$ openssl genrsa > kevin.key
Generating RSA private key, 2048 bit long modulus (2 primes)
..................+++++
.+++++
e is 65537 (0x010001)

$ cat kevin.key 
-----BEGIN RSA PRIVATE KEY-----
MIIEpAIBAAKCAQEAy2QpLLv3whOL8o8QdFWbSxKe+2Afesqg2p/0R3EiI5LgLogM
2lxAHoTq8levAIwL5UjT/IVgOW4+iHUkmFtXnGbtuqn83Inl+G3IedulpW3bOryS
VX41JMKudszPjw0kY7MFIJyA1FQw3PSLF8yxrD4wnQPy1rWONFUM4vsE
 
+WBy/i/F
26kvt/RHrsTnADeQH0CDd4Hvai9YMuvBgxrHCIa4cAfX3q39ancdMUgJql/vzyJp
IifraYQlPjfmoZ9wXttitSifkp71JKWDGVxyYqaNt5KI0VB7ut0m5tujQOjjWNi1
WhlZCduDM6HJEQeEo6SE71u8MCxbe60hi4SC5wIDAQABAoIBAFEKYsGZT9n7sdp/
GJ5R8eOS0tf0b/acQEV8UHga4vBruHmx6fUjpsTCT18qgudj5eWBBD5s4m9ftvjm
PCOc2abO+FBVJRS2uXQoQiYT18e3ow+fTWtVM1WnYJ6jctxb7zDuhs98rHRt615O
7hEYlX689N
 
/LT/ovMy806EKUpGG8T4JiTIcD05wM0gD22Gf92QyivihzYLZfPsm5
DDvEe6RP9N/rB7fz4fWzAC/atx9d1Tc8keeFBOWytUORTWbGd/69Ccu9loPKOnL+
AIc5r0QVGdKPP7V5nfD9sMd/kZ9QnW6QygFdROmqUW5eZv9i0jOp9lGwK3tgYNg6
vsyqM+ECgYEA7C44t/Y9UBM0u7a5S3yoRgaPXys5XLWwO3PYNrPesft0St6uCed7
/7mEfpMycNdG0rUICZAqQhHwzd00ZfQanmkwuffkStxTiJ6vyfcdseX/3aqjRt4W
hTdB2C92OmsfjMq
 
+tH+il6KmMvfjDGJW7xD6ggxCx7sV9ZywQO+i/NECgYEA3HWJ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-----END RSA PRIVATE KEY-----

$ openssl req -new -x509 -key kevin.key > kevin.pem
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:china
string is too long, it needs to be no more than 2 bytes long
Country Name (2 letter code) [AU]:zh
State or Province Name (full name) [Some-State]:beijing
Locality Name (eg, city) []:beijing
Organization Name (eg, company) [Internet Widgits Pty Ltd]:mycompany
Organizational Unit Name (eg, section) []:iot
Common Name (e.g. server FQDN or YOUR name) []:matter.mycompany.com
Email Address []:[email protected]

$ cat kevin.pem 
-----BEGIN CERTIFICATE-----
MIID/TCCAuWgAwIBAgIUcko+fN0T6gYmK9Dq1a5BTwKfldcwDQYJKoZIhvcNAQEL
BQAwgY0xCzAJBgNVBAYTAnpoMRAwDgYDVQQIDAdiZWlqaW5nMRAwDgYDVQQHDAdi
ZWlqaW5nMQ4wDAYDVQQKDAVoYWllcjEMMAoGA1UECwwDaW90MRkwFwYDVQQDDBBt
YXR0ZXIuaGFpZXIuY29tMSEwHwYJKoZIhvcNAQkBFhJ4dWZhbmdib0BoYWllci5j
b20wHhcNMjIwMzMwMDczNjM4WhcNMjIwNDI5MDczNjM4WjCBjTELMAkGA1UEBhMC
emgxEDAOBgNVBAgMB2JlaWppbmcxEDAOBgNVBAcMB2JlaWppbmcxDjAMBgNVBAoM
BWhhaWVyMQwwCgYDVQQLDANpb3QxGTAXBgNVBAMMEG1hdHRlci5oYWllci5jb20x
ITAfBgkqhkiG9w0BCQEWEnh1ZmFuZ2JvQGhhaWVyLmNvbTCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBAOKjXXUJtv3mNX7Uy4ZtOjHUBf0xKSgeYp6mABMf
5fRJuYVwROgcKINTIktGa0NpToNfzCImHaY4oNjJf8XT9TfVjl6OBsFg67bbT2YL
HbyXhGtokDFFng4GF0vs6WG4SedchTdyQa+J38JThkY9VtZbA31vmc6sztgS7vue
mn3glytsPpi2eD5N8riCr4Zpm6u8PSBWbBObAj6ocQzxkCieXJ+C+CltZXTdBFYz
qsDRnGTRP2V05LKNHGLzJUN6nsgHCay/lMNxKq9W3lNTpVBkba8aIG3LnQylqxdW
ODpwphnaeMsrL7adqTpdQfLz1xON7b4pxAxrl94Q0PYrZG8CAwEAAaNTMFEwHQYD
VR0OBBYEFHin58UKWn24nDXKbnjhpC3/fFxjMB8GA1UdIwQYMBaAFHin58UKWn24
nDXKbnjhpC3/fFxjMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEB
AJbymdZSxCox+9zHB4H7vnOF2AtISOtHU1hJDXjttxmBEH6YvUGtoEN5KbbSPSCt
gNIP9KboH5fm11zNGkE4l188nmYMDDtzKANk/Q0gaMTfgAeVmLX3+NDhdmTc3oJv
mm+NsZb2KHpRAdKx/049mjVIYtMMY0ZJZZWmvZwsl2Tjdl9uHQKGNaRhKN9t/DUu
OM/m+eNEZswg5O8z8azQT91ho3FVsteBiKCijlIFWY34SnQDFq6/b88yMI/kz+IG
AhnQpfx6VQbBaBg/P/g03iPu2Wo3TPPdBt0YFEQEA+/zCNz94x2tT+xrjcgheJrl
dBBWJ1+cwzT2sl5XMa4qcvo=
-----END CERTIFICATE-----