HTTP 405 sounds like it might be this protocol change: ACME v2 - Scheduled deprecation of unauthenticated resource GETs.
Though technically, it was a change to the draft protocol; the final RFC8555 ACME protocol has always had this requirement.
The change was announced in 2018 and there was a grace period until November 2020 to make the transition.