我想自动更新我的letsencrypt https证书。我正在使用此命令在 CentOS 7.9 中使用acme.sh dns 颁发证书:
acme.sh --issue -d '*.example.com' --dns dns_ali --ecc --debug
显示此错误信息:
[Sun Jan 2 19:44:07 CST 2022] Error add txt for domain:_acme-challenge.example.com
[Sun Jan 2 19:44:07 CST 2022] _on_issue_err
[Sun Jan 2 19:44:07 CST 2022] Please add '--debug' or '--log' to check more details.
[Sun Jan 2 19:44:07 CST 2022] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Sun Jan 2 19:44:07 CST 2022] url='https://acme.zerossl.com/v2/DV90/chall/82ifpp38ehytUJV56hSQ'
[Sun Jan 2 19:44:07 CST 2022] payload='{}'
[Sun Jan 2 19:44:07 CST 2022] Retrying post
[Sun Jan 2 19:44:07 CST 2022] POST
[Sun Jan 2 19:44:07 CST 2022] _post_url='https://acme.zerossl.com/v2/DV90/chall/82ifpGp38khytUJV6hSQ'
[Sun Jan 2 19:44:07 CST 2022] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L -g '
[Sun Jan 2 19:44:15 CST 2022] _ret='0'
[Sun Jan 2 19:44:15 CST 2022] _hcode='0'
[Sun Jan 2 19:44:15 CST 2022] code='200'
[Sun Jan 2 19:44:15 CST 2022] Diagnosis versions:
openssl:openssl
OpenSSL 1.0.2k-fips 26 Jan 2017
apache:
apache doesn't exist.
nginx:
nginx doesn't exist.
socat:
socat by Gerhard Rieger and contributors - see www.dest-unreach.org
socat version 1.7.3.2 on Aug 4 2017 04:57:10
running on Linux version #1 SMP Mon Jul 29 17:46:05 UTC 2019, release 3.10.0-957.27.2.el7.x86_64, machine x86_64
features:
#define WITH_STDIO 1
#define WITH_FDNUM 1
#define WITH_FILE 1
#define WITH_CREAT 1
#define WITH_GOPEN 1
#define WITH_TERMIOS 1
#define WITH_PIPE 1
#define WITH_UNIX 1
#define WITH_ABSTRACT_UNIXSOCKET 1
#define WITH_IP4 1
#define WITH_IP6 1
#define WITH_RAWIP 1
#define WITH_GENERICSOCKET 1
#define WITH_INTERFACE 1
#define WITH_TCP 1
#define WITH_UDP 1
#define WITH_SCTP 1
#define WITH_LISTEN 1
#define WITH_SOCKS4 1
#define WITH_SOCKS4A 1
#define WITH_PROXY 1
#define WITH_SYSTEM 1
#define WITH_EXEC 1
#define WITH_READLINE 1
#define WITH_TUN 1
#define WITH_PTY 1
#define WITH_OPENSSL 1
#undef WITH_FIPS
#define WITH_LIBWRAP 1
#define WITH_SYCLS 1
#define WITH_FILAN 1
#define WITH_RETRY 1
#define WITH_MSGLEVEL 0 /*debug*/
[Sun Jan 2 19:44:15 CST 2022] pid
[Sun Jan 2 19:44:15 CST 2022] No need to restore nginx, skip.
[Sun Jan 2 19:44:15 CST 2022] _clearupdns
[Sun Jan 2 19:44:15 CST 2022] dns_entries
[Sun Jan 2 19:44:15 CST 2022] skip dns.
我不知道发生了什么,我已经配置了ali_key
and ali_dns
。我应该怎么做才能解决这个证书问题?