alexlehm / gist:1431ef88eff44196b5901d1487c9a9d5

openssl genrsa -out relay.key 2048 openssl req -new -key relay.key -out relay.csr openssl x509 -req -in relay.csr -signkey relay.key -out relay.crt -days 3650 -sha256 -extfile v3.ext

[ req ] default_bits = 2048 distinguished_name = req_distinguished_name req_extensions = req_ext prompt = no [ req_distinguished_name ] countryName = de stateOrProvinceName = hessen localityName = frankfurt organizationName = none commonName = cosmic.voyage [ req_ext ] subjectAltName = @alt_names [alt_names] DNS.1 = cosmic.voyage DNS.2 = cosmic.voyage1

subjectKeyIdentifier = hash authorityKeyIdentifier = keyid:always,issuer:always basicConstraints = CA:TRUE keyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment, keyAgreement, keyCertSign subjectAltName = DNS:cosmic.voyage issuerAltName = issuer:copy