Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/skygenesisenterprise/openssl-cli

The OpenSSL CLI client
https://github.com/skygenesisenterprise/openssl-cli

certificates cli go open-project openssl

Last synced: 28 days ago
JSON representation

The OpenSSL CLI client

Awesome Lists containing this project

README 

          
# ๐Ÿš€ Enterprise OpenSSL CA CLI



**Repository:** `openssl-cli`  

**Maintainer:** Sky Genesis Enterprise  

**Project:** Enterprise OpenSSL Certification Authority



---



## ๐ŸŒ Overview



The **Enterprise OpenSSL Certification Authority CLI** (`openssl-cli`) is the official command-line interface designed to interact with the Enterprise OpenSSL Certification Authority server.



This CLI tool provides developers, system administrators, and automation pipelines with a secure, reliable, and user-friendly interface to generate keys, request certificates, renew, revoke, and manage certificate lifecycles in a consistent manner across all Sky Genesis Enterprise deployments.



> โš ๏ธ This project is an internal and open-source initiative by Sky Genesis Enterprise and is not affiliated with the official OpenSSL Project.



---



## ๐Ÿ› ๏ธ Features



- ๐Ÿ” Generate private keys and Certificate Signing Requests (CSRs)  

- ๐Ÿท๏ธ Request, renew, and revoke X.509 certificates from the Enterprise CA  

- ๐Ÿ“œ Manage certificate profiles and policies locally  

- ๐Ÿ”„ Support for automated certificate renewal  

- ๐ŸŒ Interact securely with the CA server via REST APIs  

- ๐Ÿงช Output formats: PEM, DER, JSON  

- โš™๏ธ Fully scriptable CLI commands for DevOps workflows  

- ๐Ÿ”’ Built-in verification of trusted installation source  

- ๐Ÿ“ฆ Cross-platform support: Linux, macOS, Windows (planned)  



---



## โšก Installation



The recommended installation method is via the official Sky Genesis Enterprise source:



```bash

wget -qO- https://ssl.skygenesisenterprise.com/install-cli.sh | bash

````



This script downloads, verifies, and installs the `openssl-cli` binary with secure defaults.



---



## ๐Ÿš€ Quickstart



Initialize a new key and generate a CSR:



```bash

openssl gen-key --name "my-service-key" --out ./keys/

openssl gen-csr --key ./keys/my-service-key.pem --cn "service.example.com" --out ./csr/service.csr

```



Request a certificate from the Enterprise CA:



```bash

openssl request-cert --csr ./csr/service.csr --profile tls-server --out ./certs/service.crt

```



Renew an existing certificate:



```bash

openssl renew-cert --cert ./certs/service.crt --out ./certs/service-renewed.crt

```



Revoke a certificate by serial number:



```bash

openssl revoke-cert --serial 0A1B2C3D --reason "key-compromise"

```



---



## ๐Ÿง‘โ€๐Ÿ’ป Development



This project is implemented in Go and is designed to be modular and extensible.



Contributions and feedback are welcome! Please follow the contributing guidelines in the `CONTRIBUTING.md` file.



---



## ๐Ÿ” Security



* All CLI releases are signed and checksummed

* Enforces secure transport (TLS) when communicating with CA servers

* Validates server certificates and fingerprints

* Supports integration with Hardware Security Modules (HSM) via PKCS#11 (planned)



---



## ๐Ÿ“ซ Contact & Support



For questions, support, or commercial inquiries:



* Website: [https://skygenesisenterprise.com](https://skygenesisenterprise.com)

* Email: [security@skygenesisenterprise.com](mailto:security@skygenesisenterprise.com)

* GitHub: [Enterprise Github Organisation](https://github.com/skygenesisenterprise)



---



## ๐Ÿ“ License



This project is licensed under the **MIT License**.



ยฉ Sky Genesis Enterprise. All rights reserved.