- Spins up a nano EC2 instance.
- Points a domain at it with Route 53 DNS service of AWS.
- Installs letsencrypt on the instance and runs it to generate the certificate.
- Copies the certificate into AWS certificate menegement service.
- Destroys the nano instance and Route 53 DNS entry.
You can find the code here.
Let me know if you actually end up using it.