1. certified-csr(1)
2. Certified
3. certified-csr(1)

NAME

certified-csr - generate certificate signing requests

SYNOPSIS

certified-csr [--bits=bits] [--ca] [--crl-url=crl-url] [--days=days] [--db=db] [--issuer=issuer] [--issuer-name=issuer-name] [--name=name] [--ocsp-url=ocsp-url] [C=country] [ST=state] [L=locality] [O=organization] CN=common-name [+dns[...]] [+ip[...]]

DESCRIPTION

Generate a certificate signing request.

Additional DNS names, including wildcards, and IP addresses can be added to the certificate using the + option.

OPTIONS

--bits=bits

Bits to use for the private key (defaults to 2048).

--ca

Request that this certificate be a CA certificate.

--crl-url=crl-url

CRL distribution URL for the intermediate CA.

--days=days

Days until the certificate expires (defaults to 3650).

--db=db

OpenSSL database directory (defaults to etc/ssl).

--issuer=issuer

Common name of an alternative CA certificate.

--issuer-name=issuer-name

Filename of the alternative CA certificate (default derived from the alternative CA common name).

--name=name

Filename to use (default derived from the certificate common name).

C=country

Certificate country (defaults to the CA country).

ST=state

Certificate state (defaults to the CA state).

L=locality

Certificate Locality (usually a city; defaults to the CA locality).

O=organization

Certificate organization (usually a company; defaults to the CA organization).

CN=common-name

Certificate common name (usually a domain name).

+dns, +ip

Add a DNS name or IP address to the certificate's subject alternative names.

THEME SONG

Led Zeppelin - "Fool in the Rain"

AUTHOR

Richard Crowley <r@rcrowley.org>

SEE ALSO

certified(1), certified-ca(1), certified-ls(1), certified-yaml(1)

certified-crt(1), certified-revoke(1)

openssl(1), genrsa(1), req(1), x509(1)

https://github.com/rcrowley/certified/wiki

2. April 2014
3. certified-csr(1)