We are getting systemwide failures trying to contact crl.identrust.com - the server does not respond and connections timeout.
Ran traceroute. Things look ok until we get to customer.algx.net - after that, things time out. I think their server is down (been down since sometime this am).
This is unrelated to Let's Encrypt and sounds like a problem with a different CA: Entrust. You'll likely have to investigate this problem with Entrust's support channels.
Well, these are letsencrypt certs whose root CA is signed by identrust.com with a CRL that points at https://crl.identrust.com/… So, it is a problem with letsencrypt CA’s and certs since they can no longer be verified via the provided CRL url.