Makes making CSRs simple… and because I hate webapps.
Can make new keys and CSRs, and magically create renewal CSRs with minimal interaction
test$ unicert make key
Generating RSA private key, 4096 bit long modulus (2 primes)
......................................................++++
............................++++
e is 65537 (0x010001)
test$ unicert make csr
Common name: test.york.ac.uk
DNS SAN (blank to end): test.york.ac.uk
DNS SAN (blank to end):
test$ unicert show csr
Certificate Request:
Data:
Version: 1 (0x0)
Subject: C = GB, ST = North Yorkshire, L = York, O = University of York, OU = IT Services, CN = test.york.ac.uk
[...]test$ unicert set fqdn york.ac.uk
test$ unicert renew
No private key found. Do you want to create one? [y|Y]: y
Generating RSA private key, 4096 bit long modulus (2 primes)
...............................................................................................................................++++
.....................................................................................................................................................................++++
e is 65537 (0x010001)
No previous certificate found. Do you want to try fetching from york.ac.uk:443? [y|Y]: y
test$ unicert show csr
Certificate Request:
Data:
Version: 1 (0x0)
Subject: C = GB, ST = North Yorkshire, L = York, O = University of York, OU = IT Services, CN = www.york.ac.uk
[...]