May 31 22:01:11 moon charon: 00[DMN] Starting IKEv2 charon daemon (strongSwan 4.6.4) 
May 31 22:01:11 moon charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts' 
May 31 22:01:11 moon charon: 00[CFG]   loaded ca certificate "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" from '/etc/ipsec.d/cacerts/strongswanCert.pem' 
May 31 22:01:11 moon charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts' 
May 31 22:01:11 moon charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts' 
May 31 22:01:11 moon charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts' 
May 31 22:01:11 moon charon: 00[CFG] loading crls from '/etc/ipsec.d/crls' 
May 31 22:01:11 moon charon: 00[CFG] loading secrets from '/etc/ipsec.secrets' 
May 31 22:01:11 moon charon: 00[CFG]   loaded RSA private key from '/etc/ipsec.d/private/moonKey.pem' 
May 31 22:01:11 moon charon: 00[KNL] listening on interfaces: 
May 31 22:01:11 moon charon: 00[KNL]   eth0 
May 31 22:01:11 moon charon: 00[KNL]     192.168.0.1 
May 31 22:01:11 moon charon: 00[KNL]     fec0::1 
May 31 22:01:11 moon charon: 00[KNL]     fe80::fcfd:c0ff:fea8:1 
May 31 22:01:11 moon charon: 00[KNL]   eth1 
May 31 22:01:11 moon charon: 00[KNL]     10.1.0.1 
May 31 22:01:11 moon charon: 00[KNL]     fec1::1 
May 31 22:01:11 moon charon: 00[KNL]     fe80::fcfd:aff:fe01:1 
May 31 22:01:11 moon charon: 00[DMN] loaded plugins: curl aes des sha1 sha2 md5 pem pkcs1 gmp random x509 revocation hmac xcbc stroke kernel-netlink socket-default 
May 31 22:01:11 moon charon: 00[JOB] spawning 16 worker threads 
May 31 22:01:11 moon charon: 08[CFG] received stroke: add ca 'strongswan-ca' 
May 31 22:01:11 moon charon: 08[CFG] added ca 'strongswan-ca' 
May 31 22:01:11 moon charon: 08[CFG] received stroke: add connection 'rw' 
May 31 22:01:11 moon charon: 08[CFG]   loaded certificate "C=CH, O=Linux strongSwan, CN=moon.strongswan.org" from 'moonCert.pem' 
May 31 22:01:11 moon charon: 08[CFG] added configuration 'rw' 
May 31 22:01:14 moon charon: 05[NET] received packet: from 192.168.0.100[500] to 192.168.0.1[500] 
May 31 22:01:14 moon charon: 05[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ] 
May 31 22:01:14 moon charon: 05[IKE] 192.168.0.100 is initiating an IKE_SA 
May 31 22:01:14 moon charon: 05[IKE] sending cert request for "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" 
May 31 22:01:14 moon charon: 05[ENC] generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(MULT_AUTH) ] 
May 31 22:01:14 moon charon: 05[NET] sending packet: from 192.168.0.1[500] to 192.168.0.100[500] 
May 31 22:01:14 moon charon: 04[NET] received packet: from 192.168.0.100[4500] to 192.168.0.1[4500] 
May 31 22:01:14 moon charon: 04[ENC] parsed IKE_AUTH request 1 [ IDi CERT N(INIT_CONTACT) CERTREQ IDr AUTH SA TSi TSr N(MOBIKE_SUP) N(ADD_6_ADDR) N(MULT_AUTH) N(EAP_ONLY) ] 
May 31 22:01:14 moon charon: 04[IKE] received cert request for "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" 
May 31 22:01:14 moon charon: 04[IKE] received end entity cert "C=CH, O=Linux strongSwan, OU=Research, CN=carol@strongswan.org" 
May 31 22:01:14 moon charon: 04[CFG] looking for peer configs matching 192.168.0.1[moon.strongswan.org]...192.168.0.100[carol@strongswan.org] 
May 31 22:01:14 moon charon: 04[CFG] selected peer config 'rw' 
May 31 22:01:14 moon charon: 04[CFG]   using certificate "C=CH, O=Linux strongSwan, OU=Research, CN=carol@strongswan.org" 
May 31 22:01:14 moon charon: 04[CFG]   using trusted ca certificate "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" 
May 31 22:01:14 moon charon: 04[CFG] checking certificate status of "C=CH, O=Linux strongSwan, OU=Research, CN=carol@strongswan.org" 
May 31 22:01:14 moon charon: 04[CFG]   requesting ocsp status from 'http://ocsp.strongswan.org:8880' ... 
May 31 22:01:15 moon charon: 04[CFG]   using certificate "C=CH, O=Linux strongSwan, OU=OCSP Self-Signed Authority, CN=ocsp.strongswan.org" 
May 31 22:01:15 moon charon: 04[CFG]   self-signed certificate "C=CH, O=Linux strongSwan, OU=OCSP Self-Signed Authority, CN=ocsp.strongswan.org" is not trusted 
May 31 22:01:15 moon charon: 04[CFG] ocsp response verification failed 
May 31 22:01:15 moon charon: 04[CFG] ocsp check failed, fallback to crl 
May 31 22:01:15 moon charon: 04[CFG]   fetching crl from 'http://crl.strongswan.org/strongswan.crl' ... 
May 31 22:01:18 moon charon: 03[MGR] ignoring request with ID 1, already processing 
May 31 22:01:25 moon charon: 04[LIB] libcurl http request failed: connect() timed out! 
May 31 22:01:25 moon charon: 04[CFG] crl fetching failed 
May 31 22:01:25 moon charon: 04[CFG] certificate status is not available 
May 31 22:01:25 moon charon: 04[CFG]   reached self-signed root ca with a path length of 0 
May 31 22:01:25 moon charon: 04[IKE] authentication of 'carol@strongswan.org' with RSA signature successful 
May 31 22:01:25 moon charon: 04[CFG] constraint check failed: RULE_CRL_VALIDATION is FAILED, but requires at least GOOD 
May 31 22:01:25 moon charon: 04[CFG] selected peer config 'rw' inacceptable 
May 31 22:01:25 moon charon: 04[CFG] no alternative config found 
May 31 22:01:25 moon charon: 04[IKE] peer supports MOBIKE 
May 31 22:01:25 moon charon: 04[ENC] generating IKE_AUTH response 1 [ N(AUTH_FAILED) ] 
May 31 22:01:25 moon charon: 04[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.100[4500] 
May 31 22:01:31 moon charon: 00[DMN] signal of type SIGINT received. Shutting down