Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (71)
EC Keys (2053)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (5949)
Revoked Certificates (16)
Root CA (85)
RSA Keys (4865)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
OpenSSL "req -new -x509" - Generate Self-Signed Certificate
How to generate a new self-signed certificate using OpenSSL "req -new -x509" command? I have an RSA private key (including public key) ready.
✍: FYIcenter.com
If you have a pair of RSA private key and public key,
and you want to generate a self-signed certificate
to represent your personal identity or server identity,
you can use the OpenSSL "req -new -x509" command as shown below:
C:\Users\fyicenter>\local\openssl\openssl.exe OpenSSL> req -new -x509 -key my_rsa.key -out my_rsa.crt You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [AU]:us State or Province Name (full name) [Some-State]:NY Locality Name (eg, city) []:New York Organization Name (eg, company) [Internet Widgits Pty Ltd]:Donald Inc. Organizational Unit Name (eg, section) []:IT Common Name (e.g. server FQDN or YOUR name) []:www.donald.inc Email Address []:john@donald.inc OpenSSL> exit C:\Users\fyicenter>type my_rsa.crt -----BEGIN CERTIFICATE----- MIIC4jCCAkugAwIBAgIJAJ48n71hteXyMA0GCSqGSIb3DQEBCwUAMIGJMQswCQYD VQQGEwJ1czELMAkGA1UECAwCTlkxETAPBgNVBAcMCE5ldyBZb3JrMRQwEgYDVQQK DAtEb25hbGQgSW5jLjELMAkGA1UECwwCSVQxFzAVBgNVBAMMDnd3dy5kb25hbGQu aW5jMR4wHAYJKoZIhvcNAQkBFg9qb2huQGRvbmFsZC5pbmMwHhcNMTYwODIwMTgz MDQzWhcNMTYwOTE5MTgzMDQzWjCBiTELMAkGA1UEBhMCdXMxCzAJBgNVBAgMAk5Z MREwDwYDVQQHDAhOZXcgWW9yazEUMBIGA1UECgwLRG9uYWxkIEluYy4xCzAJBgNV BAsMAklUMRcwFQYDVQQDDA53d3cuZG9uYWxkLmluYzEeMBwGCSqGSIb3DQEJARYP am9obkBkb25hbGQuaW5jMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDRixgf jY2/zdJ18OnwSiVzmBKCh5GYzfvX2jYlLC3DHfGstnbL0fxnHxizg68ZG4oQPfmK JQGF2hbQ+vQ+zaYfC33mKZGF+ln+NlxQk+D742pj5GYenIPjKHshV3P1GHubAw9n W71WAd0yyjL7BHV3nWbewR+AAce8V6YLt54mVwIDAQABo1AwTjAdBgNVHQ4EFgQU DM9Fx582wt3zNkkL6cJl3/1hG5UwHwYDVR0jBBgwFoAUDM9Fx582wt3zNkkL6cJl 3/1hG5UwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQsFAAOBgQBoKd9nodQKUyMy TwfvF481mizImkeCxRJGJiPTE8Qq1NrchDxfJcKqITnqnlpDjNYDlxb40ERx7Uo8 f9z7/AmJPo+/th0pQ8FwT3whGfnF5Fo9ce+AtS5Kk+kNIyhzJbFFctu6rF9V74xG lFtY38unMTOlg9eNhnuddN7tY6g/Mg== -----END CERTIFICATE-----
Options used in this "req" command are:
⇒ OpenSSL "x509 -text" - View Self-Signed Certificate in Text
2016-11-12, 2477👍, 0💬
Popular Posts:
Certificate summary - Owner: motherless.com, Domain Control Validated - RapidSSL(R), See www.rapidss...
How to verify the digital signature inside a CSR using OpenSSL "req -verify" command? If you want to...
What is DigiCert.com SSL Certificate Checker? Can I use it download the certificate of a Website? Di...
How to specify those intermediate CA certificates that form the signing chain for the server certifi...
Certificate summary - Owner: GeoTrust Primary Certification Authority, GeoTrust Inc., US Issuer: Equ...