Adapted from http://blog.herecura.eu/blog/2015/09/13/self-signed-multi-domain-certificate/
Create a file named cert.conf
:
[ local_san ]
nsCertType = server
keyUsage = digitalSignature,nonRepudiation,keyEncipherment
extendedKeyUsage = serverAuth
subjectKeyIdentifier = hash