As a very brief introduction, we’re an organization in the position of requesting SSL certificates for other organizations. We’re running a custom ACME client which we’ve used to successfully provision a couple dozen certificates so far. I’ll venture to say we have a basic understanding of the ACME protocol and Let’s Encrypt’s published rate limits (https://letsencrypt.org/docs/rate-limits/).
However, we’ve hit a “Certificates per Registered Domain” rate limit in our attempts to obtain a certificate for the go.linuxfoundation.org domain:
Error creating new cert :: too many certificates already issued for: linuxfoundation.org
This is confusing because a search on crt.sh (https://crt.sh/?q=linuxfoundation.org) reveals that there have been 5 certificates issued by Let’s Encrypt for the linuxfoundation.org domain in the past week. Including our request, this should be well under the 20/week limit published in the rate limit documentation.
Can anyone provide any insight or clarify any misunderstanding on our part here?