Froce renewal? Autorenewal was blocked by firewall

Morbus · March 11, 2025, 2:45pm

1. The problem I’m having:

Im using Caddy for reverse proxying of most of my home services. Plex, Immich, Jopling etc. The problem I am having is that autorenewal has failed.
All my subdomains certs expired 3rd of march. Ive found that this is because im geo-blocking all incoming traffic in my firewall. So the acme challenges has been blocked. I have opened the firewall for “any” source location now. But I cant force Caddy to do a renew of the certificates, can I?

Here is the Curl -vL:

% curl -vL https://img.gmx.no
* Host img.gmx.no:443 was resolved.
* IPv6: (none)
* IPv4: 88.92.119.1
*   Trying 88.92.119.1:443...
* Connected to img.gmx.no (88.92.119.1) port 443
* ALPN: curl offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
*  CAfile: /etc/ssl/cert.pem
*  CApath: none
* (304) (IN), TLS handshake, Server hello (2):
* (304) (IN), TLS handshake, Unknown (8):
* (304) (IN), TLS handshake, Certificate (11):
* SSL certificate problem: certificate has expired
* Closing connection
curl: (60) SSL certificate problem: certificate has expired
More details here: https://curl.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.

2. Error messages and/or full log output:

      
ERR ts=1741700305.0748024 logger=tls.renew msg=could not get certificate from issuer identifier=img.gmx.no issuer=acme-v02.api.letsencrypt.org-directory error=HTTP 400 urn:ietf:params:acme:error:connection - 88.92.119.1: Timeout during connect (likely firewall problem)

INF ts=1741700305.0748816 logger=tls.issuance.acme msg=waiting on internal rate limiter identifiers=["img.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.0748856 logger=tls.issuance.acme msg=done waiting on internal rate limiter identifiers=["img.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.074891 logger=tls.issuance.acme msg=using ACME account account_id=https://acme.zerossl.com/v2/DV90/account/LOCD8dnnPJUqvmp0_A3Z7w account_contact=["mailto:espen@gmx.no"]

ERR ts=1741700305.1488361 msg=challenge failed identifier=joplin.gmx.no challenge_type=tls-alpn-01 problem={"type":"urn:ietf:params:acme:error:connection","title":"","detail":"88.92.119.1: Timeout during connect (likely firewall problem)","instance":"","subproblems":null} stacktrace=github.com/mholt/acmez/v3.(*Client).pollAuthorization
	github.com/mholt/acmez/v3@v3.0.0/client.go:557
github.com/mholt/acmez/v3.(*Client).solveChallenges
	github.com/mholt/acmez/v3@v3.0.0/client.go:378
github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.0.0/client.go:136
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249
github.com/caddyserver/certmagic.(*Config).renewCert.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:906
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.21.6/async.go:104
github.com/caddyserver/certmagic.(*Config).renewCert
	github.com/caddyserver/certmagic@v0.21.6/config.go:982
github.com/caddyserver/certmagic.(*Config).RenewCertAsync
	github.com/caddyserver/certmagic@v0.21.6/config.go:768
github.com/caddyserver/certmagic.(*Config).manageOne.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:469
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.21.6/async.go:73

ERR ts=1741700305.1488736 msg=validating authorization identifier=joplin.gmx.no problem={"type":"urn:ietf:params:acme:error:connection","title":"","detail":"88.92.119.1: Timeout during connect (likely firewall problem)","instance":"","subproblems":null} order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362463957056 attempt=2 max_attempts=3 stacktrace=github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.0.0/client.go:152
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249
github.com/caddyserver/certmagic.(*Config).renewCert.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:906
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.21.6/async.go:104
github.com/caddyserver/certmagic.(*Config).renewCert
	github.com/caddyserver/certmagic@v0.21.6/config.go:982
github.com/caddyserver/certmagic.(*Config).RenewCertAsync
	github.com/caddyserver/certmagic@v0.21.6/config.go:768
github.com/caddyserver/certmagic.(*Config).manageOne.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:469
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.21.6/async.go:73

ERR ts=1741700305.1488914 logger=tls.renew msg=could not get certificate from issuer identifier=joplin.gmx.no issuer=acme-v02.api.letsencrypt.org-directory error=HTTP 400 urn:ietf:params:acme:error:connection - 88.92.119.1: Timeout during connect (likely firewall problem)

INF ts=1741700305.148996 logger=tls.issuance.acme msg=waiting on internal rate limiter identifiers=["joplin.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.1490037 logger=tls.issuance.acme msg=done waiting on internal rate limiter identifiers=["joplin.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.1490076 logger=tls.issuance.acme msg=using ACME account account_id=https://acme.zerossl.com/v2/DV90/account/LOCD8dnnPJUqvmp0_A3Z7w account_contact=["mailto:espen@gmx.no"]

ERR ts=1741700305.1548495 msg=challenge failed identifier=portainer.gmx.no challenge_type=tls-alpn-01 problem={"type":"urn:ietf:params:acme:error:connection","title":"","detail":"88.92.119.1: Timeout during connect (likely firewall problem)","instance":"","subproblems":null} stacktrace=github.com/mholt/acmez/v3.(*Client).pollAuthorization
	github.com/mholt/acmez/v3@v3.0.0/client.go:557
github.com/mholt/acmez/v3.(*Client).solveChallenges
	github.com/mholt/acmez/v3@v3.0.0/client.go:378
github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.0.0/client.go:136
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249
github.com/caddyserver/certmagic.(*Config).renewCert.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:906
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.21.6/async.go:104
github.com/caddyserver/certmagic.(*Config).renewCert
	github.com/caddyserver/certmagic@v0.21.6/config.go:982
github.com/caddyserver/certmagic.(*Config).RenewCertAsync
	github.com/caddyserver/certmagic@v0.21.6/config.go:768
github.com/caddyserver/certmagic.(*Config).manageOne.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:469
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.21.6/async.go:73

ERR ts=1741700305.1548798 msg=validating authorization identifier=portainer.gmx.no problem={"type":"urn:ietf:params:acme:error:connection","title":"","detail":"88.92.119.1: Timeout during connect (likely firewall problem)","instance":"","subproblems":null} order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362463956516 attempt=2 max_attempts=3 stacktrace=github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.0.0/client.go:152
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249
github.com/caddyserver/certmagic.(*Config).renewCert.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:906
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.21.6/async.go:104
github.com/caddyserver/certmagic.(*Config).renewCert
	github.com/caddyserver/certmagic@v0.21.6/config.go:982
github.com/caddyserver/certmagic.(*Config).RenewCertAsync
	github.com/caddyserver/certmagic@v0.21.6/config.go:768
github.com/caddyserver/certmagic.(*Config).manageOne.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:469
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.21.6/async.go:73

ERR ts=1741700305.1548994 logger=tls.renew msg=could not get certificate from issuer identifier=portainer.gmx.no issuer=acme-v02.api.letsencrypt.org-directory error=HTTP 400 urn:ietf:params:acme:error:connection - 88.92.119.1: Timeout during connect (likely firewall problem)

INF ts=1741700305.1549828 logger=tls.issuance.acme msg=waiting on internal rate limiter identifiers=["portainer.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.1549897 logger=tls.issuance.acme msg=done waiting on internal rate limiter identifiers=["portainer.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.1549945 logger=tls.issuance.acme msg=using ACME account account_id=https://acme.zerossl.com/v2/DV90/account/LOCD8dnnPJUqvmp0_A3Z7w account_contact=["mailto:espen@gmx.no"]

ERR ts=1741700305.223173 msg=challenge failed identifier=start.gmx.no challenge_type=tls-alpn-01 problem={"type":"urn:ietf:params:acme:error:connection","title":"","detail":"88.92.119.1: Timeout during connect (likely firewall problem)","instance":"","subproblems":null} stacktrace=github.com/mholt/acmez/v3.(*Client).pollAuthorization
	github.com/mholt/acmez/v3@v3.0.0/client.go:557
github.com/mholt/acmez/v3.(*Client).solveChallenges
	github.com/mholt/acmez/v3@v3.0.0/client.go:378
github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.0.0/client.go:136
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249
github.com/caddyserver/certmagic.(*Config).renewCert.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:906
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.21.6/async.go:104
github.com/caddyserver/certmagic.(*Config).renewCert
	github.com/caddyserver/certmagic@v0.21.6/config.go:982
github.com/caddyserver/certmagic.(*Config).RenewCertAsync
	github.com/caddyserver/certmagic@v0.21.6/config.go:768
github.com/caddyserver/certmagic.(*Config).manageOne.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:469
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.21.6/async.go:73

ERR ts=1741700305.2232296 msg=validating authorization identifier=start.gmx.no problem={"type":"urn:ietf:params:acme:error:connection","title":"","detail":"88.92.119.1: Timeout during connect (likely firewall problem)","instance":"","subproblems":null} order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362463957276 attempt=2 max_attempts=3 stacktrace=github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.0.0/client.go:152
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249
github.com/caddyserver/certmagic.(*Config).renewCert.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:906
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.21.6/async.go:104
github.com/caddyserver/certmagic.(*Config).renewCert
	github.com/caddyserver/certmagic@v0.21.6/config.go:982
github.com/caddyserver/certmagic.(*Config).RenewCertAsync
	github.com/caddyserver/certmagic@v0.21.6/config.go:768
github.com/caddyserver/certmagic.(*Config).manageOne.func2
	github.com/caddyserver/certmagic@v0.21.6/config.go:469
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.21.6/async.go:73

ERR ts=1741700305.2232814 logger=tls.renew msg=could not get certificate from issuer identifier=start.gmx.no issuer=acme-v02.api.letsencrypt.org-directory error=HTTP 400 urn:ietf:params:acme:error:connection - 88.92.119.1: Timeout during connect (likely firewall problem)

INF ts=1741700305.2234359 logger=tls.issuance.acme msg=waiting on internal rate limiter identifiers=["start.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.223448 logger=tls.issuance.acme msg=done waiting on internal rate limiter identifiers=["start.gmx.no"] ca=https://acme.zerossl.com/v2/DV90 account=espen@gmx.no

INF ts=1741700305.2234545 logger=tls.issuance.acme msg=using ACME account account_id=https://acme.zerossl.com/v2/DV90/account/LOCD8dnnPJUqvmp0_A3Z7w account_contact=["mailto:espen@gmx.no"]

INF ts=1741700306.5637279 msg=trying to solve challenge identifier=portainer.gmx.no challenge_type=http-01 ca=https://acme.zerossl.com/v2/DV90

INF ts=1741700306.6274226 msg=trying to solve challenge identifier=img.gmx.no challenge_type=http-01 ca=https://acme.zerossl.com/v2/DV90

INF ts=1741700306.6549037 msg=trying to solve challenge identifier=start.gmx.no challenge_type=http-01 ca=https://acme.zerossl.com/v2/DV90

INF ts=1741700306.7259414 msg=trying to solve challenge identifier=joplin.gmx.no challenge_type=http-01 ca=https://acme.zerossl.com/v2/DV90

INF ts=1741700306.8814466 msg=trying to solve challenge identifier=prox.gmx.no challenge_type=http-01 ca=https://acme.zerossl.com/v2/DV90

INF ts=1741700307.0445848 msg=trying to solve challenge identifier=plex.gmx.no challenge_type=http-01 ca=https://acme.zerossl.com/v2/DV90

INF ts=1741700881.5219095 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741710985.136203 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

INF ts=1741700881.5221102 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741710985.5463 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

INF ts=1741700881.522212 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741710985.969505 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

INF ts=1741700881.5223014 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741710986.323341 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

INF ts=1741700881.5223987 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741710986.7232113 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

INF ts=1741700881.5224907 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741710984.7762501 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

INF ts=1741700881.5225768 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-740881.522576679

INF ts=1741700881.5225816 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-740881.522580988

INF ts=1741700881.5225835 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-740881.522583422

INF ts=1741700881.522585 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-740881.522584829

INF ts=1741700881.5225863 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-740881.522586353

INF ts=1741700881.5225875 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-740881.522587612

INF ts=1741701481.519927 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741710985.5463 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

INF ts=1741701481.5201583 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741710985.969505 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

INF ts=1741701481.520262 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741710986.323341 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

INF ts=1741701481.5203574 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741710986.7232113 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

INF ts=1741701481.5204537 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741710984.7762501 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

INF ts=1741701481.5205424 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741710985.136203 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

INF ts=1741701481.5206347 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-741481.520634477

INF ts=1741701481.5206387 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-741481.520638463

INF ts=1741701481.5206404 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-741481.520640051

INF ts=1741701481.5206413 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-741481.520641172

INF ts=1741701481.5206425 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-741481.520642439

INF ts=1741701481.520644 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-741481.520643705

INF ts=1741702081.5180287 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741710985.5463 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

INF ts=1741702081.5182426 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741710985.969505 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

INF ts=1741702081.518337 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741710986.323341 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

INF ts=1741702081.5184247 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741710986.7232113 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

INF ts=1741702081.5185103 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741710984.7762501 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

INF ts=1741702081.5185976 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741710985.136203 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

INF ts=1741702081.5187056 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-742081.518705503

INF ts=1741702081.51871 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-742081.518709768

INF ts=1741702081.5187118 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-742081.518711654

INF ts=1741702081.518713 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-742081.518713044

INF ts=1741702081.5187144 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-742081.518714249

INF ts=1741702081.5187159 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-742081.518715848

INF ts=1741702681.5204303 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741710985.969505 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

INF ts=1741702681.5206885 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741710986.323341 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

INF ts=1741702681.5207844 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741710986.7232113 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

INF ts=1741702681.520873 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741710984.7762501 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

INF ts=1741702681.520965 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741710985.136203 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

INF ts=1741702681.521052 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741710985.5463 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

INF ts=1741702681.5211384 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-742681.521138193

INF ts=1741702681.5211427 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-742681.52114259

INF ts=1741702681.5211444 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-742681.521144323

INF ts=1741702681.521146 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-742681.521145948

INF ts=1741702681.5211475 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-742681.521147241

INF ts=1741702681.5211484 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-742681.521148303

INF ts=1741703281.5191498 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741710986.7232113 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

INF ts=1741703281.5193396 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741710984.7762501 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

INF ts=1741703281.5194347 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741710985.136203 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

INF ts=1741703281.5195212 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741710985.5463 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

INF ts=1741703281.5196078 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741710985.969505 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

INF ts=1741703281.5197096 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741710986.323341 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

INF ts=1741703281.5198119 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-743281.51981169

INF ts=1741703281.5198162 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-743281.519816146

INF ts=1741703281.5198188 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-743281.51981807

INF ts=1741703281.51982 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-743281.519820042

INF ts=1741703281.5198216 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-743281.519821373

INF ts=1741703281.5198226 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-743281.519822579

INF ts=1741703881.518346 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741710984.7762501 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

INF ts=1741703881.5186713 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741710985.136203 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

INF ts=1741703881.5188432 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741710985.5463 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

INF ts=1741703881.5190022 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741710985.969505 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

INF ts=1741703881.5191586 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741710986.323341 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

INF ts=1741703881.519318 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741710986.7232113 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

INF ts=1741703881.5194566 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-743881.519456372

INF ts=1741703881.5194645 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-743881.519464227

INF ts=1741703881.519467 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-743881.519466783

INF ts=1741703881.519469 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-743881.519468958

INF ts=1741703881.5194712 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-743881.519471014

INF ts=1741703881.519473 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-743881.51947293

3. Caddy version:

v2.9.1 h1

4. How I installed and ran Caddy:

Installed via the Portainer template library

a. System environment:

Running in portainer/docker on ubuntu

b. Command:

PASTE OVER THIS, BETWEEN THE ``` LINES.
Please use the preview pane to ensure it looks nice.

d. My complete Caddy config:

# The Caddyfile is an easy way to configure your Caddy web server.

# Unless the file starts with a global options block, the first  
# uncommented line is always the address of your site.

# To use your own domain name (with automatic HTTPS), first make  
# sure your domain's A/AAAA DNS records are properly pointed to  
# this machine's public IP, then replace ":80" below with your  
# domain name.  
{  
        email espen@gmx.no  
}

start.gmx.no {  
        reverse_proxy 10.0.10.31:3000  
}  
plex.gmx.no {  
        # We don't need to set the X-Forwarded-For and X-Forwarded-Proto headers  
        # Caddy does this automatically.  
        reverse_proxy 10.0.10.15:32400  
}

prox.gmx.no {  
        reverse_proxy 10.0.10.30:8006  
}

portainer.gmx.no {  
        reverse_proxy 10.0.10.31:9443  
}

x.gmx.no {  
        reverse_proxy 10.0.10.12:8123  
}

img.gmx.no {  
        reverse_proxy 10.0.10.31:2283  
}

joplin.gmx.no {  
        reverse_proxy 10.0.10.31:22300  
}

:80 {  
        # Set this path to your site's directory.  
        root * /usr/share/caddy

&nbsp;       # Enable the static file server.  
        file_server

}

5. Links to relevant resources:

matt · March 11, 2025, 2:47pm

Caddy will try renewing if you restart it. But CAs may remember the number of recent failures and rate limit you until the rate limits expire, I’m afraid.

Morbus · March 12, 2025, 8:15am

I did reboot the caddy container several times yesterday. Still nothing.

This is the logs from the last hours, it doesnt look like its even trying?


      
2025-03-12T06:48:02.173231153Z INF ts=1741762082.1730819 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-802082.173081757

2025-03-12T06:48:02.173232261Z INF ts=1741762082.1730835 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-802082.173083424

2025-03-12T06:48:02.173233373Z INF ts=1741762082.173085 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-802082.17308482

2025-03-12T06:48:02.173234461Z INF ts=1741762082.1730864 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-802082.173086249

2025-03-12T06:58:01.521327502Z INF ts=1741762681.52112 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T06:58:01.521470786Z INF ts=1741762681.5213583 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T06:58:01.521617077Z INF ts=1741762681.5214922 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T06:58:01.521642135Z INF ts=1741762681.5216212 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T06:58:01.521848338Z INF ts=1741762681.5217576 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T06:58:01.521907684Z INF ts=1741762681.5218828 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T06:58:01.522008890Z INF ts=1741762681.521981 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-802681.521980784

2025-03-12T06:58:01.522010578Z INF ts=1741762681.5219855 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-802681.521985277

2025-03-12T06:58:01.522011659Z INF ts=1741762681.5219874 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-802681.521987281

2025-03-12T06:58:01.522012716Z INF ts=1741762681.521989 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-802681.521988489

2025-03-12T06:58:01.522013713Z INF ts=1741762681.5219905 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-802681.521990452

2025-03-12T06:58:01.522014768Z INF ts=1741762681.521992 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-802681.521991756

2025-03-12T07:08:01.520542463Z INF ts=1741763281.5202856 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T07:08:01.520596320Z INF ts=1741763281.5204897 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T07:08:01.520624530Z INF ts=1741763281.5205827 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T07:08:01.520806116Z INF ts=1741763281.5206847 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T07:08:01.520858123Z INF ts=1741763281.5207758 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T07:08:01.520891492Z INF ts=1741763281.520867 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T07:08:01.521037674Z INF ts=1741763281.5209517 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-803281.520951476

2025-03-12T07:08:01.521042681Z INF ts=1741763281.5209556 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-803281.520955475

2025-03-12T07:08:01.521044114Z INF ts=1741763281.5209572 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-803281.520957124

2025-03-12T07:08:01.521045166Z INF ts=1741763281.520959 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-803281.520958778

2025-03-12T07:08:01.521046176Z INF ts=1741763281.52096 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-803281.520959941

2025-03-12T07:08:01.521047237Z INF ts=1741763281.5209613 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-803281.520961104

2025-03-12T07:18:01.519628882Z INF ts=1741763881.5193775 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T07:18:01.519663975Z INF ts=1741763881.5195901 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T07:18:01.519806917Z INF ts=1741763881.5196998 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T07:18:01.519810070Z INF ts=1741763881.519788 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T07:18:01.519938588Z INF ts=1741763881.5198705 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T07:18:01.520066896Z INF ts=1741763881.5199573 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T07:18:01.520069019Z INF ts=1741763881.520042 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-803881.520041776

2025-03-12T07:18:01.520070776Z INF ts=1741763881.520045 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-803881.520044982

2025-03-12T07:18:01.520072187Z INF ts=1741763881.5200467 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-803881.520046475

2025-03-12T07:18:01.520073465Z INF ts=1741763881.520048 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-803881.520047715

2025-03-12T07:18:01.520081353Z INF ts=1741763881.5200496 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-803881.520049456

2025-03-12T07:18:01.520082444Z INF ts=1741763881.520051 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-803881.520050824

2025-03-12T07:28:01.519281400Z INF ts=1741764481.5191488 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T07:28:01.519405403Z INF ts=1741764481.5193703 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T07:28:01.519557051Z INF ts=1741764481.5194902 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T07:28:01.519627979Z INF ts=1741764481.519592 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T07:28:01.519736991Z INF ts=1741764481.5197015 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T07:28:01.519889843Z INF ts=1741764481.5198169 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T07:28:01.520022820Z INF ts=1741764481.5199108 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-804481.519910833

2025-03-12T07:28:01.520029774Z INF ts=1741764481.5199153 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-804481.519915146

2025-03-12T07:28:01.520039705Z INF ts=1741764481.519917 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-804481.519916901

2025-03-12T07:28:01.520041999Z INF ts=1741764481.5199184 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-804481.519918207

2025-03-12T07:28:01.520043674Z INF ts=1741764481.51992 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-804481.5199193

2025-03-12T07:28:01.520045307Z INF ts=1741764481.5199218 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-804481.519921447

2025-03-12T07:38:01.518323305Z INF ts=1741765081.5180252 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T07:38:01.518342775Z INF ts=1741765081.5182257 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T07:38:01.518358656Z INF ts=1741765081.518329 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T07:38:01.518509642Z INF ts=1741765081.518419 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T07:38:01.518531795Z INF ts=1741765081.5185094 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T07:38:01.518731393Z INF ts=1741765081.5186214 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T07:38:01.518901108Z INF ts=1741765081.518739 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-805081.518738818

2025-03-12T07:38:01.518906385Z INF ts=1741765081.518743 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-805081.518742823

2025-03-12T07:38:01.518907798Z INF ts=1741765081.518745 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-805081.51874467

2025-03-12T07:38:01.518908860Z INF ts=1741765081.518746 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-805081.518745858

2025-03-12T07:38:01.518909984Z INF ts=1741765081.5187476 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-805081.51874708

2025-03-12T07:38:01.518911061Z INF ts=1741765081.5187492 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-805081.518748945

2025-03-12T07:48:01.518475786Z INF ts=1741765681.5182488 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T07:48:01.518633326Z INF ts=1741765681.518535 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T07:48:01.518923801Z INF ts=1741765681.5187254 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T07:48:01.519076474Z INF ts=1741765681.5189073 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T07:48:01.519225296Z INF ts=1741765681.519087 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T07:48:01.519348524Z INF ts=1741765681.5192528 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T07:48:01.519557150Z INF ts=1741765681.5194056 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-805681.51940536

2025-03-12T07:48:01.519562258Z INF ts=1741765681.5194166 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-805681.519416359

2025-03-12T07:48:01.519563702Z INF ts=1741765681.5194192 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-805681.519418867

2025-03-12T07:48:01.519564900Z INF ts=1741765681.5194209 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-805681.519420851

2025-03-12T07:48:01.519566005Z INF ts=1741765681.519423 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-805681.519422789

2025-03-12T07:48:01.519567056Z INF ts=1741765681.5194247 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-805681.519424757

2025-03-12T07:58:01.522601406Z INF ts=1741766281.522407 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T07:58:01.522713337Z INF ts=1741766281.5226147 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T07:58:01.522843032Z INF ts=1741766281.5227268 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T07:58:01.522856981Z INF ts=1741766281.5228155 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T07:58:01.523000016Z INF ts=1741766281.5229049 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T07:58:01.523018004Z INF ts=1741766281.5230012 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T07:58:01.523179262Z INF ts=1741766281.5230837 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-806281.523083645

2025-03-12T07:58:01.523184833Z INF ts=1741766281.523088 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-806281.523087811

2025-03-12T07:58:01.523187254Z INF ts=1741766281.5230896 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-806281.523089658

2025-03-12T07:58:01.523189004Z INF ts=1741766281.5230908 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-806281.523090895

2025-03-12T07:58:01.523190600Z INF ts=1741766281.5230923 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-806281.523092189

2025-03-12T07:58:01.523192185Z INF ts=1741766281.5230935 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-806281.523093466

2025-03-12T08:08:01.521273348Z INF ts=1741766881.5211928 logger=tls msg=certificate needs renewal based on ARI window subjects=["img.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AL3RnTQthlZcoVf9uhLbIgg next_ari_update=1741777085.0865293 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739756271 renewal_cutoff=1739755671

2025-03-12T08:08:01.521442875Z INF ts=1741766881.5214157 logger=tls msg=certificate needs renewal based on ARI window subjects=["portainer.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJtSuwA1ecvcCld7pUKRBTo next_ari_update=1741777082.2428997 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739831174 renewal_cutoff=1739830574

2025-03-12T08:08:01.521601252Z INF ts=1741766881.521521 logger=tls msg=certificate needs renewal based on ARI window subjects=["joplin.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.APWAQZ3BEcy5v-W6r4o_zYU next_ari_update=1741777082.6510053 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739804838 renewal_cutoff=1739804238

2025-03-12T08:08:01.521717541Z INF ts=1741766881.5216208 logger=tls msg=certificate needs renewal based on ARI window subjects=["start.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.AJKstcqfJPno4V6AxsG4eYg next_ari_update=1741777083.9742162 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739768613 renewal_cutoff=1739768013

2025-03-12T08:08:01.521749290Z INF ts=1741766881.5217257 logger=tls msg=certificate needs renewal based on ARI window subjects=["plex.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.G6OrWV4pP8cScnaSsu0k6Q next_ari_update=1741777084.3189552 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739790946 renewal_cutoff=1739790346

2025-03-12T08:08:01.521843425Z INF ts=1741766881.5218217 logger=tls msg=certificate needs renewal based on ARI window subjects=["prox.gmx.no"] expiration=1740960000 ari_cert_id=D2vmS845R672fpAeefAwkZLIX6M.Ko3tQxRbKxLdwzfGTzvnDA next_ari_update=1741777084.7315474 renew_check_interval=600 window_start=1739663999 window_end=1739836799 selected_time=1739712444 renewal_cutoff=1739711844

2025-03-12T08:08:01.521927917Z INF ts=1741766881.5219047 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["img.gmx.no"] remaining=-806881.521904346

2025-03-12T08:08:01.521929458Z INF ts=1741766881.5219085 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["portainer.gmx.no"] remaining=-806881.521908254

2025-03-12T08:08:01.521930550Z INF ts=1741766881.5219102 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["joplin.gmx.no"] remaining=-806881.521910137

2025-03-12T08:08:01.521931640Z INF ts=1741766881.5219119 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["start.gmx.no"] remaining=-806881.521911587

2025-03-12T08:08:01.521932801Z INF ts=1741766881.521913 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["plex.gmx.no"] remaining=-806881.521912902

2025-03-12T08:08:01.521933854Z INF ts=1741766881.5219145 logger=tls.cache.maintenance msg=certificate expires soon; queuing for renewal identifiers=["prox.gmx.no"] remaining=-806881.521914218

matt · March 12, 2025, 1:37pm

Is that all that’s in the logs?

Morbus · March 12, 2025, 1:51pm

I guess there is possible to retrieve older logs someway, but this is what I can see in the “log” pane in Portainer.

I did however recreate the Caddy container and re-pulled the image. This made it recreate the certificates.

INF ts=1741774891.9248757 msg=serving initial configuration

INF ts=1741774891.9272745 logger=tls.renew msg=acquiring lock identifier=portainer.gmx.no

INF ts=1741774891.9286776 logger=tls.renew msg=lock acquired identifier=portainer.gmx.no

INF ts=1741774891.9288335 logger=tls.renew msg=renewing certificate identifier=portainer.gmx.no remaining=-814891.928830784

INF ts=1741774891.929014 logger=tls.issuance.acme msg=waiting on internal rate limiter identifiers=["portainer.gmx.no"] ca=https://acme-v02.api.letsencrypt.org/directory account=espen@gmx.no

INF ts=1741774891.9290206 logger=tls.issuance.acme msg=done waiting on internal rate limiter identifiers=["portainer.gmx.no"] ca=https://acme-v02.api.letsencrypt.org/directory account=espen@gmx.no

INF ts=1741774891.9290292 logger=tls.issuance.acme msg=using ACME account account_id=https://acme-v02.api.letsencrypt.org/acme/acct/1919698096 account_contact=["mailto:espen@gmx.no"]

INF ts=1741774892.7106137 msg=trying to solve challenge identifier=joplin.gmx.no challenge_type=http-01 ca=https://acme-v02.api.letsencrypt.org/directory

INF ts=1741774892.7667117 msg=trying to solve challenge identifier=start.gmx.no challenge_type=http-01 ca=https://acme-v02.api.letsencrypt.org/directory

INF ts=1741774892.8084903 msg=trying to solve challenge identifier=plex.gmx.no challenge_type=http-01 ca=https://acme-v02.api.letsencrypt.org/directory

INF ts=1741774892.846767 msg=trying to solve challenge identifier=prox.gmx.no challenge_type=http-01 ca=https://acme-v02.api.letsencrypt.org/directory

INF ts=1741774892.8998015 msg=trying to solve challenge identifier=img.gmx.no challenge_type=http-01 ca=https://acme-v02.api.letsencrypt.org/directory

INF ts=1741774892.953051 msg=trying to solve challenge identifier=portainer.gmx.no challenge_type=http-01 ca=https://acme-v02.api.letsencrypt.org/directory

INF ts=1741774893.0967145 logger=tls.issuance.acme msg=served key authentication identifier=joplin.gmx.no challenge=http-01 remote=23.178.112.105:56973 distributed=false

INF ts=1741774893.2643754 logger=tls.issuance.acme msg=served key authentication identifier=prox.gmx.no challenge=http-01 remote=23.178.112.101:36735 distributed=false

INF ts=1741774893.3172078 logger=tls.issuance.acme msg=served key authentication identifier=plex.gmx.no challenge=http-01 remote=23.178.112.100:35481 distributed=false

INF ts=1741774893.3228319 logger=tls.issuance.acme msg=served key authentication identifier=joplin.gmx.no challenge=http-01 remote=16.170.250.155:53588 distributed=false

INF ts=1741774893.435145 logger=tls.issuance.acme msg=served key authentication identifier=portainer.gmx.no challenge=http-01 remote=23.178.112.104:41155 distributed=false

INF ts=1741774893.4633272 logger=tls.issuance.acme msg=served key authentication identifier=start.gmx.no challenge=http-01 remote=23.178.112.100:35489 distributed=false

INF ts=1741774893.4864914 logger=tls.issuance.acme msg=served key authentication identifier=prox.gmx.no challenge=http-01 remote=13.60.76.250:39316 distributed=false

INF ts=1741774893.519389 logger=tls.issuance.acme msg=served key authentication identifier=plex.gmx.no challenge=http-01 remote=13.60.76.250:39324 distributed=false

INF ts=1741774893.5307128 logger=tls.issuance.acme msg=served key authentication identifier=joplin.gmx.no challenge=http-01 remote=3.133.155.146:53438 distributed=false

INF ts=1741774893.5365198 logger=tls.issuance.acme msg=served key authentication identifier=img.gmx.no challenge=http-01 remote=23.178.112.100:35495 distributed=false

INF ts=1741774893.610714 logger=tls.issuance.acme msg=served key authentication identifier=joplin.gmx.no challenge=http-01 remote=34.209.154.109:56556 distributed=false

INF ts=1741774893.6526902 logger=tls.issuance.acme msg=served key authentication identifier=plex.gmx.no challenge=http-01 remote=3.149.245.87:19736 distributed=false

INF ts=1741774893.6590557 logger=tls.issuance.acme msg=served key authentication identifier=portainer.gmx.no challenge=http-01 remote=13.53.245.109:54864 distributed=false

INF ts=1741774893.6647308 logger=tls.issuance.acme msg=served key authentication identifier=joplin.gmx.no challenge=http-01 remote=18.143.63.218:41958 distributed=false

INF ts=1741774893.7025409 logger=tls.issuance.acme msg=served key authentication identifier=start.gmx.no challenge=http-01 remote=16.16.66.120:49764 distributed=false

INF ts=1741774893.702562 logger=tls.issuance.acme msg=served key authentication identifier=prox.gmx.no challenge=http-01 remote=3.133.155.146:53454 distributed=false

INF ts=1741774893.702829 logger=tls.issuance.acme msg=served key authentication identifier=prox.gmx.no challenge=http-01 remote=35.163.65.90:46918 distributed=false

INF ts=1741774893.734633 logger=tls.issuance.acme msg=served key authentication identifier=img.gmx.no challenge=http-01 remote=13.53.245.109:54872 distributed=false

INF ts=1741774893.7468035 logger=tls.issuance.acme msg=served key authentication identifier=plex.gmx.no challenge=http-01 remote=35.95.100.52:15808 distributed=false

INF ts=1741774893.764717 logger=tls.issuance.acme msg=served key authentication identifier=start.gmx.no challenge=http-01 remote=18.217.149.95:10824 distributed=false

INF ts=1741774893.77095 logger=tls.issuance.acme msg=served key authentication identifier=portainer.gmx.no challenge=http-01 remote=3.133.155.146:53458 distributed=false

INF ts=1741774893.8269713 logger=tls.issuance.acme msg=served key authentication identifier=portainer.gmx.no challenge=http-01 remote=52.10.227.229:16802 distributed=false

INF ts=1741774893.8392308 logger=tls.issuance.acme msg=served key authentication identifier=prox.gmx.no challenge=http-01 remote=47.129.125.121:17822 distributed=false

INF ts=1741774893.8749807 logger=tls.issuance.acme msg=served key authentication identifier=plex.gmx.no challenge=http-01 remote=18.143.63.218:41966 distributed=false

INF ts=1741774893.9248476 logger=tls.issuance.acme msg=served key authentication identifier=img.gmx.no challenge=http-01 remote=52.10.227.229:16810 distributed=false

INF ts=1741774893.9549637 logger=tls.issuance.acme msg=served key authentication identifier=start.gmx.no challenge=http-01 remote=35.163.4.68:63832 distributed=false

INF ts=1741774893.968933 logger=tls.issuance.acme msg=served key authentication identifier=img.gmx.no challenge=http-01 remote=3.133.155.146:53472 distributed=false

INF ts=1741774894.0269716 logger=tls.issuance.acme msg=served key authentication identifier=start.gmx.no challenge=http-01 remote=13.250.17.71:13584 distributed=false

INF ts=1741774894.0709577 logger=tls.issuance.acme msg=served key authentication identifier=portainer.gmx.no challenge=http-01 remote=13.215.159.197:21486 distributed=false

INF ts=1741774894.1126099 msg=authorization finalized identifier=joplin.gmx.no authz_status=valid

INF ts=1741774894.1126208 msg=validations succeeded; finalizing order order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362760817656

INF ts=1741774894.1927888 msg=authorization finalized identifier=plex.gmx.no authz_status=valid

INF ts=1741774894.1927998 msg=validations succeeded; finalizing order order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362760818046

INF ts=1741774894.2406409 msg=authorization finalized identifier=prox.gmx.no authz_status=valid

INF ts=1741774894.2406495 msg=validations succeeded; finalizing order order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362760818256

INF ts=1741774894.3591096 msg=authorization finalized identifier=portainer.gmx.no authz_status=valid

INF ts=1741774894.3591213 msg=validations succeeded; finalizing order order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362760818626

INF ts=1741774894.5588357 msg=authorization finalized identifier=start.gmx.no authz_status=valid

INF ts=1741774894.5588443 msg=validations succeeded; finalizing order order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362760817886

INF ts=1741774894.6912422 msg=authorization finalized identifier=img.gmx.no authz_status=valid

INF ts=1741774894.6912518 msg=validations succeeded; finalizing order order=https://acme-v02.api.letsencrypt.org/acme/order/1919698096/362760818466

INF ts=1741774895.0098174 msg=got renewal info names=["prox.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746891082 recheck_after=1741796495.009812 explanation_url=

INF ts=1741774895.2947142 msg=got renewal info names=["start.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746927471 recheck_after=1741796495.2947087 explanation_url=

INF ts=1741774895.3217745 msg=got renewal info names=["prox.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746993033 recheck_after=1741796495.3217719 explanation_url=

INF ts=1741774895.3217928 msg=successfully downloaded available certificate chains count=2 first_url=https://acme-v02.api.letsencrypt.org/acme/cert/039071ea650c24e62ab8bfb2b4f72aefd730

INF ts=1741774895.3273416 logger=tls.renew msg=certificate renewed successfully identifier=prox.gmx.no issuer=acme-v02.api.letsencrypt.org-directory

INF ts=1741774895.327387 logger=tls.renew msg=releasing lock identifier=prox.gmx.no

INF ts=1741774895.3274117 logger=tls msg=reloading managed certificate identifiers=["prox.gmx.no"]

INF ts=1741774895.596505 logger=tls.cache msg=replaced certificate in cache subjects=["prox.gmx.no"] new_expiration=1749547384

INF ts=1741774895.6103687 msg=got renewal info names=["start.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746971586 recheck_after=1741796495.6103642 explanation_url=

INF ts=1741774895.6103966 msg=successfully downloaded available certificate chains count=2 first_url=https://acme-v02.api.letsencrypt.org/acme/cert/0345935dcb31a16a5ed521a22f246235722c

INF ts=1741774895.6152747 logger=tls.renew msg=certificate renewed successfully identifier=start.gmx.no issuer=acme-v02.api.letsencrypt.org-directory

INF ts=1741774895.6153266 logger=tls.renew msg=releasing lock identifier=start.gmx.no

INF ts=1741774895.6153533 logger=tls msg=reloading managed certificate identifiers=["start.gmx.no"]

INF ts=1741774895.7939506 logger=tls.cache msg=replaced certificate in cache subjects=["start.gmx.no"] new_expiration=1749547384

INF ts=1741774895.9810965 msg=got renewal info names=["plex.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1747008892 recheck_after=1741796495.9810917 explanation_url=

INF ts=1741774896.168982 msg=got renewal info names=["portainer.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1747018395 recheck_after=1741796496.1689787 explanation_url=

INF ts=1741774896.294709 msg=got renewal info names=["plex.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746960953 recheck_after=1741796496.294706 explanation_url=

INF ts=1741774896.2947285 msg=successfully downloaded available certificate chains count=2 first_url=https://acme-v02.api.letsencrypt.org/acme/cert/031a15e499320bd0ecf0ec8b2e4fe6e2ced6

INF ts=1741774896.3001883 logger=tls.renew msg=certificate renewed successfully identifier=plex.gmx.no issuer=acme-v02.api.letsencrypt.org-directory

INF ts=1741774896.3002305 logger=tls.renew msg=releasing lock identifier=plex.gmx.no

INF ts=1741774896.3002594 logger=tls msg=reloading managed certificate identifiers=["plex.gmx.no"]

INF ts=1741774896.3727186 msg=got renewal info names=["img.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1747002014 recheck_after=1741796496.372715 explanation_url=

INF ts=1741774896.475931 logger=tls.cache msg=replaced certificate in cache subjects=["plex.gmx.no"] new_expiration=1749547384

INF ts=1741774896.485016 msg=got renewal info names=["joplin.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746983685 recheck_after=1741796496.4850125 explanation_url=

INF ts=1741774896.4850159 msg=got renewal info names=["portainer.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1747040861 recheck_after=1741796496.485013 explanation_url=

INF ts=1741774896.4851336 msg=successfully downloaded available certificate chains count=2 first_url=https://acme-v02.api.letsencrypt.org/acme/cert/0389a24e5f452fe1c458f1a4fbe18068d242

INF ts=1741774896.4894307 logger=tls.renew msg=certificate renewed successfully identifier=portainer.gmx.no issuer=acme-v02.api.letsencrypt.org-directory

INF ts=1741774896.4894772 logger=tls.renew msg=releasing lock identifier=portainer.gmx.no

INF ts=1741774896.4895086 logger=tls msg=reloading managed certificate identifiers=["portainer.gmx.no"]

INF ts=1741774896.6840646 msg=got renewal info names=["img.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746990703 recheck_after=1741796496.6840591 explanation_url=

INF ts=1741774896.684094 msg=successfully downloaded available certificate chains count=2 first_url=https://acme-v02.api.letsencrypt.org/acme/cert/0320303212bc8328ba1c16bddfd89c343e60

INF ts=1741774896.6885872 logger=tls.renew msg=certificate renewed successfully identifier=img.gmx.no issuer=acme-v02.api.letsencrypt.org-directory

INF ts=1741774896.6886349 logger=tls.renew msg=releasing lock identifier=img.gmx.no

INF ts=1741774896.6886847 logger=tls msg=reloading managed certificate identifiers=["img.gmx.no"]

INF ts=1741774896.7462204 logger=tls.cache msg=replaced certificate in cache subjects=["portainer.gmx.no"] new_expiration=1749547384

INF ts=1741774896.8000753 msg=got renewal info names=["joplin.gmx.no"] window_start=1746870153 window_end=1747042953 selected_time=1746995009 recheck_after=1741796496.8000712 explanation_url=

INF ts=1741774896.8000944 msg=successfully downloaded available certificate chains count=2 first_url=https://acme-v02.api.letsencrypt.org/acme/cert/0332c2e1e6c9eb7dd36e2d60d91cca9cf583

INF ts=1741774896.80532 logger=tls.renew msg=certificate renewed successfully identifier=joplin.gmx.no issuer=acme-v02.api.letsencrypt.org-directory

INF ts=1741774896.8053737 logger=tls.renew msg=releasing lock identifier=joplin.gmx.no

INF ts=1741774896.8053997 logger=tls msg=reloading managed certificate identifiers=["joplin.gmx.no"]

INF ts=1741774897.0100863 logger=tls.cache msg=replaced certificate in cache subjects=["img.gmx.no"] new_expiration=1749547384

INF ts=1741774897.0101395 logger=tls.cache msg=replaced certificate in cache subjects=["joplin.gmx.no"] new_expiration=1749547384

ERR ts=1741775011.270437 logger=http.log.error msg=read tcp 172.17.0.4:46196->10.0.10.31:9443: read: connection reset by peer request={"remote_ip":"64.226.78.121","remote_port":"57162","client_ip":"64.226.78.121","proto":"HTTP/1.1","method":"GET","host":"portainer.gmx.no","uri":"/.git/config","headers":{"User-Agent":["Go-http-client/1.1"],"Accept-Encoding":["gzip"],"Connection":["close"]},"tls":{"resumed":true,"version":772,"cipher_suite":4865,"proto":"","server_name":"portainer.gmx.no"}} duration=0.53877681 status=502 err_id=90yifiguj err_trace=reverseproxy.statusError (reverseproxy.go:1373)

INF ts=1741783892.0547202 msg=got renewal info names=["x.gmx.no"] window_start=1741949246 window_end=1742122046 selected_time=1742109301 recheck_after=1741805492.0547104 explanation_url=

INF ts=1741783892.0578084 logger=tls.cache.maintenance msg=updated ACME renewal information identifiers=["x.gmx.no"] cert_hash=6d267ccf511e1d6aac269a832de23e02bdbb7d7b1ba5c341e074cc1ac790aa58 ari_unique_id=kydGmAOpUWiOmNbEQkjbI79YlNI.BE5T0WbvdqnHYi1EIBgW7W8h cert_expiry=1744626476 selected_time=1742020818 next_update=1741805492.0547104 explanation_url=