I deliberately removed the AAAA-Record from da.wikihoster.net. Challenge should be done via IPv4 only. Again I am at a loss. Any help appreciated to get this working without an AAAA-Record.
I ran this command: certbot certonly --webroot -w /var/www/htdocs/mw/02140 -d da.wikihoster.de --dry-run
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Cert not due for renewal, but simulating renewal for dry run
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for da.wikihoster.de
Using the webroot path /var/www/htdocs/mw/02140 for all unmatched domains.
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. da.wikihoster.de (http-01): urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up A for da.wikihoster.de - check that a DNS record exists for this domain; DNS problem: NXDOMAIN looking up AAAA for da.wikihoster.de - check that a DNS record exists for this domain
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: da.wikihoster.de
Type: None
Detail: DNS problem: NXDOMAIN looking up A for da.wikihoster.de -
check that a DNS record exists for this domain; DNS problem:
NXDOMAIN looking up AAAA for da.wikihoster.de - check that a DNS
record exists for this domain
My web server is (include version): Apache/2.4.38 (Debian)
The operating system my web server runs on is (include version): Debian GNU/Linux 10 (buster)
My hosting provider, if applicable, is: IN-Berlin (privately maintained though)
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
Well, after adding an A record for da.wikihoster.de everything works as expected again. Oh man. Human error at its best. Thanks a lot for your pointers and help me see the obvious.