Creating certificates for custom gTLD is failing.

[GamePlayer-8]

Good afternoon,

I'm unable to setup LabCA under a custom domain. The error what I'm getting is:

2025-06-11T16:30:06.949366+00:00Z boulder-ca[383]: 3 boulder-ca uoG3iAc [AUDIT] Preparing precert failed: 
err=[tbsCertificate linting failed: failed lint(s): e_pkimetal_lint_cabf_serverauth_cert 
(got 1 lint findings from pkimetal API: error from certlint:unknown_tld_in_san: Unknown TLD in SAN)]

Even if I've specified to accept custom domain xvm in the setup wizard, is failing.

Full log LetsEncrypt: letsencrypt.error.log

Full Boulder log: boulder.log

[plani-de]

The "unknown TLD in SAN" is known and mentioned in #181 Looking here. To my understanding this has been fixed, but untill then, you can do it manually, worked for me.