That is probably a very old version of Certbot.
The problem can be resolved by upgrading with the installation instructions on https://certbot.eff.org/lets-encrypt/ubuntuxenial-apache .
Without upgrading, you can potentially solve your issue with:
--preferred-challenges http
Please read IMPORTANT: What you need to know about TLS-SNI validation issues for information regarding that error message.