certified(1) - generate and sign certificates

certified(1)
Certified
certified(1)

NAME

certified - generate and sign certificates

SYNOPSIS

certified [--bits=bits] [--ca] [--days=days] [--db=db] [--issuer=issuer] [--issuer-name=issuer-name] [--name=name] [--no-sign] [--password=password] [--revoke] [--self-signed] [C=country] [ST=state] [L=locality] [O=organization] CN=common-name [+dns[...]] [+ip[...]]

DESCRIPTION

Generate and sign a certificate with the CA in db unless --revoke is given, in which case the certificate is revoked instead.

Additional DNS names, including wildcards, and IP addresses can be added to the certificate using the + option.

OPTIONS

--bits=bits: Bits to use for the private key (defaults to 2048).
--ca: Generate a CA certificate.
--days=days: Days until the certificate expires (defaults to 3650).
--db=db: OpenSSL database directory (defaults to etc/ssl).
--issuer=issuer: Common name of an alternative CA certificate.
--issuer-name=issuer-name: Filename of the alternative CA certificate (default derived from the alternative CA common name).
--name=name: Filename to use (default derived from the certificate common name).
--no-sign: Do not sign the certificate; stop with a certificate signing request. Relay this certificate signing request to your certificate vendor.
--password=password: Password for the CA private key.
--revoke: Revoke an existing certificate.
--self-signed: Generate a self-signed certificate instead of using the CA.
C=country: Certificate country (defaults to the CA country).
ST=state: Certificate state (defaults to the CA state).
L=locality: Certificate Locality (usually a city; defaults to the CA locality).
O=organization: Certificate organization (usually a company; defaults to the CA organization).
CN=common-name: Certificate common name (usually a domain name).
+dns, +ip: Add a DNS name or IP address to the certificate's subject alternative names.

THEME SONG

Led Zeppelin - "Fool in the Rain"

AUTHOR