received warning email
Hello,
Your certificate (or certificates) for the names listed below will expire in 19 days (on 25 Feb 19 16:35 +0000). Please make sure to renew your certificate before then, or visitors to your website will encounter errors.
We recommend renewing certificates automatically when they have a third of their
total lifetime left. For Let’s Encrypt’s current 90-day certificates, that means
renewing 30 days before expiration. See
https://letsencrypt.org/docs/integration-guide/ for details.
*.colmena.biz
For any questions or support, please visit https://community.letsencrypt.org/. Unfortunately, we can’t provide support by email.
DNS-based acme challenge-response
RFC 2136
Why not just query a randomly generated subdomain to prove that the * record exists?
It’s supposed to be a cryptographic “challenge,” not a “challenge” of technical proficiency.
Otherwise, I might have to delegate a new zone such as
abejas.colmena.biz
to my own name servers and attempt the “challenge” for
*.abejas.colmena.biz
Sadly, I do not see this as a good faith challenge, and, well, in other news, I was almost gassed to death in my home last night, so I have backed off from using the wildcard for the time being.