Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
I ran this command:
certbot certonly --cert-name crazyblockstech.com -a apache -d crazyblockstech.com,www.crazyblockstech.com --dry-run
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator apache, Installer None Cert is due for renewal, auto-renewing... Simulating renewal of an existing certificate for crazyblockstech.com and www.crazyblockstech.com Performing the following challenges: http-01 challenge for crazyblockstech.com http-01 challenge for www.crazyblockstech.com Waiting for verification... Challenge failed for domain crazyblockstech.com Challenge failed for domain www.crazyblockstech.com http-01 challenge for crazyblockstech.com http-01 challenge for www.crazyblockstech.com Cleaning up challenges IMPORTANT NOTES: - The following errors were reported by the server: Domain: crazyblockstech.com Type: unauthorized Detail: 184.108.40.206: Invalid response from http://crazyblockstech.com/.well-known/acme-challenge/VaeN0vIR3y83ZvdYtZPgW8A6hehL4fdEHFI1BvEQ9SE: 403 Domain: www.crazyblockstech.com Type: unauthorized Detail: 220.127.116.11: Invalid response from http://www.crazyblockstech.com/.well-known/acme-challenge/GJTc6_KhY6hjzSL_RguqbpZfnSmi5fseNG2z9pb4cxI: 403 To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
My web server is (include version):
The operating system my web server runs on is (include version):
Debian 11 GNU/Linux x86-64
Linux debian-s-1vcpu-1gb-amd-nyc1-01 5.10.0-10-amd64 #1 SMP Debian 5.10.84-1 (2021-12-08) x86_64 GNU/Linux
My hosting provider, if applicable, is:
debian-s-1vcpu-1gb-amd ("Premium AMD")
I can login to a root shell on my machine (yes or no, or I don't know): Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot):
I am trying to renew my certificate for my website but running into this error when renewing.
Apache is used as a reverse proxy for Gunicorn in this case.
Thanks in advance.
Update: Disabled fail2ban but received the same error