Your hosting company uses security software that blocks requests from unusual clients, showing them a challenge web page, or blocking them entirely. It stops Let's Encrypt validation from working.
See this thread for example:
You have to convince your hosting company to stop doing this, or use DNS-01 validation, which validates using TXT records you configure in your domain's DNS settings.