Yes, I did look at this guide, but it gives me an error after the 3rd step, because the guy references stuff thats not even there (eg.: first he says put the openssl.cfg to -config /opt/pki/openssl.cnf and then references it in -config /bnet/pki/openssl.cnf) so it would take me more time to get when and where he is referencing stuff then to make new certificates if I knew what the criteria is for a certificate. (eg.: .pem/.der; sha1/sha256 etc.)
I only found the max key length and that it has to be x509 format .pem (Thats what I uploaded and it said error).
Also, in this user guide, I dont see where he adds the SAN to the certificate, and chrome and opera only accepts web certificates, that contain the san for ssl.
Thx!