Can't register IDNs #355

julian45 · 2016-11-01T00:50:17Z

Code executed (see #331):

export BRANCH=idn
acme.sh --issue --apache --debug -d ジュリアン.xyz -d 急ぎ.ジュリアン.xyz

Result:

https://github.com/Neilpang/acme.sh
v2.6.2
[Tue Nov  1 00:44:17 UTC 2016] Multi domain='DNS:xn--x8j435l.xn--cck0bxhua0c.xyz'
[Tue Nov  1 00:44:17 UTC 2016] Getting domain auth token for each domain
[Tue Nov  1 00:44:17 UTC 2016] Getting webroot for domain='ジュリアン.xyz'
[Tue Nov  1 00:44:17 UTC 2016] _w='apache'
[Tue Nov  1 00:44:17 UTC 2016] Getting new-authz for domain='ジュリアン.xyz'
[Tue Nov  1 00:44:17 UTC 2016] Try new-authz for the 0 time.
[Tue Nov  1 00:44:18 UTC 2016] The new-authz request is ok.
[Tue Nov  1 00:44:18 UTC 2016] Getting webroot for domain='急ぎ.ジュリアン.xyz'
[Tue Nov  1 00:44:18 UTC 2016] _w='apache'
[Tue Nov  1 00:44:18 UTC 2016] Getting new-authz for domain='急ぎ.ジュリアン.xyz'
[Tue Nov  1 00:44:18 UTC 2016] Try new-authz for the 0 time.
[Tue Nov  1 00:44:18 UTC 2016] The new-authz request is ok.
[Tue Nov  1 00:44:19 UTC 2016] Verifying:ジュリアン.xyz
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /.well-known/acme-challenge/I_qADxcHP_nwaj8RDRys3dIrDEPiH-tHJDcMvvVNJQg was not found on this server.</p>
<hr>
<address>Apache/2.4.18 (Ubuntu) Server at xn--cck0bxhua0c.xyz Port 80</address>
</body></html>
[Tue Nov  1 00:44:21 UTC 2016] Dns not added, skip.

I have apache hosts enabled for both, and the configtests work. Something may be the problem since I just bought the domain AND added it to CloudFlare, so it may be best to try after 24h.

The text was updated successfully, but these errors were encountered:

Neilpang · 2016-11-01T01:27:49Z

Do not use idn branch now. it was merged to master.

Please upgrade and try again.

acme.sh  --upgrade

If it still has problem, please give debug log here:

https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh

And if your domain is hosted on cloudflare, it could be a better idea to use cloudflare dns api:

https://github.com/Neilpang/acme.sh/tree/master/dnsapi#use-cloudflare-domain-api-to-automatically-issue-cert

julian45 · 2016-11-01T10:49:03Z

I still want to have my own separate certs on my servers, so I upgraded acme.sh and ran acme.sh --issue --apache -d ジュリアン.xyz -d 急ぎ.ジュリアン.xyz --debug 2.

Results:

[Tue Nov  1 10:46:12 UTC 2016] Lets find script dir.
[Tue Nov  1 10:46:12 UTC 2016] _SCRIPT_='/home/ubuntu/.acme.sh/acme.sh'
[Tue Nov  1 10:46:12 UTC 2016] _script='/home/ubuntu/.acme.sh/acme.sh'
[Tue Nov  1 10:46:12 UTC 2016] _script_home='/home/ubuntu/.acme.sh'
https://github.com/Neilpang/acme.sh
v2.6.2
[Tue Nov  1 10:46:12 UTC 2016] Using api:
[Tue Nov  1 10:46:12 UTC 2016] DOMAIN_PATH='/home/ubuntu/.acme.sh/ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] Le_NextRenewTime
[Tue Nov  1 10:46:12 UTC 2016] 1:Le_Domain='ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] 2:Le_Alt='急ぎ.ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] 3:Le_Webroot='apache'
[Tue Nov  1 10:46:12 UTC 2016] 4:Le_PreHook=''
[Tue Nov  1 10:46:12 UTC 2016] 5:Le_PostHook=''
[Tue Nov  1 10:46:12 UTC 2016] 6:Le_RenewHook=''
[Tue Nov  1 10:46:12 UTC 2016] options='s/^Le_LocalAddress.*$//'
[Tue Nov  1 10:46:12 UTC 2016] Using sed  -i
[Tue Nov  1 10:46:12 UTC 2016] 7:Le_API='https://acme-v01.api.letsencrypt.org'
[Tue Nov  1 10:46:12 UTC 2016] _on_before_issue
[Tue Nov  1 10:46:12 UTC 2016] 'apache' does not contain 'no'
[Tue Nov  1 10:46:12 UTC 2016] 'apache' does not contain 'tls'
[Tue Nov  1 10:46:12 UTC 2016] _saved_account_key_hash='41v5Ihbxp55/xOfvhy+HGJPt6TRhb9QzQXjGpWWL3z4='
[Tue Nov  1 10:46:12 UTC 2016] Read key length:
[Tue Nov  1 10:46:12 UTC 2016] _createcsr
[Tue Nov  1 10:46:12 UTC 2016] domain='ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] domainlist='急ぎ.ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] csrkey='/home/ubuntu/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.key'
[Tue Nov  1 10:46:12 UTC 2016] csr='/home/ubuntu/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.csr'
[Tue Nov  1 10:46:12 UTC 2016] csrconf='/home/ubuntu/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.csr.conf'
[Tue Nov  1 10:46:12 UTC 2016] _is_idn_d='急ぎ.ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] _idn_temp='急ぎジュリアン'
[Tue Nov  1 10:46:12 UTC 2016] domainlist='xn--x8j435l.xn--cck0bxhua0c.xyz'
[Tue Nov  1 10:46:12 UTC 2016] Multi domain='DNS:xn--x8j435l.xn--cck0bxhua0c.xyz'
[Tue Nov  1 10:46:12 UTC 2016] _is_idn_d='ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] _idn_temp='ジュリアン'
[Tue Nov  1 10:46:12 UTC 2016] _csr_cn='xn--cck0bxhua0c.xyz'
[Tue Nov  1 10:46:12 UTC 2016] 8:Le_Keylength=''
[Tue Nov  1 10:46:12 UTC 2016] Getting domain auth token for each domain
[Tue Nov  1 10:46:12 UTC 2016] Getting webroot for domain='ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] _w='apache'
[Tue Nov  1 10:46:12 UTC 2016] _currentRoot='apache'
[Tue Nov  1 10:46:12 UTC 2016] Getting new-authz for domain='ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] Try new-authz for the 0 time.
[Tue Nov  1 10:46:12 UTC 2016] _is_idn_d='ジュリアン.xyz'
[Tue Nov  1 10:46:12 UTC 2016] _idn_temp='ジュリアン'
[Tue Nov  1 10:46:12 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 10:46:12 UTC 2016] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "xn--cck0bxhua0c.xyz"}}'
[Tue Nov  1 10:46:12 UTC 2016] RSA key
[Tue Nov  1 10:46:12 UTC 2016] Get nonce.
[Tue Nov  1 10:46:12 UTC 2016] GET
[Tue Nov  1 10:46:12 UTC 2016] url='https://acme-v01.api.letsencrypt.org/directory'
[Tue Nov  1 10:46:12 UTC 2016] timeout
[Tue Nov  1 10:46:12 UTC 2016] _CURL='curl -L --silent --dump-header /home/ubuntu/.acme.sh/http.header  --trace-ascii /tmp/tmp.vUrIb3F71i '
[Tue Nov  1 10:46:13 UTC 2016] ret='0'
[Tue Nov  1 10:46:13 UTC 2016] POST
[Tue Nov  1 10:46:13 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 10:46:13 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pLIGoFnp2fSI5xwwt1GeiQgyavRCoAsUNpScwR1MnrGEgCJgXGMHt6Wz4G3mR49cLSLulgDH3cAtB4kgRAJHKRHlOdqyC50PnB-oGt1W5u6OX2NFuQ6U6jS5om0WUi_Cl3bmtUJvdc4AL5oQBsS1KIl808SbUgIA7BGJ8Hsy_yXrVd0-MqC0p8OWvY7wGIsSO4D6CDHPK6q28bxisBxBrRny-y-Mi2KYchU0cumSyMjdeggccFn0tow9hkKvSN-TqymEw3_k4rbQIGMmpxcjxZqia1XvxCBwFh8w9EYILvghqx1Bo7RJMVf_OGqlOADjQ6boDmuTHUeXPeADbgVkVQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJuZXctYXV0aHoiLCAiaWRlbnRpZmllciI6IHsidHlwZSI6ICJkbnMiLCAidmFsdWUiOiAieG4tLWNjazBieGh1YTBjLnh5eiJ9fQ", "signature": "R3Qd0Ns1QWwgcKcOGMuXmJoG8OBivk2Z-pCN02vyqCK73USdbvmS-eiz8t32Fiam87seANtazr4icJHOq07H-EjU1TYOlcMhbEvy7hQiVQ0ae47yH2WIprGw2GN_kb2zZqayH--rP9arpK1zdGaj0pHTCbVOQzbQrsJhGVnEZlFAdKyIpbXC3lZ025xh8Uxej2fgX6KkJXf6TiM-s7sigBBF79qs1QAtpvr7L-COdyInKZ-9p_br-xW5Sfd50ENJ1T30U-UFtuJMvyNwEI8Tpl6cO18HQhxugqIxgv91P77hhaE5tFMiaQs39htxDirk1ZVC39INlt_HG1qBIi_cUw"}'
[Tue Nov  1 10:46:13 UTC 2016] _CURL='curl -L --silent --dump-header /home/ubuntu/.acme.sh/http.header  --trace-ascii /tmp/tmp.Uq9taQapam '
[Tue Nov  1 10:46:13 UTC 2016] _ret='0'
[Tue Nov  1 10:46:13 UTC 2016] original='{
  "identifier": {
    "type": "dns",
    "value": "xn--cck0bxhua0c.xyz"
  },
  "status": "pending",
  "expires": "2016-11-08T10:46:13.612832181Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131309",
      "token": "6YWo6pOBmty79lK4Rjspua9ft8Khpdq_C2dofWQCA2g"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131310",
      "token": "N59fxcdspKykESmM13zG0eG1VHXNklbtcKUqNpmdlR8"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312",
      "token": "Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig"
    }
  ],
  "combinations": [
    [
      0
    ],
    [
      1
    ],
    [
      2
    ]
  ]
}'
[Tue Nov  1 10:46:13 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 10:46:13 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 201 Created
Server: nginx
Content-Type: application/json
Content-Length: 1004
Boulder-Request-Id: kSlpB0ACCLvZtyR-OBBFz4bgyEAnEYQD2ofkbmbxhE8
Boulder-Requester: 5743115
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg
Replay-Nonce: F9ZBe0TbKwxEr4wByc6mqJLykcREopWw645dojntMD0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 01 Nov 2016 10:46:13 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 10:46:13 GMT
Connection: keep-alive
'
[Tue Nov  1 10:46:13 UTC 2016] response='{"identifier":{"type":"dns","value":"xn--cck0bxhua0c.xyz"},"status":"pending","expires":"2016-11-08T10:46:13.612832181Z","challenges":[{"type":"dns-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131309","token":"6YWo6pOBmty79lK4Rjspua9ft8Khpdq_C2dofWQCA2g"},{"type":"tls-sni-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131310","token":"N59fxcdspKykESmM13zG0eG1VHXNklbtcKUqNpmdlR8"},{"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312","token":"Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig"}],"combinations":[[0],[1],[2]]}'
[Tue Nov  1 10:46:13 UTC 2016] code='201'
[Tue Nov  1 10:46:13 UTC 2016] The new-authz request is ok.
[Tue Nov  1 10:46:13 UTC 2016] entry='"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312","token":"Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig"'
[Tue Nov  1 10:46:13 UTC 2016] token='Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig'
[Tue Nov  1 10:46:13 UTC 2016] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312'
[Tue Nov  1 10:46:13 UTC 2016] keyauthorization='Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY'
[Tue Nov  1 10:46:13 UTC 2016] dvlist='ジュリアン.xyz#Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY#https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312#http-01#apache'
[Tue Nov  1 10:46:13 UTC 2016] Getting webroot for domain='急ぎ.ジュリアン.xyz'
[Tue Nov  1 10:46:13 UTC 2016] _w='apache'
[Tue Nov  1 10:46:13 UTC 2016] _currentRoot='apache'
[Tue Nov  1 10:46:13 UTC 2016] Getting new-authz for domain='急ぎ.ジュリアン.xyz'
[Tue Nov  1 10:46:13 UTC 2016] Try new-authz for the 0 time.
[Tue Nov  1 10:46:13 UTC 2016] _is_idn_d='急ぎ.ジュリアン.xyz'
[Tue Nov  1 10:46:13 UTC 2016] _idn_temp='急ぎジュリアン'
[Tue Nov  1 10:46:13 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 10:46:13 UTC 2016] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "xn--x8j435l.xn--cck0bxhua0c.xyz"}}'
[Tue Nov  1 10:46:13 UTC 2016] Use cached jwk for file: /home/ubuntu/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 10:46:13 UTC 2016] Use _CACHED_NONCE='F9ZBe0TbKwxEr4wByc6mqJLykcREopWw645dojntMD0'
[Tue Nov  1 10:46:13 UTC 2016] POST
[Tue Nov  1 10:46:13 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 10:46:13 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pLIGoFnp2fSI5xwwt1GeiQgyavRCoAsUNpScwR1MnrGEgCJgXGMHt6Wz4G3mR49cLSLulgDH3cAtB4kgRAJHKRHlOdqyC50PnB-oGt1W5u6OX2NFuQ6U6jS5om0WUi_Cl3bmtUJvdc4AL5oQBsS1KIl808SbUgIA7BGJ8Hsy_yXrVd0-MqC0p8OWvY7wGIsSO4D6CDHPK6q28bxisBxBrRny-y-Mi2KYchU0cumSyMjdeggccFn0tow9hkKvSN-TqymEw3_k4rbQIGMmpxcjxZqia1XvxCBwFh8w9EYILvghqx1Bo7RJMVf_OGqlOADjQ6boDmuTHUeXPeADbgVkVQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJuZXctYXV0aHoiLCAiaWRlbnRpZmllciI6IHsidHlwZSI6ICJkbnMiLCAidmFsdWUiOiAieG4tLXg4ajQzNWwueG4tLWNjazBieGh1YTBjLnh5eiJ9fQ", "signature": "MOVQAdAz29Xz6LA32EGJFpfkZHq-nCK2b3EdIhDQZTdgQXCppxk58HIWoe3eLVlWWUD6Jwd6QwjMMnZh6_5gTp_M_suF1dFKIr-IhPuBpSIAfJMbO0MUmLucq2jhvhQbR_-dN-tpYQdHysloMXCgjDdhobL5aeP9YaD1fEFdaJqT1PUE0dOsEN56NlFMed0g00jc8MzCxiCOOKWVU4WZUwG4h8FoOuyj8zESikzb-oxSPSYOxy3O1vEBL4iOxEJxN7DhJEsgxOeuOb3md89sP2SBl3fKS1v-pDSy9814f1biMYl-169ZlodDRDzDzuvgqi_0yk_muAtQpKYEIUWvZQ"}'
[Tue Nov  1 10:46:13 UTC 2016] _CURL='curl -L --silent --dump-header /home/ubuntu/.acme.sh/http.header  --trace-ascii /tmp/tmp.NYmCYQwetl '
[Tue Nov  1 10:46:14 UTC 2016] _ret='0'
[Tue Nov  1 10:46:14 UTC 2016] original='{
  "identifier": {
    "type": "dns",
    "value": "xn--x8j435l.xn--cck0bxhua0c.xyz"
  },
  "status": "pending",
  "expires": "2016-11-08T10:46:14.110662898Z",
  "challenges": [
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131321",
      "token": "OFZByhPhy4MOgresGjX6RVPMjPWraisbzrsophrvgGE"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131322",
      "token": "mK4RDraYucrOq9Cr0zWf6UB6I4YmnIDxunts3Z4DTL4"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131323",
      "token": "mTRcQIbH_bkQKiCCQ5hklJW0WJIrrw_HwzxVn6nvBAE"
    }
  ],
  "combinations": [
    [
      0
    ],
    [
      2
    ],
    [
      1
    ]
  ]
}'
[Tue Nov  1 10:46:14 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 10:46:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 201 Created
Server: nginx
Content-Type: application/json
Content-Length: 1016
Boulder-Request-Id: dU2tJXkY6YV35KMpRz1Gkk3rJ0pI7WwOviznWmHKzlg
Boulder-Requester: 5743115
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo
Replay-Nonce: mY_0wpj2QoOVhSoay2xXuhWmq2YwldlQT5MOfd0Jijk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 01 Nov 2016 10:46:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 10:46:14 GMT
Connection: keep-alive
'
[Tue Nov  1 10:46:14 UTC 2016] response='{"identifier":{"type":"dns","value":"xn--x8j435l.xn--cck0bxhua0c.xyz"},"status":"pending","expires":"2016-11-08T10:46:14.110662898Z","challenges":[{"type":"tls-sni-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131321","token":"OFZByhPhy4MOgresGjX6RVPMjPWraisbzrsophrvgGE"},{"type":"dns-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131322","token":"mK4RDraYucrOq9Cr0zWf6UB6I4YmnIDxunts3Z4DTL4"},{"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131323","token":"mTRcQIbH_bkQKiCCQ5hklJW0WJIrrw_HwzxVn6nvBAE"}],"combinations":[[0],[2],[1]]}'
[Tue Nov  1 10:46:14 UTC 2016] code='201'
[Tue Nov  1 10:46:14 UTC 2016] The new-authz request is ok.
[Tue Nov  1 10:46:14 UTC 2016] entry='"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131323","token":"mTRcQIbH_bkQKiCCQ5hklJW0WJIrrw_HwzxVn6nvBAE"'
[Tue Nov  1 10:46:14 UTC 2016] token='mTRcQIbH_bkQKiCCQ5hklJW0WJIrrw_HwzxVn6nvBAE'
[Tue Nov  1 10:46:14 UTC 2016] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131323'
[Tue Nov  1 10:46:14 UTC 2016] keyauthorization='mTRcQIbH_bkQKiCCQ5hklJW0WJIrrw_HwzxVn6nvBAE.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY'
[Tue Nov  1 10:46:14 UTC 2016] dvlist='急ぎ.ジュリアン.xyz#mTRcQIbH_bkQKiCCQ5hklJW0WJIrrw_HwzxVn6nvBAE.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY#https://acme-v01.api.letsencrypt.org/acme/challenge/ETZzGKoMhT0zH1QkfUFTNJTMgXuI0rpspTc-7q-koXo/321131323#http-01#apache'
[Tue Nov  1 10:46:14 UTC 2016] ok, let's start to verify
[Tue Nov  1 10:46:14 UTC 2016] Verifying:ジュリアン.xyz
[Tue Nov  1 10:46:14 UTC 2016] d='ジュリアン.xyz'
[Tue Nov  1 10:46:14 UTC 2016] keyauthorization='Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY'
[Tue Nov  1 10:46:14 UTC 2016] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312'
[Tue Nov  1 10:46:14 UTC 2016] _currentRoot='apache'
[Tue Nov  1 10:46:14 UTC 2016] wellknown_path='/home/.acme'
[Tue Nov  1 10:46:14 UTC 2016] writing token:Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig to /home/.acme/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig
/home/ubuntu/.acme.sh/acme.sh: line 2570: /home/.acme/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig: Permission denied
[Tue Nov  1 10:46:14 UTC 2016] not chaning owner/group of webroot
[Tue Nov  1 10:46:14 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312'
[Tue Nov  1 10:46:14 UTC 2016] payload='{"resource": "challenge", "keyAuthorization": "Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY"}'
[Tue Nov  1 10:46:14 UTC 2016] Use cached jwk for file: /home/ubuntu/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 10:46:14 UTC 2016] Use _CACHED_NONCE='mY_0wpj2QoOVhSoay2xXuhWmq2YwldlQT5MOfd0Jijk'
[Tue Nov  1 10:46:14 UTC 2016] POST
[Tue Nov  1 10:46:14 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312'
[Tue Nov  1 10:46:14 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pLIGoFnp2fSI5xwwt1GeiQgyavRCoAsUNpScwR1MnrGEgCJgXGMHt6Wz4G3mR49cLSLulgDH3cAtB4kgRAJHKRHlOdqyC50PnB-oGt1W5u6OX2NFuQ6U6jS5om0WUi_Cl3bmtUJvdc4AL5oQBsS1KIl808SbUgIA7BGJ8Hsy_yXrVd0-MqC0p8OWvY7wGIsSO4D6CDHPK6q28bxisBxBrRny-y-Mi2KYchU0cumSyMjdeggccFn0tow9hkKvSN-TqymEw3_k4rbQIGMmpxcjxZqia1XvxCBwFh8w9EYILvghqx1Bo7RJMVf_OGqlOADjQ6boDmuTHUeXPeADbgVkVQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLCAia2V5QXV0aG9yaXphdGlvbiI6ICJRNDIzY2tEQ2lCeFVpSXhXY0xTRGJIM1hDejB3cUV6ZXlCNGpuRVlwZWlnLk5CSXQ4MlYtc25GbUlmYTl6MjdRSHVPVUhhVXhPMnhoY1ZybEJvWG9sVFkifQ", "signature": "Mpxmt3YGafd8Kh0jlPHqQ0ANIMVoJR0vPZgm4jQo1hzD6i-_t1utdxCXftYrfndBwvWU9tozP90KQW0MBe4uyrFGI8jeAF0vhiYXp9CvHMJ2jedPMb9cFGlyu305EQF_zaCrfnGHZWcXqmNN9BTbO1MSXUO8iVyhe8f3iUmA860l8PzIgmYTIJivO3bXWZFkQgHD8yWq-tgS1lq45tBombE1GuWrsrIgEHabW4PcLZByyCka5_b-bJwY89WgxLyHfN4lFaTcGP7FUUkGfO5C_oOTPPfpNhS6pmo62w7Zd-fdQs2rRZTsdRcy9Y72nYEzg8utiwVAai4sgBcOKOvRUA"}'
[Tue Nov  1 10:46:14 UTC 2016] _CURL='curl -L --silent --dump-header /home/ubuntu/.acme.sh/http.header  --trace-ascii /tmp/tmp.4MBRAS6zVp '
[Tue Nov  1 10:46:14 UTC 2016] _ret='0'
[Tue Nov  1 10:46:14 UTC 2016] original='{
  "type": "http-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312",
  "token": "Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig",
  "keyAuthorization": "Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY"
}'
[Tue Nov  1 10:46:14 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 10:46:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 335
Boulder-Request-Id: wOqQZbHqIeRSwaJpU6_Ou2UyeLx1ZiWjnuPFCRD9L4A
Boulder-Requester: 5743115
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312
Replay-Nonce: UrRS7s4dtmhyS7vEhR46-v8lNq4RCecO9F-49JLbcMM
Expires: Tue, 01 Nov 2016 10:46:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 10:46:14 GMT
Connection: keep-alive
'
[Tue Nov  1 10:46:14 UTC 2016] response='{"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312","token":"Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig","keyAuthorization":"Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY"}'
[Tue Nov  1 10:46:14 UTC 2016] code='202'
[Tue Nov  1 10:46:14 UTC 2016] sleep 2 secs to verify
[Tue Nov  1 10:46:16 UTC 2016] checking
[Tue Nov  1 10:46:16 UTC 2016] GET
[Tue Nov  1 10:46:16 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312'
[Tue Nov  1 10:46:16 UTC 2016] timeout
[Tue Nov  1 10:46:16 UTC 2016] _CURL='curl -L --silent --dump-header /home/ubuntu/.acme.sh/http.header  --trace-ascii /tmp/tmp.D5kzCW9JJk '
[Tue Nov  1 10:46:16 UTC 2016] ret='0'
[Tue Nov  1 10:46:16 UTC 2016] original='{
  "type": "http-01",
  "status": "invalid",
  "error": {
    "type": "urn:acme:error:unauthorized",
    "detail": "Invalid response from http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p"",
    "status": 403
  },
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312",
  "token": "Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig",
  "keyAuthorization": "Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY",
  "validationRecord": [
    {
      "url": "http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig",
      "hostname": "xn--cck0bxhua0c.xyz",
      "port": "80",
      "addressesResolved": [
        "54.234.241.215"
      ],
      "addressUsed": "54.234.241.215"
    }
  ]
}'
[Tue Nov  1 10:46:16 UTC 2016] response='{"type":"http-01","status":"invalid","error":{"type":"urn:acme:error:unauthorized","detail":"Invalid response from http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p"","status": 403},"uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Z2cyz5WCVNz6cceLzJMbjA5zjOGHLycDqaW9VJhyDIg/321131312","token":"Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig","keyAuthorization":"Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig.NBIt82V-snFmIfa9z27QHuOUHaUxO2xhcVrlBoXolTY","validationRecord":[{"url":"http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig","hostname":"xn--cck0bxhua0c.xyz","port":"80","addressesResolved":["54.234.241.215"],"addressUsed":"54.234.241.215"}]}'
[Tue Nov  1 10:46:16 UTC 2016] error='"error":{"type":"urn:acme:error:unauthorized","detail":"Invalid response from http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig: '
[Tue Nov  1 10:46:16 UTC 2016] errordetail='Invalid response from http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig: '
[Tue Nov  1 10:46:16 UTC 2016] ジュリアン.xyz:Verify error:Invalid response from http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig:
[Tue Nov  1 10:46:16 UTC 2016] Debug: get token url.
[Tue Nov  1 10:46:16 UTC 2016] GET
[Tue Nov  1 10:46:16 UTC 2016] url='http://ジュリアン.xyz/.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig'
[Tue Nov  1 10:46:16 UTC 2016] timeout='1'
[Tue Nov  1 10:46:16 UTC 2016] _CURL='curl -L --silent --dump-header /home/ubuntu/.acme.sh/http.header  --trace-ascii /tmp/tmp.kLgTV8lEfQ  --connect-timeout 1'
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /.well-known/acme-challenge/Q423ckDCiBxUiIxWcLSDbH3XCz0wqEzeyB4jnEYpeig was not found on this server.</p>
<hr>
<address>Apache/2.4.18 (Ubuntu) Server at xn--cck0bxhua0c.xyz Port 80</address>
</body></html>
[Tue Nov  1 10:46:16 UTC 2016] ret='0'
[Tue Nov  1 10:46:16 UTC 2016] Skip for removelevel:
[Tue Nov  1 10:46:16 UTC 2016] pid
[Tue Nov  1 10:46:16 UTC 2016] _clearupdns
[Tue Nov  1 10:46:16 UTC 2016] Dns not added, skip.
[Tue Nov  1 10:46:16 UTC 2016] _on_issue_err
[Tue Nov  1 10:46:16 UTC 2016] Please use add '--debug' or '--log' to check more details.
[Tue Nov  1 10:46:16 UTC 2016] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh

Neilpang · 2016-11-01T11:10:28Z

if you want to use --apache mode, you must be root. Because only root user can interact with apache server.

Please do the following.

#change to root user
sudo su

#install acme.sh in root user home
curl https://get.acme.sh | sh

#issue the cert
/root/.acme.sh/acme.sh  --issue --apache -d ジュリアン.xyz -d 急ぎ.ジュリアン.xyz  --debug 2

julian45 · 2016-11-01T17:41:27Z

Command run as root:
/root/.acme.sh/acme.sh --issue --apache -d ジュリアン.xyz -d 急ぎ.ジュリアン.xyz --debug 2

Result:

[Tue Nov  1 17:36:17 UTC 2016] Lets find script dir.
[Tue Nov  1 17:36:17 UTC 2016] _SCRIPT_='/root/.acme.sh/acme.sh'
[Tue Nov  1 17:36:17 UTC 2016] _script='/root/.acme.sh/acme.sh'
[Tue Nov  1 17:36:17 UTC 2016] _script_home='/root/.acme.sh'
https://github.com/Neilpang/acme.sh
v2.6.3
[Tue Nov  1 17:36:17 UTC 2016] Using api:
[Tue Nov  1 17:36:17 UTC 2016] DOMAIN_PATH='/root/.acme.sh/ジュリアン.xyz'
[Tue Nov  1 17:36:17 UTC 2016] 1:Le_Domain='ジュリアン.xyz'
[Tue Nov  1 17:36:17 UTC 2016] 2:Le_Alt='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:17 UTC 2016] 3:Le_Webroot='apache'
[Tue Nov  1 17:36:17 UTC 2016] 4:Le_PreHook=''
[Tue Nov  1 17:36:17 UTC 2016] 5:Le_PostHook=''
[Tue Nov  1 17:36:17 UTC 2016] 6:Le_RenewHook=''
[Tue Nov  1 17:36:17 UTC 2016] options='s/^Le_LocalAddress.*$//'
[Tue Nov  1 17:36:17 UTC 2016] Using sed  -i
[Tue Nov  1 17:36:17 UTC 2016] 7:Le_API='https://acme-v01.api.letsencrypt.org'
[Tue Nov  1 17:36:17 UTC 2016] _on_before_issue
[Tue Nov  1 17:36:17 UTC 2016] 'apache' does not contain 'no'
[Tue Nov  1 17:36:17 UTC 2016] Le_LocalAddress
[Tue Nov  1 17:36:17 UTC 2016] Check for domain='ジュリアン.xyz'
[Tue Nov  1 17:36:17 UTC 2016] _currentRoot='apache'
[Tue Nov  1 17:36:17 UTC 2016] Check for domain='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:17 UTC 2016] _currentRoot='apache'
[Tue Nov  1 17:36:17 UTC 2016] 'apache' contains 'apache'
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using tcby45.xyz. Set the 'ServerName' directive globally to suppress this message
[Tue Nov  1 17:36:17 UTC 2016] httpdconfname='apache2.conf'
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using tcby45.xyz. Set the 'ServerName' directive globally to suppress this message
[Tue Nov  1 17:36:17 UTC 2016] httpdroot='/etc/apache2'
[Tue Nov  1 17:36:17 UTC 2016] httpdconf='/etc/apache2/apache2.conf'
[Tue Nov  1 17:36:17 UTC 2016] httpdconfname='apache2.conf'
[Tue Nov  1 17:36:17 UTC 2016] Checking if there is an error in the apache config file before starting.
[Tue Nov  1 17:36:18 UTC 2016] OK
[Tue Nov  1 17:36:18 UTC 2016] Backup apache config file='/etc/apache2/apache2.conf'
[Tue Nov  1 17:36:18 UTC 2016] JFYI, Config file /etc/apache2/apache2.conf is backuped to /root/.acme.sh/apache2.conf
[Tue Nov  1 17:36:18 UTC 2016] In case there is an error that can not be restored automatically, you may try restore it yourself.
[Tue Nov  1 17:36:18 UTC 2016] The backup file will be deleted on sucess, just forget it.
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using tcby45.xyz. Set the 'ServerName' directive globally to suppress this message
[Tue Nov  1 17:36:18 UTC 2016] apacheVer='2.4.18'
[Tue Nov  1 17:36:18 UTC 2016] config file is empty, can not read CA_KEY_HASH
[Tue Nov  1 17:36:18 UTC 2016] _saved_account_key_hash
[Tue Nov  1 17:36:18 UTC 2016] Creating account key
[Tue Nov  1 17:36:18 UTC 2016] Use default length 2048
[Tue Nov  1 17:36:18 UTC 2016] length='2048'
[Tue Nov  1 17:36:18 UTC 2016] Use length 2048
[Tue Nov  1 17:36:18 UTC 2016] Using RSA: 2048
[Tue Nov  1 17:36:18 UTC 2016] RSA key
[Tue Nov  1 17:36:18 UTC 2016] AGREEMENT
[Tue Nov  1 17:36:18 UTC 2016] Registering account
[Tue Nov  1 17:36:18 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-reg'
[Tue Nov  1 17:36:18 UTC 2016] payload='{"resource": "new-reg", "agreement": ""}'
[Tue Nov  1 17:36:18 UTC 2016] Use cached jwk for file: /root/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 17:36:18 UTC 2016] Get nonce.
[Tue Nov  1 17:36:18 UTC 2016] GET
[Tue Nov  1 17:36:18 UTC 2016] url='https://acme-v01.api.letsencrypt.org/directory'
[Tue Nov  1 17:36:18 UTC 2016] timeout
[Tue Nov  1 17:36:18 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.R5ZoR5wzpj '
[Tue Nov  1 17:36:19 UTC 2016] ret='0'
[Tue Nov  1 17:36:19 UTC 2016] POST
[Tue Nov  1 17:36:19 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-reg'
[Tue Nov  1 17:36:19 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJuZXctcmVnIiwgImFncmVlbWVudCI6ICIifQ", "signature": "j9OVYHJLgJzYzuPjSvHqq8sWTApBj6z-RPTkuMSp6FQsrqOWi_BiE29LT4d3Ldq4ikXwkklNxTkuZdyYCzDY4R6z3-YFDEN16xnvJcFziUDGlS9wEEGEI5mp_T7RMjqu9q52kCH8JGmZLuu40yKVWwFDqyAs3znf3SOJCdVmpbFfxBgiNohTkxHjtAxzo36P5zOsgdlmRSRFgbTztD51LjlJ53HT2bvKCeAcktnqlGT42TPDfhXOogrGn6iDPYk1ReQ9Yr21psFQgp3BqK_mrd1UZK1WGU5h6tr9V1Hsub5qUX02RdrrQKXp0MP8MQ-5IR3kCuabtCGuPLOveJPw1w"}'
[Tue Nov  1 17:36:19 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.ntXTfslhSb '
[Tue Nov  1 17:36:20 UTC 2016] _ret='0'
[Tue Nov  1 17:36:20 UTC 2016] original='{
  "id": 5765913,
  "key": {
    "kty": "RSA",
    "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ",
    "e": "AQAB"
  },
  "contact": [],
  "initialIp": "54.234.241.215",
  "createdAt": "2016-11-01T17:36:19.976216087Z",
  "Status": ""
}'
[Tue Nov  1 17:36:20 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 17:36:19 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 201 Created
Server: nginx
Content-Type: application/json
Content-Length: 539
Boulder-Request-Id: BrT05Iq94p0rGhe5TzOXZBlmr9LTEz-_u5NF-bBHBPo
Boulder-Requester: 5765913
Link: <https://acme-v01.api.letsencrypt.org/acme/new-authz>;rel="next"
Link: <https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf>;rel="terms-of-service"
Location: https://acme-v01.api.letsencrypt.org/acme/reg/5765913
Replay-Nonce: zyCa6wfGolCp5_dckKex9DFQIjeCF2uayj69izgoLVo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 01 Nov 2016 17:36:20 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 17:36:20 GMT
Connection: keep-alive
'
[Tue Nov  1 17:36:20 UTC 2016] response='{"id": 5765913,"key":{"kty":"RSA","n":"pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ","e":"AQAB"},"contact":[],"initialIp":"54.234.241.215","createdAt":"2016-11-01T17:36:19.976216087Z","Status":""}'
[Tue Nov  1 17:36:20 UTC 2016] code='201'
[Tue Nov  1 17:36:20 UTC 2016] Registered
[Tue Nov  1 17:36:20 UTC 2016] _accUri='https://acme-v01.api.letsencrypt.org/acme/reg/5765913'
[Tue Nov  1 17:36:20 UTC 2016] _tos='https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'
[Tue Nov  1 17:36:20 UTC 2016] AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'
[Tue Nov  1 17:36:20 UTC 2016] Update tos: https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf
[Tue Nov  1 17:36:20 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/reg/5765913'
[Tue Nov  1 17:36:20 UTC 2016] payload='{"resource": "reg", "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf"}'
[Tue Nov  1 17:36:20 UTC 2016] Use cached jwk for file: /root/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 17:36:20 UTC 2016] Use _CACHED_NONCE='zyCa6wfGolCp5_dckKex9DFQIjeCF2uayj69izgoLVo'
[Tue Nov  1 17:36:20 UTC 2016] POST
[Tue Nov  1 17:36:20 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/reg/5765913'
[Tue Nov  1 17:36:20 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJyZWciLCAiYWdyZWVtZW50IjogImh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL2RvY3VtZW50cy9MRS1TQS12MS4xLjEtQXVndXN0LTEtMjAxNi5wZGYifQ", "signature": "FJPk_MQ7CKmXCMSiZe83DpjTvJjVeXMwjuCosyZgRKzwutMyUXWVGBMcHvwIz1X6xyeukKZBCYXjDES9oRbBMl2hDaAVDxNBTjnJr5_ORtQQnoVZ2THmDZeKP4DOFbHIgz9q7BSRGIfNwBNWCZ3B1yrS2SvwyO6424S8OTQItz4GGXD9I8qn4TD9eqYR-Zv1WZg0GBgXjmnyxCUkWXtqjbYNE3Hru9pC6io52tRSujm_hoQU0TKpRvQOXqskW2GRV7UTI0iYxFHpcnb6nysjYYFBfWtwjlToDRYdczSNNn_hU99W2Trk0wPoWbjMsJBDOBziqMmLxww4lpU_aw5ExA"}'
[Tue Nov  1 17:36:20 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.zrQz7Tl2mC '
[Tue Nov  1 17:36:20 UTC 2016] _ret='0'
[Tue Nov  1 17:36:20 UTC 2016] original='{
  "id": 5765913,
  "key": {
    "kty": "RSA",
    "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ",
    "e": "AQAB"
  },
  "contact": [],
  "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf",
  "initialIp": "54.234.241.215",
  "createdAt": "2016-11-01T17:36:19Z",
  "Status": ""
}'
[Tue Nov  1 17:36:20 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 17:36:20 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 612
Boulder-Request-Id: cYeFAAGcwy4twXtMUP5URV56-IhKMI6dr6DA71qAdLs
Boulder-Requester: 5765913
Link: <https://acme-v01.api.letsencrypt.org/acme/new-authz>;rel="next"
Link: <https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf>;rel="terms-of-service"
Replay-Nonce: hJz0lw-Epxdvq5ivUKvzj8_0VekMtKkJIWsL-VJ4WX4
Expires: Tue, 01 Nov 2016 17:36:20 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 17:36:20 GMT
Connection: keep-alive
'
[Tue Nov  1 17:36:20 UTC 2016] response='{"id": 5765913,"key":{"kty":"RSA","n":"pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ","e":"AQAB"},"contact":[],"agreement":"https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf","initialIp":"54.234.241.215","createdAt":"2016-11-01T17:36:19Z","Status":""}'
[Tue Nov  1 17:36:20 UTC 2016] code='202'
[Tue Nov  1 17:36:20 UTC 2016] Update success.
[Tue Nov  1 17:36:20 UTC 2016] Calc CA_KEY_HASH='9eHqjsexG8NYmIOLZlIdQgyrsIf3Fm9QDGNp3K+5WU4='
[Tue Nov  1 17:36:20 UTC 2016] 1:CA_KEY_HASH='9eHqjsexG8NYmIOLZlIdQgyrsIf3Fm9QDGNp3K+5WU4='
[Tue Nov  1 17:36:20 UTC 2016] Read key length:
[Tue Nov  1 17:36:20 UTC 2016] Creating domain key
[Tue Nov  1 17:36:20 UTC 2016] Use length 2048
[Tue Nov  1 17:36:20 UTC 2016] Using RSA: 2048
[Tue Nov  1 17:36:20 UTC 2016] _createcsr
[Tue Nov  1 17:36:20 UTC 2016] domain='ジュリアン.xyz'
[Tue Nov  1 17:36:20 UTC 2016] domainlist='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:20 UTC 2016] csrkey='/root/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.key'
[Tue Nov  1 17:36:20 UTC 2016] csr='/root/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.csr'
[Tue Nov  1 17:36:20 UTC 2016] csrconf='/root/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.csr.conf'
[Tue Nov  1 17:36:20 UTC 2016] _is_idn_d='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:20 UTC 2016] _idn_temp='急ぎジュリアン'
[Tue Nov  1 17:36:20 UTC 2016] domainlist='xn--x8j435l.xn--cck0bxhua0c.xyz'
[Tue Nov  1 17:36:20 UTC 2016] Multi domain='DNS:xn--x8j435l.xn--cck0bxhua0c.xyz'
[Tue Nov  1 17:36:20 UTC 2016] _is_idn_d='ジュリアン.xyz'
[Tue Nov  1 17:36:20 UTC 2016] _idn_temp='ジュリアン'
[Tue Nov  1 17:36:20 UTC 2016] _csr_cn='xn--cck0bxhua0c.xyz'
[Tue Nov  1 17:36:20 UTC 2016] 8:Le_Keylength=''
[Tue Nov  1 17:36:20 UTC 2016] Getting domain auth token for each domain
[Tue Nov  1 17:36:20 UTC 2016] Getting webroot for domain='ジュリアン.xyz'
[Tue Nov  1 17:36:20 UTC 2016] _w='apache'
[Tue Nov  1 17:36:20 UTC 2016] _currentRoot='apache'
[Tue Nov  1 17:36:20 UTC 2016] Getting new-authz for domain='ジュリアン.xyz'
[Tue Nov  1 17:36:20 UTC 2016] Try new-authz for the 0 time.
[Tue Nov  1 17:36:20 UTC 2016] _is_idn_d='ジュリアン.xyz'
[Tue Nov  1 17:36:20 UTC 2016] _idn_temp='ジュリアン'
[Tue Nov  1 17:36:20 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 17:36:20 UTC 2016] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "xn--cck0bxhua0c.xyz"}}'
[Tue Nov  1 17:36:20 UTC 2016] Use cached jwk for file: /root/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 17:36:20 UTC 2016] Use _CACHED_NONCE='hJz0lw-Epxdvq5ivUKvzj8_0VekMtKkJIWsL-VJ4WX4'
[Tue Nov  1 17:36:20 UTC 2016] POST
[Tue Nov  1 17:36:20 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 17:36:20 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJuZXctYXV0aHoiLCAiaWRlbnRpZmllciI6IHsidHlwZSI6ICJkbnMiLCAidmFsdWUiOiAieG4tLWNjazBieGh1YTBjLnh5eiJ9fQ", "signature": "Iv_JM_hQGrBDdKoWnk2mZ-mLF8fy8yChjOzoIpYnDgcDDjUyfQ1Mye_CrFstNl2yYVru1TSk6pVvSOMRQahqcJp0DPIIEqnBbgxTk2qW2SJUy5cUgwtS-2dVCMeUMoc5GQZyJEzAaQco9KcHxsAO4keHkNhvxa8LwBMp3liIYFylAwniFgI2aj9z-Px7uNj1B1edoKZzrzJJ9tl-uJzE2K1Y3fT51t5tEKA6iezqLzQl_uQy8AwiPO7P8aeCoioA_d3qBE9u56t1Rdxml3h6e2sdK8lD5dWBS8R2aEZb4epZuaU54a7yx_Q9hwlEogPp0GA8PQRLPUSH4uedcIktYA"}'
[Tue Nov  1 17:36:20 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.nGUhPx1AKz '
[Tue Nov  1 17:36:21 UTC 2016] _ret='0'
[Tue Nov  1 17:36:21 UTC 2016] original='{
  "identifier": {
    "type": "dns",
    "value": "xn--cck0bxhua0c.xyz"
  },
  "status": "pending",
  "expires": "2016-11-08T17:36:21.217235309Z",
  "challenges": [
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462230",
      "token": "8IPVLAx0TMlGYxQG7ozLNU6vUuUS9DPkZmXAlMNBhrc"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462231",
      "token": "r4NxoGOI0B_qcxHeINaGV6xTh2x8JXZSuDwbrMlbmU0"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232",
      "token": "ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      2
    ],
    [
      0
    ]
  ]
}'
[Tue Nov  1 17:36:21 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 17:36:21 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 201 Created
Server: nginx
Content-Type: application/json
Content-Length: 1004
Boulder-Request-Id: SnGgVLKMHbXqvOuXCGWLCaNwZ0UAUp_kYCZewa4s39w
Boulder-Requester: 5765913
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0
Replay-Nonce: LC_eO1hAJpf4T_Q08xAMP7sRdNWG0yN_R-wOqqFmyrk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 01 Nov 2016 17:36:21 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 17:36:21 GMT
Connection: keep-alive
'
[Tue Nov  1 17:36:21 UTC 2016] response='{"identifier":{"type":"dns","value":"xn--cck0bxhua0c.xyz"},"status":"pending","expires":"2016-11-08T17:36:21.217235309Z","challenges":[{"type":"dns-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462230","token":"8IPVLAx0TMlGYxQG7ozLNU6vUuUS9DPkZmXAlMNBhrc"},{"type":"tls-sni-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462231","token":"r4NxoGOI0B_qcxHeINaGV6xTh2x8JXZSuDwbrMlbmU0"},{"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232","token":"ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU"}],"combinations":[[1],[2],[0]]}'
[Tue Nov  1 17:36:21 UTC 2016] code='201'
[Tue Nov  1 17:36:21 UTC 2016] The new-authz request is ok.
[Tue Nov  1 17:36:21 UTC 2016] entry='"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232","token":"ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU"'
[Tue Nov  1 17:36:21 UTC 2016] token='ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU'
[Tue Nov  1 17:36:21 UTC 2016] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232'
[Tue Nov  1 17:36:21 UTC 2016] keyauthorization='ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI'
[Tue Nov  1 17:36:21 UTC 2016] dvlist='ジュリアン.xyz#ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI#https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232#http-01#apache'
[Tue Nov  1 17:36:21 UTC 2016] Getting webroot for domain='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:21 UTC 2016] _w='apache'
[Tue Nov  1 17:36:21 UTC 2016] _currentRoot='apache'
[Tue Nov  1 17:36:21 UTC 2016] Getting new-authz for domain='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:21 UTC 2016] Try new-authz for the 0 time.
[Tue Nov  1 17:36:21 UTC 2016] _is_idn_d='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:21 UTC 2016] _idn_temp='急ぎジュリアン'
[Tue Nov  1 17:36:21 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 17:36:21 UTC 2016] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "xn--x8j435l.xn--cck0bxhua0c.xyz"}}'
[Tue Nov  1 17:36:21 UTC 2016] Use cached jwk for file: /root/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 17:36:21 UTC 2016] Use _CACHED_NONCE='LC_eO1hAJpf4T_Q08xAMP7sRdNWG0yN_R-wOqqFmyrk'
[Tue Nov  1 17:36:21 UTC 2016] POST
[Tue Nov  1 17:36:21 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Tue Nov  1 17:36:21 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJuZXctYXV0aHoiLCAiaWRlbnRpZmllciI6IHsidHlwZSI6ICJkbnMiLCAidmFsdWUiOiAieG4tLXg4ajQzNWwueG4tLWNjazBieGh1YTBjLnh5eiJ9fQ", "signature": "KJdVHYZFQ2rixL436TmBcXzgiAalngsrNv5b6Du_dONcQ5OcPk-SrCO2LGrPWZABk93OiIew5uJtGoDXIl5waXJZiK7kLRPukMjtuhxcP8W-CWtG2ld0G3ih6tbkqo51leE0D0kBLImBdCAwAnR1ITKo0-ruK2e7QzEhQBA4rm-xMqV9rAxTJsaLy10Q2UMt00B_lu9OMz3V7kftdqWLypu9F6Ig6_YZVkKfhAVQJ7IkDSH2nfYNRf5g18UXwfznqpJe49Wuk-noejby2fOYtKbH7ZlzJYB89NWFz_nn6gjfnDqN-0LYxy2ut0AwB3a0lRbOQMt4dqw0-gM45o-h2w"}'
[Tue Nov  1 17:36:21 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.9VYOdEQTr8 '
[Tue Nov  1 17:36:22 UTC 2016] _ret='0'
[Tue Nov  1 17:36:22 UTC 2016] original='{
  "identifier": {
    "type": "dns",
    "value": "xn--x8j435l.xn--cck0bxhua0c.xyz"
  },
  "status": "pending",
  "expires": "2016-11-08T17:36:21.936052812Z",
  "challenges": [
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462248",
      "token": "BCHfkl_iKogN6XCJsVHF3AFxaqixBM2x8vNfJgMYttA"
    },
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249",
      "token": "nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462250",
      "token": "edtaQRh8D1DhBq7Eo1ZlouAA3_SEUj7mHO5FYBPQT3Q"
    }
  ],
  "combinations": [
    [
      2
    ],
    [
      0
    ],
    [
      1
    ]
  ]
}'
[Tue Nov  1 17:36:22 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 17:36:21 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 201 Created
Server: nginx
Content-Type: application/json
Content-Length: 1016
Boulder-Request-Id: 8uoFJzO5ViV8nvzwegvIuCjtXif_424dBV8-XekM54E
Boulder-Requester: 5765913
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg
Replay-Nonce: rgyuYcclS38tvqFpzlFnv3qMmT4IK46bZLRyUTsz7QE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Tue, 01 Nov 2016 17:36:22 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 17:36:22 GMT
Connection: keep-alive
'
[Tue Nov  1 17:36:22 UTC 2016] response='{"identifier":{"type":"dns","value":"xn--x8j435l.xn--cck0bxhua0c.xyz"},"status":"pending","expires":"2016-11-08T17:36:21.936052812Z","challenges":[{"type":"tls-sni-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462248","token":"BCHfkl_iKogN6XCJsVHF3AFxaqixBM2x8vNfJgMYttA"},{"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249","token":"nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q"},{"type":"dns-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462250","token":"edtaQRh8D1DhBq7Eo1ZlouAA3_SEUj7mHO5FYBPQT3Q"}],"combinations":[[2],[0],[1]]}'
[Tue Nov  1 17:36:22 UTC 2016] code='201'
[Tue Nov  1 17:36:22 UTC 2016] The new-authz request is ok.
[Tue Nov  1 17:36:22 UTC 2016] entry='"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249","token":"nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q"'
[Tue Nov  1 17:36:22 UTC 2016] token='nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q'
[Tue Nov  1 17:36:22 UTC 2016] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249'
[Tue Nov  1 17:36:22 UTC 2016] keyauthorization='nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI'
[Tue Nov  1 17:36:22 UTC 2016] dvlist='急ぎ.ジュリアン.xyz#nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI#https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249#http-01#apache'
[Tue Nov  1 17:36:22 UTC 2016] ok, let's start to verify
[Tue Nov  1 17:36:22 UTC 2016] Verifying:ジュリアン.xyz
[Tue Nov  1 17:36:22 UTC 2016] d='ジュリアン.xyz'
[Tue Nov  1 17:36:22 UTC 2016] keyauthorization='ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI'
[Tue Nov  1 17:36:22 UTC 2016] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232'
[Tue Nov  1 17:36:22 UTC 2016] _currentRoot='apache'
[Tue Nov  1 17:36:22 UTC 2016] wellknown_path='/home/.acme'
[Tue Nov  1 17:36:22 UTC 2016] writing token:ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU to /home/.acme/ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU
[Tue Nov  1 17:36:22 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232'
[Tue Nov  1 17:36:22 UTC 2016] payload='{"resource": "challenge", "keyAuthorization": "ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI"}'
[Tue Nov  1 17:36:22 UTC 2016] Use cached jwk for file: /root/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 17:36:22 UTC 2016] Use _CACHED_NONCE='rgyuYcclS38tvqFpzlFnv3qMmT4IK46bZLRyUTsz7QE'
[Tue Nov  1 17:36:22 UTC 2016] POST
[Tue Nov  1 17:36:22 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232'
[Tue Nov  1 17:36:22 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLCAia2V5QXV0aG9yaXphdGlvbiI6ICJpeG95UVY2VVFhQkFVdldiZmpFRWtsUTF0a2VXLXphRUkzZGFGYzRXN3NVLk9qNmJOQnpJMXVoQ2FwYWdXaVJaRk1sbjluNDVGTk1uSWJwRUNyMUJGcEkifQ", "signature": "f8DtfM3zIDPhgqC4bu65qDaKJfA280A6b0lHTdXREQBEN1qgRM4oHzuw-WLXvLn80LqcZoo4f2KZVwmiNHpQfmu1LR0uYzwsaeBXPO3VHT2Y5uabpbaC98UOTslErfx_Xu6CNlA0xQaCb9ERsPw2hei0Tg63-9oYOdBlBTB4mNdrh3Cf32QYIecTWLd6pToMemUdA-gKTB5ew_qOSy4tY4QKSXBFIzf4AMEavqlCi_3nEffwyEERp0yumpW6bXIQOHscK2LJ4SiuVkzUAl8QblvJ_ws7bTCirhcLgm6Cu9i5qvRp6N16ozIAe3Rr2SuP1hT31QwvZxupsHWmXs_unQ"}'
[Tue Nov  1 17:36:22 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.YoXTm2kWUP '
[Tue Nov  1 17:36:22 UTC 2016] _ret='0'
[Tue Nov  1 17:36:22 UTC 2016] original='{
  "type": "http-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232",
  "token": "ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU",
  "keyAuthorization": "ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI"
}'
[Tue Nov  1 17:36:22 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 17:36:22 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 335
Boulder-Request-Id: PrB0MvrS9f1fPqaWFObTnl5HhEPRU40rLHdwrwNSGVw
Boulder-Requester: 5765913
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232
Replay-Nonce: rz_a7o5Ki31cOL88_co2JXtHBiunQn3DeYUX3dfQATM
Expires: Tue, 01 Nov 2016 17:36:22 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 17:36:22 GMT
Connection: keep-alive
'
[Tue Nov  1 17:36:22 UTC 2016] response='{"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232","token":"ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU","keyAuthorization":"ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI"}'
[Tue Nov  1 17:36:22 UTC 2016] code='202'
[Tue Nov  1 17:36:22 UTC 2016] sleep 2 secs to verify
[Tue Nov  1 17:36:24 UTC 2016] checking
[Tue Nov  1 17:36:24 UTC 2016] GET
[Tue Nov  1 17:36:24 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232'
[Tue Nov  1 17:36:24 UTC 2016] timeout
[Tue Nov  1 17:36:24 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.cupOVM6zV2 '
[Tue Nov  1 17:36:24 UTC 2016] ret='0'
[Tue Nov  1 17:36:24 UTC 2016] original='{
  "type": "http-01",
  "status": "valid",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232",
  "token": "ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU",
  "keyAuthorization": "ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI",
  "validationRecord": [
    {
      "url": "http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU",
      "hostname": "xn--cck0bxhua0c.xyz",
      "port": "80",
      "addressesResolved": [
        "54.234.241.215"
      ],
      "addressUsed": "54.234.241.215"
    }
  ]
}'
[Tue Nov  1 17:36:24 UTC 2016] response='{"type":"http-01","status":"valid","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/j2c8vs8lhb_oUQpUlWSq1d98tupf6TAgwkGeiM1YOd0/321462232","token":"ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU","keyAuthorization":"ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI","validationRecord":[{"url":"http://xn--cck0bxhua0c.xyz/.well-known/acme-challenge/ixoyQV6UQaBAUvWbfjEEklQ1tkeW-zaEI3daFc4W7sU","hostname":"xn--cck0bxhua0c.xyz","port":"80","addressesResolved":["54.234.241.215"],"addressUsed":"54.234.241.215"}]}'
[Tue Nov  1 17:36:24 UTC 2016] Success
[Tue Nov  1 17:36:24 UTC 2016] pid
[Tue Nov  1 17:36:24 UTC 2016] Skip for removelevel:
[Tue Nov  1 17:36:24 UTC 2016] Verifying:急ぎ.ジュリアン.xyz
[Tue Nov  1 17:36:24 UTC 2016] d='急ぎ.ジュリアン.xyz'
[Tue Nov  1 17:36:24 UTC 2016] keyauthorization='nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI'
[Tue Nov  1 17:36:24 UTC 2016] uri='https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249'
[Tue Nov  1 17:36:24 UTC 2016] _currentRoot='apache'
[Tue Nov  1 17:36:24 UTC 2016] wellknown_path='/home/.acme'
[Tue Nov  1 17:36:24 UTC 2016] writing token:nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q to /home/.acme/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q
[Tue Nov  1 17:36:24 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249'
[Tue Nov  1 17:36:24 UTC 2016] payload='{"resource": "challenge", "keyAuthorization": "nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI"}'
[Tue Nov  1 17:36:24 UTC 2016] Use cached jwk for file: /root/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Tue Nov  1 17:36:24 UTC 2016] Use _CACHED_NONCE='rz_a7o5Ki31cOL88_co2JXtHBiunQn3DeYUX3dfQATM'
[Tue Nov  1 17:36:24 UTC 2016] POST
[Tue Nov  1 17:36:24 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249'
[Tue Nov  1 17:36:24 UTC 2016] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "pWq3WmRz2RpHu2ZiZoqHK7RLH-y5rNg6YbVHKXfrTu7vdvjnxGayGZ8hVvSYhqeJ4lHn7kJHtHx_Fz4o_u5nIaD1-cCsrzx2ibSAm8QuJSUukC3hzSPttQvGjlq_wv3YENUYNv3h1vDs8fGlKxoaNiLiatW90tBdcyuiNeW9ypn-iwEZoxqxmUbtVDZREFmtfUhXZ92KBgHze3P7WaO3HM4HjUXBCQh1HyeHLUQiFR94fBg6zrwjjss5CScDYFLgwmEbiH-1nNNNRhyA9LjYgmvk4XvMbClRjEDmnMSp6y-Q-oxnqBGFQrX0DZLzzFJrYAsqngSShd4PBQXCcTCCPQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLCAia2V5QXV0aG9yaXphdGlvbiI6ICJuVGgyWHBpbGlRRUdtekZQTzN4MngzekpZTDRXdGRZQ3haaXpUMEgwU19RLk9qNmJOQnpJMXVoQ2FwYWdXaVJaRk1sbjluNDVGTk1uSWJwRUNyMUJGcEkifQ", "signature": "IKk_T-aM0z2Us1OQ62A3MrI04a7dK865ZlWnst5JWc83pufCG38eGStAuS0kqUezGPgPIyby5-LZyp_0tk8pOZ8iOcZmOhcWV3TJp7gU8-FTaE-wFeU2tVQ_iNnrnuHjiwTAHLjIqEGiwL2lwEc5fh0vBSSR9mTt-wfrnZC4fbXpetK-ipEc1tcqJx6P7uDy48B0jVkjMeBuGcIp4mSKj3jgyHF2itjpb5T5Mv0GGKfmT_G1WB6x1K0rz6KSLs2wj9cRx8d0ZjYlQwpXzmmvqYUGc4GVHyjeEHFkVxGcqYPhpZgunP5Ar6d2Z6PfE94uvIvVMGyd2OQoMBL_cbpOKA"}'
[Tue Nov  1 17:36:24 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.6ZlGvhXHJ8 '
[Tue Nov  1 17:36:25 UTC 2016] _ret='0'
[Tue Nov  1 17:36:25 UTC 2016] original='{
  "type": "http-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249",
  "token": "nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q",
  "keyAuthorization": "nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI"
}'
[Tue Nov  1 17:36:25 UTC 2016] responseHeaders='HTTP/1.1 100 Continue
Expires: Tue, 01 Nov 2016 17:36:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 202 Accepted
Server: nginx
Content-Type: application/json
Content-Length: 335
Boulder-Request-Id: zi7bn-rWHuWXqhZJwDRAPDUkS5KC3MnfnSHo9tq8Oyc
Boulder-Requester: 5765913
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249
Replay-Nonce: XTj1aKOiBJ3Ha4IHaFM50mKj3CzVL01vJoTnA8Vd7JU
Expires: Tue, 01 Nov 2016 17:36:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 01 Nov 2016 17:36:25 GMT
Connection: keep-alive
'
[Tue Nov  1 17:36:25 UTC 2016] response='{"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249","token":"nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q","keyAuthorization":"nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI"}'
[Tue Nov  1 17:36:25 UTC 2016] code='202'
[Tue Nov  1 17:36:25 UTC 2016] sleep 2 secs to verify
[Tue Nov  1 17:36:27 UTC 2016] checking
[Tue Nov  1 17:36:27 UTC 2016] GET
[Tue Nov  1 17:36:27 UTC 2016] url='https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249'
[Tue Nov  1 17:36:27 UTC 2016] timeout
[Tue Nov  1 17:36:27 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.jk9mrc5tzE '
[Tue Nov  1 17:36:27 UTC 2016] ret='0'
[Tue Nov  1 17:36:27 UTC 2016] original='{
  "type": "http-01",
  "status": "invalid",
  "error": {
    "type": "urn:acme:error:unauthorized",
    "detail": "Invalid response from http://xn--x8j435l.xn--cck0bxhua0c.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q [54.234.241.215]: 403",
    "status": 403
  },
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249",
  "token": "nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q",
  "keyAuthorization": "nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI",
  "validationRecord": [
    {
      "url": "http://xn--x8j435l.xn--cck0bxhua0c.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q",
      "hostname": "xn--x8j435l.xn--cck0bxhua0c.xyz",
      "port": "80",
      "addressesResolved": [
        "54.234.241.215"
      ],
      "addressUsed": "54.234.241.215"
    }
  ]
}'
[Tue Nov  1 17:36:27 UTC 2016] response='{"type":"http-01","status":"invalid","error":{"type":"urn:acme:error:unauthorized","detail":"Invalid response from http://xn--x8j435l.xn--cck0bxhua0c.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q [54.234.241.215]: 403","status": 403},"uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/Y0rJiQUDrSTQH7W51ULA8kEEjYRdsR1W2FaQ7wk7jAg/321462249","token":"nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q","keyAuthorization":"nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q.Oj6bNBzI1uhCapagWiRZFMln9n45FNMnIbpECr1BFpI","validationRecord":[{"url":"http://xn--x8j435l.xn--cck0bxhua0c.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q","hostname":"xn--x8j435l.xn--cck0bxhua0c.xyz","port":"80","addressesResolved":["54.234.241.215"],"addressUsed":"54.234.241.215"}]}'
[Tue Nov  1 17:36:27 UTC 2016] error='"error":{"type":"urn:acme:error:unauthorized","detail":"Invalid response from http://xn--x8j435l.xn--cck0bxhua0c.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q [54.234.241.215]: 403","status": 403'
[Tue Nov  1 17:36:27 UTC 2016] errordetail='Invalid response from http://xn--x8j435l.xn--cck0bxhua0c.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q [54.234.241.215]: 403'
[Tue Nov  1 17:36:27 UTC 2016] 急ぎ.ジュリアン.xyz:Verify error:Invalid response from http://xn--x8j435l.xn--cck0bxhua0c.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q [54.234.241.215]: 403
[Tue Nov  1 17:36:27 UTC 2016] Debug: get token url.
[Tue Nov  1 17:36:27 UTC 2016] GET
[Tue Nov  1 17:36:27 UTC 2016] url='http://急ぎ.ジュリアン.xyz/.well-known/acme-challenge/nTh2XpiliQEGmzFPO3x2x3zJYL4WtdYCxZizT0H0S_Q'
[Tue Nov  1 17:36:27 UTC 2016] timeout='1'
[Tue Nov  1 17:36:27 UTC 2016] _CURL='curl -L --silent --dump-header /root/.acme.sh/http.header  --trace-ascii /tmp/tmp.5SP30iAwy2  --connect-timeout 1'
Forbidden[Tue Nov  1 17:36:27 UTC 2016] ret='0'
[Tue Nov  1 17:36:27 UTC 2016] Skip for removelevel:
[Tue Nov  1 17:36:27 UTC 2016] pid
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using tcby45.xyz. Set the 'ServerName' directive globally to suppress this message
[Tue Nov  1 17:36:27 UTC 2016] httpdconfname='apache2.conf'
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using tcby45.xyz. Set the 'ServerName' directive globally to suppress this message
[Tue Nov  1 17:36:27 UTC 2016] httpdroot='/etc/apache2'
[Tue Nov  1 17:36:27 UTC 2016] httpdconf='/etc/apache2/apache2.conf'
[Tue Nov  1 17:36:27 UTC 2016] httpdconfname='apache2.conf'
[Tue Nov  1 17:36:27 UTC 2016] Restored: /etc/apache2/apache2.conf.
[Tue Nov  1 17:36:27 UTC 2016] Restored successfully.
[Tue Nov  1 17:36:27 UTC 2016] _clearupdns
[Tue Nov  1 17:36:27 UTC 2016] Dns not added, skip.
[Tue Nov  1 17:36:27 UTC 2016] _on_issue_err
[Tue Nov  1 17:36:27 UTC 2016] Please use add '--debug' or '--log' to check more details.
[Tue Nov  1 17:36:27 UTC 2016] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh

julian45 · 2016-11-01T21:09:16Z

It looks like everything went somewhat fine (from what I can tell) until about 17:36:25. Anything you can get from this?

Neilpang · 2016-11-02T01:23:59Z

@tcby45

Yes, your second domain 急ぎ.ジュリアン.xyz is not pointing to the same server as the first one.

So, it can not be verified.

You must point both the 2 domains to the same server, and then run acme.sh on the server to verify the domain.

Otherwise, you must use cloudlfare dns api mode, it can verify domains pointing to any servers.

julian45 · 2016-11-02T10:43:18Z

Straight from my terminal:

ubuntu ~ $ dig +short xn--cck0bxhua0c.xyz && dig +short xn--x8j435l.xn--cck0bxhua0c.xyz # yes, this is the correct punycode, last I checked
54.234.241.215
54.234.241.215

Neilpang · 2016-11-02T11:38:58Z

can you please show the config file:

/etc/apache2/apache2.conf

julian45 · 2016-11-02T15:41:24Z

# This is the main Apache server configuration file.  It contains the
# configuration directives that give the server its instructions.
# See http://httpd.apache.org/docs/2.4/ for detailed information about
# the directives and /usr/share/doc/apache2/README.Debian about Debian specific
# hints.
#
#
# Summary of how the Apache 2 configuration works in Debian:
# The Apache 2 web server configuration in Debian is quite different to
# upstream's suggested way to configure the web server. This is because Debian's
# default Apache2 installation attempts to make adding and removing modules,
# virtual hosts, and extra configuration directives as flexible as possible, in
# order to make automating the changes and administering the server as easy as
# possible.

# It is split into several files forming the configuration hierarchy outlined
# below, all located in the /etc/apache2/ directory:
#
#   /etc/apache2/
#   |-- apache2.conf
#   |   `--  ports.conf
#   |-- mods-enabled
#   |   |-- *.load
#   |   `-- *.conf
#   |-- conf-enabled
#   |   `-- *.conf
#   `-- sites-enabled
#       `-- *.conf
#
#
# * apache2.conf is the main configuration file (this file). It puts the pieces
#   together by including all remaining configuration files when starting up the
#   web server.
#
# * ports.conf is always included from the main configuration file. It is
#   supposed to determine listening ports for incoming connections which can be
#   customized anytime.
#
# * Configuration files in the mods-enabled/, conf-enabled/ and sites-enabled/
#   directories contain particular configuration snippets which manage modules,
#   global configuration fragments, or virtual host configurations,
#   respectively.
#
#   They are activated by symlinking available configuration files from their
#   respective *-available/ counterparts. These should be managed by using our
#   helpers a2enmod/a2dismod, a2ensite/a2dissite and a2enconf/a2disconf. See
#   their respective man pages for detailed information.
#
# * The binary is called apache2. Due to the use of environment variables, in
#   the default configuration, apache2 needs to be started/stopped with
#   /etc/init.d/apache2 or apache2ctl. Calling /usr/bin/apache2 directly will not
#   work with the default configuration.


# Global configuration
#

#
# ServerRoot: The top of the directory tree under which the server's
# configuration, error, and log files are kept.
#
# NOTE!  If you intend to place this on an NFS (or otherwise network)
# mounted filesystem then please read the Mutex documentation (available
# at <URL:http://httpd.apache.org/docs/2.4/mod/core.html#mutex>);
# you will save yourself a lot of trouble.
#
# Do NOT add a slash at the end of the directory path.
#
#ServerRoot "/etc/apache2"

#
# The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
#
Mutex file:${APACHE_LOCK_DIR} default

#
# PidFile: The file in which the server should record its process
# identification number when it starts.
# This needs to be set in /etc/apache2/envvars
#
PidFile ${APACHE_PID_FILE}

#
# Timeout: The number of seconds before receives and sends time out.
#
Timeout 300

#
# KeepAlive: Whether or not to allow persistent connections (more than
# one request per connection). Set to "Off" to deactivate.
#
KeepAlive On

#
# MaxKeepAliveRequests: The maximum number of requests to allow
# during a persistent connection. Set to 0 to allow an unlimited amount.
# We recommend you leave this number high, for maximum performance.
#
MaxKeepAliveRequests 100

#
# KeepAliveTimeout: Number of seconds to wait for the next request from the
# same client on the same connection.
#
KeepAliveTimeout 5


# These need to be set in /etc/apache2/envvars
User ${APACHE_RUN_USER}
Group ${APACHE_RUN_GROUP}

#
# HostnameLookups: Log the names of clients or just their IP addresses
# e.g., www.apache.org (on) or 204.62.129.132 (off).
# The default is off because it'd be overall better for the net if people
# had to knowingly turn this feature on, since enabling it means that
# each client request will result in AT LEAST one lookup request to the
# nameserver.
#
HostnameLookups Off

# ErrorLog: The location of the error log file.
# If you do not specify an ErrorLog directive within a <VirtualHost>
# container, error messages relating to that virtual host will be
# logged here.  If you *do* define an error logfile for a <VirtualHost>
# container, that host's errors will be logged there and not here.
#
ErrorLog ${APACHE_LOG_DIR}/error.log

#
# LogLevel: Control the severity of messages logged to the error_log.
# Available values: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the log level for particular modules, e.g.
# "LogLevel info ssl:warn"
#
LogLevel warn

# Include module configuration:
IncludeOptional mods-enabled/*.load
IncludeOptional mods-enabled/*.conf

# Include list of ports to listen on
Include ports.conf


# Sets the default security model of the Apache2 HTTPD server. It does
# not allow access to the root filesystem outside of /usr/share and /var/www.
# The former is used by web applications packaged in Debian,
# the latter may be used for local directories served by the web server. If
# your system is serving content from a sub-directory in /srv you must allow
# access here, or in any related virtual host.
<Directory />
    Options FollowSymLinks
    AllowOverride None
    Require all denied
</Directory>

<Directory /usr/share>
    AllowOverride None
    Require all granted
</Directory>

<Directory /var/www/>
    Options Indexes FollowSymLinks
    AllowOverride None
    Require all granted
</Directory>

#<Directory /srv/>
#   Options Indexes FollowSymLinks
#   AllowOverride None
#   Require all granted
#</Directory>




# AccessFileName: The name of the file to look for in each directory
# for additional configuration directives.  See also the AllowOverride
# directive.
#
AccessFileName .htaccess

#
# The following lines prevent .htaccess and .htpasswd files from being
# viewed by Web clients.
#
<FilesMatch "^\.ht">
    Require all denied
</FilesMatch>


#
# The following directives define some format nicknames for use with
# a CustomLog directive.
#
# These deviate from the Common Log Format definitions in that they use %O
# (the actual bytes sent including headers) instead of %b (the size of the
# requested file), because the latter makes it impossible to detect partial
# requests.
#
# Note that the use of %{X-Forwarded-For}i instead of %h is not recommended.
# Use mod_remoteip instead.
#
LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined
LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t \"%r\" %>s %O" common
LogFormat "%{Referer}i -> %U" referer
LogFormat "%{User-agent}i" agent

# Include of directories ignores editors' and dpkg's backup files,
# see README.Debian for details.

# Include generic snippets of statements
IncludeOptional conf-enabled/*.conf

# Include the virtual host configurations:
IncludeOptional sites-enabled/*.conf

# vim: syntax=apache ts=4 sw=4 sts=4 sr noet

Neilpang · 2016-11-02T15:56:56Z

@tcby45

Please use webroot mode for the domain 急ぎ.ジュリアン.xyz instead for now.

acme.sh  --issue   -d  ジュリアン.xyz  --apache   -d   急ぎ.ジュリアン.xyz   -w   /path/to/web/root/folder/

The first domain uses --apache mode, the second domain uses webroot mode.

I will try your conf file soon to check if there is a bug .

Neilpang · 2016-11-02T15:58:15Z

@tcby45
Please also give me the conf file for the site: 急ぎ.ジュリアン.xyz

julian45 · 2016-11-02T16:02:47Z

Errored out, got:

[Wed Nov  2 16:00:03 UTC 2016] AH00526: Syntax error on line 33 of /etc/apache2/sites-enabled/jp-base.conf:
SSLCertificateFile: file '/root/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.cer' does not exist or is empty
[Wed Nov  2 16:00:03 UTC 2016] set up apache error. Report error to me.
[Wed Nov  2 16:00:03 UTC 2016] _on_before_issue.

for 急ぎ subdomain:

<VirtualHost *:80>
    ServerAdmin julian.anderson6207@gmail.com
    ServerName xn--x8j435l.xn--cck0bxhua0c.xyz
    ProxyPreserveHost on

    <Proxy *>
        Order allow,deny
        Allow from all
    </Proxy>

    ProxyPass / http://localhost:7777/
    ProxyPassReverse / http://localhost:7777/
RewriteEngine on
RewriteCond %{SERVER_NAME} =haste.tcby45.xyz
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]
</VirtualHost>

I'm getting the feeling that it should be set for port 443...

Neilpang · 2016-11-02T16:07:13Z

@tcby45
You are using reverse proxy ?

what the backend web server do you use ?

Do not use the file in /root/.acme.sh/ジュリアン.xyz/ジュリアン.xyz.cer.
https://github.com/Neilpang/acme.sh#3-install-the-issued-cert-to-apachenginx-etc

Anyway, I would suggest you use cloudflare dns api .

julian45 · 2016-11-02T16:08:51Z

It's all just apache. Tried the apache install plugin but it didn't work. Might as well try cloudflare.

julian45 · 2016-11-02T16:13:39Z

Cloudflare run:

root@myserver:~# acme.sh --issue --dns dns_cf -d ジュリアン.xyz -d 急ぎ.ジュリアン.xyz --force --debug
[Wed Nov  2 16:12:20 UTC 2016] Lets find script dir.
[Wed Nov  2 16:12:20 UTC 2016] _SCRIPT_='/root/.acme.sh/acme.sh'
[Wed Nov  2 16:12:20 UTC 2016] _script='/root/.acme.sh/acme.sh'
[Wed Nov  2 16:12:20 UTC 2016] _script_home='/root/.acme.sh'
https://github.com/Neilpang/acme.sh
v2.6.3
[Wed Nov  2 16:12:20 UTC 2016] Using api:
[Wed Nov  2 16:12:20 UTC 2016] DOMAIN_PATH='/root/.acme.sh/ジュリアン.xyz'
[Wed Nov  2 16:12:20 UTC 2016] Le_NextRenewTime='1483181417'
[Wed Nov  2 16:12:20 UTC 2016] Using sed  -i
[Wed Nov  2 16:12:20 UTC 2016] _on_before_issue
[Wed Nov  2 16:12:20 UTC 2016] Le_LocalAddress
[Wed Nov  2 16:12:20 UTC 2016] Check for domain='ジュリアン.xyz'
[Wed Nov  2 16:12:20 UTC 2016] _currentRoot='dns_cf'
[Wed Nov  2 16:12:20 UTC 2016] Check for domain='急ぎ.ジュリアン.xyz'
[Wed Nov  2 16:12:20 UTC 2016] _currentRoot='dns_cf'
[Wed Nov  2 16:12:20 UTC 2016] Read key length:
[Wed Nov  2 16:12:20 UTC 2016] _createcsr
[Wed Nov  2 16:12:20 UTC 2016] Multi domain='DNS:xn--x8j435l.xn--cck0bxhua0c.xyz'
unable to load Private Key
139911809570456:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:701:Expecting: ANY PRIVATE KEY
[Wed Nov  2 16:12:20 UTC 2016] Create CSR error.
[Wed Nov  2 16:12:20 UTC 2016] pid
[Wed Nov  2 16:12:20 UTC 2016] _clearupdns
[Wed Nov  2 16:12:20 UTC 2016] Dns not added, skip.
[Wed Nov  2 16:12:20 UTC 2016] _on_issue_err
[Wed Nov  2 16:12:20 UTC 2016] Please use add '--debug' or '--log' to check more details.
[Wed Nov  2 16:12:20 UTC 2016] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh

Neilpang · 2016-11-03T01:57:22Z

remove the folder

rm -rf  '/root/.acme.sh/ジュリアン.xyz'

Then try again with cloudflare run.

julian45 · 2016-11-03T10:41:28Z

Success! Now, what should I do? I ran acme.sh --installcert -d acme.sh --installcert -d ジュリアン.xyz -d 急ぎ.ジュリアン.xyz and got a newline, nothing else. What else should I do?

Neilpang · 2016-11-03T11:21:09Z

you must copy the cert/key files to the target files that apache server is using.

https://github.com/Neilpang/acme.sh#3-install-the-issued-cert-to-apachenginx-etc

Neilpang closed this as completed Nov 12, 2016

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Can't register IDNs #355

Can't register IDNs #355

julian45 commented Nov 1, 2016

Neilpang commented Nov 1, 2016

julian45 commented Nov 1, 2016

Neilpang commented Nov 1, 2016

julian45 commented Nov 1, 2016

julian45 commented Nov 1, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 2, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 3, 2016

julian45 commented Nov 3, 2016

Neilpang commented Nov 3, 2016

Can't register IDNs #355

Can't register IDNs #355

Comments

julian45 commented Nov 1, 2016

Neilpang commented Nov 1, 2016

julian45 commented Nov 1, 2016

Neilpang commented Nov 1, 2016

julian45 commented Nov 1, 2016

julian45 commented Nov 1, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 2, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 2, 2016

julian45 commented Nov 2, 2016

julian45 commented Nov 2, 2016

Neilpang commented Nov 3, 2016

julian45 commented Nov 3, 2016

Neilpang commented Nov 3, 2016