My domain is:
rakis.nl
I ran this command:
/usr/bin/letsencrypt renew
It produced this output:
Processing /etc/letsencrypt/renewal/blog.rakis.nl.conf
Processing /etc/letsencrypt/renewal/fs.rakis.nl.conf
Processing /etc/letsencrypt/renewal/rakis.nl.conf
The following certs are not due for renewal yet:
/etc/letsencrypt/live/blog.rakis.nl/fullchain.pem (skipped)
/etc/letsencrypt/live/rakis.nl/fullchain.pem (skipped)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/fs.rakis.nl/fullchain.pem (failure)
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: fs.rakis.nl
Type: dns
Detail: DNS problem: SERVFAIL looking up A for fs.rakis.nl
My web server is (include version):
nginx/xenial-updates,xenial-updates,xenial-security,xenial-security,now 1.10.3-0ubuntu0.16.04.2 all [installed]
nginx-common/xenial-updates,xenial-updates,xenial-security,xenial-security,now 1.10.3-0ubuntu0.16.04.2 all [installed,automatic]
nginx-core/xenial-updates,xenial-security,now 1.10.3-0ubuntu0.16.04.2 amd64 [installed,automatic]
The operating system my web server runs on is (include version):
Ubuntu 16.04.5 LTS
My hosting provider, if applicable, is:
DNS through Novoserve, IP by xs4all.nl
I can login to a root shell on my machine (yes or no, or I don’t know):
Yep, local box under my desk
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No.
This worked fine for a few years, started getting errors since a few weeks ago. Automated renewal using a cronjob. I’m rusty in this. What happened? A record for *.rakis.nl vs certificate on fs.rakis.nl? Or something else?
Bert