Synology Unable to update certificate, got error response: {"error":{"code":5510},"success":false}.

[ParkerChih]

Steps to reproduce

I use the amcesh docker on my Synology DS220+ with 7.2.1-69057 update5 which amcesh is 3.0.8 version . Cause the network services reason I have no 80 and 443 port，so chose the dns way. It looks like the processer of down cer does not have error info. And it has already start to raplace cer , but finally fail. If the device_id is incorrect , it will has a different ending soon without “-----BEGIN EC PRIVATE KEY----”. I find many issue report , but still have any idea.

Debug log

acme.sh  --issue .....   --debug 2

[Thu Jun  6 14:21:09 UTC 2024] LE_WORKING_DIR='/root/.acme.sh'
[Thu Jun  6 14:21:09 UTC 2024] Running cmd: issue
[Thu Jun  6 14:21:09 UTC 2024] _main_domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:09 UTC 2024] _alt_domains='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:09 UTC 2024] Using config home:/acme.sh
[Thu Jun  6 14:21:09 UTC 2024] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Thu Jun  6 14:21:09 UTC 2024] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org'
[Thu Jun  6 14:21:09 UTC 2024] _ACME_SERVER_PATH='directory'
[Thu Jun  6 14:21:09 UTC 2024] DOMAIN_PATH='/acme.sh/XXXXXXX.XXX_ecc'
[Thu Jun  6 14:21:09 UTC 2024] 'dns_cf' does not contain 'dns'
[Thu Jun  6 14:21:09 UTC 2024] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Thu Jun  6 14:21:09 UTC 2024] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Thu Jun  6 14:21:09 UTC 2024] GET
[Thu Jun  6 14:21:09 UTC 2024] url='https://acme-v02.api.letsencrypt.org/directory'
[Thu Jun  6 14:21:09 UTC 2024] timeout=
[Thu Jun  6 14:21:10 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:10 UTC 2024] ret='0'
[Thu Jun  6 14:21:10 UTC 2024] response='{
  "93me_7IkY8w": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf",
    "website": "https://letsencrypt.org"
  },
  "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-03/renewalInfo",
  "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}'
[Thu Jun  6 14:21:10 UTC 2024] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Thu Jun  6 14:21:10 UTC 2024] ACME_NEW_AUTHZ
[Thu Jun  6 14:21:10 UTC 2024] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Thu Jun  6 14:21:10 UTC 2024] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Thu Jun  6 14:21:10 UTC 2024] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Thu Jun  6 14:21:10 UTC 2024] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf'
[Thu Jun  6 14:21:10 UTC 2024] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Jun  6 14:21:10 UTC 2024] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Thu Jun  6 14:21:10 UTC 2024] _on_before_issue
[Thu Jun  6 14:21:10 UTC 2024] _chk_main_domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:10 UTC 2024] _chk_alt_domains='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:10 UTC 2024] 'dns_cf' does not contain 'no'
[Thu Jun  6 14:21:10 UTC 2024] Le_LocalAddress
[Thu Jun  6 14:21:10 UTC 2024] d='XXXXXXX.XXX'
[Thu Jun  6 14:21:10 UTC 2024] Check for domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:10 UTC 2024] _currentRoot='dns_cf'
[Thu Jun  6 14:21:10 UTC 2024] d='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:10 UTC 2024] Check for domain='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:10 UTC 2024] _currentRoot='dns_cf'
[Thu Jun  6 14:21:10 UTC 2024] d
[Thu Jun  6 14:21:10 UTC 2024] 'dns_cf' does not contain 'apache'
[Thu Jun  6 14:21:10 UTC 2024] config file is empty, can not read CA_KEY_HASH
[Thu Jun  6 14:21:10 UTC 2024] _saved_account_key_hash
[Thu Jun  6 14:21:10 UTC 2024] Using config home:/acme.sh
[Thu Jun  6 14:21:10 UTC 2024] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Thu Jun  6 14:21:10 UTC 2024] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org'
[Thu Jun  6 14:21:10 UTC 2024] _ACME_SERVER_PATH='directory'
[Thu Jun  6 14:21:10 UTC 2024] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Thu Jun  6 14:21:10 UTC 2024] length='ec-256'
[Thu Jun  6 14:21:10 UTC 2024] Using config home:/acme.sh
[Thu Jun  6 14:21:10 UTC 2024] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Thu Jun  6 14:21:10 UTC 2024] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org'
[Thu Jun  6 14:21:10 UTC 2024] _ACME_SERVER_PATH='directory'
[Thu Jun  6 14:21:10 UTC 2024] _createkey for file:/acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Thu Jun  6 14:21:10 UTC 2024] Use length 256
[Thu Jun  6 14:21:10 UTC 2024] Using ec name: prime256v1
[Thu Jun  6 14:21:10 UTC 2024] Create account key ok.
[Thu Jun  6 14:21:10 UTC 2024] EC key
[Thu Jun  6 14:21:10 UTC 2024] config file is empty, can not read CA_EAB_KEY_ID
[Thu Jun  6 14:21:10 UTC 2024] config file is empty, can not read CA_EAB_HMAC_KEY
[Thu Jun  6 14:21:10 UTC 2024] config file is empty, can not read CA_EMAIL
[Thu Jun  6 14:21:10 UTC 2024] Registering account: https://acme-v02.api.letsencrypt.org/directory
[Thu Jun  6 14:21:10 UTC 2024] =======Begin Send Signed Request=======
[Thu Jun  6 14:21:10 UTC 2024] url='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Thu Jun  6 14:21:10 UTC 2024] payload='{"termsOfServiceAgreed": true}'
[Thu Jun  6 14:21:10 UTC 2024] Use cached jwk for file: /acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Thu Jun  6 14:21:10 UTC 2024] Get nonce with HEAD. ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Jun  6 14:21:10 UTC 2024] HEAD
[Thu Jun  6 14:21:10 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Jun  6 14:21:10 UTC 2024] body
[Thu Jun  6 14:21:10 UTC 2024] _postContentType='application/jose+json'
[Thu Jun  6 14:21:10 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g  -I  '
[Thu Jun  6 14:21:11 UTC 2024] _ret='0'
[Thu Jun  6 14:21:11 UTC 2024] _headers='HTTP/2 200 
server: nginx
date: Thu, 06 Jun 2024 14:21:11 GMT
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:11 UTC 2024] _CACHED_NONCE='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:11 UTC 2024] nonce='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:11 UTC 2024] POST
[Thu Jun  6 14:21:11 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Thu Jun  6 14:21:11 UTC 2024] body='{"protected": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", "payload": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", "signature": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}'
[Thu Jun  6 14:21:11 UTC 2024] _postContentType='application/jose+json'
[Thu Jun  6 14:21:11 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:11 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:12 UTC 2024] _ret='0'
[Thu Jun  6 14:21:12 UTC 2024] responseHeaders='HTTP/2 201 
server: nginx
date: Thu, 06 Jun 2024 14:21:12 GMT
content-type: application/json
content-length: 268
boulder-requester: 1767364027
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf>;rel="terms-of-service"
location: https://acme-v02.api.letsencrypt.org/acme/acct/1767364027
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:12 UTC 2024] code='201'
[Thu Jun  6 14:21:12 UTC 2024] original='{
  "key": {
    "kty": "EC",
    "crv": "P-256",
    "x": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
    "y": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
  },
  "initialIp": "125.211.47.83",
  "createdAt": "2024-06-06T14:21:12.522884833Z",
  "status": "valid"
}'
[Thu Jun  6 14:21:12 UTC 2024] response='{"key":{"kty":"EC","crv":"P-256","x":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","y":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},"initialIp":"125.211.47.83","createdAt":"2024-06-06T14:21:12.522884833Z","status":"valid"}'
[Thu Jun  6 14:21:12 UTC 2024] Registered
[Thu Jun  6 14:21:12 UTC 2024] responseHeaders='HTTP/2 201 
server: nginx
date: Thu, 06 Jun 2024 14:21:12 GMT
content-type: application/json
content-length: 268
boulder-requester: 1767364027
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf>;rel="terms-of-service"
location: https://acme-v02.api.letsencrypt.org/acme/acct/1767364027
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:12 UTC 2024] _accUri='https://acme-v02.api.letsencrypt.org/acme/acct/1767364027'
[Thu Jun  6 14:21:12 UTC 2024] Calc CA_KEY_HASH='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:12 UTC 2024] ACCOUNT_THUMBPRINT='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:12 UTC 2024] Read key length:2048
[Thu Jun  6 14:21:12 UTC 2024] Creating domain key
[Thu Jun  6 14:21:12 UTC 2024] Using config home:/acme.sh
[Thu Jun  6 14:21:12 UTC 2024] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Thu Jun  6 14:21:12 UTC 2024] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org'
[Thu Jun  6 14:21:12 UTC 2024] _ACME_SERVER_PATH='directory'
[Thu Jun  6 14:21:12 UTC 2024] _createkey for file:/acme.sh/XXXXXXX.XXX_ecc/XXXXXXX.XXX.key
[Thu Jun  6 14:21:12 UTC 2024] Use length 256
[Thu Jun  6 14:21:12 UTC 2024] Using ec name: prime256v1
[Thu Jun  6 14:21:12 UTC 2024] The domain key is here: /acme.sh/XXXXXXX.XXX_ecc/XXXXXXX.XXX.key
[Thu Jun  6 14:21:12 UTC 2024] _createcsr
[Thu Jun  6 14:21:12 UTC 2024] domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:12 UTC 2024] domainlist='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:12 UTC 2024] csrkey='/acme.sh/XXXXXXX.XXX_ecc/XXXXXXX.XXX.key'
[Thu Jun  6 14:21:12 UTC 2024] csr='/acme.sh/XXXXXXX.XXX_ecc/XXXXXXX.XXX.csr'
[Thu Jun  6 14:21:12 UTC 2024] csrconf='/acme.sh/XXXXXXX.XXX_ecc/XXXXXXX.XXX.csr.conf'
[Thu Jun  6 14:21:12 UTC 2024] _is_idn_d='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:12 UTC 2024] _idn_temp='
'
[Thu Jun  6 14:21:12 UTC 2024] domainlist='*.XXXXXXX.XXX'
[Thu Jun  6 14:21:12 UTC 2024] seg='XXXXXXX'
[Thu Jun  6 14:21:12 UTC 2024] _is_idn_d='XXXXXXX.XXX'
[Thu Jun  6 14:21:12 UTC 2024] _idn_temp
[Thu Jun  6 14:21:12 UTC 2024] seg='acme.sh'
[Thu Jun  6 14:21:12 UTC 2024] Multi domain='DNS:XXXXXXX.XXX,DNS:*.XXXXXXX.XXX'
[Thu Jun  6 14:21:12 UTC 2024] _is_idn_d='XXXXXXX.XXX'
[Thu Jun  6 14:21:12 UTC 2024] _idn_temp
[Thu Jun  6 14:21:12 UTC 2024] _csr_cn='XXXXXXX.XXX'
[Thu Jun  6 14:21:12 UTC 2024] seg='XXXXXXX'
[Thu Jun  6 14:21:12 UTC 2024] Getting domain auth token for each domain
[Thu Jun  6 14:21:12 UTC 2024] seg='XXXXXXX'
[Thu Jun  6 14:21:12 UTC 2024] _is_idn_d='XXXXXXX.XXX'
[Thu Jun  6 14:21:12 UTC 2024] _idn_temp
[Thu Jun  6 14:21:12 UTC 2024] d='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:12 UTC 2024] seg='acme.sh'
[Thu Jun  6 14:21:12 UTC 2024] _is_idn_d='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:12 UTC 2024] _idn_temp='
'
[Thu Jun  6 14:21:12 UTC 2024] d
[Thu Jun  6 14:21:12 UTC 2024] _identifiers='{"type":"dns","value":"XXXXXXX.XXX"},{"type":"dns","value":"*.XXXXXXX.XXX"}'
[Thu Jun  6 14:21:12 UTC 2024] _notBefore
[Thu Jun  6 14:21:12 UTC 2024] _notAfter
[Thu Jun  6 14:21:12 UTC 2024] STEP 1, Ordering a Certificate
[Thu Jun  6 14:21:12 UTC 2024] =======Begin Send Signed Request=======
[Thu Jun  6 14:21:12 UTC 2024] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Thu Jun  6 14:21:12 UTC 2024] payload='{"identifiers": [{"type":"dns","value":"XXXXXXX.XXX"},{"type":"dns","value":"*.XXXXXXX.XXX"}]}'
[Thu Jun  6 14:21:12 UTC 2024] Use cached jwk for file: /acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Thu Jun  6 14:21:12 UTC 2024] Use _CACHED_NONCE='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:12 UTC 2024] nonce='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:12 UTC 2024] POST
[Thu Jun  6 14:21:12 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Thu Jun  6 14:21:12 UTC 2024] body='{"protected": "eyJub25jZSI6ICJSY3pDM0NaMEhzeWRGQVRaYzVHV3ZTMFJVb0JNSG1kOXJZSWdTMWpuNzZXTmV2UkJqZ0UiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciIsICJhbGciOiAiRVMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTc2NzM2NDAyNyJ9", "payload": "eyJpZGVudGlmaWVycyI6IFt7InR5cGUiOiJkbnMiLCJ2YWx1ZSI6InBhcmtlcmMuZXUub3JnIn0seyJ0eXBlIjoiZG5zIiwidmFsdWUiOiIqLnBhcmtlcmMuZXUub3JnIn1dfQ", "signature": "jJpgB7iueHBFMFhAbg8vexJKKZme2tVECb_cEToEjsEnKKMuNisDcuXzpucUgy4OtwUX2m5Fh52Ap1sEflNbKg"}'
[Thu Jun  6 14:21:12 UTC 2024] _postContentType='application/jose+json'
[Thu Jun  6 14:21:12 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:12 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:13 UTC 2024] _ret='0'
[Thu Jun  6 14:21:13 UTC 2024] responseHeaders='HTTP/2 201 
server: nginx
date: Thu, 06 Jun 2024 14:21:13 GMT
content-type: application/json
content-length: 479
boulder-requester: 1767364027
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
location: https://acme-v02.api.letsencrypt.org/acme/order/1767364027/275985320067
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:13 UTC 2024] code='201'
[Thu Jun  6 14:21:13 UTC 2024] original='{
  "status": "pending",
  "expires": "2024-06-13T14:21:13Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "*.XXXXXXX.XXX"
    },
    {
      "type": "dns",
      "value": "XXXXXXX.XXX"
    }
  ],
  "authorizations": [
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857",
    "https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867"
  ],
  "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/1767364027/275985320067"
}'
[Thu Jun  6 14:21:13 UTC 2024] response='{"status":"pending","expires":"2024-06-13T14:21:13Z","identifiers":[{"type":"dns","value":"*.XXXXXXX.XXX"},{"type":"dns","value":"XXXXXXX.XXX"}],"authorizations":["https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857","https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867"],"finalize":"https://acme-v02.api.letsencrypt.org/acme/finalize/1767364027/275985320067"}'
[Thu Jun  6 14:21:13 UTC 2024] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/1767364027/275985320067'
[Thu Jun  6 14:21:13 UTC 2024] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/1767364027/275985320067'
[Thu Jun  6 14:21:13 UTC 2024] _authorizations_seg='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857,https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:13 UTC 2024] STEP 2, Get the authorizations of each domain
[Thu Jun  6 14:21:13 UTC 2024] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857'
[Thu Jun  6 14:21:13 UTC 2024] =======Begin Send Signed Request=======
[Thu Jun  6 14:21:13 UTC 2024] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857'
[Thu Jun  6 14:21:13 UTC 2024] payload
[Thu Jun  6 14:21:13 UTC 2024] Use cached jwk for file: /acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Thu Jun  6 14:21:13 UTC 2024] Use _CACHED_NONCE='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:13 UTC 2024] nonce='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:13 UTC 2024] POST
[Thu Jun  6 14:21:13 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857'
[Thu Jun  6 14:21:13 UTC 2024] body='{"protected": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", "payload": "", "signature": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}'
[Thu Jun  6 14:21:13 UTC 2024] _postContentType='application/jose+json'
[Thu Jun  6 14:21:13 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:13 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:14 UTC 2024] _ret='0'
[Thu Jun  6 14:21:14 UTC 2024] responseHeaders='HTTP/2 200 
server: nginx
date: Thu, 06 Jun 2024 14:21:14 GMT
content-type: application/json
content-length: 388
boulder-requester: 1767364027
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:14 UTC 2024] code='200'
[Thu Jun  6 14:21:14 UTC 2024] original='{
  "identifier": {
    "type": "dns",
    "value": "XXXXXXX.XXX"
  },
  "status": "pending",
  "expires": "2024-06-13T14:21:13Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg",
      "token": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    }
  ],
  "wildcard": true
}'
[Thu Jun  6 14:21:14 UTC 2024] response='{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}],"wildcard": true}'
[Thu Jun  6 14:21:14 UTC 2024] response='{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}],"wildcard": true}'
[Thu Jun  6 14:21:14 UTC 2024] _d='*.XXXXXXX.XXX'
[Thu Jun  6 14:21:14 UTC 2024] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:14 UTC 2024] =======Begin Send Signed Request=======
[Thu Jun  6 14:21:14 UTC 2024] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:14 UTC 2024] payload
[Thu Jun  6 14:21:14 UTC 2024] Use cached jwk for file: /acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Thu Jun  6 14:21:14 UTC 2024] Use _CACHED_NONCE='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:14 UTC 2024] nonce='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:14 UTC 2024] POST
[Thu Jun  6 14:21:14 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:14 UTC 2024] body='{"protected": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", "payload": "", "signature": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}'
[Thu Jun  6 14:21:14 UTC 2024] _postContentType='application/jose+json'
[Thu Jun  6 14:21:14 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:14 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:15 UTC 2024] _ret='0'
[Thu Jun  6 14:21:15 UTC 2024] responseHeaders='HTTP/2 200 
server: nginx
date: Thu, 06 Jun 2024 14:21:15 GMT
content-type: application/json
content-length: 798
boulder-requester: 1767364027
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:15 UTC 2024] code='200'
[Thu Jun  6 14:21:15 UTC 2024] original='{
  "identifier": {
    "type": "dns",
    "value": "XXXXXXX.XXX"
  },
  "status": "pending",
  "expires": "2024-06-13T14:21:13Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/v_yAAQ",
      "token": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw",
      "token": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/bf2o2A",
      "token": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
    }
  ]
}'
[Thu Jun  6 14:21:15 UTC 2024] response='{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/v_yAAQ","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/bf2o2A","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}]}'
[Thu Jun  6 14:21:15 UTC 2024] response='{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/v_yAAQ","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/bf2o2A","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}]}'
[Thu Jun  6 14:21:15 UTC 2024] _d='XXXXXXX.XXX'
[Thu Jun  6 14:21:15 UTC 2024] _authorizations_map='XXXXXXX.XXX,{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/v_yAAQ","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/bf2o2A","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}]}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867
*.XXXXXXX.XXX,{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}],"wildcard": true}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857
'
[Thu Jun  6 14:21:15 UTC 2024] d='XXXXXXX.XXX'
[Thu Jun  6 14:21:15 UTC 2024] Getting webroot for domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:15 UTC 2024] _w='dns_cf'
[Thu Jun  6 14:21:15 UTC 2024] _currentRoot='dns_cf'
[Thu Jun  6 14:21:15 UTC 2024] _is_idn_d='XXXXXXX.XXX'
[Thu Jun  6 14:21:15 UTC 2024] _idn_temp
[Thu Jun  6 14:21:15 UTC 2024] _candidates='XXXXXXX.XXX,{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/v_yAAQ","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/bf2o2A","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}]}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:15 UTC 2024] response='{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/v_yAAQ","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/bf2o2A","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}]}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:15 UTC 2024] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:15 UTC 2024] entry='"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"'
[Thu Jun  6 14:21:15 UTC 2024] token='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:15 UTC 2024] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw'
[Thu Jun  6 14:21:15 UTC 2024] keyauthorization='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:15 UTC 2024] dvlist='XXXXXXX.XXX#XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX#https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw#dns-01#dns_cf#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867'
[Thu Jun  6 14:21:15 UTC 2024] d='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:15 UTC 2024] Getting webroot for domain='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:15 UTC 2024] _w='dns_cf'
[Thu Jun  6 14:21:15 UTC 2024] _currentRoot='dns_cf'
[Thu Jun  6 14:21:15 UTC 2024] _is_idn_d='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:15 UTC 2024] _idn_temp='
'
[Thu Jun  6 14:21:15 UTC 2024] _candidates='*.XXXXXXX.XXX,{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}],"wildcard": true}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857'
[Thu Jun  6 14:21:15 UTC 2024] response='{"identifier":{"type":"dns","value":"XXXXXXX.XXX"},"status":"pending","expires":"2024-06-13T14:21:13Z","challenges":[{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}],"wildcard": true}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857'
[Thu Jun  6 14:21:15 UTC 2024] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857'
[Thu Jun  6 14:21:15 UTC 2024] entry='"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"'
[Thu Jun  6 14:21:15 UTC 2024] token='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:15 UTC 2024] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg'
[Thu Jun  6 14:21:15 UTC 2024] keyauthorization='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:15 UTC 2024] dvlist='*.XXXXXXX.XXX
#XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX#https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg#dns-01#dns_cf#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857'
[Thu Jun  6 14:21:15 UTC 2024] d
[Thu Jun  6 14:21:15 UTC 2024] vlist='XXXXXXX.XXX#XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX#https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw#dns-01#dns_cf#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867,*.XXXXXXX.XXX
#XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX#https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg#dns-01#dns_cf#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857,'
[Thu Jun  6 14:21:15 UTC 2024] d='XXXXXXX.XXX'
[Thu Jun  6 14:21:15 UTC 2024] _d_alias
[Thu Jun  6 14:21:15 UTC 2024] txtdomain='_acme-challenge.XXXXXXX.XXX'
[Thu Jun  6 14:21:15 UTC 2024] txt='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:15 UTC 2024] d_api='/root/.acme.sh/dnsapi/dns_cf.sh'
[Thu Jun  6 14:21:15 UTC 2024] dns_entry='XXXXXXX.XXX,_acme-challenge.XXXXXXX.XXX,,dns_cf,XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX,/root/.acme.sh/dnsapi/dns_cf.sh'
[Thu Jun  6 14:21:15 UTC 2024] Found domain api file: /root/.acme.sh/dnsapi/dns_cf.sh
[Thu Jun  6 14:21:15 UTC 2024] Adding txt value: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX for domain:  _acme-challenge.XXXXXXX.XXX
[Thu Jun  6 14:21:15 UTC 2024] First detect the root zone
[Thu Jun  6 14:21:15 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
[Thu Jun  6 14:21:15 UTC 2024] GET
[Thu Jun  6 14:21:15 UTC 2024] url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:15 UTC 2024] timeout=
[Thu Jun  6 14:21:15 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:15 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:16 UTC 2024] ret='0'
[Thu Jun  6 14:21:16 UTC 2024] response='{"result":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","name":"XXXXXXX.XXX","status":"active","paused":false,"type":"full","development_mode":0,"name_servers":["pat.ns.cloudflare.com","seamus.ns.cloudflare.com"],"original_name_servers":null,"original_registrar":null,"original_dnshost":null,"modified_on":"2024-06-03T08:04:31.742948Z","created_on":"2023-05-05T07:01:33.362911Z","activated_on":"2023-05-19T12:22:53.395810Z","meta":{"step":2,"custom_certificate_quota":0,"page_rule_quota":3,"phishing_detected":false},"owner":{"id":null,"type":"user","email":null},"account":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","name":"XXXXXXXXXXXXXXXXXXXX's Account"},"tenant":{"id":null,"name":null},"tenant_unit":{"id":null},"permissions":["#waf:read","#waf:edit","#organization:read","#organization:edit","#magic:read","#magic:edit","#billing:read","#dns_records:edit","#dns_records:read","#lb:edit","#lb:read","#vectorize:read","#vectorize:edit","#query_cache:read","#query_cache:edit","#integration:edit","#access:read","#access:edit","#integration:read","#integration:install","#waitingroom:read","#waitingroom:edit","#dex:read","#analytics:read","#dex:edit","#zone_settings:read","#zone_settings:edit","#worker:edit","#zone_versioning:read","#zone_versioning:edit","#ssl:edit","#zaraz:publish","#ssl:read","#worker:read","#logs:edit","#fbm:edit","#fbm:read","#fbm_acc:edit","#logs:read","#http_applications:read","#http_applications:edit","#blocks:read","#blocks:edit","#api_gateway:read","#api_gateway:edit","#zaraz:edit","#zaraz:read","#stream:read","#stream:edit","#teams:read","#teams:edit","#healthchecks:read","#web3:read","#web3:edit","#r2_bucket:read","#r2_bucket:edit","#image:read","#image:edit","#healthchecks:edit","#dash_sso:edit","#dash_sso:read","#teams:pii","#page_shield:read","#page_shield:edit","#zone:edit","#zone:read","#billing:edit","#teams:report","#subscription:edit","#app:edit","#subscription:read","#cache_purge:edit","#auditlogs:read","#member:edit","#member:read","#legal:read","#legal:edit"],"plan":{"id":"0feeeeeeeeeeeeeeeeeeeeeeeeeeeeee","name":"Free Website","price":0,"currency":"USD","frequency":"","is_subscribed":false,"can_subscribe":false,"legacy_id":"free","legacy_discount":false,"externally_managed":false}},"success":true,"errors":[],"messages":[]}'
[Thu Jun  6 14:21:16 UTC 2024] _domain_id='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:16 UTC 2024] _sub_domain='_acme-challenge'
[Thu Jun  6 14:21:16 UTC 2024] _domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:16 UTC 2024] Getting txt records
[Thu Jun  6 14:21:16 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records?type=TXT&name=_acme-challenge.XXXXXXX.XXX
[Thu Jun  6 14:21:16 UTC 2024] GET
[Thu Jun  6 14:21:16 UTC 2024] url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records?type=TXT&name=_acme-challenge.XXXXXXX.XXX'
[Thu Jun  6 14:21:16 UTC 2024] timeout=
[Thu Jun  6 14:21:16 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:16 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:17 UTC 2024] ret='0'
[Thu Jun  6 14:21:17 UTC 2024] response='{"result":[],"success":true,"errors":[],"messages":[],"result_info":{"page":1,"per_page":100,"count":0,"total_count":0,"total_pages":1}}'
[Thu Jun  6 14:21:17 UTC 2024] Adding record
[Thu Jun  6 14:21:17 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records
[Thu Jun  6 14:21:17 UTC 2024] data='{"type":"TXT","name":"_acme-challenge.XXXXXXX.XXX","content":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","ttl":120}'
[Thu Jun  6 14:21:17 UTC 2024] POST
[Thu Jun  6 14:21:17 UTC 2024] _post_url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records'
[Thu Jun  6 14:21:17 UTC 2024] body='{"type":"TXT","name":"_acme-challenge.XXXXXXX.XXX","content":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","ttl":120}'
[Thu Jun  6 14:21:17 UTC 2024] _postContentType
[Thu Jun  6 14:21:17 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:17 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:18 UTC 2024] _ret='0'
[Thu Jun  6 14:21:18 UTC 2024] response='{"result":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","zone_id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","zone_name":"XXXXXXX.XXX","name":"_acme-challenge.XXXXXXX.XXX","type":"TXT","content":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","proxiable":false,"proxied":false,"ttl":120,"locked":false,"meta":{"auto_added":false,"managed_by_apps":false,"managed_by_argo_tunnel":false},"comment":null,"tags":[],"created_on":"2024-06-06T14:21:18.518561Z","modified_on":"2024-06-06T14:21:18.518561Z"},"success":true,"errors":[],"messages":[]}'
[Thu Jun  6 14:21:18 UTC 2024] Added, OK
[Thu Jun  6 14:21:18 UTC 2024] The txt record is added: Success.
[Thu Jun  6 14:21:18 UTC 2024] XXXXXXX.XXX,_acme-challenge.XXXXXXX.XXX,,dns_cf,XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX,/root/.acme.sh/dnsapi/dns_cf.sh

[Thu Jun  6 14:21:18 UTC 2024] d='*.XXXXXXX.XXX
'
[Thu Jun  6 14:21:18 UTC 2024] _d_alias
[Thu Jun  6 14:21:18 UTC 2024] txtdomain='_acme-challenge.XXXXXXX.XXX
'
[Thu Jun  6 14:21:18 UTC 2024] txt='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:18 UTC 2024] d_api='/root/.acme.sh/dnsapi/dns_cf.sh'
[Thu Jun  6 14:21:18 UTC 2024] dns_entry='XXXXXXX.XXX
,_acme-challenge.XXXXXXX.XXX
,,dns_cf,XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX,/root/.acme.sh/dnsapi/dns_cf.sh'
[Thu Jun  6 14:21:18 UTC 2024] Found domain api file: /root/.acme.sh/dnsapi/dns_cf.sh
[Thu Jun  6 14:21:18 UTC 2024] Adding txt value: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX for domain:  _acme-challenge.XXXXXXX.XXX
[Thu Jun  6 14:21:18 UTC 2024] First detect the root zone
[Thu Jun  6 14:21:18 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
[Thu Jun  6 14:21:18 UTC 2024] GET
[Thu Jun  6 14:21:18 UTC 2024] url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:18 UTC 2024] timeout=
[Thu Jun  6 14:21:18 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:18 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:19 UTC 2024] ret='0'
[Thu Jun  6 14:21:19 UTC 2024] response='{"result":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","name":"XXXXXXX.XXX","status":"active","paused":false,"type":"full","development_mode":0,"name_servers":["pat.ns.cloudflare.com","seamus.ns.cloudflare.com"],"original_name_servers":null,"original_registrar":null,"original_dnshost":null,"modified_on":"2024-06-03T08:04:31.742948Z","created_on":"2023-05-05T07:01:33.362911Z","activated_on":"2023-05-19T12:22:53.395810Z","meta":{"step":2,"custom_certificate_quota":0,"page_rule_quota":3,"phishing_detected":false},"owner":{"id":null,"type":"user","email":null},"account":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","name":"XXXXXXXXXXXXXXXXXXXX's Account"},"tenant":{"id":null,"name":null},"tenant_unit":{"id":null},"permissions":["#waf:read","#waf:edit","#organization:read","#organization:edit","#magic:read","#magic:edit","#billing:read","#dns_records:edit","#dns_records:read","#lb:edit","#lb:read","#vectorize:read","#vectorize:edit","#query_cache:read","#query_cache:edit","#integration:edit","#access:read","#access:edit","#integration:read","#integration:install","#waitingroom:read","#waitingroom:edit","#dex:read","#analytics:read","#dex:edit","#zone_settings:read","#zone_settings:edit","#worker:edit","#zone_versioning:read","#zone_versioning:edit","#ssl:edit","#zaraz:publish","#ssl:read","#worker:read","#logs:edit","#fbm:edit","#fbm:read","#fbm_acc:edit","#logs:read","#http_applications:read","#http_applications:edit","#blocks:read","#blocks:edit","#api_gateway:read","#api_gateway:edit","#zaraz:edit","#zaraz:read","#stream:read","#stream:edit","#teams:read","#teams:edit","#healthchecks:read","#web3:read","#web3:edit","#r2_bucket:read","#r2_bucket:edit","#image:read","#image:edit","#healthchecks:edit","#dash_sso:edit","#dash_sso:read","#teams:pii","#page_shield:read","#page_shield:edit","#zone:edit","#zone:read","#billing:edit","#teams:report","#subscription:edit","#app:edit","#subscription:read","#cache_purge:edit","#auditlogs:read","#member:edit","#member:read","#legal:read","#legal:edit"],"plan":{"id":"0feeeeeeeeeeeeeeeeeeeeeeeeeeeeee","name":"Free Website","price":0,"currency":"USD","frequency":"","is_subscribed":false,"can_subscribe":false,"legacy_id":"free","legacy_discount":false,"externally_managed":false}},"success":true,"errors":[],"messages":[]}'
[Thu Jun  6 14:21:19 UTC 2024] _domain_id='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:19 UTC 2024] _sub_domain='_acme-challenge.'
[Thu Jun  6 14:21:19 UTC 2024] _domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:19 UTC 2024] Getting txt records
[Thu Jun  6 14:21:19 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records?type=TXT&name=_acme-challenge.XXXXXXX.XXX
[Thu Jun  6 14:21:19 UTC 2024] GET
[Thu Jun  6 14:21:19 UTC 2024] url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records?type=TXT&name=_acme-challenge.XXXXXXX.XXX
'
[Thu Jun  6 14:21:19 UTC 2024] timeout=
[Thu Jun  6 14:21:19 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:19 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:19 UTC 2024] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 3
[Thu Jun  6 14:21:19 UTC 2024] ret='3'
[Thu Jun  6 14:21:19 UTC 2024] error zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records?type=TXT&name=_acme-challenge.XXXXXXX.XXX
[Thu Jun  6 14:21:19 UTC 2024] Error
[Thu Jun  6 14:21:19 UTC 2024] Error add txt for domain:_acme-challenge.XXXXXXX.XXX
[Thu Jun  6 14:21:19 UTC 2024] _on_issue_err
[Thu Jun  6 14:21:19 UTC 2024] Please check log file for more details: /acme.sh/acme.sh.log
[Thu Jun  6 14:21:19 UTC 2024] _chk_vlist='XXXXXXX.XXX#XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX#https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw#dns-01#dns_cf#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867,*.XXXXXXX.XXX
#XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX#https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg#dns-01#dns_cf#https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857,'
[Thu Jun  6 14:21:19 UTC 2024] start to deactivate authz
[Thu Jun  6 14:21:19 UTC 2024] Trigger domain validation.
[Thu Jun  6 14:21:19 UTC 2024] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw'
[Thu Jun  6 14:21:19 UTC 2024] _t_key_authz='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:19 UTC 2024] _t_vtype
[Thu Jun  6 14:21:19 UTC 2024] =======Begin Send Signed Request=======
[Thu Jun  6 14:21:19 UTC 2024] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw'
[Thu Jun  6 14:21:19 UTC 2024] payload='{}'
[Thu Jun  6 14:21:19 UTC 2024] Use cached jwk for file: /acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Thu Jun  6 14:21:19 UTC 2024] Use _CACHED_NONCE='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:19 UTC 2024] nonce='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:19 UTC 2024] POST
[Thu Jun  6 14:21:19 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw'
[Thu Jun  6 14:21:19 UTC 2024] body='{"protected": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", "payload": "e30", "signature": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}'
[Thu Jun  6 14:21:19 UTC 2024] _postContentType='application/jose+json'
[Thu Jun  6 14:21:19 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:19 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:20 UTC 2024] _ret='0'
[Thu Jun  6 14:21:20 UTC 2024] responseHeaders='HTTP/2 200 
server: nginx
date: Thu, 06 Jun 2024 14:21:20 GMT
content-type: application/json
content-length: 186
boulder-requester: 1767364027
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956867>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:20 UTC 2024] code='200'
[Thu Jun  6 14:21:20 UTC 2024] original='{
  "type": "dns-01",
  "status": "pending",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw",
  "token": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
}'
[Thu Jun  6 14:21:20 UTC 2024] response='{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956867/SuvYZw","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}'
[Thu Jun  6 14:21:20 UTC 2024] Trigger domain validation.
[Thu Jun  6 14:21:20 UTC 2024] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg'
[Thu Jun  6 14:21:20 UTC 2024] _t_key_authz='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX.XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:20 UTC 2024] _t_vtype
[Thu Jun  6 14:21:20 UTC 2024] =======Begin Send Signed Request=======
[Thu Jun  6 14:21:20 UTC 2024] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg'
[Thu Jun  6 14:21:20 UTC 2024] payload='{}'
[Thu Jun  6 14:21:20 UTC 2024] Use cached jwk for file: /acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Thu Jun  6 14:21:20 UTC 2024] Use _CACHED_NONCE='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:20 UTC 2024] nonce='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:20 UTC 2024] POST
[Thu Jun  6 14:21:20 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg'
[Thu Jun  6 14:21:20 UTC 2024] body='{"protected": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX", "payload": "e30", "signature": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}'
[Thu Jun  6 14:21:20 UTC 2024] _postContentType='application/jose+json'
[Thu Jun  6 14:21:20 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:20 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:21 UTC 2024] _ret='0'
[Thu Jun  6 14:21:21 UTC 2024] responseHeaders='HTTP/2 200 
server: nginx
date: Thu, 06 Jun 2024 14:21:21 GMT
content-type: application/json
content-length: 186
boulder-requester: 1767364027
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://acme-v02.api.letsencrypt.org/acme/authz-v3/360446956857>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg
replay-nonce: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Thu Jun  6 14:21:21 UTC 2024] code='200'
[Thu Jun  6 14:21:21 UTC 2024] original='{
  "type": "dns-01",
  "status": "pending",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg",
  "token": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
}'
[Thu Jun  6 14:21:21 UTC 2024] response='{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/360446956857/dG9eHg","token":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"}'
[Thu Jun  6 14:21:21 UTC 2024] pid
[Thu Jun  6 14:21:21 UTC 2024] No need to restore nginx, skip.
[Thu Jun  6 14:21:21 UTC 2024] _clearupdns
[Thu Jun  6 14:21:21 UTC 2024] dns_entries='XXXXXXX.XXX,_acme-challenge.XXXXXXX.XXX,,dns_cf,XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX,/root/.acme.sh/dnsapi/dns_cf.sh
'
[Thu Jun  6 14:21:21 UTC 2024] Removing DNS records.
[Thu Jun  6 14:21:21 UTC 2024] d='XXXXXXX.XXX'
[Thu Jun  6 14:21:21 UTC 2024] txtdomain='_acme-challenge.XXXXXXX.XXX'
[Thu Jun  6 14:21:21 UTC 2024] aliasDomain='_acme-challenge.XXXXXXX.XXX'
[Thu Jun  6 14:21:21 UTC 2024] _currentRoot='dns_cf'
[Thu Jun  6 14:21:21 UTC 2024] txt='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:21 UTC 2024] d_api='/root/.acme.sh/dnsapi/dns_cf.sh'
[Thu Jun  6 14:21:21 UTC 2024] Removing txt: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX for domain: _acme-challenge.XXXXXXX.XXX
[Thu Jun  6 14:21:21 UTC 2024] First detect the root zone
[Thu Jun  6 14:21:21 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
[Thu Jun  6 14:21:21 UTC 2024] GET
[Thu Jun  6 14:21:21 UTC 2024] url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:21 UTC 2024] timeout=
[Thu Jun  6 14:21:21 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:21 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:22 UTC 2024] ret='0'
[Thu Jun  6 14:21:22 UTC 2024] response='{"result":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","name":"XXXXXXX.XXX","status":"active","paused":false,"type":"full","development_mode":0,"name_servers":["pat.ns.cloudflare.com","seamus.ns.cloudflare.com"],"original_name_servers":null,"original_registrar":null,"original_dnshost":null,"modified_on":"2024-06-03T08:04:31.742948Z","created_on":"2023-05-05T07:01:33.362911Z","activated_on":"2023-05-19T12:22:53.395810Z","meta":{"step":2,"custom_certificate_quota":0,"page_rule_quota":3,"phishing_detected":false},"owner":{"id":null,"type":"user","email":null},"account":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","name":"XXXXXXXXXXXXXXXXXXXX's Account"},"tenant":{"id":null,"name":null},"tenant_unit":{"id":null},"permissions":["#waf:read","#waf:edit","#organization:read","#organization:edit","#magic:read","#magic:edit","#billing:read","#dns_records:edit","#dns_records:read","#lb:edit","#lb:read","#vectorize:read","#vectorize:edit","#query_cache:read","#query_cache:edit","#integration:edit","#access:read","#access:edit","#integration:read","#integration:install","#waitingroom:read","#waitingroom:edit","#dex:read","#analytics:read","#dex:edit","#zone_settings:read","#zone_settings:edit","#worker:edit","#zone_versioning:read","#zone_versioning:edit","#ssl:edit","#zaraz:publish","#ssl:read","#worker:read","#logs:edit","#fbm:edit","#fbm:read","#fbm_acc:edit","#logs:read","#http_applications:read","#http_applications:edit","#blocks:read","#blocks:edit","#api_gateway:read","#api_gateway:edit","#zaraz:edit","#zaraz:read","#stream:read","#stream:edit","#teams:read","#teams:edit","#healthchecks:read","#web3:read","#web3:edit","#r2_bucket:read","#r2_bucket:edit","#image:read","#image:edit","#healthchecks:edit","#dash_sso:edit","#dash_sso:read","#teams:pii","#page_shield:read","#page_shield:edit","#zone:edit","#zone:read","#billing:edit","#teams:report","#subscription:edit","#app:edit","#subscription:read","#cache_purge:edit","#auditlogs:read","#member:edit","#member:read","#legal:read","#legal:edit"],"plan":{"id":"0feeeeeeeeeeeeeeeeeeeeeeeeeeeeee","name":"Free Website","price":0,"currency":"USD","frequency":"","is_subscribed":false,"can_subscribe":false,"legacy_id":"free","legacy_discount":false,"externally_managed":false}},"success":true,"errors":[],"messages":[]}'
[Thu Jun  6 14:21:22 UTC 2024] _domain_id='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:22 UTC 2024] _sub_domain='_acme-challenge'
[Thu Jun  6 14:21:22 UTC 2024] _domain='XXXXXXX.XXX'
[Thu Jun  6 14:21:22 UTC 2024] Getting txt records
[Thu Jun  6 14:21:22 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records?type=TXT&name=_acme-challenge.XXXXXXX.XXX&content=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
[Thu Jun  6 14:21:22 UTC 2024] GET
[Thu Jun  6 14:21:22 UTC 2024] url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records?type=TXT&name=_acme-challenge.XXXXXXX.XXX&content=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:22 UTC 2024] timeout=
[Thu Jun  6 14:21:22 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:22 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:23 UTC 2024] ret='0'
[Thu Jun  6 14:21:23 UTC 2024] response='{"result":[{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","zone_id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","zone_name":"XXXXXXX.XXX","name":"_acme-challenge.XXXXXXX.XXX","type":"TXT","content":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX","proxiable":false,"proxied":false,"ttl":120,"locked":false,"meta":{"auto_added":false,"managed_by_apps":false,"managed_by_argo_tunnel":false},"comment":null,"tags":[],"created_on":"2024-06-06T14:21:18.518561Z","modified_on":"2024-06-06T14:21:18.518561Z"}],"success":true,"errors":[],"messages":[],"result_info":{"page":1,"per_page":100,"count":1,"total_count":1,"total_pages":1}}'
[Thu Jun  6 14:21:23 UTC 2024] count='1'
[Thu Jun  6 14:21:23 UTC 2024] record_id='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:23 UTC 2024] zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
[Thu Jun  6 14:21:23 UTC 2024] data
[Thu Jun  6 14:21:23 UTC 2024] DELETE
[Thu Jun  6 14:21:23 UTC 2024] _post_url='https://api.cloudflare.com/client/v4/zones/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX/dns_records/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'
[Thu Jun  6 14:21:23 UTC 2024] body
[Thu Jun  6 14:21:23 UTC 2024] _postContentType
[Thu Jun  6 14:21:23 UTC 2024] Http already initialized.
[Thu Jun  6 14:21:23 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:25 UTC 2024] _ret='0'
[Thu Jun  6 14:21:25 UTC 2024] response='{"result":{"id":"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"},"success":true,"errors":[],"messages":[]}'
[Thu Jun  6 14:21:25 UTC 2024] Removed: Success
[Thu Jun  6 14:21:25 UTC 2024] LE_WORKING_DIR='/root/.acme.sh'
[Thu Jun  6 14:21:25 UTC 2024] Running cmd: deploy
[Thu Jun  6 14:21:25 UTC 2024] Using config home:/acme.sh
[Thu Jun  6 14:21:25 UTC 2024] default_acme_server
[Thu Jun  6 14:21:25 UTC 2024] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Thu Jun  6 14:21:25 UTC 2024] _ACME_SERVER_HOST='acme.zerossl.com'
[Thu Jun  6 14:21:25 UTC 2024] _ACME_SERVER_PATH='v2/DV90'
[Thu Jun  6 14:21:25 UTC 2024] The domain 'XXXXXXX.XXX' seems to have a ECC cert already, lets use ecc cert.
[Thu Jun  6 14:21:25 UTC 2024] DOMAIN_PATH='/acme.sh/XXXXXXX.XXX_ecc'
[Thu Jun  6 14:21:25 UTC 2024] DOMAIN_CONF='/acme.sh/XXXXXXX.XXX_ecc/XXXXXXX.XXX.conf'
[Thu Jun  6 14:21:25 UTC 2024] _deployApi='/root/.acme.sh/deploy/synology_dsm.sh'
[Thu Jun  6 14:21:25 UTC 2024] _cdomain='XXXXXXX.XXX'
[Thu Jun  6 14:21:25 UTC 2024] Domain config SYNO_Username has been migrated to SAVED_SYNO_USERNAME.
[Thu Jun  6 14:21:25 UTC 2024] Domain config SYNO_Password has been migrated to SAVED_SYNO_PASSWORD.
[Thu Jun  6 14:21:25 UTC 2024] Domain config SYNO_Device_ID has been migrated to SAVED_SYNO_DEVICE_ID.
[Thu Jun  6 14:21:25 UTC 2024] SYNO_USE_TEMP_ADMIN
[Thu Jun  6 14:21:25 UTC 2024] SYNO_USE_TEMP_ADMIN
[Thu Jun  6 14:21:25 UTC 2024] SYNO_USERNAME='XXXXXXX'
[Thu Jun  6 14:21:25 UTC 2024] SYNO_PASSWORD='[hidden](please add '--output-insecure' to see this value)'
[Thu Jun  6 14:21:25 UTC 2024] SYNO_DEVICE_NAME
[Thu Jun  6 14:21:25 UTC 2024] SYNO_DEVICE_ID='[hidden](please add '--output-insecure' to see this value)'
[Thu Jun  6 14:21:25 UTC 2024] Domain config SYNO_Port has been migrated to SAVED_SYNO_PORT.
[Thu Jun  6 14:21:25 UTC 2024] SYNO_SCHEME='http'
[Thu Jun  6 14:21:25 UTC 2024] SYNO_HOSTNAME='localhost'
[Thu Jun  6 14:21:25 UTC 2024] SYNO_PORT='5000'
[Thu Jun  6 14:21:25 UTC 2024] SYNO_CERTIFICATE
[Thu Jun  6 14:21:25 UTC 2024] Getting API version...
[Thu Jun  6 14:21:25 UTC 2024] _base_url='http://localhost:5000'
[Thu Jun  6 14:21:25 UTC 2024] GET
[Thu Jun  6 14:21:25 UTC 2024] url='http://localhost:5000/webapi/query.cgi?api=SYNO.API.Info&version=1&method=query&query=SYNO.API.Auth'
[Thu Jun  6 14:21:25 UTC 2024] timeout=
[Thu Jun  6 14:21:25 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:25 UTC 2024] ret='0'
[Thu Jun  6 14:21:25 UTC 2024] Logging into localhost:5000...
[Thu Jun  6 14:21:25 UTC 2024] error_code='403'
[Thu Jun  6 14:21:25 UTC 2024] GET
[Thu Jun  6 14:21:25 UTC 2024] url='http://localhost:5000/webapi/entry.cgi?api=SYNO.API.Auth&version=7&method=login&format=sid&account=XXXXXXX&passwd=NasP%40ssw0rd2&enable_syno_token=yes&device_name=CertRenewal&device_id=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX-XXXXXX_XXXXXXXXXXXXXXXXXXXXXXX_XXXXXXXXXX-XXXXXXXXXXXXX'
[Thu Jun  6 14:21:25 UTC 2024] timeout=
[Thu Jun  6 14:21:25 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:26 UTC 2024] ret='0'
[Thu Jun  6 14:21:26 UTC 2024] error_code
[Thu Jun  6 14:21:26 UTC 2024] Session ID='XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX_6Kb5Br0WDlQ8nPAV-XQryKq66ho9Ukb7NXTHL6M'
[Thu Jun  6 14:21:26 UTC 2024] SynoToken='chPtsHb7lALZk'
[Thu Jun  6 14:21:26 UTC 2024] H1='X-SYNO-TOKEN: chPtsHb7lALZk'
[Thu Jun  6 14:21:26 UTC 2024] Getting certificates in Synology DSM...
[Thu Jun  6 14:21:26 UTC 2024] POST
[Thu Jun  6 14:21:26 UTC 2024] _post_url='http://localhost:5000/webapi/entry.cgi'
[Thu Jun  6 14:21:26 UTC 2024] body='api=SYNO.Core.Certificate.CRT&method=list&version=1&_sid=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX_6Kb5Br0WDlQ8nPAV-XQryKq66ho9Ukb7NXTHL6M'
[Thu Jun  6 14:21:26 UTC 2024] _postContentType
[Thu Jun  6 14:21:26 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:26 UTC 2024] _ret='0'
[Thu Jun  6 14:21:26 UTC 2024] escaped_certificate
[Thu Jun  6 14:21:26 UTC 2024] id='viiavr'
[Thu Jun  6 14:21:26 UTC 2024] error_code
[Thu Jun  6 14:21:26 UTC 2024] SYNO_CREATE='1'
[Thu Jun  6 14:21:26 UTC 2024] Generating form POST request...
[Thu Jun  6 14:21:26 UTC 2024] default='This is the default certificate'
[Thu Jun  6 14:21:26 UTC 2024] Upload certificate to the Synology DSM.
[Thu Jun  6 14:21:26 UTC 2024] POST
[Thu Jun  6 14:21:26 UTC 2024] _post_url='http://localhost:5000/webapi/entry.cgi?api=SYNO.Core.Certificate&method=import&version=1&SynoToken=chPtsHb7lALZk&_sid=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX_6Kb5Br0WDlQ8nPAV-XQryKq66ho9Ukb7NXTHL6M'
[Thu Jun  6 14:21:26 UTC 2024] body='----------------------------20240606142126
Content-Disposition: form-data; name="key"; filename="XXXXXXX.XXX.key"
Content-Type: application/octet-stream

-----BEGIN EC PRIVATE KEY-----
MHcXXXXXXXXXxphj/fuXXXXXXXXXXWgu169/XXXXXXXXXXXXXXXXXXXXCCqGSM49
AwEHoUQDQgAED8TXJXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXNdC2HXJ
xh/zQIz1XXXXXXXXXXXXXXXbZQ6vw==
-----END EC PRIVATE KEY-----

----------------------------20240606142126
Content-Disposition: form-data; name="cert"; filename="XXXXXXX.XXX.cer"
Content-Type: application/octet-stream

----------------------------20240606142126
Content-Disposition: form-data; name="inter_cert"; filename="ca.cer"
Content-Type: application/octet-stream

----------------------------20240606142126
Content-Disposition: form-data; name="id"

viiavr
----------------------------20240606142126
Content-Disposition: form-data; name="desc"

----------------------------20240606142126
Content-Disposition: form-data; name="as_default"

true
----------------------------20240606142126--
'
[Thu Jun  6 14:21:26 UTC 2024] _postContentType='multipart/form-data; boundary=--------------------------20240606142126'
[Thu Jun  6 14:21:26 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:26 UTC 2024] _ret='0'
[Thu Jun  6 14:21:26 UTC 2024] Unable to update certificate, got error response: {"error":{"code":5510},"success":false}.
[Thu Jun  6 14:21:26 UTC 2024] GET
[Thu Jun  6 14:21:26 UTC 2024] url='http://localhost:5000/webapi/entry.cgi?api=SYNO.API.Auth&version=7&method=logout&_sid=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX_XXXXXXXXXXXXXXXXXV-XQryKq66ho9Ukb7NXTHL6M'
[Thu Jun  6 14:21:26 UTC 2024] timeout=
[Thu Jun  6 14:21:26 UTC 2024] _CURL='curl --silent --dump-header /acme.sh/http.header  -L  -g '
[Thu Jun  6 14:21:26 UTC 2024] ret='0'
[Thu Jun  6 14:21:26 UTC 2024] Error deploy for domain:XXXXXXX.XXX
[Thu Jun  6 14:21:26 UTC 2024] Deploy error.

[github-actions[bot]]

Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade If it's still not working, please provide the log with --debug 2, otherwise, nobody can help you.

[ParkerChih]

Before I success, I always use the synology`s scheduled task to run the command. At that time in my domainname dir, only 4 files in there. They are

• example.com.conf
• example.com.csr
• example.com.csr.conf
• example.com.key.

But when I mannul to execute the conmand one by one docker exec acme acme.sh --force --log --issue --server letsencrypt --dns dns_cf --dnssleep 120 -d example.com -d *.example.com After that there have extra 3 files flowlling：

• example.com.cer
• fullchain.cer
• ca.cer

and the time for resquest cert from the internet is not as quickly as before, almost about 3 minutes.

The else command without any hitch, and successful soon. docker exec acme acme.sh --deploy -d example.com -d *.example.com --deploy-hook synology_dsm

Although the ture reason still unknown, but I remmond you to try this mannal way when you can`t find any other problem. And notice if the files downloaded fully. I have search the full list before, but not successful, haha!