diff --git a/files/openssl-gost.cnf b/files/openssl-gost.cnf
index 263a9b3..8c512a1 100644
--- a/files/openssl-gost.cnf
+++ b/files/openssl-gost.cnf
@@ -1,8 +1,5 @@
-[ default ]
-dir             = /etc/pki/CA
-
 [ ca ]
-default_ca      = CA_default
+default_ca = CA_default
 
 [ CA_default ]
 dir             = /etc/pki/CA
@@ -16,7 +13,7 @@ RANDFILE        = $dir/private/.rand
 certificate     = $dir/certs/ca.crt
 private_key     = $dir/private/ca.key
 default_days    = 30
-default_md      = md_gost12_256
+default_md      = sha256
 preserve        = no
 policy          = policy_anything
 
@@ -29,25 +26,14 @@ organizationalUnitName  = optional
 commonName              = supplied
 emailAddress            = optional
 
-[ req ]
-default_bits            = 2048
-distinguished_name      = req_distinguished_name
-string_mask             = utf8only
-default_md              = md_gost12_256
-prompt                  = no
-
-[ req_distinguished_name ]
-CN = AU-Team Root CA
-
-[ v3_ca ]
-subjectKeyIdentifier    = hash
-authorityKeyIdentifier  = keyid:always,issuer
-basicConstraints        = critical, CA:true
-keyUsage                = critical, digitalSignature, cRLSign, keyCertSign
-
 [ server_cert ]
 basicConstraints        = CA:FALSE
 subjectKeyIdentifier    = hash
 authorityKeyIdentifier  = keyid,issuer
 keyUsage                = critical, digitalSignature, keyEncipherment
-extendedKeyUsage        = serverAuth
\ No newline at end of file
+extendedKeyUsage        = serverAuth
+subjectAltName          = @alt_names
+
+[ alt_names ]
+DNS.1 = web.au-team.irpo
+DNS.2 = docker.au-team.irpo
\ No newline at end of file