Probleme de renouvelement Lets'encrypt (Failed authorization procedure. mydomain.net (http-01): urn:acme:error:connection :: )

Bonjour, Mon serveur cron essaie de m’envoyer un mail (maintenant que j’ai installé mailutils il y arrive pour me dire: [details=Mail]
Here is the log of what happened
Consider also checking /var/log/letsencrypt/
--------------------------------------------

Saving debug log to /var/log/letsencrypt/letsencrypt.log
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for mydomain.net
Using the webroot path /tmp/letsencrypt-auto for all unmatched domains.
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. mydomain.net (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Could not connect to mydomain.net
IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: mydomain.net
   Type:   connection
   Detail: Could not connect to mydomain.net

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A record(s) for that domain
   contain(s) the right IP address. Additionally, please check that
   your computer has a publicly routable IP address and that no
   firewalls are preventing the server from communicating with the
   client. If you're using the webroot plugin, you should also verify
   that you are serving files from the webroot path you provided.

[/details].

/var/log/letsencrypt/
 2017-06-04 23:18:41,229:DEBUG:certbot.main:certbot version: 0.14.2
2017-06-04 23:18:41,229:DEBUG:certbot.main:Arguments: ['--renew-by-default', '--config', '/etc/letsencrypt/conf.ini', '--domains', 'mydomain.net']
2017-06-04 23:18:41,229:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2017-06-04 23:18:41,252:DEBUG:certbot.plugins.selection:Requested authenticator webroot and installer <certbot.cli._Default object at 0x7f299e125510>
2017-06-04 23:18:41,252:DEBUG:certbot.cli:Default Detector is Namespace(account=<certbot.cli._Default object at 0x7f299e11e690>, agree_dev_preview=None, allow_subset_of_names=<certbot.cli._Default object at 0x7f299e11e450>, apache=<certbot.cli._Default object at 0x7f299e125810>, apache_challenge_location=<certbot.cli._Default object at 0x7f299e12a450>, apache_ctl=<certbot.cli._Default object at 0x7f299e12a850>, apache_dismod=<certbot.cli._Default object at 0x7f299e125e50>, apache_enmod=<certbot.cli._Default object at 0x7f299e125d50>, apache_handle_modules=<certbot.cli._Default object at 0x7f299e12a5d0>, apache_handle_sites=<certbot.cli._Default object at 0x7f299e12a750>, apache_init_script=<certbot.cli._Default object at 0x7f299e12a950>, apache_le_vhost_ext=<certbot.cli._Default object at 0x7f299e125f90>, apache_logs_root=<certbot.cli._Default object at 0x7f299e12a310>, apache_server_root=<certbot.cli._Default object at 0x7f299e12a110>, apache_vhost_root=<certbot.cli._Default object at 0x7f299e12a210>, authenticator='webroot', break_my_certs=<certbot.cli._Default object at 0x7f299e1202d0>, cert_path=<certbot.cli._Default object at 0x7f299e120cd0>, certname=<certbot.cli._Default object at 0x7f299e0fb850>, chain_path=<certbot.cli._Default object at 0x7f299e120fd0>, checkpoints=<certbot.cli._Default object at 0x7f299e1207d0>, config_dir=<certbot.cli._Default object at 0x7f299e125110>, config_file='/etc/letsencrypt/conf.ini', configurator=<certbot.cli._Default object at 0x7f299e125510>, csr=<certbot.cli._Default object at 0x7f299e120050>, debug=<certbot.cli._Default object at 0x7f299e11ed90>, debug_challenges=<certbot.cli._Default object at 0x7f299e11ee90>, dialog=None, domains='mydomain.net', dry_run=<certbot.cli._Default object at 0x7f299e0fb090>, duplicate=<certbot.cli._Default object at 0x7f299e11e790>, eff_email=<certbot.cli._Default object at 0x7f299e0fbd50>, email='erwan@mydomain.net', expand=<certbot.cli._Default object at 0x7f299e11e090>, force_interactive=<certbot.cli._Default object at 0x7f299e168f90>, fullchain_path=<certbot.cli._Default object at 0x7f299e120ed0>, func=<function certonly at 0x7f299e353938>, hsts=<certbot.cli._Default object at 0x7f299e11eb10>, http01_port=<certbot.cli._Default object at 0x7f299e1201d0>, ifaces=<certbot.cli._Default object at 0x7f299e120ad0>, init=<certbot.cli._Default object at 0x7f299e1208d0>, installer=<certbot.cli._Default object at 0x7f299e125510>, key_path=<certbot.cli._Default object at 0x7f299e120dd0>, logs_dir=<certbot.cli._Default object at 0x7f299e125310>, manual=<certbot.cli._Default object at 0x7f299e125b10>, manual_auth_hook=<certbot.cli._Default object at 0x7f299e125d10>, manual_cleanup_hook=<certbot.cli._Default object at 0x7f299e12ab90>, manual_public_ip_logging_ok=<certbot.cli._Default object at 0x7f299e12ac90>, must_staple=<certbot.cli._Default object at 0x7f299e1204d0>, nginx=<certbot.cli._Default object at 0x7f299e125910>, nginx_ctl=<certbot.cli._Default object at 0x7f299e12aed0>, nginx_server_root=<certbot.cli._Default object at 0x7f299e12aa50>, no_bootstrap=<certbot.cli._Default object at 0x7f299e11ea90>, no_self_upgrade=<certbot.cli._Default object at 0x7f299e11e990>, no_verify_ssl=<certbot.cli._Default object at 0x7f299e11ef90>, noninteractive_mode=<certbot.cli._Default object at 0x7f299e168d50>, num=<certbot.cli._Default object at 0x7f299e120490>, os_packages_only=<certbot.cli._Default object at 0x7f299e11e890>, post_hook=<certbot.cli._Default object at 0x7f299e0fb4d0>, pre_hook=<certbot.cli._Default object at 0x7f299e0fbad0>, pref_challs=<certbot.cli._Default object at 0x7f299e0fbcd0>, prepare=<certbot.cli._Default object at 0x7f299e1209d0>, quiet=<certbot.cli._Default object at 0x7f299e11eb90>, reason=<certbot.cli._Default object at 0x7f299e1206d0>, redirect=<certbot.cli._Default object at 0x7f299e11ef10>, register_unsafely_without_email=<certbot.cli._Default object at 0x7f299e0fba50>, reinstall=<certbot.cli._Default object at 0x7f299e0fbf50>, renew_by_default=True, renew_hook=<certbot.cli._Default object at 0x7f299e0fb5d0>, renew_with_new_domains=<certbot.cli._Default object at 0x7f299e11e350>, rsa_key_size='4096', server=<certbot.cli._Default object at 0x7f299e125410>, staging=<certbot.cli._Default object at 0x7f299e11ec90>, standalone=<certbot.cli._Default object at 0x7f299e125a10>, standalone_supported_challenges=<certbot.cli._Default object at 0x7f299e12afd0>, staple=<certbot.cli._Default object at 0x7f299e11e2d0>, strict_permissions=<certbot.cli._Default object at 0x7f299e0fbed0>, text_mode=True, tls_sni_01_port=<certbot.cli._Default object at 0x7f299e1200d0>, tos=True, uir=<certbot.cli._Default object at 0x7f299e11e710>, update_registration=<certbot.cli._Default object at 0x7f299e0fbb50>, user_agent=<certbot.cli._Default object at 0x7f299e120290>, validate_hooks=<certbot.cli._Default object at 0x7f299e168b90>, verb='certonly', verbose_count=<certbot.cli._Default object at 0x7f299e168890>, webroot=<certbot.cli._Default object at 0x7f299e125c10>, webroot_map=<certbot.cli._Default object at 0x7f299e12f210>, webroot_path='/tmp/letsencrypt-auto', work_dir=<certbot.cli._Default object at 0x7f299e125210>)
2017-06-04 23:18:41,256:DEBUG:certbot.log:Root logging level set at 20
2017-06-04 23:18:41,256:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2017-06-04 23:18:41,257:DEBUG:certbot.plugins.selection:Requested authenticator webroot and installer None
2017-06-04 23:18:41,259:DEBUG:certbot.plugins.selection:Single candidate plugin: * webroot
Description: Place files in webroot directory
Interfaces: IAuthenticator, IPlugin
Entry point: webroot = certbot.plugins.webroot:Authenticator
Initialized: <certbot.plugins.webroot.Authenticator object at 0x7f299e16b690>
Prep: True
2017-06-04 23:18:41,260:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.webroot.Authenticator object at 0x7f299e16b690> and installer None
2017-06-04 23:18:41,264:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, contact=(u'mailto:erwan@mydomain.net',), agreement=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf', key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x7f29a0a3e810>)>)), uri=u'https://acme-v01.api.letsencrypt.org/acme/reg/8630177', new_authzr_uri=u'https://acme-v01.api.letsencrypt.org/acme/new-authz', terms_of_service=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), 687841d6399deb2f10be23a3ee232add, Meta(creation_host=u'banane.tetaneutral.net', creation_dt=datetime.datetime(2017, 1, 22, 20, 25, 44, tzinfo=<UTC>)))>
2017-06-04 23:18:41,265:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
2017-06-04 23:18:41,267:DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
2017-06-04 23:18:41,626:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 352
2017-06-04 23:18:41,627:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 352
Boulder-Request-Id: EQf_EYYbNSfsTvnqBzk-tIkuCm-bQ-FtgpPU67mCodE
Replay-Nonce: 0Nubh-PXGGh9ZDyC9g2a6-Wgk4AKa5d3bDECGvfT_wQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sun, 04 Jun 2017 23:18:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 04 Jun 2017 23:18:41 GMT
Connection: keep-alive

{
  "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",
  "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",
  "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",
  "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",
  "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"
}
2017-06-04 23:18:41,635:DEBUG:certbot.renewal:Auto-renewal forced with --force-renewal...
2017-06-04 23:18:41,635:INFO:certbot.main:Renewing an existing certificate
2017-06-04 23:18:41,636:DEBUG:acme.client:Requesting fresh nonce
2017-06-04 23:18:41,636:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz.
2017-06-04 23:18:41,836:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-authz HTTP/1.1" 405 0
2017-06-04 23:18:41,837:DEBUG:acme.client:Received response:
HTTP 405
Server: nginx
Content-Type: application/problem+json
Content-Length: 91
Allow: POST
Boulder-Request-Id: rzu84oVnpZ_Y6jdTpM820NSvvkLyH4DgXYtOQFOUbfg
Replay-Nonce: 0k4cJlQpI6njhQVemzYHvJk_oAhDNs1affHfXygXi70
Expires: Sun, 04 Jun 2017 23:18:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 04 Jun 2017 23:18:41 GMT
Connection: keep-alive


2017-06-04 23:18:41,838:DEBUG:acme.client:Storing nonce: 0k4cJlQpI6njhQVemzYHvJk_oAhDNs1affHfXygXi70
2017-06-04 23:18:41,840:DEBUG:acme.client:JWS payload:
{
  "identifier": {
    "type": "dns", 
    "value": "mydomain.net"
  }, 
  "resource": "new-authz"
}
2017-06-04 23:18:41,873:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
{
  "header": {
    "alg": "RS256", 
    "jwk": {
      "e": "AQAB", 
      "kty": "RSA", 
      "n": "otnQ208cCpTr1p15EoJJQlDgw_N_YX06CKEN8AGoK1Vqg0hKMTD8ys7gjX9tQQd63TWiyXHnMzwxEG7F-qC0RoMwlgM_w6gd72AbRN0QgQx3DPLuOz3lmaL7r4rXvIatK77n9VV__uvGYvoJh0qZ6LdnMlaCAtdhUgJl9GAFaR4Gj1L4ShytXz81QozwDSB6XVVHumsx_nr61M6AOA_Rl60ytCyhvYi3TIXXrWYpvi6rjwOujdcDpIQ2Pfs2XoU728TLRsFGcCMUHaLiiCy8NLWEXG-o9pOYEs5BMNPG2iitbWc2l22a6HY5so6KUXVUu3Imxyol0oyMMacDOnBk1tnrmZFGJ44yznqqt3i8uKQ6X0jDzSvEomqirJsgLbql3RQGh4khyTiypVGl5x5frEHqI7v-Y2fQDUm9KDep7_Wh1hS0E3yNXwcd-48lJHzhZv-ERtZgzHQYDE9qlQRMYxFGkISACGhtMfdOV23EDzfH7EG4amC4NMvVmuAbVWS6zAqmbVmH1eSPGK4v110acoFFEzxtq2kW3LLhc4zxPdVVv2Byqh5oFR1zH9DlEH3YkHmaH1TlzhF6ZrS7MH8jRJhuq7I7phBkzL_g51tXJGfumDTghh6-T-020BWX7CN4gVLD2RLMYE9_jCBBl0G2txLiz9BpUpU7lYYuI49gu60"
    }
  }, 
  "protected": "eyJub25jZSI6ICIwazRjSmxRcEk2bmpoUVZlbXpZSHZKa19vQWhETnMxYWZmSGZYeWdYaTcwIn0", 
  "payload": "ewogICJpZGVudGlmaWVyIjogewogICAgInR5cGUiOiAiZG5zIiwgCiAgICAidmFsdWUiOiAidHVyYmluZXMub3ZoIgogIH0sIAogICJyZXNvdXJjZSI6ICJuZXctYXV0aHoiCn0", 
  "signature": "ULjfLDH6KGvXmIofRQKnxpLimHYgfMsf4JrRP9cVSmpxlPEznymIHhVQ94K0kAZMIDSlqOcagNbxp-rur1F1b44-S9X4z5ddf-VLphghZeb_DCGQyQe_qWMsnuS8R0i8jD0H9cqqRjnnlJJCMZO2roRlWOq0iry-J2JDdFA3F6vM7vXF71lEWSEF116c6XRqaJdYrwrbck2ighHS9rJMMzLB3LTFd2lFTYKQe7Ra5v_b1tpgfRNeuYkJ8dbvc5HTCRNXgvP_U8t0l0Mpoc2vAF2tDxfF0_Bp82H_EsyhEGxieiiKo3-SRY_YZGYxNjVvytx1IsKHl7qQ0_PX2Gb0ch_Bih3_ynFf3QTTw94nyULhNKPpb1ckdUNOgjJoey-QZBGq7D8O1pTAbWuv7Tor1zr0pEd8X5udkCu6jgsjmLi-2fNapYpveYAQeAsNzoRfIPb0butcZlNNnYTB7Htl2_HtmAd7wJ1ELRlzvEepGWYkoFMzVMMQf7tZOzJKdws_kU1nPLgXbUJUVwztCJF5eIkurmuZA651JPSxoLzAu-zBs0eUDztyv1heqOGTdVWL8GRz5sWc1mTYjPByTsnGk2e58mwa3U83h3uILnmceLQnmPPG4DaWceU9nJBz__eeWkOyDfg9yZpJRxIEvi5Va5uH01wF7EbJFBdfJ3N_MzI"
}
2017-06-04 23:18:42,103:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1000
2017-06-04 23:18:42,104:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Content-Type: application/json
Content-Length: 1000
Boulder-Request-Id: MOMcepGY98QEz_sYmJsSiLsqDZSlqD8xCu9HuvsK7Vo
Boulder-Requester: 8630177
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Location: https://acme-v01.api.letsencrypt.org/acme/authz/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE
Replay-Nonce: z1KdVHGeA4PRttUPxr7MPdgRp7ZjhPd1oPAZYxJjMQw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sun, 04 Jun 2017 23:18:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 04 Jun 2017 23:18:42 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "mydomain.net"
  },
  "status": "pending",
  "expires": "2017-06-11T23:18:41.980146405Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649612",
      "token": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649613",
      "token": "kyy-LstOQGClreyZPyn__UFF50cbdqK12HO95HnnF_0"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649614",
      "token": "4S8x5fCv8mhe6BQwlOuK0496VsWJjEvkEGmFKFmcGmE"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      2
    ],
    [
      0
    ]
  ]
}
2017-06-04 23:18:42,104:DEBUG:acme.client:Storing nonce: z1KdVHGeA4PRttUPxr7MPdgRp7ZjhPd1oPAZYxJjMQw
2017-06-04 23:18:42,105:INFO:certbot.auth_handler:Performing the following challenges:
2017-06-04 23:18:42,106:INFO:certbot.auth_handler:http-01 challenge for mydomain.net
2017-06-04 23:18:42,106:INFO:certbot.plugins.webroot:Using the webroot path /tmp/letsencrypt-auto for all unmatched domains.
2017-06-04 23:18:42,106:DEBUG:certbot.plugins.webroot:Creating root challenges validation dir at /tmp/letsencrypt-auto/.well-known/acme-challenge
2017-06-04 23:18:42,115:DEBUG:certbot.plugins.webroot:Attempting to save validation to /tmp/letsencrypt-auto/.well-known/acme-challenge/dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8
2017-06-04 23:18:42,116:INFO:certbot.auth_handler:Waiting for verification...
2017-06-04 23:18:42,116:DEBUG:acme.client:JWS payload:
{
  "keyAuthorization": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8.97GREx6nz3EvT1uq2hGSidRfIiLB4reqDa1479gNRsM", 
  "type": "http-01", 
  "resource": "challenge"
}
2017-06-04 23:18:42,133:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649612:
{
  "header": {
    "alg": "RS256", 
    "jwk": {
      "e": "AQAB", 
      "kty": "RSA", 
      "n": "otnQ208cCpTr1p15EoJJQlDgw_N_YX06CKEN8AGoK1Vqg0hKMTD8ys7gjX9tQQd63TWiyXHnMzwxEG7F-qC0RoMwlgM_w6gd72AbRN0QgQx3DPLuOz3lmaL7r4rXvIatK77n9VV__uvGYvoJh0qZ6LdnMlaCAtdhUgJl9GAFaR4Gj1L4ShytXz81QozwDSB6XVVHumsx_nr61M6AOA_Rl60ytCyhvYi3TIXXrWYpvi6rjwOujdcDpIQ2Pfs2XoU728TLRsFGcCMUHaLiiCy8NLWEXG-o9pOYEs5BMNPG2iitbWc2l22a6HY5so6KUXVUu3Imxyol0oyMMacDOnBk1tnrmZFGJ44yznqqt3i8uKQ6X0jDzSvEomqirJsgLbql3RQGh4khyTiypVGl5x5frEHqI7v-Y2fQDUm9KDep7_Wh1hS0E3yNXwcd-48lJHzhZv-ERtZgzHQYDE9qlQRMYxFGkISACGhtMfdOV23EDzfH7EG4amC4NMvVmuAbVWS6zAqmbVmH1eSPGK4v110acoFFEzxtq2kW3LLhc4zxPdVVv2Byqh5oFR1zH9DlEH3YkHmaH1TlzhF6ZrS7MH8jRJhuq7I7phBkzL_g51tXJGfumDTghh6-T-020BWX7CN4gVLD2RLMYE9_jCBBl0G2txLiz9BpUpU7lYYuI49gu60"
    }
  }, 
  "protected": "eyJub25jZSI6ICJ6MUtkVkhHZUE0UFJ0dFVQeHI3TVBkZ1JwN1pqaFBkMW9QQVpZeEpqTVF3In0", 
  "payload": "ewogICJrZXlBdXRob3JpemF0aW9uIjogImR2YWVFT0lDcGUxYkNGSF83SEdrdWp0TnZSS1hWcVRQS0tyNGQ4U3A2RTguOTdHUkV4Nm56M0V2VDF1cTJoR1NpZFJmSWlMQjRyZXFEYTE0NzlnTlJzTSIsIAogICJ0eXBlIjogImh0dHAtMDEiLCAKICAicmVzb3VyY2UiOiAiY2hhbGxlbmdlIgp9", 
  "signature": "DhfJt2VubmQxNK-RBCe7FwHLCM-45vIqcoTpoiIdMSodeFTW9G2gF8aHQdOAYbjHctD-QSIq3rmBk5vx4VuDpSdvTMlXrSw4LzrfKX9JNHCbW6_JgkB9CJ2Bmyk5BmEnPuKan9jUT7krJu4bXYtgR8DJiZ9yOPcIqo-lgbAA44w_898Km8KH7_YDcZDLLh9DMyoiDbBTBlv6rofnsymNKq_m6qIp8xaT8tl7qeCfa7Jmom2C7i_4HyT4ElR7zu_lGDbFLgtV7QAm_zWpluwmkfhRSVKb8vYIjqTfzrsIP5b-5wr7E3yX8743skIOl5JpV54Dma06oXs72t-4MpuLtc38iS_JG7tiKeKYX77w4z1QKiCIQGovJj1K5gkIKSDcX_iWKxhZihHCH4NjYk1J4DA47S0JRg3cAJvds2Jx8ilHSXHcB5XPYRESuLEWr1JIer5l_r0hC9hsOcklwNZxVKkOunIMnWCdtdhFX-Wnd0mKRJtT6Q8eNYRVRQ9SIAGenYCMnFslsHoZMoUQX3CSzkLpDCO1hso3POe9hRLgv-_v8ZyiGRYHcv9xL6XiANjfUQrWwjGFsvsKb-DDxo1u84ABeKaiqSf9FI93xaIzcW-lgUycDQDSDliPpTc98pvg3vj5CnRMjoTgd9GJavfKTQooe-f9AanuuXdqX1hcDUQ"
}
2017-06-04 23:18:42,350:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649612 HTTP/1.1" 202 336
2017-06-04 23:18:42,350:DEBUG:acme.client:Received response:
HTTP 202
Server: nginx
Content-Type: application/json
Content-Length: 336
Boulder-Request-Id: 0bdIU4ulm_sg08BjztjoFe6FWpTyIXi0LVssCEjSeiM
Boulder-Requester: 8630177
Link: <https://acme-v01.api.letsencrypt.org/acme/authz/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE>;rel="up"
Location: https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649612
Replay-Nonce: qT-OA8KIWQfkvZ8Ri3vwTr7mkM2zw-QSO-Yz1kov5BM
Expires: Sun, 04 Jun 2017 23:18:42 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 04 Jun 2017 23:18:42 GMT
Connection: keep-alive

{
  "type": "http-01",
  "status": "pending",
  "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649612",
  "token": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8",
  "keyAuthorization": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8.97GREx6nz3EvT1uq2hGSidRfIiLB4reqDa1479gNRsM"
}
2017-06-04 23:18:42,351:DEBUG:acme.client:Storing nonce: qT-OA8KIWQfkvZ8Ri3vwTr7mkM2zw-QSO-Yz1kov5BM
2017-06-04 23:18:45,354:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE.
2017-06-04 23:18:45,558:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE HTTP/1.1" 200 1107
2017-06-04 23:18:45,559:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1107
Boulder-Request-Id: CsoVTmcPAbkuEo39ayIhE3KIHjkyAB0FEaZCECuR3F0
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: iqK-rppN1r_mDVq-ifcAamXRPFRjXf0CR-HLv0B-t0s
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sun, 04 Jun 2017 23:18:45 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 04 Jun 2017 23:18:45 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "mydomain.net"
  },
  "status": "pending",
  "expires": "2017-06-11T23:18:41Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649612",
      "token": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8",
      "keyAuthorization": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8.97GREx6nz3EvT1uq2hGSidRfIiLB4reqDa1479gNRsM"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649613",
      "token": "kyy-LstOQGClreyZPyn__UFF50cbdqK12HO95HnnF_0"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649614",
      "token": "4S8x5fCv8mhe6BQwlOuK0496VsWJjEvkEGmFKFmcGmE"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      2
    ],
    [
      0
    ]
  ]
}
2017-06-04 23:18:48,564:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE.
2017-06-04 23:18:48,780:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE HTTP/1.1" 200 1680
2017-06-04 23:18:48,782:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 1680
Boulder-Request-Id: FMo5qooX2_g15RZy8F5HI1U01WNXecO6UDK1-h357qQ
Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
Replay-Nonce: -cocB78YGlDyZ74xm7zSNbCFOEGzJTzkbN8pkK-MOdk
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Sun, 04 Jun 2017 23:18:48 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 04 Jun 2017 23:18:48 GMT
Connection: keep-alive

{
  "identifier": {
    "type": "dns",
    "value": "mydomain.net"
  },
  "status": "invalid",
  "expires": "2017-06-11T23:18:41Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "invalid",
      "error": {
        "type": "urn:acme:error:connection",
        "detail": "Could not connect to mydomain.net",
        "status": 400
      },
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649612",
      "token": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8",
      "keyAuthorization": "dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8.97GREx6nz3EvT1uq2hGSidRfIiLB4reqDa1479gNRsM",
      "validationRecord": [
        {
          "url": "http://mydomain.net/.well-known/acme-challenge/dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8",
          "hostname": "mydomain.net",
          "port": "80",
          "addressesResolved": [
            "89.234.156.213",
            "2a01:6600:8083:d500::1"
          ],
          "addressUsed": "2a01:6600:8083:d500::1",
          "addressesTried": []
        }
      ]
    },
    {
      "type": "dns-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649613",
      "token": "kyy-LstOQGClreyZPyn__UFF50cbdqK12HO95HnnF_0"
    },
    {
      "type": "tls-sni-01",
      "status": "pending",
      "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/eb4Do2SMVJXxwYr5SanxLAX7uBKlkvCXWhwnrZsoCwE/1280649614",
      "token": "4S8x5fCv8mhe6BQwlOuK0496VsWJjEvkEGmFKFmcGmE"
    }
  ],
  "combinations": [
    [
      1
    ],
    [
      2
    ],
    [
      0
    ]
  ]
}
2017-06-04 23:18:48,785:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:

Domain: mydomain.net
Type:   connection
Detail: Could not connect to mydomain.net

To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
2017-06-04 23:18:48,785:INFO:certbot.auth_handler:Cleaning up challenges
2017-06-04 23:18:48,786:DEBUG:certbot.plugins.webroot:Removing /tmp/letsencrypt-auto/.well-known/acme-challenge/dvaeEOICpe1bCFH_7HGkujtNvRKXVqTPKKr4d8Sp6E8
2017-06-04 23:18:48,786:DEBUG:certbot.plugins.webroot:All challenges cleaned up, removing /tmp/letsencrypt-auto/.well-known/acme-challenge
2017-06-04 23:18:48,787:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
  File "/root/.local/share/letsencrypt/bin/letsencrypt", line 11, in <module>
    sys.exit(main())
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/main.py", line 742, in main
    return config.func(config, plugins)
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/main.py", line 682, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/main.py", line 77, in _get_and_save_cert
    renewal.renew_cert(config, domains, le_client, lineage)
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/renewal.py", line 296, in renew_cert
    new_certr, new_chain, new_key, _ = le_client.obtain_certificate(domains)
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/client.py", line 313, in obtain_certificate
    self.config.allow_subset_of_names)
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/auth_handler.py", line 81, in get_authorizations
    self._respond(resp, best_effort)
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/auth_handler.py", line 138, in _respond
    self._poll_challenges(chall_update, best_effort)
  File "/root/.local/share/letsencrypt/local/lib/python2.7/site-packages/certbot/auth_handler.py", line 202, in _poll_challenges
    raise errors.FailedChallenges(all_failed_achalls)
FailedChallenges: Failed authorization procedure. mydomain.net (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Could not connect to mydomain.net

Aparement mon serveur renvoie une erreur HTTP 405 (Method Not Allowed) à la comande:
2017-06-04 23:18:41,636:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-authz.
2017-06-04 23:18:41,836:DEBUG:requests.packages.urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 “HEAD /acme/new-authz HTTP/1.1” 405 0

Désolé pour la mise en page… j’ai un peu galéré
Merci