Navigate to System → Cert Manager.
In Add/Sign a New Certificate:
In Internal Certificate:
Certificate authority: ShareWiz OpenVPN CA.
Key Type: RSA.
Key length: 2048 bit.
Digest Algorithm: SHA 256.
Lifetime: 397. (1 year).
Common Name: ShareWiz - OpenVPN CA.
Country Code: JE.
State or Province: <blank>.
City: St. Helier.
Organization: ShareWiz.
Organizational Unit: <blank>.
In Certificate Attributes:
NOTE: Lifetime.
New TLS certificates will be limited to 398 days, a little over a year (13 months).
In a move that is meant to boost security, Apple, Google, and Mozilla reject publicly rooted digital certificates in their respective web browsers that expire more than 13 months (or 398 days) from their creation date.
To avoid unintended consequences, it is recommended that certificates be issued with a maximum validity of 397 days.