Requesting a Let's Encrypt certificate for a RouterOS router using the lego client & Route53.
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.


A simple script to acquire TLS certificates for RouterOS devices using the lego Let's Encrypt client and Route53 DNS to answer a DNS ACME challenge.


  • The lego client is installed and in the PATH.

  • Python 3 is installed (I suggest using a fresh virtualenv).

  • A Route53 hosted zone has been created for your desired domain name.

  • IAM credentials have been created that can edit the above zone. These credentials must be available to lego.

  • You have an SSH key setup for the configured RouterOS user.

Running the script

cp config.json.example config.json
vim config.json
pip install -r requirements.txt