Remove a domain from chain


I’m using the command: certbot renew --dry-run
to test the renewal of certificates …

the main domain has some aliases: and

this time it fails because a domain ( is not active (expired domain) and it is no longer used …
so I get this error:

Processing /etc/letsencrypt/renewal/

Attempting to parse the version 0.21.1 renewal configuration file found at /etc/letsencrypt/renewal/ with version 0.19.0 of Certbot. This might not work.
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator webroot, Installer apache
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for
http-01 challenge for

Waiting for verification…
Cleaning up challenges
Attempting to renew cert ( from /etc/letsencrypt/renewal/ produced an unexpected error: Failed authorization procedure. (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: DNS problem: NXDOMAIN looking up A for Skipping.
The following certs could not be renewed:
/etc/letsencrypt/live/ (failure)

How can I solve this?


You can issue a new certificate for on its own (using the usual invocation of Certbot as you did initially).

Once that succeeds, make sure your server is using the new certificate, and then you can find the name of the certificate that has the expired alias on it:

certbot certificates

and delete it by name:

certbot delete --cert-name <name>


i have issued the certificates with the command :

./certbot-auto --authenticator webroot --webroot-path /var/www/vhosts/ --installer apache -d -d -d

and currently, the domain is really expired… so i have a doubt that the new certificate for will be not issued… is it correct?


You can just run that same command but remove -d, so you only get the domains you want.

It might ask you whether you want to issue a new certificate or use the existing one, in which case you choose to issue a new certificate.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.