You cannot create your own SSL certificate and expect it to work on the internet in the browser.
There was an effort once called the DANE but it failed so we have Let's Encrypt instead, which works well-enough.
Blockchains are slowly transferring us away from all the nightmare of DNS and SSL all that crap, so don't expect a lot of new RFCs that will allow your self-issued (not self-signed) certificates to evolve.
https://en.wikipedia.org/wiki/Self-signed_certificate
There was an effort once called the DANE but it failed so we have Let's Encrypt instead, which works well-enough.
Blockchains are slowly transferring us away from all the nightmare of DNS and SSL all that crap, so don't expect a lot of new RFCs that will allow your self-issued (not self-signed) certificates to evolve.
https://en.wikipedia.org/wiki/Self-signed_certificate
@matrix sometimes it's still worth buying a cert, or it was until they changed the rules. they used to last for up to three years. I would still buy them because it was easier than running letsencrypt on a network appliance like synology
@Moon how did they change the rules?
@matrix The Satanic pedophile elites don’t want you to know you can create and sign your own certificates. I have signed 487 certificates.