A command line tool to generate TLS certificates for development purposes. Inspired by mkcert by Filippo Valsorda, but written in C# using the Bouncy Castle library.
$ concerto www.test.com
This will create a concertoCA.pem root certificate and a www.test.com.pem certificate for your domain. You may add multiple domains, if needed. IPs and URIs are accepted too.
Some more examples:
$ concerto localhost 127.0.0.1
$ concerto '*.example.com' 192.168.0.12
$ concerto https://www.example.com 192.168.0.12
$ concerto -int myIntCA
$ concerto -chain -ca myIntCA.pem www.test.com
This will create a concertoCA.pem root certificate, an intermediate CA certificate (myIntCA.pem), a site certificate (www.test.com.pem), and a .pem file with a certificate trust chain (www.test.com-chain.pem).
-ca <path-to-cert> Specifies which CA certificate to use.
-client Allow a client to authenticate using the certificate.
-chain Create a .pem file with the certificate chain.
-ecdsa Use Elliptic Curve key instead of RSA.
-pfx Save the certificate and the key in a .pfx file.
-crl <url> URL of the CRL distribution point.
-help Shows the help screen.