OpenSSL
bash ( <(command) 使)
$ openssl req -x509 -out cert.pem -keyout privkey.pem -newkey ec:<(openssl ecparam -name secp384r1) -nodes -subj '/CN=localhost' -extensions EXT -config <(printf "[dn]\nCN=localhost\n[req]\ndistinguished_name = dn\n[EXT]\nsubjectAltName=DNS:localhost\nkeyUsage=digitalSignature\nextendedKeyUsage=serverAuth") -days 365

$ openssl ecparam -name secp384r1 >secp384r1.param
$ printf "[dn]\nCN=localhost\n[req]\ndistinguished_name = dn\n[EXT]\nsubjectAltName=DNS:localhost\nkeyUsage=digitalSignature\nextendedKeyUsage=serverAuth" >localhost_openssl.cnf
$ openssl req -x509 -out cert.pem -keyout privkey.pem -newkey ec:secp384r1.param -nodes -subj '/CN=localhost' -extensions EXT -config localhost_openssl.cnf -days 365
[dn]
CN=localhost
[req]
distinguished_name = dn
[EXT]
subjectAltName=DNS:localhost
keyUsage=digitalSignature
extendedKeyUsage=serverAuth