I have a co-located domain which only has a SHA-1 certificate. I'm trying to get my host to upgrade it. When I asked about SHA-256 they said:
"First of all I would like to let you know that we do support SHA-2
signature for SSL certificates. Upon checking your account, I noticed
that you don't have any SSL product at the moment. "
Because I have only small websites that do not generate me any revenue, I'm trying to use one of the Let's Encrypt certificates which are free. However, my host only supports SHA-2 apparently. This is what they said:
"I'd only like to draw your attention to the fact that in this case you will have to verify with the SSL provider you choose whether they offer SHA-2 signature or not. And regarding your initial question: yes, you may install such a certificate to our server."