startssl

Validation Success

You have successfully authenticated domain "xxx.com.cn".
You will be able to use this verification for the next 30 days, after which it expires and must be renewed.

Generate Private Key

If you created your own private key and certificate request (CSR), please skip this step.
Provide a password for your private key. (At least 10 characters, max. 32)
Allowed are only letters and numbers, without spaces!
Write your password down somewhere securely.
Note that SHA2 hash algorithm may be not supported on older systems (Windows XP, Windows 2003).

Save Private Key

Copy and paste the content from the textbox below into a file and save it as ssl.key.
Make sure, that you do not alter the content and you did not add any spaces! Save it in ASCII format (plain text).
Allowed are only letters and numbers, without spaces!
Decrypt the private key with the OpenSSL utility: openssl rsa -in ssl.key -out ssl.key or use the utility from the Tool Box.

Add Domains

You must add one sub domain to this certificate.
The base domain xxx.com.cn will be included by default in the Alt Name section.
Note: In order to add multiple domains and sub domains, your Identity must be at least Class 2 validated. Check your status at the "Identity Card".

Ready Processing Certificate

We have gathered enough information in order to sign your certificate now.
The common name of this certificate will be set to tssl.xxx.com.cn.
The certificate will have the following host names supported:
xxx.com.cn
tssl.xxx.com.cn
Please click on Continue in order to process the certificate.

Save Certificate

In the textbox below is your PEM encoded certificate.
Copy and paste the content into a file and save it as ssl.crt.
Make sure, that you do not alter the content and you did not add any spaces! Save it in ASCII format (plain text).

Save also the intermediate and root CA certificates for the installation at your server (Save As...).