Yeah, I get how it works, been using it for years like.. everywhere, both at work and for personal reasons, http, aws, cloudflare, ovh, etc.
My question is about the aws-route53 auth plugin and having 2 different aws accounts (2 different set of credentials). I know you can create a pem file just putting it all together, but that applies for the normal use with just one set of credentials.
I just wonder if you can get the certificate using a set of aws credentials (profile), another one using another set of aws credentials (a different profile) and then put it all together in a single pem file... which I don't think it would work because there are 2 different private keys involved.
So the use case would be certbot, in the same invocation, using first a set of credentials to verify one (or several) domain(s), then use another set of credentials to verify other set of domains, and finally generating the certificate with multiple SAN under the same private key.
Hope I've made myself clear enough now. And sorry if this is just not possible