Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
$ nmap -Pn formativequiz.org
Starting Nmap 7.80 ( https://nmap.org ) at 2023-03-30 19:47 UTC
Nmap scan report for formativequiz.org (3.18.90.135)
Host is up (0.077s latency).
rDNS record for 3.18.90.135: ec2-3-18-90-135.us-east-2.compute.amazonaws.com
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp closed http
443/tcp closed https
Nmap done: 1 IP address (1 host up) scanned in 8.07 seconds
$ nmap -Pn formativequiz.org
Starting Nmap 7.80 ( https://nmap.org ) at 2023-03-30 19:51 UTC
Nmap scan report for formativequiz.org (3.18.90.135)
Host is up (0.085s latency).
rDNS record for 3.18.90.135: ec2-3-18-90-135.us-east-2.compute.amazonaws.com
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
Nmap done: 1 IP address (1 host up) scanned in 7.36 seconds
Thanks for the help! Revisited the Lightsail instructions. It "expanded" my certificate, and then magically it now works. I'm a little confused about the renewal process. Thanks again!
Edit:
My solution was found here: Install a standard Let’s Encrypt certificate in Lightsail | AWS re:Post
I am not using a Bitnami solution, just raw ubuntu
Generally, the bncert tool is used in Lightsail / Bitnami rather than certbot. There were some old instructions from AWS describing a manual process for certbot (which is awful).
bncert can't do wildcards but that's not often needed on Lightsail