certified-ca
- generate a CA
certified-ca
[--bits
=bits] [--crl-url
=crl-url] [--days
=days] [--db
=db] [--ocsp-url
=ocsp-url] [--password
=password] [--revoke
] [--root-crl-url
=root-crl-url] C
=country [ST
=state] L
=locality [O
=organization] CN
=common-name
Generate two private keys. The first is self-signed to generate the root CA certificate. It is then used to sign the second to generate the intermediate CA certificate. The root CA certificate should be installed on laptops and servers. The intermediate CA signs subsequent certificates and may itself be revoked in the event its private key is compromised.
db is an OpenSSL database that certified
(1) uses to issue and revoke certificates.
--bits
=bits--crl-url
=crl-url--days
=days--db
=db--ocsp-url
=ocsp-url--password
=password--revoke
--root-crl-url
=root-crl-urlC
=countryST
=stateL
=localityO
=organizationCN
=common-name+
dns, +
ipLed Zeppelin - "Fool in the Rain"
Richard Crowley <r@rcrowley.org>
certified
(1), certified-ls
(1), certified-yaml
(1)
certified-csr
(1), certified-crt
(1), certified-revoke
(1)
openssl
(1), ca
(1), genrsa
(1), req
(1), x509
(1)
https://github.com/rcrowley/certified/wiki