Sample code for 30+ languages & platforms
Delphi ActiveX

Generate CSR with Uncommon Fields

See more CSR Examples

Demonstrates how to generate a new RSA key and a Certificate Signing Request (CSR) for this:
csr.common.name=Admin forInformation-MainShop
csr.serial.number=1-XYZ|2-2.0|3-999695
csr.organization.identifier=990099994100099
csr.organization.unit.name=9999910000
csr.organization.name=9999910000
csr.country.name=SA
csr.invoice.type=1100
csr.location.address=King Fahed Road
csr.industry.business.category=MainOffice

Chilkat Delphi ActiveX Downloads

Delphi ActiveX
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Integer;
rsa: TChilkatRsa;
privKey: TPrivateKey;
csr: TChilkatCsr;
pemStr: WideString;
fac: TCkFileAccess;

begin
success := 0;

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// First generate an RSA private key.
rsa := TChilkatRsa.Create(Self);

// Generate a random 2048-bit RSA key.
privKey := TPrivateKey.Create(Self);
success := rsa.GenKey(2048,privKey.ControlInterface);
if (success = 0) then
  begin
    Memo1.Lines.Add(rsa.LastErrorText);
    Exit;
  end;

// Create the CSR object and set properties.
csr := TChilkatCsr.Create(Self);

csr.CommonName := 'Admin forInformation-MainShop';

// Country Name (2 letter code)
csr.Country := 'SA';

// Organization Name (eg, company)
csr.Company := '9999910000';

// Organizational Unit Name (eg, secion/division)
csr.CompanyDivision := '9999910000';

// See https://www.alvestrand.no/objectid/2.5.4.html for OIDs for the following fields:

// csr.serial.number=1-XYZ|2-2.0|3-999695
// 2.5.4.5 - id-at-serialNumber 
csr.SetSubjectField('2.5.4.5','1-XYZ|2-2.0|3-999695','UTF8String');

// csr.organization.identifier=990099994100099
// 2.5.4.45 - id-at-uniqueIdentifier   Don't know if this is correct.
csr.SetSubjectField('2.5.4.45','1100','UTF8String');

// csr.invoice.type=1100
// Don't know what this OID would be...
csr.SetSubjectField('2.5.4.99','1100','UTF8String');

// csr.location.address=King Fahed Road
// 2.5.4.9 - id-at-streetAddress 
csr.SetSubjectField('2.5.4.9','King Fahed Road','UTF8String');

// csr.industry.business.category=MainOffice
// 2.5.4.15 - id-at-businessCategory 
csr.SetSubjectField('2.5.4.15','MainOffice','UTF8String');

// Create the CSR using the private key.
pemStr := csr.GenCsrPem(privKey.ControlInterface);
if (csr.LastMethodSuccess <> 1) then
  begin
    Memo1.Lines.Add(csr.LastErrorText);
    Exit;
  end;

// Save the private key and CSR to a files.
privKey.SavePkcs8EncryptedPemFile('password','qa_output/privKey1.pem');

fac := TCkFileAccess.Create(Self);
fac.WriteEntireTextFile('qa_output/csr1.pem',pemStr,'utf-8',0);

// Show the CSR.
Memo1.Lines.Add(pemStr);

// Sample output:
// The CSR PEM can be checked here:
// https://www.networking4all.com/en/support/tools/csr+check/
// Copy-and-paste the PEM into the online CSR Decoding / CSR Verification form

// 	-----BEGIN CERTIFICATE REQUEST-----
// 	MIIC6jCCAdICAQAwgaQxITAfBgNVBAMMGG15c3ViZG9tYWluLm15ZG9tYWluLmNv
// ...
// ...
// 	hJnYCvjzFz4O9VtT+JtP9ldRHWV3KpZ8ne3AjD+F
// 	-----END CERTIFICATE REQUEST-----
end;