We are thinking of using letsencrypt certificates for our test/dev environments. But requesting certificates for subdomains of our domain returns error “Error creating new authz :: Policy forbids issuing for name”.
From what I have read, this domain most probably blacklisted as high risk domain. Is blacklist is absolute or you can remove our domain on request? Or even better allow issuance for subdomains which specifically allow lestencrypt with CAA records?