Certificate signing request (CSR)

Paste your CSR into the text box below (in PEM/Base64 encoded format, either with or without the enclosing BEGIN/END lines).

Note: specific requirements may apply to the procedure at your own organization - check with your registration authority (contact information) before submitting your first request. Generic instructions are available under How to request a SWITCHpki QuoVadis certificate.

Or upload a CSR file:

If applicable, specify additional DNS aliases - i.e. host names resolving to the same IP address - which should be included in the certificate (separate multiple names by comma):

Validity: Mandatory limitation of the maximum validity of TLS/SSL certificates to 2 years according to the current CA Browser Forum baselines.

Certificate Transparency: From April 2018 on, Google Chrome enforces Certificate Transparency for all newly issued publicly trusted certificates.

Technical contact

The technical contact is usually the person who is in charge of configuring the certificate on the server (and is responsible for maintaining adequate protection of its private key).

A message with further instructions for retrieving the certificate will be delivered to the address specified in the E-mail address field, and expiration warnings will go to this address as well. In general, a role related e-mail address should be used.