Generate 2048 bit RSA certificates

[candrews]

More and more systems are requiring RSA certificates to be of at least 2048 bit strength.

For example, RHEL 8 and Fedora require 2048 bit or greater strength in their default configuration.

On systems which implement this security requirement, Java applications acting as a client to the this proxy fail to establish connections through it with this error:

java.security.cert.CertPathValidatorException: Algorithm constraints check failed on keysize limits. RSA 1024bit key used with certificate: OU=[something]  Usage was tls server