Pages for logged out editors узнать больше
Well, the certificate is signed "by itself"
openssl verify -CAfile ca.crt ca.crt ca.crt: OK