* Sign notification emails (+ create gpg key for that)
* Support creating non root certificates:
  -> add an option for giving the ownership and rights it should have
  -> Break up openssl.cnf.in into several files (1 for root CA, 1 for CSR)
  -> Implement functionnality via no -batch and adapted policy_match
  -> Make certificate needed by testsuite be generated with ssl_mgmt
* Support creating root CA:
  -> Implement functionnality following what was done for non-root certificates
  -> Make root CA needed by testsuite be generated with ssl_mgmt