I am trying to create an ssl certificate from a CSR file containing a SAN using openssl, using the command line:
openssl x509 -req -in keyshare.acceptance.privacybydesign.foundation.csr -CA rootCA.crt -CAkey rootCA.key -CAcreateserial -out keyshare.acceptance.privacybydesign.foundation.crt -days 500 -sha256
However, when doing this, it ignores the SAN information in the certificate sign request. How can I get openSSL to use this information?
I strongly prefer a solution that does not require me to re-enter that information during the signing process.