Hi @chrissp, and welcome to the LE community forum 
Please read: Rejecting SHA-1 CSRs and validation using TLS 1.0 / 1.1 URLs
I see:
[which went EOF in April, 2019]
What version of OpenSSL are you using?
What is the process being used to create the CSR file?