I have EV certificate for CA for my main domain.com and I want to add (expand) domain1.com,domain2.com
Technically, domain.com is ServerName and domain1.com,domain2.com are ServerAlias-es. I don't need EV for expanded domain but only DV, because domain1.com,domain2.com are deprecated domains and I do redirect 301 to domain.com.
This worked fine before with http but not with https anymore.
I have already generated keys for domain1.com,domain2.com (alltogether). What should I do?
1. Add new keys to the old keys in the same Apache configuration?
2. Run certbot again and expand the domain.com CA certificate with extra new domains.
Please note that in future I will keep renewing domain.com with CA, while I would like to renew extra domains with certbot.