Error creating wildcard certificate can't fetch DCV file

My domain is:
ewinkler.ca

I ran this command:
AutoSSL certificate generator from my domain host.

It produced this output:
DNS DCV: No local authority: “ewinkler.ca”; HTTP DCV: The system failed to fetch the DCV (Domain Control Validation) file at “http://ewinkler.ca/.well-known/acme-challenge/TOGG5SEUS6KEQUJ-H-SXUJ9YP9EBRRJJ” because of an error: The system failed to send an HTTP (Hypertext Transfer Protocol) “GET” request to “http://ewinkler.ca/.well-known/acme-challenge/TOGG5SEUS6KEQUJ-H-SXUJ9YP9EBRRJJ” because of an error: Could not connect to 'ewinkler.ca:80': Connection timed out. The domain “ewinkler.ca” resolved to an IP address “154.16.114.152” that does not exist on this server.

My web server is (include version):
lsapi V8.0.1 CloudLinux 1.3

The operating system my web server runs on is (include version):
Linux s1362.use1.mysecurecloudhost.com 4.18.0-513.11.1.lve.el8.x86_64 #1 SMP Thu Jan 18 16:21:02 UTC 2024 x86_64

My hosting provider, if applicable, is:
host4web

I can login to a root shell on my machine (yes or no, or I don't know):
yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
Cpanel 124.0.17

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
unable to use certbot command

So I have more than 1 domain on this account, and the primary domain worked without issue. The above domain ewinkler.ca worked originally, but then gave me an error a while ago. It's not a critical site, so I've been poking at it for a while, with no luck. Now I'm trying to get it to work again, but I get an error for ewinkler.ca. I can generate a cert for www.ewinkler.ca but I keep getting redirected to ewinkler.ca without the www in front, and I've checked the redirector settings in cpanel and there isn't anything that should be doing that.

there is a generic page that should load at http://www.ewinkler.ca/index.html (copied from w3schools)

Hello @SamanthaSass, welcome to the Let's Encrypt community.

Has the IPv4 Address changed?
Looks like it is now 65.181.111.239
https://letsdebug.net/ewinkler.ca/2294943?debug=y

image1129×874 29.6 KB

If it did, it was a long time ago, and controlled by the host team. I did see that and made changes to the zone record a couple of hours ago, so at least that error should get resolved soon.

I still can't figure out what I'm supposed to have in the DCV file since that was all automated previously and every search I do seems to be a dead end.

Seems like the ACME Client should be doing that for you.

Let's see if more knowledgeable Let's Encrypt community volunteers can help with Cpanel.

Have you tried contacting the support group responsible for AutoSSL / cPanel?

Because that error message is coming from it. That system checks various things before requesting an actual cert from Let's Encrypt. The group that put that system together is best placed to resolve this.

Not sure this is the cause of any problem but your apex domain has a different set of IP addresses than your www subdomain. Looks like the www is proxied at Cloudflare but your apex is not.

dig +noall +answer ewinkler.ca
ewinkler.ca.            300     IN      A       65.181.111.239

dig +noall +answer A www.ewinkler.ca
www.ewinkler.ca.        300     IN      CNAME   www.ewinkler.ca.cdn.cloudflare.net.
www.ewinkler.ca.cdn.cloudflare.net. 300 IN A    172.67.191.127
www.ewinkler.ca.cdn.cloudflare.net. 300 IN A    104.21.49.173
dig +noall +answer AAAA www.ewinkler.ca
www.ewinkler.ca.        300     IN      CNAME   www.ewinkler.ca.cdn.cloudflare.net.
www.ewinkler.ca.cdn.cloudflare.net. 300 IN AAAA 2606:4700:3033::ac43:bf7f
www.ewinkler.ca.cdn.cloudflare.net. 300 IN AAAA 2606:4700:3033::6815:31ad

This is the next step. I just wanted to make sure that I had done everything I could before I contact them since they aren't the fastest to respond. Good, but it takes time. Thanks for the help.