Error creating new certificate


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g., so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

Client within Plesk. Environment provided by hosting provider.
Worked well for other domains ( or

It produced this output:

Fehler: Let’s Encrypt-SSL/TLS-Zertifikat konnte nicht ausgestellt werden für . Die Autorisierung dieser Domain ist fehlgeschlagen.
(Error: certificate cannot be issued, autorisation of the domain failed)

Invalid response from
Type: urn:acme:error:connection
Status: 400
Detail: Fetching Connection refused

My web server is (include version): ngnix

The operating system my web server runs on is (include version): Linux

My hosting provider, if applicable, is:
servertown support answered everything OK on their side and asked to contact you …

I can login to a root shell on my machine (yes or no, or I don’t know): No

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): Plesk



Is it possible that your hosting provider handle the actual validation? Because the server respond to all other queries except some true token field.

Thank you


Hi @zsolution

looks like a temporary problem of your hosting environment. Now

works and shows correct content:


So try it again.


My provider suspects that the ip adress of lets encrypt has been blocked and asked me for the IP adress of let’s encrypt cert server …


Can your provider look at logs and see the firewall rejections? As I understand, Let’s Encrypt can use different IPs depending on location for verification, and in the future is planning on verifying from multiple locations simultaneously.


We have a number of previous threads about not whitelisting validation IP addresses. I guess the most official one is


I get the impression this was more of a “being on the blacklist” scenario than “not being on the whitelist.” I recall another user having that issue a few months ago as well.


A provider shouldn’t block external access to websites.


According to the hosting provider Server / Firewall checked, everything OK

Hint found on Plesk Forum:
Note: Let’s Encrypt gives only 6 attempts to obtain a certificate in a week for a certain domain.

How does Let’s encrypt count the attempts ?
By IP or by domain name?


This is wrong. You can create 5 certificates per week with the same name set.

But there is no certificate:;include_subdomains:true;

There is a

Failed Validation limit of 5 failures per account, per hostname, per hour

But this is also irrelevant (one hour).


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.