Can't renew Certificate

I have tried everything I’ve read on the forums and more. Please help.

My domain is:

I ran this command: certbot renew --dry-run

It produced this output below:

Type: unauthorized
Detail: Invalid response from
[]: "<body style=“padding:0; margin:0;”><meta
name=“viewport” content=“widt”

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.

My web server is (include version): Apache/2.4.6

The operating system my web server runs on is (include version): CentOS 7

My hosting provider, if applicable, is: VPSdime

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): Recent

Hi @efejiroe

looks like your configuration has some errors ( ):

Your DNS:

Host T IP-Address is auth. ∑ Queries ∑ Timeout A
Scottsdale/Arizona/US yes 2 0
Dallas/Texas/US yes 2 0
Scottsdale/Arizona/US yes 2 0
AAAA yes C yes 1 0
Scottsdale/Arizona/US yes
Dallas/Texas/US yes
Scottsdale/Arizona/US yes A
Scottsdale/Arizona/US no

You have three different ip addresses. But checking your urls there are different answers. Some redirects http -> https, a https timeout.

answers with a http status 200.

there is a redirect, then a timeout.

And really a lot of differences - same GET-request, different results with different ip addresses (too much to copy).

Looks like you have a mix of different configurations.

So it's nearly impossible to see why the challenge fails.

Are all three ip addresses correct?

1 Like

Goodness no!

Only is.

How would this have happened?


Any advice on how I could fix this?

Remove the two other DNS A entries.

1 Like

I think I have done that - how can I check I have anyways? Tried using the same webtool you used but couldn’t

1 Like

Yep, there is a new check -

Now it looks better.

You have only one ip address. And your urls are ~~ ok.

Domainname Http-Status redirect Sec. G 301 0.266 A 301 0.270 A 303 1.343 N
Certificate error: RemoteCertificateNameMismatch 200 1.700 B 200 1.507 B 301 0.274 A
Visible Content: Moved Permanently The document has moved here . 301 0.267 A
Visible Content: Moved Permanently The document has moved here . 404 1.117 A
Not Found
Visible Content: Not Found The requested URL /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de was not found on this server. 404 1.120 N
Not Found
Certificate error: RemoteCertificateNameMismatch
Visible Content: Not Found The requested URL /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de was not found on this server.

http redirects to https, checking a file in /.well-known/acme-challenge sends the expected http status 404 - Not Found.

So try to find your DocumentRoot of your port 443 vHost, then use it.

certbot run -a webroot -i apache -w yourDocumentRoot -d -d

Worked like a charm. You’ve been awesome! Learn a few from this too. Thanks for your availability! God bless.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.