I wish to enable SSL on my server. In order to sign my self generated certificate with Let’s Encrypt root or intermediate CA certificates using openssl or keytool, I do require access to Let’s Encrypt root or intermediate CA private keys.
Create a server key :
openssl genrsa -out server.key 1024
Create a server csr :
openssl req -new -key server.key -out server.csr
You are about to be asked to enter information etc.
Sign it : (isrgrootx1.der - Let’s Encrypt root CA certificate. We can also instead use intermediate CA cert’s)
We do need isrgrootx1.key as well for certificate signing.
openssl x509 -req -days 365 -in server.csr -CA isrgrootx1.der \ -CAkey isrgrootx1.key -set_serial 01 -out server.crt
Please let me know how can I generate a certificate signed by Let’s Encrypt root or intermediate CA certificates ?