Tested on ubuntu 22.04
sudo snap install --classic certbot
sudo snap set certbot trust-plugin-with-root=ok
sudo snap install certbot-dns-cloudflare
sudo snap connect certbot:plugin certbot-dns-cloudflare
mkdir -p ~/.secrets/certbot/
tee -a ~/.secrets/certbot/cloudflare.mydomain.ini > /dev/null <<EOT
# Cloudflare API token used by Certbot for all domains on mydomain account
dns_cloudflare_api_token = your_api_token
EOT
chmod 600 ~/.secrets/certbot/cloudflare.mydomain.ini
sudo wget -O /etc/letsencrypt/renewal-hooks/deploy/xsoar.sh https://gist.github.com/lenoxys/e543cde35c3ff85f4c44f9b802bb3a06/raw/xsoar.sh
sudo chmod +x /etc/letsencrypt/renewal-hooks/deploy/xsoar.sh
sudo hostname xxx.xxx.com
echo "xxx.xxx.com" | sudo tee /etc/hostname
echo "public_ip xxx.xxx.com xxx" | sudo tee -a /etc/hosts
sudo certbot certonly --dns-cloudflare --dns-cloudflare-credentials ~/.secrets/certbot/cloudflare.mydomain.ini -d xxx.xxx.com
sudo certbot renew --dry-run