Note that some DNS failures for issuance that was previously successful could be a result of Let's Encrypt's new multiperspective validation.
(This isn't a likely explanation for all of the problems that were mentioned on this thread, but it's something that's good to be aware of, especially if you've seen the behavior change very recently.)