feat: server/client ca

yubikey-ca-java/README.md

@@ -12,7 +12,7 @@ $ java -jar yubikey-ca-java.jar --generate-keypair --keypair-type secp256r1
 # Issue ROOT CA
 
 ```shell
-$ java -jar yubikey-ca-java.jar --generate-root-ca \
+$ java -jar yubikey-ca-java.jar --issue-root-ca \
        --sign-slot 88 --subject 'CN=Hatter Yubikey EC Root CA' \
        --pin ****** \
        [--add-to-remote]
@@ -21,10 +21,30 @@ $ java -jar yubikey-ca-java.jar --generate-root-ca \
 # Issue Intermediate CA
 
 ```shell
-$ java -jar yubikey-ca-java.jar --generate-intermediate-ca \
+$ java -jar yubikey-ca-java.jar --issue-intermediate-ca \
        --sign-slot 88 --subject 'CN=Hatter Yubikey EC Intermediate CA' \
        --cert-slot 89 --root-ca-id 39 \
        --pin ****** \
        [--add-to-remote]
 ```
 
+# Issue Server CA
+
+```shell
+$ java -jar yubikey-ca-java.jar --issue-server-ca \
+       --sign-slot 89 --subject 'CN=hatter-test' \
+       --intermediate-ca-id 40 --keypair-type secp256r1 \
+       --dns-name a.example.com --dns-name b.example.com \
+       --pin 123456 \
+       [--add-to-remote]
+```
+
+# Issue Client CA
+
+```shell
+$ java -jar yubikey-ca-java.jar --issue-client-ca \
+       --sign-slot 89 --subject 'CN=hatter-test' \
+       --intermediate-ca-id 40 --keypair-type secp256r1 \
+       --pin 123456 \
+       [--add-to-remote]
+```