Let's encrypt SSL 证书已过期：`urn:ietf:params:acme:error:rateLimited`

你好！

我的 SSL 证书未能自动续期。我在 acme.sh.log 中发现了以下错误：

[Fri 12 Jun 2020 07:57:40 PM UTC] HEAD
[Fri 12 Jun 2020 07:57:40 PM UTC] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Fri 12 Jun 2020 07:57:40 PM UTC] _CURL='curl -L --silent --dump-header /shared/letsencrypt/http.header  -g  -I  '
[Fri 12 Jun 2020 07:57:41 PM UTC] _ret='0'
[Fri 12 Jun 2020 07:57:41 PM UTC] POST
[Fri 12 Jun 2020 07:57:41 PM UTC] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Fri 12 Jun 2020 07:57:41 PM UTC] _CURL='curl -L --silent --dump-header /shared/letsencrypt/http.header  -g '
[Fri 12 Jun 2020 07:57:41 PM UTC] _ret='0'
[Fri 12 Jun 2020 07:57:41 PM UTC] code='429'
[Fri 12 Jun 2020 07:57:41 PM UTC] Le_LinkOrder
[Fri 12 Jun 2020 07:57:41 PM UTC] Le_OrderFinalize
[Fri 12 Jun 2020 07:57:41 PM UTC] Create new order error. Le_OrderFinalize not found. {
  "type": "urn:ietf:params:acme:error:rateLimited",
  "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/",
  "status": 429
}

你知道该如何解决这个问题吗？

这是否符合我们的 Discourse 官方标准安装？例如，您是如何最终需要为 example.com 配置证书的？

是的，这是在 Digital Ocean 上通过 Docker（支持多站点）进行的旧版安装。今晚之前 SSL 一切正常。
我在执行 git pull 后运行了 ./launcher rebuild app，但 acme.sh.log 中仍然报错：

Create new order error. Le_OrderFinalize not found. {
  "type": "urn:ietf:params:acme:error:rateLimited",
  "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/",
  "status": 429
}

更改用于 LETSENCRYPT_ACCOUNT_EMAIL 的邮箱地址是个好主意吗？
这是我的账户问题，还是 Discourse 最新版本（我使用的是 beta 版）中的 bug？

以下是我运行 ./launcher logs web_only 时得到的输出：

run-parts: executing /etc/runit/1.d/00-ensure-links
run-parts: executing /etc/runit/1.d/00-fix-var-logs
run-parts: executing /etc/runit/1.d/anacron
run-parts: executing /etc/runit/1.d/cleanup-pids
Cleaning stale PID files
run-parts: executing /etc/runit/1.d/copy-env
run-parts: executing /etc/runit/1.d/letsencrypt
[Fri 12 Jun 2020 08:34:04 PM UTC] Multi domain='DNS:forum.pragmaticentrepreneurs.com,DNS:entraidecoronavirus.fr,DNS:www.entraidecoronavirus.fr,DNS:forum.noschangements.fr,DNS:forum.pragmaticentrepreneurs.com'
[Fri 12 Jun 2020 08:34:04 PM UTC] Getting domain auth token for each domain
[Fri 12 Jun 2020 08:34:06 PM UTC] Create new order error. Le_OrderFinalize not found. {
  "type": "urn:ietf:params:acme:error:rateLimited",
  "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/",
  "status": 429
}
[Fri 12 Jun 2020 08:34:06 PM UTC] Please check log file for more details: /shared/letsencrypt/acme.sh.log
CN = forum.pragmaticentrepreneurs.com
error 10 at 0 depth lookup: certificate has expired
[Fri 12 Jun 2020 08:34:07 PM UTC] Multi domain='DNS:forum.pragmaticentrepreneurs.com,DNS:entraidecoronavirus.fr,DNS:www.entraidecoronavirus.fr,DNS:forum.noschangements.fr,DNS:forum.pragmaticentrepreneurs.com'
[Fri 12 Jun 2020 08:34:07 PM UTC] Getting domain auth token for each domain
[Fri 12 Jun 2020 08:34:08 PM UTC] Create new order error. Le_OrderFinalize not found. {
  "type": "urn:ietf:params:acme:error:rateLimited",
  "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/",
  "status": 429
}
[Fri 12 Jun 2020 08:34:08 PM UTC] Please check log file for more details: /shared/letsencrypt/acme.sh.log
[Fri 12 Jun 2020 08:34:08 PM UTC] Installing key to:/shared/ssl/forum.pragmaticentrepreneurs.com.key
[Fri 12 Jun 2020 08:34:08 PM UTC] Installing full chain to:/shared/ssl/forum.pragmaticentrepreneurs.com.cer
[Fri 12 Jun 2020 08:34:08 PM UTC] Run reload cmd: sv reload nginx
warning: nginx: unable to open supervise/ok: file does not exist
[Fri 12 Jun 2020 08:34:08 PM UTC] Reload error for :
[Fri 12 Jun 2020 08:34:09 PM UTC] Multi domain='DNS:forum.pragmaticentrepreneurs.com,DNS:entraidecoronavirus.fr,DNS:www.entraidecoronavirus.fr,DNS:forum.noschangements.fr,DNS:forum.pragmaticentrepreneurs.com'
[Fri 12 Jun 2020 08:34:09 PM UTC] Getting domain auth token for each domain
[Fri 12 Jun 2020 08:34:11 PM UTC] Create new order error. Le_OrderFinalize not found. {
  "type": "urn:ietf:params:acme:error:rateLimited",
  "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/",
  "status": 429
}
[Fri 12 Jun 2020 08:34:11 PM UTC] Please check log file for more details: /shared/letsencrypt/acme.sh.log
CN = forum.pragmaticentrepreneurs.com
error 10 at 0 depth lookup: certificate has expired
[Fri 12 Jun 2020 08:34:12 PM UTC] Multi domain='DNS:forum.pragmaticentrepreneurs.com,DNS:entraidecoronavirus.fr,DNS:www.entraidecoronavirus.fr,DNS:forum.noschangements.fr,DNS:forum.pragmaticentrepreneurs.com'
[Fri 12 Jun 2020 08:34:12 PM UTC] Getting domain auth token for each domain
[Fri 12 Jun 2020 08:34:13 PM UTC] Create new order error. Le_OrderFinalize not found. {
  "type": "urn:ietf:params:acme:error:rateLimited",
  "detail": "Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/",
  "status": 429
}
[Fri 12 Jun 2020 08:34:13 PM UTC] Please check log file for more details: /shared/letsencrypt/acme.sh.log
[Fri 12 Jun 2020 08:34:13 PM UTC] Installing key to:/shared/ssl/forum.pragmaticentrepreneurs.com_ecc.key
[Fri 12 Jun 2020 08:34:13 PM UTC] Installing full chain to:/shared/ssl/forum.pragmaticentrepreneurs.com_ecc.cer
[Fri 12 Jun 2020 08:34:13 PM UTC] Run reload cmd: sv reload nginx
warning: nginx: unable to open supervise/ok: file does not exist
[Fri 12 Jun 2020 08:34:13 PM UTC] Reload error for :
CN = forum.pragmaticentrepreneurs.com
error 10 at 0 depth lookup: certificate has expired
CN = forum.pragmaticentrepreneurs.com
error 10 at 0 depth lookup: certificate has expired
Started runsvdir, PID is 2643
chgrp: invalid group: ‘syslog’
rsyslogd: imklog: cannot open kernel log (/proc/kmsg): Operation not permitted.
rsyslogd: activation of module imklog failed [v8.1901.0 try https://www.rsyslog.com/e/2145 ]
supervisor pid: 2648 unicorn pid: 2661

我修改了 LETSENCRYPT_ACCOUNT_EMAIL，重新构建后问题已解决。但我很好奇之前到底发生了什么。