I am trying to create an object-signing certificate myself instead of paying Verisign or some other company hundreds of dollars. I am using linux (specifically 64bit OpenSUSE 11.1) so it would be best if I could create it in that environment. I have successfully created self-signed certificates for Apache to use for https connections using openssl. However, I cannot find what I need to do different to make it this special "object-signing" certificate.
Specifically I need an object-signing certificate to digitally sign some javascript code so that it can use extra privileges. Mozilla javascript signing is described here : http://www.mozilla.org/projects/security/components/signed-scripts.html#signing, however the link that says it describes the basics of object signing is dead.
Any help would be appreciated on the differences between an apache https ssl cert and an object-signing cert, or a how-to or faq or something on the steps to take using openssl or some other similar utility.