I'm trying to renew a Let's Encrypt certificate using the getssl client. It has always worked perfectly for years, but now it seems my hosting provider ("Arsys" at Spain) has changed the DNS servers somehow and the TXT records are always returned all in lowercase, so it causes the validation to fail.
What can I do to pass the validation to renew the certificate?
Using the debug option in getssl I get the following:
dig TXT _acme-challenge.gestion.fisiorespiracion.es @dns21.servidoresdns.net
dns21.servidoresdns.net gave ... "jqzphzp9egsrsa0jafetqax8vv03f7a-rbpzj6pdkw8"
checking DNS at dns21.servidoresdns.net for _acme-challenge.gestion.fisiorespiracion.es. Attempt 36/100 gave wrong result, waiting 30 secs before checking again
Thank you very much
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: fisiorespiracion.es
I ran this command: getssl gestion.fisiorespiracion.es -u -d
It produced this output: (shown above)
My web server is (include version): unknown, managed by hosting provider.
The operating system my web server runs on is (include version): unknown, managed by hosting provider.
My hosting provider, if applicable, is: Arsys
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): yes
The version of my client is: getssl 2.48