Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: server6.noderia.com
I ran this command: sudo certbot
It produced this output: requests.exceptions.ConnectionError: ('Connection aborted.', ConnectionResetError(104, 'Connection reset by peer'))
My web server is (include version): Apache 2.4
The operating system my web server runs on is (include version): OpenSUSE Leap 16
My hosting provider, if applicable, is: Hetzner.com
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 5.1.0
That is a problem with your system making an outbound request to the Let's Encrypt API server. You likely have a problem connecting outbound to anything but can you show the result of these to better isolate the problem?
curl https://www.cloudflare.com/cdn-cgi/trace
curl -I https://google.com
curl -4 https://ifconfig.io
curl -6 https://ifconfig.io
Note: the last command with -6 will fail if you do not have IPv6 enabled. You can skip that if you do not have that.
- curl https://www.cloudflare.com/cdn-cgi/trace
curl: (35) Recv failure: Connection reset by peer
- curl -I https://google.com
HTTP/2 301
location: https://www.google.com/
content-type: text/html; charset=UTF-8
content-security-policy-report-only: object-src 'none';base-uri 'self';script-src 'nonce-KxqKXfSPBUBw3rI3IRmVrg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
date: Sun, 26 Apr 2026 15:17:26 GMT
expires: Tue, 26 May 2026 15:17:26 GMT
cache-control: public, max-age=2592000
server: gws
content-length: 220
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
- curl -4 https://ifconfig.io
curl: (35) Recv failure: Connection reset by peer
- curl -6 https://ifconfig.io
curl: (7) Failed to connect to ifconfig.io port 443 after 0 ms: Could not connect to server
Looks like you have problems connecting to any service using Cloudflare's network. Let's Encrypt is just one of many of those. You may have problems connecting to other services as well. Are you able to connect to something like curl https://amazon.com ?
Did you setup the network config for your system? Or was that done by your hosting service?
Do you have a firewall blocking certain outbound connections? If so, review those settings carefully.
Please show output of this
sudo traceroute -T -p 443 acme-v02.api.letsencrypt.org
Hi, Thank you for taking time to answer me.
This is a rented server provided by Hetzner in Finland. There are no firewall rules blocking these ports, but there definitely are problems with network connections. I have contacted them about it. traceroute to letsencrypt.org showed this:
sudo traceroute -T -p 443 acme-v02.api.letsencrypt.org
traceroute to acme-v02.api.letsencrypt.org (172.65.32.248), 30 hops max, 60 byte packets
1 * * *
2 core31.hel1.hetzner.com (213.133.126.31) 0.523 ms 0.647 ms core32.hel1.hetzner.com (213.133.126.32) 0.510 ms
3 core8.fra.hetzner.com (213.239.224.153) 20.313 ms core9.fra.hetzner.com (213.239.224.166) 20.135 ms core8.fra.hetzner.com (213.239.224.149) 20.261 ms
4 static.213-133-112-34.clients.your-server.de (213.133.112.34) 21.167 ms 162.158.84.254 (162.158.84.254) 20.761 ms 20.739 ms
5 162.158.84.79 (162.158.84.79) 20.189 ms 20.169 ms 162.158.84.78 (162.158.84.78) 20.290 ms
6 162.158.84.221 (162.158.84.221) 20.833 ms * *
7 172.65.32.248 (172.65.32.248) 20.548 ms 20.591 ms *
and : curl https://amazon.com
301 Moved Permanently
301 Moved Permanently
Server
/Terje