CSR generator

Build an OpenSSL CSR config and command for public certificates. SAVR never generates or stores your private key.

Runs in your browser -- no data sent

Common name

Organization

Country code

SAN domains

OpenSSL command

openssl req -new -newkey rsa:2048 -nodes -keyout private.key -out request.csr -config csr.conf

csr.conf

[req]
default_bits = 2048
prompt = no
default_md = sha256
distinguished_name = dn
req_extensions = req_ext

[dn]
C = US
O = Example Inc
CN = example.com

[req_ext]
subjectAltName = DNS:example.com,DNS:www.example.com

Private key safety - SAVR generates a local OpenSSL config and command, not a private key. Run the command on a trusted machine and keep private.key secret.

Guide

CSR Generator: what it does and how to use it

What this Security tool does

This CSR generator creates an OpenSSL configuration and command for certificate signing requests. A CSR contains public identity information for a certificate request, while the private key must remain secret on your machine.

How it works

Enter common name, organization, country, and SAN domains. SAVR builds a csr.conf file and OpenSSL command that you can run locally. The tool intentionally does not generate or store private keys in the browser.

Examples

Create a CSR for example.com and www.example.com.
Prepare SAN entries for a TLS certificate.
Copy an OpenSSL command for server setup documentation.

Security considerations

Run OpenSSL on a trusted machine and protect private.key. A CSR is public-ish, but the private key is sensitive and must never be uploaded.

FAQ

Does SAVR create my private key?

No. It generates config text and a command only.

What is CN?

Common Name is the primary hostname or identity, though SAN is what modern browsers rely on.

What are SAN domains?

They are additional hostnames the certificate should cover.