Hi there,
I have the following issue, I am not able to renew the certificate to below’s domain;
Any suggestion on what the cause might be…
My domain is:
I ran this command:
certbot renew
It produced this output:
Processing /etc/letsencrypt/renewal/lacozaandam.com.conf
Cert is due for renewal, auto-renewing…
Renewing an existing certificate
Performing the following challenges:
tls-sni-01 challenge for www.lacozaandam.com
tls-sni-01 challenge for lacozaandam.com
Waiting for verification…
Cleaning up challenges
Attempting to renew cert (lacozaandam.com) from /etc/letsencrypt/renewal/lacozaandam.com.conf produced an unexpected error: Failed authorization procedure. www.lacozaandam.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 498ed8f18a7521dde07f5cac4f11fc1f.e2590b5b48efc9cbbace2c5e6ee78932.acme.invalid from [2001:888:0:18::117:80]:443. Received 1 certificate(s), first certificate had names “sni-support-required-for-valid-ssl”. Skipping.
Processing /etc/letsencrypt/renewal/lacozaandam.com-0001.conf
Cert not yet due for renewal
The following certs are not due for renewal yet:
/etc/letsencrypt/live/lacozaandam.com-0001/fullchain.pem (skipped)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/lacozaandam.com/fullchain.pem (failure)
1 renew failure(s), 0 parse failure(s)
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: www.lacozaandam.com
Type: unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge.
Requested
498ed8f18a7521dde07f5cac4f11fc1f.e2590b5b48efc9cbbace2c5e6ee78932.acme.invalid
from [2001:888:0:18::117:80]:443. Received 1 certificate(s), first
certificate had names “sni-support-required-for-valid-ssl”To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version):
Server version: Apache/2.4.7 (Ubuntu)
Server built: Sep 18 2017 16:37:54
Server’s Module Magic Number: 20120211:27
Server loaded: APR 1.5.1-dev, APR-UTIL 1.5.3
Compiled using: APR 1.5.1-dev, APR-UTIL 1.5.3
The operating system my web server runs on is (include version):
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 14.04.5 LTS
Release: 14.04
Codename: trusty
My hosting provider, if applicable, is:
DigitalOcean
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No