When an challenge become invalid because one of the dns servers was not yet updates,
is there any way to retry the challenge ? Else after such an error the validation is blocked.
Would it be an good idea to use TLSA for validation if an acount/cert key is allowed by the domain owner ?
No. You can’t do anything to fix an invalid authorization.
You need to make a new authorization, with a new challenge value, and set the DNS records again.
Hi, this raise the next question
“detail”: “Expired authorization”,