Microsoft's owns that domain. You're just borrowing it or being assigned. You need to get your own domain which you control.
A LetsEncrypt official response regarding domains on amazon's infrastructure being blacklisted is in this thread: Policy forbids issuing for name on Amazon EC2 domain - #3 by alesar.dev
A relevant quote that probably applies to this microsoft issue: