install certbot and use it to get a new certificate. you must use dns validation, since you have no control over which server will respond to an http validation request.
edit: I did tell you to add a second A record to your dns. That’s only to avoid downtime when you switch the first server off. It’s not needed to get a certificate with dns validation.