On 20 January I received the confirmation about the ECDSA allow list:
Your request for the specified ACME account ID to be placed on the Let's Encrypt ECDSA allowlist has been moved to production. Now when you request a cert from Let's Encrypt with your ECDSA key, the cert will be issued from our ECDSA hierarchy.
I have tried to issue a new certificate, but I always only get the certificate back from R3.
First of all, I tired with just the certbot:
certbot certonly --key-type=ecdsa --elliptic-curve=secp384r1 --cert-name example.com -d example.com -m firstname.lastname@example.org --agree-tos --standalone
After I tired to generate CSR manually:
openssl ecparam -name secp384r1 -genkey -noout -out example.com.key openssl req -new -sha256 -key example.com.key -out example.com.csr -subj "/C=Count/ST=Sta/L=Loc/O=Org/OU=Dept/CN=example.com" certbot certonly --csr example.com.csr -d example.com -m email@example.com --agree-tos --standalone -vvv
After several attempts, I still failed to obtain a certificate issued by E1.
Am I doing something wrong?
Thanks in advance for your help,