In some cases it might be useful to be able to reuse existing private keys generated server-side, and simply issue a certificate for them by providing a certificate signing request.

The following should be done:

• Add option for passing-in a CSR to the server, client, and renew commands.
• Option should be implemented as follows:
  • Option should accept a single argument, path to the CSR.
  • If specified path is equal to -, prompt user for pasting-in a CSR.
  • CSR should be stored alongside the generated certificate.
  • Use only the public key in resulting certificate.
  • When using the option for the renew command, remove private key (if any) and/or replace the existing CSR with a new one.
• Update the status command:
  • For entities where CSR is available but not the private key, make sure to show the correct artefact information (path to CSR).
• Update CLI help for affected commands.
• Update CLI examples.
• Update documentation for affected commands, adding description for the new option.