This Solution article lists the steps to create a signed certificate using the CSR.

1. Create your private key and the Certificate Signing Request.

openssl req -new -newkey rsa:2048 -nodes -keyout -out

The above OpenSSL command will generate the Certificate Signing Request (CSR) and the private key file

2. Submit the CSR to a Certification Authority ( CA )

Submit this CSR to a third-party CA like GoDaddy, DigiCert, CaCert, Cloudfare to get the signed certificate.

3. You would get a bundle with the below files if your CA is GoDaddy.

gd_bundle-g2-g1.crt is the intermediate crt

2687e78cd23e64ff.crt is the root crt
2687e78cd23e64ff.pem is pem file