I need to update a certification authority that is currently running and is currently in use
Signature algorithm 256WithRSAEncryption and I think in use
ecdsa-with-SHA256 with something like:
openssl req -x509 -nodes-days 3650 -newkey ec: <(openssl ecparam -name prime256v1) keyout certificates / CA.pem -out certificates / CA.crt -subj "/ CN = myCA"
Aside from updating, restoring existing certificates, and asking if there's anything I should look for in use