From 62eaecce338eb2c35ad78350d34d02175bc5de7f Mon Sep 17 00:00:00 2001
From: Jakub Czajka <jakub@ekhem.eu.org>
Date: Sat, 20 Apr 2024 18:30:15 +0200
Subject: [PATCH] [ca] Document generating CRL valid for longer than 30 days.

---
 ca/README | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ca/README b/ca/README
index d3d6c81..3b3071a 100644
--- a/ca/README
+++ b/ca/README
@@ -12,7 +12,8 @@ instance of `.crt` [1].
 ```
 $ sudo --preserve-env openssl req -x509 -config ca.cnf -new -days 3650 -sha256 \
     -newkey rsa:4096 -keyout private/ca.key -out ca.pem
-$ sudo --preserve-env openssl ca -gencrl -config ca.cnf -out crlfile
+$ sudo --preserve-env openssl ca -gencrl -crldays 3650 -config ca.cnf \
+    -out crlfile
 $ sudo --preserve-env sh -c "cat ca.pem >> ca.crl"
 $ sudo --preserve-env sh -c "cat crlfile >> ca.crl"
 ```
-- 
2.39.5