Error renewing certificate from LE: NS returned REFUSED for _acme-challenge

Hi,
I noticed my traefik instance is throwing this error on startup:

time="2022-02-17T10:21:58Z" level=debug msg="Looking for provided certificate(s) to validate [\"mydomain.com\" \"*.mydomain.com\"]..." providerName=google.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory"
time="2022-02-17T10:21:58Z" level=debug msg="No ACME certificate generation required for domains [\"mydomain.com\" \"*.mydomain.com\"]." providerName=google.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory"
time="2022-02-17T10:21:58Z" level=debug msg="legolog: [INFO] [*.mydomain.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/79375698400"
time="2022-02-17T10:21:58Z" level=debug msg="legolog: [INFO] [mydomain.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/79375698410"
time="2022-02-17T10:21:58Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: use dns-01 solver"
time="2022-02-17T10:21:58Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Could not find solver for: tls-alpn-01"
time="2022-02-17T10:21:58Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Could not find solver for: http-01"
time="2022-02-17T10:21:58Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: use dns-01 solver"
time="2022-02-17T10:21:58Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Preparing to solve DNS-01"
time="2022-02-17T10:21:59Z" level=debug msg="legolog: skip: the record already exists: x4lWZLyW60wso_pqY0lQKh_q5QeNCt5KnTccYb7CdPU"
time="2022-02-17T10:21:59Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Preparing to solve DNS-01"
time="2022-02-17T10:21:59Z" level=debug msg="legolog: skip: the record already exists: CqbuAQOF9SX4wNIjv6_5ssFuKICE34XufvxuauiVkP4"
time="2022-02-17T10:21:59Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Trying to solve DNS-01"
time="2022-02-17T10:21:59Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Checking DNS record propagation using [ns-cloud-b1.googledomains.com:53 ns-cloud-b2.googledomains.com:53 ns-cloud-b3.googledomains.com:53 ns-cloud-b4.googledomains.com:53]"
time="2022-02-17T10:22:04Z" level=debug msg="legolog: [INFO] Wait for propagation [timeout: 3m0s, interval: 5s]"
time="2022-02-17T10:22:04Z" level=debug msg="Delaying 5000000000 rather than validating DNS propagation now." providerName=google.acme
[snip]
time="2022-02-17T10:28:00Z" level=debug msg="Delaying 5000000000 rather than validating DNS propagation now." providerName=google.acme
time="2022-02-17T10:28:05Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-02-17T10:28:10Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Cleaning DNS-01 challenge"
time="2022-02-17T10:28:11Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Cleaning DNS-01 challenge"
time="2022-02-17T10:28:13Z" level=debug msg="legolog: [INFO] retry due to: acme: error: 400 :: POST :: https://acme-v02.api.letsencrypt.org/acme/authz-v3/79375698400 :: urn:ietf:params:acme:error:badNonce :: JWS has an invalid anti-replay nonce: \"0102_Y1QYOxBjgvGAlB8Wo3SEtylFxOtxLB3LFUzI0_0JzE\""
time="2022-02-17T10:28:13Z" level=debug msg="legolog: [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/79375698400"
time="2022-02-17T10:28:13Z" level=debug msg="legolog: [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/79375698410"
time="2022-02-17T10:28:14Z" level=error msg="Error renewing certificate from LE: {mydomain.com [*.mydomain.com]}, error: one or more domains had a problem:\n[*.mydomain.com] time limit exceeded: last error: NS ns-cloud-b1.googledomains.com. returned REFUSED for _acme-challenge.mydomain.com.\n[mydomain.com] time limit exceeded: last error: NS ns-cloud-b1.googledomains.com. returned REFUSED for _acme-challenge.mydomain.com.\n" providerName=google.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory"

This happens only for the wildcard domain in my configuration, but I can't understand what is causing the issue, can anyone please enlighten me on what is happening here?
Thank you!

I'm bumping this post as my certificate expired today and I still didn't manage to figure out what's the actual issue.

Here's my docker-compose:

version: "3.8"

services:
  traefik:
    image: traefik:latest
    container_name: traefik
    restart: always
    #security_opt: null
    #- no-new-privileges:true
    deploy:
      resources:
        limits:
          memory: 2048M
        reservations:
          memory: 512M
    networks:
      - proxy
    ports:
      - 80:80
      - 443:443
      - 8080:8080
    environment:
      - GCE_SERVICE_ACCOUNT_FILE=/run/secrets/gcp_service_account
      - GCE_PROJECT=mydomain-com
      - GCE_DEBUG=true
    volumes:
      - /etc/localtime:/etc/localtime:ro
      - /var/run/docker.sock:/var/run/docker.sock:ro
      - ./data/traefik.yml:/etc/traefik/traefik.yml:ro
      - ./data/acme.json:/acme.json
      - ./log:/var/log/
      - ./conf:/conf

    secrets:
      - gcp_service_account
      - usersfile
    logging:
      driver: "json-file"


secrets:
  gcp_service_account:
    file: "secrets/mydomain-com-c1ad2db788c3.json"
  usersfile:
    file: "secrets/usersfile"

networks:
  proxy:
    external: true

My traefik.yml:

log:
 level: DEBUG
 filepath: "/var/log/traefik/traefik.log"

api:
 dashboard: true
 insecure: true
 debug: true

entryPoints:
 web:
   address: ":80"
 secureweb:
   address: ":443"
 traefik:
   address: ":8080"

serversTransport:
 insecureSkipVerify: true

providers:
 docker:
   exposedByDefault: false
   endpoint: "unix:///var/run/docker.sock"

 file:
   directory: "/conf"
   watch: true

certificatesResolvers:
 googleresolver:
   acme:
     email: ********@gmail.com
     storage: /acme.json
     #caServer: "https://acme-staging-v02.api.letsencrypt.org/directory"
     dnsChallenge:
       #delayBeforeCheck: 60
       provider: gcloud
       resolvers:
         #- "ns-cloud-b1.googledomains.com:53"
         #- "ns-cloud-b2.googledomains.com:53"
         #- "ns-cloud-b3.googledomains.com:53"
         #- "ns-cloud-b4.googledomains.com:53"
         - "1.1.1.1:53"
         - "8.8.8.8:53"

And my dynamic YAML (dynamic_conf.yml):

http:
  routers:
    http-catchall:
      entryPoints:
        - "web"
      rule: "hostregexp(`{host:.+}`)"
      middlewares:
        - "redirect-to-https"
      service: api@internal

    traefik:
      entryPoints:
        - "secureweb"
      rule: "Host(`traefik.mydomain.com`)"
      service: api@internal
      tls:
        certResolver: "googleresolver"
        domains:
          - main: "mydomain.com"
            sans:
              - "*.mydomain.com"

    pve:
      entryPoints:
        - "secureweb"
      rule: "Host(`pve.mydomain.com`)"
      middlewares:
        - "default-headers"
      tls: {}
      service: pve

  services:
    pve:
      loadBalancer:
        servers:
          - url: "https://10.10.1.200:8006"
        passHostHeader: true
 

  middlewares:
    traefik-auth:
      basicAuth:
        users:
          - "****:**********************"

    redirect-to-https:
      redirectScheme:
        scheme: https

    default-headers:
      headers:
        frameDeny: true
        sslRedirect: true
        browserXssFilter: true
        contentTypeNosniff: true
        forceSTSHeader: true
        stsIncludeSubdomains: true
        stsPreload: true
        stsSeconds: 15552000
        customFrameOptionsValue: SAMEORIGIN
        customRequestHeaders:
          X-Forwarded-Proto: https

    default-whitelist:
      ipWhiteList:
        sourceRange:
          - "10.0.0.0/24"
          - "192.168.0.0/24"
          - "172.0.0.0/24"

    secured:
      chain:
        middlewares:
          - default-whitelist
          - default-headers

I'm also reporting a new log here:

time="2022-03-09T11:08:28Z" level=debug msg="Looking for provided certificate(s) to validate [\"mydomain.com\" \"*.mydomain.com\"]..." providerName=googleresolver.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory"
time="2022-03-09T11:08:28Z" level=debug msg="No ACME certificate generation required for domains [\"mydomain.com\" \"*.mydomain.com\"]." providerName=googleresolver.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory"
time="2022-03-09T11:08:29Z" level=debug msg="Using DNS Challenge provider: gcloud" providerName=googleresolver.acme
time="2022-03-09T11:08:29Z" level=debug msg="legolog: [INFO] [mydomain.com, *.mydomain.com] acme: Obtaining bundled SAN certificate"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [*.mydomain.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/**************"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [mydomain.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/**************"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: use dns-01 solver"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Could not find solver for: tls-alpn-01"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Could not find solver for: http-01"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: use dns-01 solver"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Preparing to solve DNS-01"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: skip: the record already exists: cj-PyEU4UfgSeirFGdyo_iQVLAYWqlGdhiWFx1w7PYQ"
time="2022-03-09T11:08:30Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Preparing to solve DNS-01"
time="2022-03-09T11:08:31Z" level=debug msg="legolog: skip: the record already exists: ZKDnNltURyc61eIeVUTVFaOK3SQZoZy6i6GJFEYnt8I"
time="2022-03-09T11:08:31Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Trying to solve DNS-01"
time="2022-03-09T11:08:31Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Checking DNS record propagation using [1.1.1.1:53 8.8.8.8:53]"
time="2022-03-09T11:08:36Z" level=debug msg="legolog: [INFO] Wait for propagation [timeout: 3m0s, interval: 5s]"
time="2022-03-09T11:08:36Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:08:41Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:08:46Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:08:51Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:08:56Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:01Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:06Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:11Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:16Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:21Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:26Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:31Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:36Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:41Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:46Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:51Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:09:56Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:01Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:06Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:11Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:16Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:21Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:26Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:31Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:36Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:41Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:46Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:51Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:10:56Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:01Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:06Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:11Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:16Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:21Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:26Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:31Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:36Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Trying to solve DNS-01"
time="2022-03-09T11:11:36Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Checking DNS record propagation using [1.1.1.1:53 8.8.8.8:53]"
time="2022-03-09T11:11:41Z" level=debug msg="legolog: [INFO] Wait for propagation [timeout: 3m0s, interval: 5s]"
time="2022-03-09T11:11:41Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:46Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:51Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:11:56Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:01Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:06Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:11Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:16Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:21Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:26Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:31Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:36Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:41Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:46Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:51Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:12:56Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:01Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:06Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:11Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:16Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:21Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:26Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:31Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:36Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:41Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:46Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:51Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:13:56Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:01Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:06Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:11Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:16Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:21Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:26Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:31Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:36Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Waiting for DNS record propagation."
time="2022-03-09T11:14:41Z" level=debug msg="legolog: [INFO] [*.mydomain.com] acme: Cleaning DNS-01 challenge"
time="2022-03-09T11:14:43Z" level=debug msg="legolog: [INFO] [mydomain.com] acme: Cleaning DNS-01 challenge"
time="2022-03-09T11:14:44Z" level=debug msg="legolog: [INFO] retry due to: acme: error: 400 :: POST :: https://acme-v02.api.letsencrypt.org/acme/authz-v3/**************:: urn:ietf:params:acme:error:badNonce :: JWS has an invalid anti-replay nonce: \"0002wZcAhCdHeHy5rr9635IwocV2C6F4omnNj6GczPCkODA\""
time="2022-03-09T11:14:44Z" level=debug msg="legolog: [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/**************"
time="2022-03-09T11:14:45Z" level=debug msg="legolog: [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/**************"
time="2022-03-09T11:14:45Z" level=error msg="Unable to obtain ACME certificate for domains \"mydomain.com,*.mydomain.com\" : unable to generate a certificate for the domains [mydomain.com *.mydomain.com]: error: one or more domains had a problem:\n[*.mydomain.com] time limit exceeded: last error: NS ns-cloud-b3.googledomains.com. returned REFUSED for _acme-challenge.mydomain.com.\n[mydomain.com] time limit exceeded: last error: NS ns-cloud-b3.googledomains.com. returned REFUSED for _acme-challenge.mydomain.com.\n" providerName=googleresolver.acme