Zerossl Verification error

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g., so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:profreehost

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

After uploading the verification file and clicking next it shows the following error:-

Invalid response from []: “<html><body><script type=“text/javascript” src=”/aes.js" ></script><script>function toNumbers(d){var e=;d.replace(/(…)/g,func"

Your hosting company’s web server is using some software that blocks requests from unusual clients, including Let’s Encrypt’s validation servers.

There are past threads about other web hosts:

You have to get it turned off, or use DNS validation, or use a different hosting company.

Where can I find that software

Hi @Ttttttttttttt

if you want to use http-01 validation, you have to create a file in /.well-known/acme-challenge, Letsencrypt checks that file.

But if you have a shared hosting, your hosting company can block that path. There is a typical script included:


So ask your hoster.

Or check, if you are able to use dns-01 validation:

Previously replied here - Invalid Response From... even when file is ok

How can I use DNS Verification

By adding --handle-as dns option to the command line (and --api 2 if you need to issue a s-called “wildcard certificate”). You will need to be able to add TXT records for your domain though. Your domain name seems to be a free one, registered through Freenom, which I believe provides such option. See the support article at and how the issue with setting TXT record has been resolved at

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.