Thank you for your help! For readability I put the code at the end. I've also attached the anonymized file, but this seems to be the relevant part. According to the hint letsencrypt needs some sort of file that's created by my certbot, however I don't know what I need to do in order to make it available. {
"identifier": {
"type": "dns",
"value": "sub.mydomain.com"
},
"status": "invalid",
"expires": "2025-09-19T22:29:59Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/1951384786/582604934051/680gKQ",
"status": "invalid",
"validated": "2025-09-12T22:29:59Z",
"error": {
"type": "urn:ietf:params:acme:error:connection",
"detail": "2001:###:####:####:####:####:####:3736: Fetching https://sub.mydomain.com/.well-known/acme-challenge/#########################: Error getting validation data",
"status": 400
},
"token": "#########################",
"validationRecord": [
{
"url": "http://sub.mydomain.com/.well-known/acme-challenge/#########################",
"hostname": "sub.mydomain.com",
"port": "80",
"addressesResolved": [
"46.###.###.###",
"2001:###:####:####:####:####:####:3736"
],
"addressUsed": "2001:###:####:####:####:####:####:3736"
},
{
"url": "http://sub.mydomain.com/.well-known/acme-challenge/#########################",
"hostname": "sub.mydomain.com",
"port": "80",
"addressesResolved": [
"46.###.###.###",
"2001:###:####:####:####:####:####:3736"
],
"addressUsed": "46.###.###.###"
},
{
"url": "https://sub.mydomain.com/.well-known/acme-challenge/#########################",
"hostname": "sub.mydomain.com",
"port": "443",
"addressesResolved": [
"46.###.###.###",
"2001:###:####:####:####:####:####:3736"
],
"addressUsed": "2001:###:####:####:####:####:####:3736"
}
]
}
]
}
2025-09-13 00:30:01,203:DEBUG:acme.client:Storing nonce: z38KXhlRljrs_ghQTq4a7sG4IqZVTPmWQ-0xnHhhaT3LR9gy4dw
2025-09-13 00:30:01,204:INFO:certbot._internal.auth_handler:Challenge failed for domain sub.mydomain.com
2025-09-13 00:30:01,204:INFO:certbot._internal.auth_handler:http-01 challenge for sub.mydomain.com
2025-09-13 00:30:01,204:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
Domain: sub.mydomain.com
Type: connection
Detail: 2001:###:####:####:####:####:####:3736: Fetching https://sub.mydomain.com/.well-known/acme-challenge/#########################: Error getting validation data
Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.
2025-09-13 00:30:01,205:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort)
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
letsencrypt.log