Looks like someone is making HTTP requests to known relays with a host header of an onion address.
I have a webserver that returns 200 OK to all requests for honeypot-related fun and well... I can only imagine what they think my relay hosts as a result.
Stay safe out there friends.
2019-05-23T02:43:58Z 5.8.10.[snip] 200 jg4rli4xoagvvmw47fr2bnnf[snip].onion /
tor-relays@lists.torproject.org