Error for Renewal 2018-07-23 20:27 GMT Let’s Encrypt: POST to https://acme-v01.api.letsencrypt.org/acme/new-cert failed


#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

I am trying to renew one of our existing certificate with LE. The validation has finished but API call to get the certificate fails. The last failed attempt was today “2018-07-23 20:27 GMT Let’s Encrypt: POST to https://acme-v01.api.letsencrypt.org/acme/new-cert failed.” The request is for .mil domain. Is there a new restriction on these domains recently? We were able to renew similar domain last week.


#2

There’s no current restriction on .mil.

More detailed logs are required from the ACME client, “POST to … failed” could be caused by practically anything.


#3

Agreed (Thanks @_az!). You may find some historical mention of a .mil restriction from when Let’s Encrypt originally launched but that restriction was lifted over a year ago (if memory serves me).


#4

@cpu @_az We were reached out by a different team at LE regarding this timeouts. It appears it was an issue with CAA query timeouts.


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.