These commands are needed every time you want to generate a new certificate signing request to give to an authority in order for them to generate and sign a certificate for you.
I constantly forget how this stuff works so I collected the most important ones here for easy copy & paste.
There is good information available on https://www.h2check.org/deploy, and they also go into detail on HTTP/2.