certbot certonly --standalone   --agree-tos --non-interactive --email email@domain.net  -d www.example.com

certbot renew

#--post-hook: sempre anche se non c'è rinnovo
certbot renew --post-hook "systemctl restart apache2"

#--deploy-hook: solo solo se va a buon fine
certbot renew --deploy-hook  "systemctl restart apache2"

#cron
30  2  *  *  *  /usr/bin/certbot renew --deploy-hook  "systemctl restart apache2" >/dev/null 2>&1


# test certificato di prova
certbot certonly --apache  --test-cert  -d demo.opensupport.it


#rinnovo certificati
30 12,6 * * * /usr/bin/certbot renew --renew-hook "systemctl restart apache2"   2>>/tmp/cert-renew.log >>/tmp/cert-renew.log

certbot -n renew >> /tmp/le-renew.log


http://www.remtene.eu/installare-un-certificato-di-sicurezza-ssl-gratuito-ottenuto-da-letsencrypt-su-postifix-e-dovecot/
https://stegard.net/2016/07/securing-web-site-with-https-and-lets-encrypt/


#verificare durata certificati rilasciati
certbot  certificates

#test rinnovo
certbot renew --dry-run

#eliminazione certificato
certbot delete --cert-name MyDomain