Certificate(CSR) configuration file

Openssl commands:

openssl genrsa -out self-ssl.key
openssl req -new -key self-ssl.key -out self-ssl.csr -config csr.conf
openssl x509 -req -days 365 -in self-ssl.csr -signkey self-ssl.key -out self-ssl.crt -extensions req_ext -extfile csr.conf

Sign from Root CA: openssl x509 -req -days 365 -extensions req_ext -extfile csr.conf -CA RootCA.crt -CAkey RootCA.key -CAcreateserial -in self-ssl.csr -out self-ssl.crt

Configuration `csr.conf`:

[req]
default_bits = 2048
distinguished_name = dn
prompt             = no

[dn]
C="TW"
ST="Taiwan"
L="Taipei"
O="YIDAS"
OU="Service"
emailAddress="[email protected]"
CN="yourdomain.com"

[req_ext]
subjectAltName = @alt_names

[alt_names]
DNS.0 = *.yourdomain.com
DNS.1 = *.dev.yourdomain.com

[req] is for CSR with distinguished_name setting, while [req_ext] is called for -extensions with creating crt with SAN(subjectAltName) setting.

Extract information from the CSR/CRT

openssl req -in self-ssl.csr -text -noout

openssl x509 -in self-ssl.crt -text -noout

yidas/csr.conf.md

Openssl commands:

Configuration `csr.conf`:

Extract information from the CSR/CRT

doogle-oss commented Sep 15, 2020

Uh oh!

eddyekofo94 commented Jan 4, 2021

Uh oh!

ggress commented Jun 11, 2021

Uh oh!

aakash-pinc commented Sep 11, 2021

Uh oh!

leandredasilva commented Jul 10, 2022 •

edited

Loading

Uh oh!

sramzln commented Sep 18, 2023

Uh oh!

jnmontano commented May 5, 2025

Uh oh!

yidas/csr.conf.md

Openssl commands:

Configuration csr.conf:

Extract information from the CSR/CRT

doogle-oss commented Sep 15, 2020

Uh oh!

eddyekofo94 commented Jan 4, 2021

Uh oh!

ggress commented Jun 11, 2021

Uh oh!

aakash-pinc commented Sep 11, 2021

Uh oh!

leandredasilva commented Jul 10, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

sramzln commented Sep 18, 2023

Uh oh!

jnmontano commented May 5, 2025

Uh oh!

Configuration `csr.conf`:

leandredasilva commented Jul 10, 2022 •

edited

Loading