Let’s create a self-signed certificate that contains a wildcard SubjectAlternative Name (SAN). $ openssl req -x509 \ -subj "/C=NL/L=Utrecht/O=Relentless Coding/CN=*.example.com"\ -addext "subjectAltName = DNS:example.com, DNS:*.example.com"\ -newkey rsa:2048 \ -noenc \ -keyout key.pem \ -out cert.pem -addext allows us to add X509 extensions to the certificate from thecommand line. In older versions of openssl(1) you needed to use aconfiguration file (--config openssl.cnf) to achieve the sam...
