Making a new cert? Here are some things below that should help.
#The openssl command to generate a private key is: openssl genrsa 2048 > private-key.pem #The CSR is generated based on the private key. The following command is used for the CSR creation: openssl req -new -key private-key.pem -out csr.pem
Once you’ve completed your certificate with one of the Major Certificate Authorities You can then import your certificate into Amazon’s Certificate Management Service to be used on ELB. Amazon also will create SSL Certificates
Once you have your cert created, encrypt your private key:
gpg -c ./private-key.pem #and remove the original rm -f ./private-key.pem