Generates an X.509 digital certificate based on Subject and this context's key-exchange
public key, and signed by Context's private key.
To generate a self-signed certificate, Context must be set to Nothing. To
sign the new certificate with another certificate, the signer certificate's PrivateKeyContetx
property must be used to obtain its private key context.
NotBefore and NotAfter specify the certificate's validity period.
IncludePrivateKey specifies whether the corresponding private key
context must be saved with the certificate when the latter is
copied to a certificate store. You must set this argument to True
if you are to use the certificate being created for signing other certificates.
See the description of Subject in the comments to the GenerateCertificateRequest method.
Return value: a CryptoCert object representing
the newly created certificate.
Set Cert = Context.CreateCertificate( SignerCert.PrivateKeyContext, Subject, Now(), Now() + 365, True )
Relevant Section: 7.2 Certification Authority Hierarchy.