Make self signed SSL certificate

crt_gen.sh

#!/bin/bash
echo "Generating an SSL private key to sign your certificate..."
openssl genrsa -des3 -out certificate.key 1024

echo "Generating a Certificate Signing Request..."
openssl req -new -key certificate.key -out certificate.csr

echo "Removing passphrase from key (for nginx)..."
cp -v certificate.{key,org}
openssl rsa -in certificate.org -out certificate.key
rm certificate.org

echo "Generating certificate..."
openssl x509 -sha256 -req -days 365 -in certificate.csr -signkey certificate.key -out certificate.crt

## You may choose other paths for storing your certificates

echo "Copying certificate (certificate.crt) to /etc/ssl/certs/"
mkdir -p /etc/ssl/certs
cp certificate.crt /etc/ssl/certs/

echo "Copying key (certificate.key) to /etc/ssl/private/"
mkdir -p /etc/ssl/private
cp certificate.key /etc/ssl/private/

# If usign nginx, then include these in your `server` block:
#
#    ssl on;
#    ssl_certificate /etc/ssl/certs/certificate.crt;
#    ssl_certificate_key /etc/ssl/private/certificate.key;