July 2, 2022 . 1 MIN READ
The issue is that Cloudflare acts as a proxy, so its IP addresses are visible instead of your server’s IP. This can interfere with standard certificate renewals. Ideally, your host can offer an alternative method like DNS validation.
Alternatively, you may need to temporarily switch your Cloudflare status from Proxied (Orange Cloud) to DNS Only (Grey Cloud) while the certificate renews.
Reference:
https://community.cloudflare.com/t/using-let-s-encrypt-ssl-got-message-from-hosting-cant-extend-ssl/109676
