hey, it works. thanks a lot. this save my job. I really appreciate it. 
[root@localhost conf.d]# certbot -v --apache -d pits-api.primatc.co.id
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Certificate is due for renewal, auto-renewing...
Renewing an existing certificate for pits-api.primatc.co.id
Performing the following challenges:
http-01 challenge for pits-api.primatc.co.id
Waiting for verification...
Cleaning up challenges
Successfully received certificate.
Certificate is saved at: /etc/letsencrypt/live/pits-api.primatc.co.id/fullchain.pem
Key is saved at: /etc/letsencrypt/live/pits-api.primatc.co.id/privkey.pem
This certificate expires on 2024-08-25.
These files will be updated when the certificate renews.
Certbot has set up a scheduled task to automatically renew this certificate in the background.
Deploying certificate
Deploying Certificate to VirtualHost /etc/httpd/conf.d/intipam-be-le-ssl.conf
Successfully deployed certificate for pits-api.primatc.co.id to /etc/httpd/conf.d/intipam-be-le-ssl.conf
Redirecting vhost in /etc/httpd/conf.d/intipam-be.conf to ssl vhost in /etc/httpd/conf.d/intipam-be-le-ssl.conf
Your existing certificate has been successfully renewed, and the new certificate has been installed.
If you like Certbot, please consider supporting our work by:
- Donating to ISRG / Let's Encrypt: Donate - Let's Encrypt
- Donating to EFF: Support EFF's Work on Let's Encrypt | Electronic Frontier Foundation