Auto-renewal not working since change of domain registrar

Hi all,

my domain is
I have been using let’s encrypt on that domain for two years now; the certificate is renewed using I recently moved my domain name ( from godaddy to a new registrar. My DNS and DNS zones therefore changed. The server and IP for however did not change.

Since that registrar change, the cron job that runs the following command returns an error and I am unable to renew my certificate:
certbot renew --pre-hook “service apache2 stop” --post-hook “service apache2 start”

It produced this output:

I verified my DNS entries which all seem correct. I don’t know what the issue could be.
I initially only issued a certificate for the subdomain as I don’t need a certificate for so I’m not sure why the error returns a line about being in error.

Can anyone help?

The operating system my web server runs on is Debian Linux 8
I can login to a root shell on my machine.
I’m using a control panel to manage my site (ssh or webmin)

Thank you

Is that intentional? Do you mean for them to now be hosted separately on separate machines?

I am using a service from the registrar that redirects to The DNS and DNS zones are also managed at the registrar’s level.
Which explains why the IPs for and are different.

So yes it is somewhat intentional.

So, you’re running Certbot on the machine that is pointed at, right?

Could you post the renewal configuration file from /etc/letsencrypt/renewal for this certificate?

That is correct.

I don’t have access to the server right now as I am on my mobile. I will only be able to post this information tomorrow morning CET time.

Thank you for your help.

Here’s the conf file:

renew_before_expiry = 30 days

version = 0.10.2
archive_dir = /etc/letsencrypt/archive/
cert = /etc/letsencrypt/live/
privkey = /etc/letsencrypt/live/
chain = /etc/letsencrypt/live/
fullchain = /etc/letsencrypt/live/

Options used in the renewal process

account = 8ec27e477c57b14395a65ce3af114443
authenticator = webroot
installer = None
post_hook = service apache2 start
pre_hook = service apache2 stop
[[webroot_map]] = /tmp/letsencrypt-auto = /tmp/letsencrypt-auto

It appears that I did not have the full picture. Our developer was trying to renew the certificate for at the same time, which produced the error.

I changed the A record for and made it point to the server. We are now managing the redirection from to at the server level. We were able to renew the certificate.

Thank you again for your help.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.