How do I revoke a certificate if I have neither the account key nor the private key to the certificate? I can prove server control, but running
letsencrypt revoke -d student.andover.edu --cert-path revoke.pem results in:
The client lacks sufficient authorization :: Revocation request must be signed by private key of cert to be revoked, or by the account key of the account that issued it. Please see the logfiles in /var/log/letsencrypt for more details.
There should be a way to revoke previously-issued certificates based on proof of domain ownership/server control, since it is very possible that the legitimate owner would not have access to the credentials used to issue an unauthorized certificate.
The certificate that I am trying to revoke has the serial number