I have a domain (e.g. example.com) which is resolved to different IPs (depends on client location). E.g. from America it’s seen as 188.8.131.52, from Europe it’s seen as 184.108.40.206. Due to this setup it’s quite tricky to pass domain validation in non-american location, as validation letsencrypt servers are in America region and resolve my domain to 220.127.116.11 only.
For initial setup I got certificate on American server and manually copied it to European. Though it’s really painful process (especially if it’s a bit more than just 2 servers).
So I’m trying to find the way to make it more smooth.
The only idea is to configure region subdomains (e.g. europe.example.com which will always be resolved as 18.104.22.168) and request certificate mainly for it (and include there a main domain as well, but not as a main one).
E.g. execute from European server:
certbot certonly --standalone --d europe.example.com -d example.com -d www.example.com
and from American server:
certbot certonly --standalone --d america.example.com -d example.com -d www.example.com
Though I’m not sure if that is the right way to do and if this will work at all (will it?).
I can’t be the only one with such setup. How it was supposed to be configured?