Hi I’m hitting this error from this command. Please let me know what is missing?

$ sudo certbot --nginx -d www.dev.testapp.com -d dev.testapp.com
[sudo] password for testapp: 
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for dev.testapp.com
http-01 challenge for www.dev.testapp.com
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. dev.testapp.com (http-01): urn:ietf:params:acme:error:caa :: CAA record for dev.testapp.com prevents issuance, www.dev.testapp.com (http-01): urn:ietf:params:acme:error:caa :: CAA record for www.dev.testapp.com prevents issuance

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: dev.testapp.com
   Type:   None
   Detail: CAA record for dev.testapp.com prevents issuance

   Domain: www.dev.testapp.com
   Type:   None
   Detail: CAA record for www.dev.testapp.com prevents issuance

thanks