I see this issue is a fairly common one and I have perused other similar questions. Sorry for reposting, it just seems to have quite variable solutions.
My site is colinr.tech.
I am configuring it using external DNS as I am pulling the data from a WordPress installation on the subdomain at another hosting provider.
It was all working up until late this week and I can’t figure out where it is going wrong. These are my domain settings for this site at Netlify. I am pointing the A record which is set at my hosting provider.
Hi, @0x0Bop. Actually, this time it did do the HTTP-based verification. However, there is an AAAA record for the apex domain which doesn’t point to Netlify:
colinr.tech. 3600 IN AAAA 2a07:7800::135
Let’s Encrypted queried this IP address for the HTTP-based verification and, again - because this isn’t an IP address at Netlify, the HTTP verification. If you delete that record above, the “Renew certificate” button should work in, at most, the next hour. (I say one hour because the TTL value in the record is 3600 seconds).
If it still doesn’t work once the AAAA record is deleted, please let us know.