Hi,
All domains you are trying to renew (expand) are using TLS-SNI-01, which was disabled.
So, you can rerun the command by adding --preferred-challenges http to your arguments.
Example.
sudo certbot-auto certonly --expand --cert-name qumran2 -d anteprima.qumran2.net,benvenuto.cathopedia.org,bg.qumran2.net,bibbianuova.qumran2.net,bibbia.qumran2.net,blog.qumran2.net,cathopedia.org,commons.cathopedia.org,de.qumran2.net,disegni.qumran2.net,en.qumran2.net,es.qumran2.net,euroflora.qumran2.net,guaricano.chiesamissionaria.it,it.cathopedia.org,materiale.qumran2.net,next.cathopedia.org,palmaro.qumran2.net,phpinfo.cathopedia.org,phplist.qumran2.net,pretigenova92.qumran2.net,www.pretionline.it,pt.qumran2.net,segreteria.qumran2.net,servizio.qumran2.net,weewx.qumran2.net,www.cathopedia.org,www.qumran2.net --preferred-challenges http
Also, let's encrypt now support wildcard certificates, so you can reduce the domain list by simply use
sudo certbor-auto --preferred-challenges dns -d "*.qumran2.net" -d "*.cathopedia.org" -d cathopedia.org -d qumran2.net
However, since your DNS provider seems have no known intergration to certbot (or any other third party softwares), you'll need to manually add/update txt records every three month. But it can save hell lots of time from entering domain names and expanding certificates (if is a subdomain of already included domains)
Thank you