Please deploy a DNS TXT record under the name _acme-challenge.beanbang.cn with the following value:
ErR2BtnzPzdz8zFMW-IK663dM-sWjvXZtjFRwKkkAMU
Before continuing, verify the record is deployed. (This must be set up in addition to the previous challenges; do not remove, replace, or undo the previous challenge tasks yet. Note that you might be asked to create multiple distinct TXT records with the same name. This is permitted by DNS standards.)
括号里的内容说,不要删除和改动先前的记录,你可能被要求向同一个名字(二级域名)添加多条
TXT 记录,这个是 DNS 标准所允许的。
Waiting for verification... Resetting dropped connection: acme-v02.api.letsencrypt.org Cleaning up challenges
IMPORTANT NOTES: - Congratulations! Your certificate and chain have been saved at: /etc/letsencrypt/live/beanbang.cn/fullchain.pem Your key file has been saved at: /etc/letsencrypt/live/beanbang.cn/privkey.pem Your cert will expire on 2020-04-06. To obtain a new or tweaked version of this certificate in the future, simply run certbot again. To non-interactively renew *all* of your certificates, run "certbot renew" - If you like Certbot, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate Donating to EFF: https://eff.org/donate-le
这时候应该能看到 /etc/letsencrypt/live/[域名]
下的证书文件:
1 2
$ ls /etc/letsencrypt/live/beanbang.cn/ cert.pem chain.pem fullchain.pem privkey.pem README