Open andrey89a opened 3 months ago
github-actions[bot]
commented
3 months ago Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade If it's still not working, please provide the log with --debug 2, otherwise, nobody can help you.
andrey89a
commented
3 months ago root@front1:/acme.sh$ acme.sh --upgrade [Fri Mar 15 09:14:23 MSK 2024] Already uptodate! [Fri Mar 15 09:14:23 MSK 2024] Upgrade success!
root@front1:/acme.sh$ ./acme.sh --issue --dns dns_nic -d dev.tv.mk.ru --debug 2 [Fri Mar 15 09:15:10 MSK 2024] Lets find script dir. [Fri Mar 15 09:15:10 MSK 2024] SCRIPT='./acme.sh' [Fri Mar 15 09:15:10 MSK 2024] _script='/acme.sh/acme.sh' [Fri Mar 15 09:15:10 MSK 2024] _script_home='/acme.sh' [Fri Mar 15 09:15:10 MSK 2024] Using config home:/root/.acme.sh [Fri Mar 15 09:15:10 MSK 2024] LE_WORKING_DIR='/root/.acme.sh' https://github.com/acmesh-official/acme.sh v3.0.8 [Fri Mar 15 09:15:11 MSK 2024] Running cmd: issue [Fri Mar 15 09:15:11 MSK 2024] _main_domain='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] _alt_domains='no' [Fri Mar 15 09:15:11 MSK 2024] Using config home:/root/.acme.sh [Fri Mar 15 09:15:11 MSK 2024] default_acme_server [Fri Mar 15 09:15:11 MSK 2024] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90' [Fri Mar 15 09:15:11 MSK 2024] _ACME_SERVER_HOST='acme.zerossl.com' [Fri Mar 15 09:15:11 MSK 2024] _ACME_SERVER_PATH='v2/DV90' [Fri Mar 15 09:15:11 MSK 2024] DOMAIN_PATH='/root/.acme.sh/dev.tv.mk.ru_ecc' [Fri Mar 15 09:15:11 MSK 2024] 'dns_nic' does not contain 'dns' [Fri Mar 15 09:15:11 MSK 2024] Le_NextRenewTime [Fri Mar 15 09:15:11 MSK 2024] Using ACME_DIRECTORY: https://acme.zerossl.com/v2/DV90 [Fri Mar 15 09:15:11 MSK 2024] _init api for server: https://acme.zerossl.com/v2/DV90 [Fri Mar 15 09:15:11 MSK 2024] GET [Fri Mar 15 09:15:11 MSK 2024] url='https://acme.zerossl.com/v2/DV90' [Fri Mar 15 09:15:11 MSK 2024] timeout= [Fri Mar 15 09:15:11 MSK 2024] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.saQZtFUT9Q -g ' [Fri Mar 15 09:15:11 MSK 2024] ret='0' [Fri Mar 15 09:15:11 MSK 2024] response='{ "newNonce": "https://acme.zerossl.com/v2/DV90/newNonce", "newAccount": "https://acme.zerossl.com/v2/DV90/newAccount", "newOrder": "https://acme.zerossl.com/v2/DV90/newOrder", "revokeCert": "https://acme.zerossl.com/v2/DV90/revokeCert", "keyChange": "https://acme.zerossl.com/v2/DV90/keyChange", "meta": { "termsOfService": "https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf", "website": "https://zerossl.com", "caaIdentities": ["sectigo.com", "trust-provider.com", "usertrust.com", "comodoca.com", "comodo.com"], "externalAccountRequired": true } }' [Fri Mar 15 09:15:11 MSK 2024] ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange' [Fri Mar 15 09:15:11 MSK 2024] ACME_NEW_AUTHZ [Fri Mar 15 09:15:11 MSK 2024] ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder' [Fri Mar 15 09:15:11 MSK 2024] ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount' [Fri Mar 15 09:15:11 MSK 2024] ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert' [Fri Mar 15 09:15:11 MSK 2024] ACME_AGREEMENT='https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf' [Fri Mar 15 09:15:11 MSK 2024] ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce' [Fri Mar 15 09:15:11 MSK 2024] Using CA: https://acme.zerossl.com/v2/DV90 [Fri Mar 15 09:15:11 MSK 2024] _on_before_issue [Fri Mar 15 09:15:11 MSK 2024] _chk_main_domain='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] _chk_alt_domains [Fri Mar 15 09:15:11 MSK 2024] 'dns_nic' does not contain 'no' [Fri Mar 15 09:15:11 MSK 2024] Le_LocalAddress [Fri Mar 15 09:15:11 MSK 2024] d='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] Check for domain='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] _currentRoot='dns_nic' [Fri Mar 15 09:15:11 MSK 2024] d [Fri Mar 15 09:15:11 MSK 2024] 'dns_nic' does not contain 'apache' [Fri Mar 15 09:15:11 MSK 2024] _saved_account_key_hash='V6pa/g329SUkxLyotkAeZnIrzTte6oI1BcT+pNk7yZg=' [Fri Mar 15 09:15:11 MSK 2024] _saved_account_key_hash is not changed, skip register account. [Fri Mar 15 09:15:11 MSK 2024] Read key length:ec-256 [Fri Mar 15 09:15:11 MSK 2024] _createcsr [Fri Mar 15 09:15:11 MSK 2024] domain='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] domainlist [Fri Mar 15 09:15:11 MSK 2024] csrkey='/root/.acme.sh/dev.tv.mk.ru_ecc/dev.tv.mk.ru.key' [Fri Mar 15 09:15:11 MSK 2024] csr='/root/.acme.sh/dev.tv.mk.ru_ecc/dev.tv.mk.ru.csr' [Fri Mar 15 09:15:11 MSK 2024] csrconf='/root/.acme.sh/dev.tv.mk.ru_ecc/dev.tv.mk.ru.csr.conf' [Fri Mar 15 09:15:11 MSK 2024] Single domain='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] seg='dev' [Fri Mar 15 09:15:11 MSK 2024] _is_idn_d='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] _idn_temp [Fri Mar 15 09:15:11 MSK 2024] _is_idn_d='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] _idn_temp [Fri Mar 15 09:15:11 MSK 2024] _csr_cn='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] seg='dev' [Fri Mar 15 09:15:11 MSK 2024] Getting domain auth token for each domain [Fri Mar 15 09:15:11 MSK 2024] seg='dev' [Fri Mar 15 09:15:11 MSK 2024] _is_idn_d='dev.tv.mk.ru' [Fri Mar 15 09:15:11 MSK 2024] _idn_temp [Fri Mar 15 09:15:11 MSK 2024] d [Fri Mar 15 09:15:11 MSK 2024] _identifiers='{"type":"dns","value":"dev.tv.mk.ru"}' [Fri Mar 15 09:15:11 MSK 2024] _notBefore [Fri Mar 15 09:15:11 MSK 2024] _notAfter [Fri Mar 15 09:15:11 MSK 2024] STEP 1, Ordering a Certificate [Fri Mar 15 09:15:11 MSK 2024] =======Begin Send Signed Request======= [Fri Mar 15 09:15:11 MSK 2024] url='https://acme.zerossl.com/v2/DV90/newOrder' [Fri Mar 15 09:15:11 MSK 2024] payload='{"identifiers": [{"type":"dns","value":"dev.tv.mk.ru"}]}' [Fri Mar 15 09:15:12 MSK 2024] EC key [Fri Mar 15 09:15:12 MSK 2024] Get nonce with HEAD. ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce' [Fri Mar 15 09:15:12 MSK 2024] HEAD [Fri Mar 15 09:15:12 MSK 2024] _post_url='https://acme.zerossl.com/v2/DV90/newNonce' [Fri Mar 15 09:15:12 MSK 2024] body [Fri Mar 15 09:15:12 MSK 2024] _postContentType='application/jose+json' [Fri Mar 15 09:15:12 MSK 2024] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.317ju97sMK -g -I ' [Fri Mar 15 09:15:12 MSK 2024] _ret='0' [Fri Mar 15 09:15:12 MSK 2024] _headers='HTTP/2 200 server: nginx date: Fri, 15 Mar 2024 06:15:12 GMT content-type: application/octet-stream replay-nonce: N73RUlSMyAEpzaCosJIGvx2qrJ4qsuoGtPsLggZ8IEk cache-control: max-age=0, no-cache, no-store access-control-allow-origin: link: https://acme.zerossl.com/v2/DV90;rel="index" strict-transport-security: max-age=15724800; includeSubDomains ' [Fri Mar 15 09:15:12 MSK 2024] _CACHED_NONCE='N73RUlSMyAEpzaCosJIGvx2qrJ4qsuoGtPsLggZ8IEk' [Fri Mar 15 09:15:12 MSK 2024] nonce='N73RUlSMyAEpzaCosJIGvx2qrJ4qsuoGtPsLggZ8IEk' [Fri Mar 15 09:15:12 MSK 2024] POST [Fri Mar 15 09:15:12 MSK 2024] _post_url='https://acme.zerossl.com/v2/DV90/newOrder' [Fri Mar 15 09:15:12 MSK 2024] body='{"protected": "eyJub25jZSI6ICJONzNSVWxTTXlBRXB6YUNvc0pJR3Z4MnFySjRxc3VvR3RQc0xnZ1o4SUVrIiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9uZXdPcmRlciIsICJhbGciOiAiRVMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvUFZ5UktEREhMSXpwcTNXNlFPR1hEZyJ9", "payload": "eyJpZGVudGlmaWVycyI6IFt7InR5cGUiOiJkbnMiLCJ2YWx1ZSI6ImRldi50di5tay5ydSJ9XX0", "signature": "A0IrblEqNDR99j3QkdERSnbqx1zCmooQJe2iLuB-vAJX62SGAVIbfN1tqA0VMvIaCtCUe5kcXUw0fw4zUiDZvg"}' [Fri Mar 15 09:15:12 MSK 2024] _postContentType='application/jose+json' [Fri Mar 15 09:15:12 MSK 2024] Http already initialized. [Fri Mar 15 09:15:12 MSK 2024] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.317ju97sMK -g ' [Fri Mar 15 09:15:13 MSK 2024] _ret='0' [Fri Mar 15 09:15:13 MSK 2024] responseHeaders='HTTP/2 400 server: nginx date: Fri, 15 Mar 2024 06:15:13 GMT content-type: application/problem+json content-length: 124 replay-nonce: CDr6xBWeyku6stUE_3IDyE8bfx5SeJgUeopipJpY6GM cache-control: max-age=0, no-cache, no-store access-control-allow-origin: link: https://acme.zerossl.com/v2/DV90;rel="index" strict-transport-security: max-age=15724800; includeSubDomains ' [Fri Mar 15 09:15:13 MSK 2024] code='400' [Fri Mar 15 09:15:13 MSK 2024] original='{"type":"urn:ietf:params:acme:error:rejectedIdentifier","status":400,"detail":"DNS identifier is disallowed [dev.tv.mk.ru]"}' [Fri Mar 15 09:15:13 MSK 2024] response='{"type":"urn:ietf:params:acme:error:rejectedIdentifier","status":400,"detail":"DNS identifier is disallowed [dev.tv.mk.ru]"}' [Fri Mar 15 09:15:13 MSK 2024] Le_LinkOrder [Fri Mar 15 09:15:13 MSK 2024] Le_OrderFinalize [Fri Mar 15 09:15:13 MSK 2024] Create new order error. Le_OrderFinalize not found. {"type":"urn:ietf:params:acme:error:rejectedIdentifier","status":400,"detail":"DNS identifier is disallowed [dev.tv.mk.ru]"} [Fri Mar 15 09:15:13 MSK 2024] pid [Fri Mar 15 09:15:13 MSK 2024] No need to restore nginx, skip. [Fri Mar 15 09:15:13 MSK 2024] _clearupdns [Fri Mar 15 09:15:13 MSK 2024] dns_entries [Fri Mar 15 09:15:13 MSK 2024] skip dns. [Fri Mar 15 09:15:13 MSK 2024] _on_issue_err [Fri Mar 15 09:15:13 MSK 2024] Please add '--debug' or '--log' to check more details. [Fri Mar 15 09:15:13 MSK 2024] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh [Fri Mar 15 09:15:13 MSK 2024] _chk_vlist [Fri Mar 15 09:15:13 MSK 2024] socat doesn't exist. [Fri Mar 15 09:15:13 MSK 2024] Diagnosis versions: openssl:openssl OpenSSL 1.1.1d 10 Sep 2019 (Library: OpenSSL 1.1.1n 15 Mar 2022) apache: apache doesn't exist. nginx: nginx version: nginx/1.14.2 built by gcc 8.3.0 (Debian 8.3.0-6) built with OpenSSL 1.1.1d 10 Sep 2019 (running with OpenSSL 1.1.1n 15 Mar 2022) TLS SNI support enabled configure arguments: --with-cc-opt='-g -O2 -fdebug-prefix-map=/build/nginx-m1Thpq/nginx-1.14.2=. -fstack-protector-strong -Wformat -Werror=format-security -fPIC -Wdate-time -D_FORTIFY_SOURCE=2' --with-ld-opt='-Wl,-z,relro -Wl,-z,now -fPIC' --prefix=/usr/share/nginx --conf-path=/etc/nginx/nginx.conf --http-log-path=/var/log/nginx/access.log --error-log-path=/var/log/nginx/error.log --lock-path=/var/lock/nginx.lock --pid-path=/run/nginx.pid --modules-path=/usr/lib/nginx/modules --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --with-debug --with-pcre-jit --with-http_ssl_module --with-http_stub_status_module --with-http_realip_module --with-http_auth_request_module --with-http_v2_module --with-http_dav_module --with-http_slice_module --with-http_flv_module --with-http_mp4_module --with-threads --with-http_addition_module --with-http_geoip_module=dynamic --with-http_gunzip_module --with-http_gzip_static_module --with-http_image_filter_module=dynamic --with-http_sub_module --with-http_xslt_module=dynamic --with-stream=dynamic --with-stream_ssl_module --with-stream_ssl_preread_module --with-mail=dynamic --with-mail_ssl_module socat:
xoid
commented
2 weeks ago zerossl has ban on ru su TLDs https://help.zerossl.com/hc/en-us/articles/360060119833-Restricted-Countries
Steps to reproduce
./acme.sh --debug 2 --issue --dns dns_nic -d dev.tv.mk.ru
Debug log
[Fri Mar 15 08:51:27 MSK 2024] ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange' [Fri Mar 15 08:51:27 MSK 2024] ACME_NEW_AUTHZ [Fri Mar 15 08:51:27 MSK 2024] ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder' [Fri Mar 15 08:51:27 MSK 2024] ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount' [Fri Mar 15 08:51:27 MSK 2024] ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert' [Fri Mar 15 08:51:27 MSK 2024] ACME_AGREEMENT='https://secure.trust-provider.com/repository/docs/Legacy/20230516_Certificate_Subscriber_Agreement_v_2_6_click.pdf' [Fri Mar 15 08:51:27 MSK 2024] ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce' [Fri Mar 15 08:51:27 MSK 2024] Using CA: https://acme.zerossl.com/v2/DV90 [Fri Mar 15 08:51:27 MSK 2024] _on_before_issue [Fri Mar 15 08:51:27 MSK 2024] _chk_main_domain='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] _chk_alt_domains [Fri Mar 15 08:51:27 MSK 2024] 'dns_nic' does not contain 'no' [Fri Mar 15 08:51:27 MSK 2024] Le_LocalAddress [Fri Mar 15 08:51:27 MSK 2024] d='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] Check for domain='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] _currentRoot='dns_nic' [Fri Mar 15 08:51:27 MSK 2024] d [Fri Mar 15 08:51:27 MSK 2024] 'dns_nic' does not contain 'apache' [Fri Mar 15 08:51:27 MSK 2024] _saved_account_key_hash='V6pa/g329SUkxLyotkAeZnIrzTte6oI1BcT+pNk7yZg=' [Fri Mar 15 08:51:27 MSK 2024] _saved_account_key_hash is not changed, skip register account. [Fri Mar 15 08:51:27 MSK 2024] Read key length:ec-256 [Fri Mar 15 08:51:27 MSK 2024] _createcsr [Fri Mar 15 08:51:27 MSK 2024] domain='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] domainlist [Fri Mar 15 08:51:27 MSK 2024] csrkey='/root/.acme.sh/dev.tv.mk.ru_ecc/dev.tv.mk.ru.key' [Fri Mar 15 08:51:27 MSK 2024] csr='/root/.acme.sh/dev.tv.mk.ru_ecc/dev.tv.mk.ru.csr' [Fri Mar 15 08:51:27 MSK 2024] csrconf='/root/.acme.sh/dev.tv.mk.ru_ecc/dev.tv.mk.ru.csr.conf' [Fri Mar 15 08:51:27 MSK 2024] Single domain='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] seg='dev' [Fri Mar 15 08:51:27 MSK 2024] _is_idn_d='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] _idn_temp [Fri Mar 15 08:51:27 MSK 2024] _is_idn_d='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] _idn_temp [Fri Mar 15 08:51:27 MSK 2024] _csr_cn='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] seg='dev' [Fri Mar 15 08:51:27 MSK 2024] Getting domain auth token for each domain [Fri Mar 15 08:51:27 MSK 2024] seg='dev' [Fri Mar 15 08:51:27 MSK 2024] _is_idn_d='dev.tv.mk.ru' [Fri Mar 15 08:51:27 MSK 2024] _idn_temp [Fri Mar 15 08:51:27 MSK 2024] d [Fri Mar 15 08:51:27 MSK 2024] _identifiers='{"type":"dns","value":"dev.tv.mk.ru"}' [Fri Mar 15 08:51:27 MSK 2024] _notBefore [Fri Mar 15 08:51:27 MSK 2024] _notAfter [Fri Mar 15 08:51:27 MSK 2024] STEP 1, Ordering a Certificate [Fri Mar 15 08:51:27 MSK 2024] =======Begin Send Signed Request======= [Fri Mar 15 08:51:27 MSK 2024] url='https://acme.zerossl.com/v2/DV90/newOrder' [Fri Mar 15 08:51:27 MSK 2024] payload='{"identifiers": [{"type":"dns","value":"dev.tv.mk.ru"}]}' [Fri Mar 15 08:51:27 MSK 2024] EC key [Fri Mar 15 08:51:27 MSK 2024] Get nonce with HEAD. ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce' [Fri Mar 15 08:51:27 MSK 2024] HEAD [Fri Mar 15 08:51:27 MSK 2024] _post_url='https://acme.zerossl.com/v2/DV90/newNonce' [Fri Mar 15 08:51:27 MSK 2024] body [Fri Mar 15 08:51:27 MSK 2024] _postContentType='application/jose+json' [Fri Mar 15 08:51:27 MSK 2024] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.EXfA0YotRl -g -I ' [Fri Mar 15 08:51:28 MSK 2024] _ret='0' [Fri Mar 15 08:51:28 MSK 2024] _headers='HTTP/2 200 server: nginx date: Fri, 15 Mar 2024 05:51:28 GMT content-type: application/octet-stream replay-nonce: LlntAIg3xfjgHY4j0mDodG-gnr8SqLp5nfKTR0zhVbY cache-control: max-age=0, no-cache, no-store access-control-allow-origin: link: https://acme.zerossl.com/v2/DV90;rel="index" strict-transport-security: max-age=15724800; includeSubDomains ' [Fri Mar 15 08:51:28 MSK 2024] _CACHED_NONCE='LlntAIg3xfjgHY4j0mDodG-gnr8SqLp5nfKTR0zhVbY' [Fri Mar 15 08:51:28 MSK 2024] nonce='LlntAIg3xfjgHY4j0mDodG-gnr8SqLp5nfKTR0zhVbY' [Fri Mar 15 08:51:28 MSK 2024] POST [Fri Mar 15 08:51:28 MSK 2024] _post_url='https://acme.zerossl.com/v2/DV90/newOrder' [Fri Mar 15 08:51:28 MSK 2024] body='{"protected": "eyJub25jZSI6ICJMbG50QUlnM3hmamdIWTRqMG1Eb2RHLWducjhTcUxwNW5mS1RSMHpoVmJZIiwgInVybCI6ICJodHRwczovL2FjbWUuemVyb3NzbC5jb20vdjIvRFY5MC9uZXdPcmRlciIsICJhbGciOiAiRVMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS56ZXJvc3NsLmNvbS92Mi9EVjkwL2FjY291bnQvUFZ5UktEREhMSXpwcTNXNlFPR1hEZyJ9", "payload": "eyJpZGVudGlmaWVycyI6IFt7InR5cGUiOiJkbnMiLCJ2YWx1ZSI6ImRldi50di5tay5ydSJ9XX0", "signature": "OwFOpr4NJhKHqDrQDI_KmuqisBhH1pf5FIOMpXT1gI4VA3Rv7tBPeNGdG9QYHhR3KxrRyCOelVQ4ac_tMntj6w"}' [Fri Mar 15 08:51:28 MSK 2024] _postContentType='application/jose+json' [Fri Mar 15 08:51:28 MSK 2024] Http already initialized. [Fri Mar 15 08:51:28 MSK 2024] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.EXfA0YotRl -g ' [Fri Mar 15 08:51:29 MSK 2024] _ret='0' [Fri Mar 15 08:51:29 MSK 2024] responseHeaders='HTTP/2 400 server: nginx date: Fri, 15 Mar 2024 05:51:29 GMT content-type: application/problem+json content-length: 124 replay-nonce: Ixd8EKnRl0Vbp1JAHVttb7JTPn3buA67KLkexwxhAng cache-control: max-age=0, no-cache, no-store access-control-allow-origin: link: https://acme.zerossl.com/v2/DV90;rel="index" strict-transport-security: max-age=15724800; includeSubDomains ' [Fri Mar 15 08:51:29 MSK 2024] code='400' [Fri Mar 15 08:51:29 MSK 2024] original='{"type":"urn:ietf:params:acme:error:rejectedIdentifier","status":400,"detail":"DNS identifier is disallowed [dev.tv.mk.ru]"}' [Fri Mar 15 08:51:29 MSK 2024] response='{"type":"urn:ietf:params:acme:error:rejectedIdentifier","status":400,"detail":"DNS identifier is disallowed [dev.tv.mk.ru]"}' [Fri Mar 15 08:51:30 MSK 2024] Le_LinkOrder [Fri Mar 15 08:51:30 MSK 2024] Le_OrderFinalize [Fri Mar 15 08:51:30 MSK 2024] Create new order error. Le_OrderFinalize not found. {"type":"urn:ietf:params:acme:error:rejectedIdentifier","status":400,"detail":"DNS identifier is disallowed [dev.tv.mk.ru]"} [Fri Mar 15 08:51:30 MSK 2024] pid [Fri Mar 15 08:51:30 MSK 2024] No need to restore nginx, skip. [Fri Mar 15 08:51:30 MSK 2024] _clearupdns [Fri Mar 15 08:51:30 MSK 2024] dns_entries [Fri Mar 15 08:51:30 MSK 2024] skip dns. [Fri Mar 15 08:51:30 MSK 2024] _on_issue_err [Fri Mar 15 08:51:30 MSK 2024] Please add '--debug' or '--log' to check more details. [Fri Mar 15 08:51:30 MSK 2024] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh [Fri Mar 15 08:51:30 MSK 2024] _chk_vlist [Fri Mar 15 08:51:30 MSK 2024] socat doesn't exist. [Fri Mar 15 08:51:30 MSK 2024] Diagnosis versions: openssl:openssl OpenSSL 1.1.1d 10 Sep 2019 (Library: OpenSSL 1.1.1n 15 Mar 2022) apache: apache doesn't exist. nginx: nginx version: nginx/1.14.2 built by gcc 8.3.0 (Debian 8.3.0-6) built with OpenSSL 1.1.1d 10 Sep 2019 (running with OpenSSL 1.1.1n 15 Mar 2022) TLS SNI support enabled configure arguments: --with-cc-opt='-g -O2 -fdebug-prefix-map=/build/nginx-m1Thpq/nginx-1.14.2=. -fstack-protector-strong -Wformat -Werror=format-security -fPIC -Wdate-time -D_FORTIFY_SOURCE=2' --with-ld-opt='-Wl,-z,relro -Wl,-z,now -fPIC' --prefix=/usr/share/nginx --conf-path=/etc/nginx/nginx.conf --http-log-path=/var/log/nginx/access.log --error-log-path=/var/log/nginx/error.log --lock-path=/var/lock/nginx.lock --pid-path=/run/nginx.pid --modules-path=/usr/lib/nginx/modules --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --with-debug --with-pcre-jit --with-http_ssl_module --with-http_stub_status_module --with-http_realip_module --with-http_auth_request_module --with-http_v2_module --with-http_dav_module --with-http_slice_module --with-http_flv_module --with-http_mp4_module --with-threads --with-http_addition_module --with-http_geoip_module=dynamic --with-http_gunzip_module --with-http_gzip_static_module --with-http_image_filter_module=dynamic --with-http_sub_module --with-http_xslt_module=dynamic --with-stream=dynamic --with-stream_ssl_module --with-stream_ssl_preread_module --with-mail=dynamic --with-mail_ssl_module socat: