The concept: cer == == public key certificate private key ==; pem == cer + key
The steps of:
generating different types of keys:
- 1. Generate RSA private key (unencrypted)
openssl genrsa -out rsa_private.key 2048
- 2. Generate the RSA public key
openssl rsa -in rsa_private.key -pubout -out rsa_public.key
- 3. Generate RSA private key (encrypted using aes256)
openssl genrsa -aes256 -passout pass:111111 -out rsa_aes_private.key 2048
Generate a self-signed certificate:
openssl req -new -x509 -days 3650 -key rsa_private.key -out cert.crt -config ..\conf\openssl.cnf