Kurt M. Brown x2ii www.x2ii.info
www.x2ii.info
Open Source Projects
LoadAvg Log DDL Generator CopperPay xi module XUL
DOM Add Ons Touch Button
MySQL SOW
My Dell Notebook Site Make certificate cheat sheet git cheat sheet resume
create a key
$ openssl genrsa -des3 -out server.key 1024
create an unsecure key (no password)
$ openssl rsa -in server.key -out server.key.unsecure
dump public key
$ openssl rsa -in server.key -pubout
make csr (certificate signing request)
$ openssl req -new -key server.key -out server.csr
create a CA key (same as create a key above)
$ openssl genrsa -des3 -out ca.key 1024
create CA crt for almost 10 years
$ openssl req -new -x509 -days 3650 -key ca.key -out ca.crt
sign csr with CA to make a crt for almost 10 years
$ openssl x509 -req -in server.csr -out server.crt -sha1 -CA ca.crt -CAkey ca.key -CAcreateserial -days 3650
look at the certificate (works on any crt file)
$ openssl x509 -in server.crt -text -noout
create a p12 format from a crt
$ openssl pkcs12 -export -in server.crt -inkey server.key -name "MyServerCert" -out server.p12
create a pem format from a crt for a CA
$ openssl x509 -in ca.crt -inform d -outform PEM -out ca.pem
Contact: kurtb149 at yahoo dot com. Valid XHTML 1.0! Get Firefox!