CSR Generator

Fill in certificate fields, then copy an OpenSSL command for Linux/macOS or generate a key and CSR in your browser.

Common Name (CN) *

Common Name is required.

Hostname or domain for the certificate.

Organization (O)

Organizational Unit (OU)

City / Locality (L)

State / Province (ST)

Country (C)

Use a 2-letter country code (e.g. US) or leave blank.

Email address

Key size (RSA)

Copy and run in Terminal (bash/zsh). Subject uses single quotes safe for typical characters; slashes inside field values may need manual fixes.

openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr -subj ''

Windows: Use openssl from Git Bash or install OpenSSL; paths often use backslashes. PowerShell may need different quoting.

Private key is generated in your browser and never sent to our servers. Large keys (4096) may take a few seconds.

Private key (.key)

Certificate signing request (.csr)

Security

Protect your private key. For production, prefer generating keys on a secure machine. This tool does not include Subject Alternative Names (SANs); many public CAs require SANs for TLS—confirm with your CA.