I am not sure what you are asking. Normally the ACME Client used to get a Let's Encrypt cert makes the CSR for you.
And, I see your domain is using a Let's Encrypt cert issued Aug16 that does not expire for 2 months yet.
I do see some problems, like possibly a geographic based firewall, that might prevent you from getting a replacement cert (renewal) but that usually isn't requested until 30 days before expiration.
Can you explain more about what you are trying to do and the specific problem?