Certificate subject name does not match target host name because Let's Encrypt uses Amazon's private DNS name

That's not the certificate that Let's Encrypt issued - that's the self-signed certificate that your operating system provides by default. You used certbot certonly which only obtains the certificate but does not install it for you.

More information here:

1 Like