Per @jillian:
Let’s Encrypt has rate limits for many endpoints. You can read about them here: Rate Limits - Let's Encrypt
In many cases, there is a misconfiguration of a client/host and it is failing at some stage of the issuance process and starts spamming an endpoint until it gets rate limited.
From: