Posting this mostly as a reminder to myself for the next time I have to do this. For those who don’t know, a statically linked binary is an executable that does not require any support libraries. All the required support libraries get included in the binary itself. This results in a binary that will run on any system of the right CPU type (i386, x86_64, ppc, etc.) The downside of this is that the resulting binary is going to be quite large.
Are you in need of X.509 certificates for your systems? Are you outraged by the expense of commercial CAs? You can be your own certificate authority. I’ve tried out a bunch of different Open Source CA packages and found most of them to either be too rudimentary (e.g. the CA.sh script that comes with the OpenSSL distribution) or way too complex (OpenCA). However, I’ve finally managed to find a reasonable middle ground for a low volume CA.