CSR generation and viewing

CSR generation and viewing Introduction

1. The CSR file, full name of which is Certificate Signing Request, is generated when applying for an SSL/TLS certificate.

2. The CSR file contains the public key and other information of the entity requesting the certificate, which will be used by the certificate Authority (CA) to create the certificate.

3. Contents of CSR file

(1), public key: This is the public part of a pair of keys generated by the applicant. The private key must be kept secret and never made public.

(2), organization information: including the name of the organization, department name, city, state, country and other information.

(3), domain name: the domain name that the certificate will protect.

(4), Email address: The email address of the contact person associated with the certificate.

(5), signature: The CSR file usually contains a digital signature created by the private key that generated the CSR to ensure that the content has not been tampered with.

4, Note:

(1) After the CSR is generated, the private key must be secured as it will be used to decrypt the data encrypted by the public key and for server authentication after the certificate is installed.

(2), Do not regenerate the CSR: Once the CSR is submitted to the CA, the CSR should not be regenerated, as this will cause the public key to change, thus invalidating the certificate that has been issued.