bbdc6b26aa
Use tls-forward-secrecy instead of tls-expired for tls-x2 and regenerate the expired certificate for tls-x6 to reflect the swap of ns2 and ns3.
Please take a look at the contents of the CA.cfg file for further instructions and configurations options.