git clone https://github.com/Neilpang/acme.sh.git
cd ./acme.sh
./acme.sh --install

重新连接ssh

acme.sh --issue -d llinx.me -w /var/www
acme.sh --installcert -d llinx.me \
               --keypath       /etc/ssl/private/llinx.me.key  \
               --fullchainpath /etc/ssl/certs/llinx.me.pem \
               --reloadcmd     "service nginx force-reload"
openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048
ssl_certificate /etc/ssl/certs/llinx.me.pem;
ssl_certificate_key /etc/ssl/private/llinx.me.key;
ssl_dhparam /etc/ssl/certs/dhparam.pem;
service nginx restart