I am trying to issue an SSL certificate for my domain using Certbot, but I keep encountering an authorization error:

"type": "urn:ietf:params:acme:error:unauthorized",
2025-03-26 11:10:20,191:DEBUG:certbot._internal.error_handler:Encountered exception:
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2025-03-26 11:10:22,115:ERROR:certbot._internal.log:Some challenges have failed.

I have tried:

• Checked DNS Records

  • Ran dig doctors-hospital.trigeminal.ai +short and confirmed that it resolves to my server's IP.

• Verified ACME Challenge Directory

  • Created /var/www/html/.well-known/acme-challenge/testfile
  • Tried accessing /.well-known/acme-challenge/testfile and got the correct output.

• Tried Certbot Commands

  • Used sudo certbot certonly --nginx -d doctors-hospital.trigeminal.ai -d www.doctors-hospital.trigeminal.ai
  • Still getting the same error.

Questions:

1. How can I properly configure Certbot to pass the ACME challenge?
2. Is there a better way to debug why the challenge is failing?
3. If my domain is correctly pointing to the server, what else could be blocking Certbot’s request?