C012121216R:.oci tempuser$ sudo certbot certonly --manual --preferred-challenges dns -d "poc3-ashburn.tempdev.space"
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for poc3-ashburn.tempdev.space
Please deploy a DNS TXT record under the name:
with the following value:
Before continuing, verify the TXT record has been deployed. Depending on the DNS
provider, this may take some time, from a few seconds to multiple minutes. You can
check if it has finished deploying with aid of online tools, such as the Google
Admin Toolbox: Dig (DNS lookup).
Look for one or more bolded line(s) below the line ';ANSWER'. It should show the
value(s) you've just added.
Press Enter to Continue
Certbot failed to authenticate some domains (authenticator: manual). The Certificate Authority reported these problems:
Detail: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.poc3-ashburn.tempdev.space - check that a DNS record exists for this domain
Hint: The Certificate Authority failed to verify the manually created DNS TXT records. Ensure that you created these in the correct location, or try waiting longer for DNS propagation on the next attempt.
Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
*.sys.poc3-ashburn.example.com] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: No TXT record found at _acme-challenge.sys.poc3-ashburn.example.com
│ [*.tcp.poc3-ashburn.example.com] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: No TXT record found at _acme-challenge.tcp.poc3-ashburn.example.com
│ [poc3-ashburn.example.com] acme: error: 400 :: urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.poc3-ashburn.example.com - check that a DNS record exists for this domain
example.com is just an example. Assume one domain xyz.com which is registered using AWS. We are able to create a wildcard for the subdomain.xyz.com hosted zone present in aws rout53. Now we are trying to generate wildcard certs for hosted zone subdomain2.xyz.com present in OCI