给不带www的域名增加ssl功能，报文中错误，请教如何解决？

看到网上好多人都给自己的网站加了ssl功能，自己也想弄一下，毕竟看着很高大上的样子，跟着网上的教程一路配置好了后，很顺利的就把该功能实现了，自以为自己很了不起，太得意了，以为这么简单就弄好了，还到处去各大社区炫耀，后来有个网友给我说，为啥我不带ＷＷＷ的域名输入会提示不完全链接，应该是没有加ssl功能，我蒙了，随后我从浏览器上试了，果然没有加ssl功能，提示如下图：

但是当我用certbot给不带www的域名添加SSL功能时，居然报错了，我连续重新装了两次都报错，实在不知道问题出在哪里，错误信息贴在下面，麻烦知道的童鞋回复我一下，先谢谢了！

Failed authorization procedure. example.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://example.com/.well-known/acme-challenge/kmL-Hvc4Vk8KSd9qGxuSqBQjQLEurNDK1XGVGQ1cjUk: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
......
...

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: example.com
   Type:   unauthorized
   Detail: Invalid response from
   http://example.com/.well-known/acme-challenge/kmL-Hvc4Vk8KSd9qGxuSqBQjQLEurNDK1XGVGQ1cjUk:
   "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
   <html><head>
   <title>403 Forbidden</title>
   </head><body>
   <h1>Forbidden</h1>"

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.