Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Usually, when there's no firewall blocking the port, even when there isn't an application listening on a certain port, a client should get a response from the operating system. Obviously when there is an application listening, that application would respond, but when nothing is listening you'd usually get a "Connection refused" ICMP reply from the server. I'm not getting that. I too am getting a time out.
So please check all possible firewalls, as port 80 doesn't seem to be exposed, possibly only to certain regions of the world.
How are you seeing this, out of curiosity? I've restarted the server to show that HTTP requests are getting through, it's only LE ones that are having trouble.