I'm not sure I follow. You're talking about Certbot, but also "IP's he should use". What "IP's" do you mean? Because Certbot is an ACME client and cannot and does not control which IP addresses the challenges are send from. That's done on the ACME server side and the ACME client cannot influence that.
Also, I'm pretty sure Let's Encrypt (if that's the ACME CA you're using that is.. I assume you do, otherwise you probably wouldn't have come here) does not use any Alibaba IP address to send their challenges from.
TL;DR: I don't completely follow, can you elaborate and clarify more?
That said, the answers in this thread won't be any different than in your previous thread, sooo..