My domain is:
I ran this command:
I’m using https://github.com/unixcharles/acme-client. In production we’re using v1 of the spec (without any issues), but we’re in the process of moving to v2. I am testing against the staging environment for the time being.
It produced this output:
Almost half of the tries to get a certificate for the domain results in a SERVFAIL error for the CAA from Let’s Encrypt. There is no CAA set on the domain and the nameserver is set to respond with
NOERROR (which is also what I get from
dig. We are using an older version of PowerDNS on our nameservers (so the 4.0.4 is not an option at the moment), but we do not use DNSSEC either, so I think the PowerDNS-bug does not apply here.
We also tried with authenticate.be on Cloudflare and there it also caused the same error pretty often.
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is: we are a hosting provider, Openminds.
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): yes (in-house)