INTL 3:770/1 3:770/3   
   REPLYADDR invalid@invalid.invalid   
   REPLYTO 3:770/3.0 UUCP   
   MSGID:  2e493b02   
   REPLY:  d98879b4   
   PID: SoupGate-Win32 v1.05   
    writes:   
   > The reference to "scrambled credentials" implies a syntax error, some   
   > kind of credential checker would be a useful tool at this point.   
      
   I see nothing about “scrambled credentials” above. If the browser got as   
   far as displaying the certificate subject then it is certainly   
   syntactically well-formed, your browser just doesn’t like the contents.   
      
   You will probably need at least a subjectAltName extension containing   
   the DNS name of your server. This has been a cabforum.org requirement   
   for real certificates for a long time and I don’t know of any reason it   
   wouldn’t apply to self-signed certificates too.   
      
   --   
   https://www.greenend.org.uk/rjk/   
      
   --- SoupGate-Win32 v1.05   
    * Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3)   
   SEEN-BY: 19/38 90/1 105/81 106/201 129/305 153/757 7715 218/700 840   
   SEEN-BY: 220/70 226/17 30 100 227/114 229/110 111 114 200 206 300   
   SEEN-BY: 229/317 400 426 428 470 550 616 664 700 266/512 267/800 282/1038   
   SEEN-BY: 291/111 292/854 310/31 320/219 322/757 342/200 396/45 460/58   
   SEEN-BY: 633/280 281 412 418 420 509 2744 712/848 770/1 3 100 330   
   SEEN-BY: 770/340 772/210 220 230 5020/400 5075/35   
   PATH: 770/3 1 633/280 229/426