Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: bulutum.duranonline.net
I ran this command: sudo certbot --apache
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Which names would you like to activate HTTPS for?
1: bulutum.duranonline.net
2: www.bulutum.duranonline.net
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter ‘c’ to cancel): 1
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for bulutum.duranonline.net
Waiting for verification…
Challenge failed for domain bulutum.duranonline.net
http-01 challenge for bulutum.duranonline.net
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: bulutum.duranonline.net
Type: unauthorized
Detail: Invalid response from
http://bulutum.duranonline.net/.well-known/acme-challenge/0KoLPQXexsRQFgTpJLZ9FTyWxrt-EHzZFwkDzIFgFDI
[173.30.4.117]: "<?xml version=“1.0”
encoding=“UTF-8”?>\n<!DOCTYPE html PUBLIC “-//W3C//DTD XHTML 1.0
Strict//EN”\n “http://www.w3.org/TR/xhtml1/D”To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version): apache 2.4.41-1
The operating system my web server runs on is (include version): Manjaro linux (arch derivative / rolling release, up-to-date)
My hosting provider, if applicable, is: N/A
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot): certbot 0.39.0, certbot-apache 0.39.0-1
Having read some previously posted questions with similar problems, I can access test.txt by http://bulutum.duranonline.net/test.txt, which is placed under my web root (/srv/http).
Additionally, I deleted the AAAA record from my DNS provider (dyn.com) which contained an IPv6 address, with no avail. IPv4 address is spelled correctly in my DNS record, and I pass http-01 and dns-01 tests at letsdebug.net but fail the tls test obviously.
Your help and guidance will be very much appreciated!