Renew self-signed certificates

[SnejPro]

Is your feature request related to a problem? Please describe.
When a CA cert expires, it's not possible to create a new certificate from its private key so old certificates continue to work with the new root certificate.

Describe the solution you'd like
The possibility to create new certificates from existing keys.

Describe alternatives you've considered
Create a completly new CA with a new public key

[kaikramer]

I liked the previous title of this better, "renew" describes better what you want. I'll change it back.

[kaikramer]

This should be pretty easy to implement. If anyone wants to do this, just leave a comment here and I can provide some guidance.

[jgrateron]

Hi, I found a way to renew a certificate without creating a new option.

1. Create a CSR
2. Sign the CSR, transfer the extensions, preferably with the same serial and without modifying the subject.

3. Import CA Reply.
4. Remove CA certificate from the chain in the final certificates and add the new CA.

Before

After