SSL

Generate a key
Creating a PEM file for servers
Display certificate information
- For a certificate signing request
- For a generated certificate

Generate a key

2048 RSA keys are still considered safe. So use 4096.

openssl genrsa -out $DOMAIN.key.pem 4096

Creating a PEM file for servers

cat $DOMAIN.key.pem $DOMAIN.crt.pem $DOMAIN.dhp.pem > $DOMAIN.pem

Display certificate information

For a certificate signing request

openssl req -text -noout -in $DOMAIN.csr.pem

For a generated certificate

openssl x509 -in $DOMAIN.crt.pem -noout -text