Lego
ACME client and ACME library written in Go.
Important
lego is an independent, free, and open-source project, if you value it, consider supporting it! ❤️
Features
-
- DNS-01
- HTTP-01
- TLS-ALPN-01
- DNS-PERSIST-01
-
Multiple ACME servers support (Let’s Encrypt, ZeroSSL, etc.)
-
Obtain, renew, revoke.
Wildcard and SAN certificate support.
-
Comes with the support of more than 200 DNS providers
-
Supported by default.
Supported RFCs
| RFC | Description |
|---|---|
| RFC 8555 | Automatic Certificate Management Environment (ACME). |
| RFC 8737 | TLS Application‑Layer Protocol Negotiation (ALPN) Challenge Extension. |
| RFC 8738 | IP Identifier Validation Extension. Issues certificates for IP addresses. |
| RFC 9773 | Renewal Information (ARI) Extension. |
| draft-ietf-acme-profiles-01 | Profiles Extension. |
| draft-ietf-acme-dns-persist-01 | Challenge for Persistent DNS TXT Record Validation. |
Supporting lego
Special thanks to the organizations sponsoring lego’s development.
Info
You are an organization and want to support lego? We have a dedicated sponsorship page for you.