[root@centos7 ~]# certbot certonly
--webroot -w /var/tmp/acme-challenges
--cert-name cbe30c15fb7f.sn.mynetname.net
Saving debug log to /var/log/letsencrypt/letsencrypt.log
An RSA certificate named cbe30c15fb7f.sn.mynetname.net already exists. Do you
want to update its key type to ECDSA?
(U)pdate key type/(K)eep existing key type: K
Renewing an existing certificate for cbe30c15fb7f.sn.mynetname.net
Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
Domain: cbe30c15fb7f.sn.mynetname.net
Type: unauthorized
Detail: 188.243.62.66: Invalid response from http://cbe30c15fb7f.sn.mynetname.net/.well-known/acme-challenge/Ky012U5rONOtEdAeLhj2B-LMKDzIaCz7hbcYYDUFlMI: 404
Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.
Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
letsencrypt.log.1.txt (18.8 KB)