The created CA will be valid for most browsers (if present in your local trust store) and should be accepted by zlint.
Save the ssl.conf somewhere
Replace the values in the req_distinguished_name
part with your desired values.
Call openssl:
(Set -config ssl.conf
, -key ca.key
, and -out ca.crt
to appropiate values)