Anyone could initiate a validation on any random hostname. I’m not sure if Let’s Encrypt is able to help you in this case, perhaps because of privacy reasons or something.
What is the host associated to that GET request? It may or may not help, but better to know.
It is possible that there is no person behind, just a cron job. Analyse the timing/frequency how regular it is. Even possible that you have an ACME client somewhere forgotten in a corner.
That sounds like a certbot on a standard twice a day cronjob trying to renew. Chances are, it’s one of your own. certbot wouldn’t try a renew if it didn’t succeed at least once. Therefore, it has had control over the domain that instance, but now hasn’t any longer.
@lestaff could look up from the logs which account triggered the given challenge value. Then, they could send notification to the e-mail of that account about the misuse. I do not think that it would be appropriate to communicate to you the ACME client IP or the account e-mail address. On the other hand, if the they wish to do so they could act as a proxy to your complaint.
If you have a previous hosting provider, I agree that it’s likely they are still trying to do validations on your hostname. I’ve seen a number of hosting providers that don’t notice when a customer moves their DNS away. My recommendation is that you reach out to them directly.
Thank you @jsha. I've talked to our former shared hosting provider: they told us they do not run an automatic cert. issuing robot.
Our current hosting provider is UpCloud: they provide only empty cloud instances I do all the things on this server: I use a manual python client for LE but currently we have a paid wildcard certificate for 1 year.
I'd like you to send a message to the initiator: Please stop requesting certificates to our domain: voiz.hu
Could you do it for me?
According to crt.sh, there was a Let's Encrypt certificate issued for voiz.hu as recently as 2019-08-05: https://crt.sh/?q=voiz.hu. And there are Let's Encrypt certificates for subdomains like api.voiz.hu being actively issued through today.
If you are in control of api.voiz.hu and the other subdomains, and want to make sure you are not using Let's Encrypt in your infrastructure, I would recommend that you replace the certificates on those hostnames with certificates from a different CA, and install a CAA record requesting that Let's Encrypt not issue for any subdomain of voiz.hu. You should probably also find any automation you may have running on those subdomains and shut it down.
As far as the main hostname, voiz.hu, can you tell me what hosting provider you were using on 2019-08-05? Is that the same hosting provider that recently told you they do not issue Let's Encrypt certificates?
Thanks! elin.hu either misunderstood your request or gave you inaccurate information. They're still attempting issuance for your domain name. You should reach out to them again.