Because I need to upgrade from TLS-SNI-01 (like a lot of other people), it upgraded certbot on my Debian Stretch from 0.10 to 0.28 (from stretch-backports).
After running sudo certbot renew --dry-run
I get the following errors:
Domain: www.poiu.de
Type: unauthorized
Detail: Invalid response from
http://www.poiu.de/.well-known/acme-challenge/r-25Q90ylClYf_aFHdvB-9seR3FRn1k6-1K3YM83QMQ:
“\n\n404 Not
Found\n\nNot Found
\n<p”Domain: poiu.de
Type: unauthorized
Detail: Invalid response from
http://poiu.de/.well-known/acme-challenge/H2EInaa1bgpazWEH3lQkhbrIJzALkoTIiKnoZ8SspOs:
“\n\n404 Not
Found\n\nNot Found
\n<p”To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
The interesting thing is that only those 2 domains fail. I have other domains on the same server that an correctly be authenticated. Even other subdomains of the same domain!. I didn’t find any .well-known
somewhere (and also rannot remember having created one anywhere).
Can someone help me here, what can be wrong with these 2 domains?