Do you have other similar apps on this server (or others) that are currently using Let's Encrypt certificates?
3 Likes
yes. fickdichselber.com (im sorry if you are german) & sempaifilehost.xyz
1 Like
I'm off my game today. Of course the Let's Debug order will fail. It's a test.
3 Likes
What's the complete error message you're seeing.
2 Likes
So the 403 for authorization means that the order is unauthorized. This is likely due to three failure to reach the authorization file as I mentioned earlier, but the real one this time.
Would need to see the logs for your real order(s) to know for sure.
3 Likes
where even are these logs?
1 Like
For hestiaCP, I'm not sure.
2 Likes
Which version of Hestiacp are you using? Fix: Lets encrypt download certificate bug by jaapmarcus · Pull Request #3442 · hestiacp/hestiacp · GitHub
5 Likes
Thanks for the assist, @webprofusion. 
3 Likes
latest. updating was my first tought.
1 Like
It's like @HarleyVader's client is trying to finalize a failed (unauthorized) order.
4 Likes
@HarleyVader
I'm assuming you've tried checking and unchecking the box about using Let's Encrypt to get your certificate?
I'm not sure which CA your CP is using without that box checked.
Update: Nope. Your original post mentions the error coming from Let's Encrypt.
Some clients default to other CAs.
2 Likes
This may seem obvious, but have you tried repeating the process? Don't do this too many times to avoid getting rate-limited.
4 Likes
If I had to surmise based on what I've been presented, I would say that something about the way your website content is being returned by your server for bambisleep.chat is interfering with accessing the challenge/validation file.
Usually this is related to rewrites/redirections.
3 Likes
It was working yesterday. today i login to my control panel hestiaCP after a user pulled my attention to it.
the checkmark is the automatic control panel app i use to get my sites certificates.
there was a certificate from Let's Encrypt but it was invalid. i just redo the process. & get the error 403
1 Like
The autorenewal likely failed.
You had 4 certificates expire today.
3 Likes
i did something dumb. i backuped the domain & deleted it in hestiaCP
added it again
fixed
ohhh darn....... WTH?
so hestiaCP actually created 4 certs?
1 Like
No worries. I did something dumb at least three times in this thread. 
2 Likes
Yep. Since crt.sh is much slower picking up certs than it used to be, I'm not sure how long it will take to see the one (or more) you just got.
2 Likes
Let me see the service... one sec... 
2 Likes