apache doesn't exist.
nginx:
nginx version: nginx/1.21.3
built by gcc 8.3.0 (Debian 8.3.0-6) 
built with OpenSSL 1.1.1d  10 Sep 2019
TLS SNI support enabled
configure arguments: --prefix=/etc/nginx --sbin-path=/usr/sbin/nginx --modules-path=/usr/lib/nginx/modules --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx.pid --lock-path=/var/run/nginx.lock --http-client-body-temp-path=/var/cache/nginx/client_temp --http-proxy-temp-path=/var/cache/nginx/proxy_temp --http-fastcgi-temp-path=/var/cache/nginx/fastcgi_temp --http-uwsgi-temp-path=/var/cache/nginx/uwsgi_temp --http-scgi-temp-path=/var/cache/nginx/scgi_temp --user=nginx --group=nginx --with-compat --with-file-aio --with-threads --with-http_addition_module --with-http_auth_request_module --with-http_dav_module --with-http_flv_module --with-http_gunzip_module --with-http_gzip_static_module --with-http_mp4_module --with-http_random_index_module --with-http_realip_module --with-http_secure_link_module --with-http_slice_module --with-http_ssl_module --with-http_stub_status_module --with-http_sub_module --with-http_v2_module --with-mail --with-mail_ssl_module --with-stream --with-stream_realip_module --with-stream_ssl_module --with-stream_ssl_preread_module --with-cc-opt='-g -O2 -fdebug-prefix-map=/data/builder/debuild/nginx-1.21.3/debian/debuild-base/nginx-1.21.3=. -fstack-protector-strong -Wformat -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fPIC' --with-ld-opt='-Wl,-z,relro -Wl,-z,now -Wl,--as-needed -pie'
socat:
socat by Gerhard Rieger and contributors - see www.dest-unreach.org
socat version 1.7.3.2 on Nov 19 2017 13:56:10
   running on Linux version #1 SMP Debian 5.10.46-4~bpo10+1 (2021-08-07), release 5.10.0-0.bpo.8-amd64, machine x86_64
features:
  #define WITH_STDIO 1
  #define WITH_FDNUM 1
  #define WITH_FILE 1
  #define WITH_CREAT 1
  #define WITH_GOPEN 1
  #define WITH_TERMIOS 1
  #define WITH_PIPE 1
  #define WITH_UNIX 1
  #define WITH_ABSTRACT_UNIXSOCKET 1
  #define WITH_IP4 1
  #define WITH_IP6 1
  #define WITH_RAWIP 1
  #define WITH_GENERICSOCKET 1
  #define WITH_INTERFACE 1
  #define WITH_TCP 1
  #define WITH_UDP 1
  #define WITH_SCTP 1
  #define WITH_LISTEN 1
  #define WITH_SOCKS4 1
  #define WITH_SOCKS4A 1
  #define WITH_PROXY 1
  #define WITH_SYSTEM 1
  #define WITH_EXEC 1
  #undef WITH_READLINE
  #define WITH_TUN 1
  #define WITH_PTY 1
  #define WITH_OPENSSL 1
  #undef WITH_FIPS
  #define WITH_LIBWRAP 1
  #define WITH_SYCLS 1
  #define WITH_FILAN 1
  #define WITH_RETRY 1
  #define WITH_MSGLEVEL 0 /*debug*/
[Mi 29. Sep 21:02:30 CEST 2021] pid
[Mi 29. Sep 21:02:30 CEST 2021] No need to restore nginx, skip.
[Mi 29. Sep 21:02:30 CEST 2021] _clearupdns
[Mi 29. Sep 21:02:30 CEST 2021] dns_entries
[Mi 29. Sep 21:02:30 CEST 2021] skip dns.

Omitting the --staging parameter doesn't change a thing. User has write access to the relevant webroot dir.

[Neilpang]

[Mi 29. Sep 21:02:29 CEST 2021] response='{"error":"authentication failed"}'
[Mi 29. Sep 21:02:29 CEST 2021] add txt record error.
[Mi 29. Sep 21:02:29 CEST 2021] Error add txt for domain:_acme-challenge.schorers.org

[Miyamoto72]

Thx for pointing that out. Solved that, but still not working.

Trying to issue a new combined cert with a defined keylength of 4096 bits throws an error:

[Do 30. Sep 19:32:04 CEST 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Do 30. Sep 19:32:04 CEST 2021] Creating domain key
[Do 30. Sep 19:32:04 CEST 2021] error ecc key name: mydomain.com
[Do 30. Sep 19:32:04 CEST 2021] Can not create domain key
[Do 30. Sep 19:32:04 CEST 2021] Create domain key error.

Apparently acme.sh now tries to create ECC keys, too, by default, and those have other keylengths. In my opinion this is an error in acme.sh, of course.

Trying to issue an RSA key by command line options should be possible, I'd say, but I didn't find a way. So I tried to issue a new combined cert from the backup of the old CSR:

[Do 30. Sep 19:39:19 CEST 2021] Copy csr to: /home/acmeuser/.acme.sh/*.mydomain.com/*.mydomain.com.csr
[Do 30. Sep 19:39:19 CEST 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Do 30. Sep 19:39:19 CEST 2021] Signing from existing CSR.
[Do 30. Sep 19:39:19 CEST 2021] Getting domain auth token for each domain
[Do 30. Sep 19:39:22 CEST 2021] Getting webroot for domain='*.mydomain.com'
[Do 30. Sep 19:39:23 CEST 2021] Error, can not get domain token entry *.mydomain.com for http-01
[Do 30. Sep 19:39:23 CEST 2021] The supported validation types are: dns-01 , but you specified: http-01

Here's the log:

[Do 30. Sep 19:53:44 CEST 2021] Running cmd: signcsr
[Do 30. Sep 19:53:44 CEST 2021] _csrsubj='*.mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] _csrsubj='*.mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] _dnsAltnames='DNS:*.mydomain.com,DNS:mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] AltNames contains subject
[Do 30. Sep 19:53:44 CEST 2021] _excapedAlgnames='DNS:#.mydomain.com,DNS:mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] _escapedSubject='#.mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] _dnsAltnames='DNS:mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] _csrdomainlist='mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] RSA CSR
[Do 30. Sep 19:53:44 CEST 2021] Using config home:/home/acmeuser/.acme.sh
[Do 30. Sep 19:53:44 CEST 2021] default_acme_server='https://acme-v02.api.letsencrypt.org/directory'
[Do 30. Sep 19:53:44 CEST 2021] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Do 30. Sep 19:53:44 CEST 2021] DOMAIN_PATH='/home/acmeuser/.acme.sh/*.mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] Copy csr to: /home/acmeuser/.acme.sh/*.mydomain.com/*.mydomain.com.csr
[Do 30. Sep 19:53:44 CEST 2021] _main_domain='*.mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] _alt_domains='mydomain.com'
[Do 30. Sep 19:53:44 CEST 2021] Using config home:/home/acmeuser/.acme.sh
[Do 30. Sep 19:53:44 CEST 2021] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Do 30. Sep 19:53:44 CEST 2021] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Do 30. Sep 19:53:44 CEST 2021] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Do 30. Sep 19:53:44 CEST 2021] Retrying GET
[Do 30. Sep 19:53:44 CEST 2021] GET
[Do 30. Sep 19:53:44 CEST 2021] url='https://acme-v02.api.letsencrypt.org/directory'
[Do 30. Sep 19:53:44 CEST 2021] timeout=
[Do 30. Sep 19:53:44 CEST 2021] displayError='1'
[Do 30. Sep 19:53:44 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L '
[Do 30. Sep 19:53:45 CEST 2021] ret='0'
[Do 30. Sep 19:53:45 CEST 2021] _hcode='0'
[Do 30. Sep 19:53:45 CEST 2021] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Do 30. Sep 19:53:45 CEST 2021] ACME_NEW_AUTHZ
[Do 30. Sep 19:53:45 CEST 2021] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Do 30. Sep 19:53:45 CEST 2021] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Do 30. Sep 19:53:45 CEST 2021] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Do 30. Sep 19:53:45 CEST 2021] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Do 30. Sep 19:53:45 CEST 2021] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Do 30. Sep 19:53:45 CEST 2021] Le_NextRenewTime
[Do 30. Sep 19:53:45 CEST 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Do 30. Sep 19:53:45 CEST 2021] _on_before_issue
[Do 30. Sep 19:53:45 CEST 2021] _chk_main_domain='*.mydomain.com'
[Do 30. Sep 19:53:45 CEST 2021] _chk_alt_domains='mydomain.com'
[Do 30. Sep 19:53:45 CEST 2021] Le_LocalAddress
[Do 30. Sep 19:53:45 CEST 2021] d='*.mydomain.com'
[Do 30. Sep 19:53:45 CEST 2021] Check for domain='*.mydomain.com'
[Do 30. Sep 19:53:45 CEST 2021] _currentRoot='/var/www/letsencrypt/'
[Do 30. Sep 19:53:45 CEST 2021] d='mydomain.com'
[Do 30. Sep 19:53:45 CEST 2021] Check for domain='mydomain.com'
[Do 30. Sep 19:53:45 CEST 2021] _currentRoot='dns_servercow'
[Do 30. Sep 19:53:45 CEST 2021] d
[Do 30. Sep 19:53:45 CEST 2021] _saved_account_key_hash is not changed, skip register account.
[Do 30. Sep 19:53:45 CEST 2021] Signing from existing CSR.
[Do 30. Sep 19:53:45 CEST 2021] Getting domain auth token for each domain
[Do 30. Sep 19:53:45 CEST 2021] d='mydomain.com'
[Do 30. Sep 19:53:45 CEST 2021] d
[Do 30. Sep 19:53:45 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Do 30. Sep 19:53:45 CEST 2021] payload='{"identifiers": [{"type":"dns","value":"*.mydomain.com"},{"type":"dns","value":"mydomain.com"}]}'
[Do 30. Sep 19:53:45 CEST 2021] RSA key
[Do 30. Sep 19:53:45 CEST 2021] Retrying post
[Do 30. Sep 19:53:45 CEST 2021] HEAD
[Do 30. Sep 19:53:45 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Do 30. Sep 19:53:45 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L  -I  '
[Do 30. Sep 19:53:46 CEST 2021] _ret='0'
[Do 30. Sep 19:53:46 CEST 2021] _hcode='0'
[Do 30. Sep 19:53:46 CEST 2021] Retrying post
[Do 30. Sep 19:53:46 CEST 2021] POST
[Do 30. Sep 19:53:46 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Do 30. Sep 19:53:46 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L '
[Do 30. Sep 19:53:47 CEST 2021] _ret='0'
[Do 30. Sep 19:53:47 CEST 2021] _hcode='0'
[Do 30. Sep 19:53:47 CEST 2021] code='201'
[Do 30. Sep 19:53:47 CEST 2021] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/219267140/28406525630'
[Do 30. Sep 19:53:47 CEST 2021] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/219267140/28406525630'
[Do 30. Sep 19:53:47 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35793653770'
[Do 30. Sep 19:53:47 CEST 2021] payload
[Do 30. Sep 19:53:47 CEST 2021] Retrying post
[Do 30. Sep 19:53:47 CEST 2021] POST
[Do 30. Sep 19:53:47 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35793653770'
[Do 30. Sep 19:53:47 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L '
[Do 30. Sep 19:53:47 CEST 2021] _ret='0'
[Do 30. Sep 19:53:47 CEST 2021] _hcode='0'
[Do 30. Sep 19:53:47 CEST 2021] code='200'
[Do 30. Sep 19:53:47 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35793653780'
[Do 30. Sep 19:53:47 CEST 2021] payload
[Do 30. Sep 19:53:48 CEST 2021] Retrying post
[Do 30. Sep 19:53:48 CEST 2021] POST
[Do 30. Sep 19:53:48 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/35793653780'
[Do 30. Sep 19:53:48 CEST 2021] _CURL='curl --silent --dump-header /home/acmeuser/.acme.sh/http.header  -L '
[Do 30. Sep 19:53:48 CEST 2021] _ret='0'
[Do 30. Sep 19:53:48 CEST 2021] _hcode='0'
[Do 30. Sep 19:53:48 CEST 2021] code='200'
[Do 30. Sep 19:53:48 CEST 2021] d='*.mydomain.com'
[Do 30. Sep 19:53:48 CEST 2021] Getting webroot for domain='*.mydomain.com'
[Do 30. Sep 19:53:48 CEST 2021] _w='/var/www/letsencrypt/'
[Do 30. Sep 19:53:48 CEST 2021] _currentRoot='/var/www/letsencrypt/'
[Do 30. Sep 19:53:48 CEST 2021] entry
[Do 30. Sep 19:53:48 CEST 2021] Error, can not get domain token entry *.mydomain.com for http-01
[Do 30. Sep 19:53:48 CEST 2021] The supported validation types are: dns-01 , but you specified: http-01
[Do 30. Sep 19:53:48 CEST 2021] pid
[Do 30. Sep 19:53:48 CEST 2021] No need to restore nginx, skip.
[Do 30. Sep 19:53:48 CEST 2021] _clearupdns
[Do 30. Sep 19:53:48 CEST 2021] dns_entries
[Do 30. Sep 19:53:48 CEST 2021] skip dns.
[Do 30. Sep 19:53:48 CEST 2021] _on_issue_err

[Miyamoto72]

Since I don't know if this is a problem with acme.sh I also opened an issue at the servercow API github: https://github.com/jhartlep/servercow-dns-api/issues/1

[Neilpang]

[Do 30. Sep 19:39:23 CEST 2021] Error, can not get domain token entry *.mydomain.com for http-01
[Do 30. Sep 19:39:23 CEST 2021] The supported validation types are: dns-01 , but you specified: http-01

[Miyamoto72]

acme.sh was invoked with --dns option, but error says otherwise.

I'm not a coder, know very little shell - but I don't see where validation type is set in the dns script. Maybe someone else could fix this easily?