Let’s Encrypt certificates weren’t renewed

Community Support
1

I have two domains (no ipv6 on any records on those domains) on that sever, both failed to renew.

  • Get no errors when trying manually, only this:

v-add-letsencrypt-domain myuser example.com
Error: Let’s Encrypt nonce request status (example.com)

  • Fail count shows:

grep -rE “LETSENCRYPT_FAIL_COUNT=‘[^0][0-9]’” /usr/local/hestia/data/users | sed -E “s/(.):(DOMAIN=‘[^’]+').(LETSENCRYPT_FAIL_COUNT=‘[^’]+').*/\1 \2 \3/” | column -t
/usr/local/hestia/data/users/myuser/web.conf DOMAIN=‘example.com’ LETSENCRYPT_FAIL_COUNT=‘31’

  • Log LE-myuser-example.com.log seems empty¿?
=============================
Date Time: 2026-02-05 10:26:25
WEB_SYSTEM: apache2
PROXY_SYSTEM: nginx
user: myuser
domain: example.com

aliases:

proto: http-01

wildcard:

==[Step 1]==

status:

nonce:

answer:

  • Let’s Debug results are ok:
    Test result for example.com using http-01
    All OK!

  • Tried this from othe topic:

curl --user-agent “HestiaCP” -s -I “``https://acme-v02.api.letsencrypt.org/directory”
Nothing shows

Don’t know what to try next

2

Think I found the problem: systemd-resolved is not installed :face_with_crossed_out_eyes:
Yes! That was it. Writed some temporary dns and now I’m trying to figure out what happened.

1 Like