Glad all went well!
You probably don't want to cover "the rest" with your own certificate. Without installing your own certificate, you are probably redirected to a hosting instance of your cPanel provider that is already covered by their certificate. See webdisk.pirelclothing.com as an example.
You missed a couple:
cpanel.pirelclothing.com. 14399 IN CNAME pirelclothing.com.
webmail.pirelclothing.com. 14399 IN CNAME pirelclothing.com.
I'm assuming that you acquired and installed the wildcard certificate on your AWS instance. If you're only (supposed to be) serving the apex and www there, you don't need a wildcard certificate and could just use:
sudo certbot run --cert-name pirelclothing.com --nginx -d "pirelclothing.com,www.pirelclothing.com" --keep
That will also install the certificate for you and update your nginx configuration (which may cause duplication problems that should be easy to fix by removing your own redirects and ssl vHost). You want certbot to manage those things for you rather than doing them yourself. This will also fix your missing 301 redirect from http://pirelclothing.com to https://pirelclothing.com.
Once that succeeds, you can test your automatic renewals using:
sudo certbot renew --dry-run
http://pirelclothing.com currently...
