Urn:acme:error:unauthorized, 404, without objective reasons

The name resolves to IPv4 and IPv6 addresses
Addresses: 2a03:6f00:1:::xxxx
95.213.x.x

You must ensure that IPv6 can reach your site as IPv6 is preferred over IPv4 by LE.

Also, at least from an IPv4 perspective, http://your.domain/ and http://your.domain/.well-known/acme-challenge/test.txt return the exact same thing.

1 Like

According to the ipv6-test.com/validate.php :

IPv6 validation for http://***.com/.well-known/acme-challenge/test.txt

Congratulations, this website is IPv6 ready

I suggest using an IPv6 proxy to ensure that the content of the website is the same in IPv4 and IPv6 (not just that a website exists at all in IPv6).

1 Like

The certificate worked for about three months. It stopped working for no (objective) reason, I didn’t change anything. Do you really think there’s a problem in IPv4/IPv6? I can provide domain name in PM it really works and works right, but certbot can’t get files.

I’m happy to take a look with IPv6 if you send me the domain name.

Okay, thanks. Sended in PM.

Hi @Nobler,

Using the domain name that you sent in your PM, I checked with IPv4 and IPv6 and found that while they both answer requests, they have different content. So that’s probably the reason; your IPv6 webroot or equivalent doesn’t match your IPv4 webroot.

2 Likes

Wow! I really had correct ipv4 and incorrect ipv6 DNS records. Thank you so much, guys! It was not obvious (for me) and certbot used to work well for about 3 months. I am very grateful to you. How can I thank you? I eat this banana for your health!

3 Likes

Thanks @Nobler! In return, I shall eat this banana for your health.

3 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.