diff --git a/lib/certGenerator.js b/lib/certGenerator.js
index 4ceea3a..6f6b835 100644
--- a/lib/certGenerator.js
+++ b/lib/certGenerator.js
@@ -35,12 +35,12 @@ function generateRootCA(){
   cert.setSubject(attrs);
   cert.setIssuer(attrs);
   cert.setExtensions([
-    { name: 'basicConstraints', cA: true },
-    { name: 'keyUsage', keyCertSign: true, digitalSignature: true, nonRepudiation: true, keyEncipherment: true, dataEncipherment: true },
-    { name: 'extKeyUsage', serverAuth: true, clientAuth: true, codeSigning: true, emailProtection: true, timeStamping: true },
-    { name: 'nsCertType', client: true, server: true, email: true, objsign: true, sslCA: true, emailCA: true, objCA: true },
-    { name: 'subjectAltName', altNames: [ { type: 6, /* URI */ value: 'http://example.org/webid#me' }, { type: 7, /* IP */ ip: '127.0.0.1' } ] },
-    { name: 'subjectKeyIdentifier' }
+    { name: 'basicConstraints', cA: true }
+    // { name: 'keyUsage', keyCertSign: true, digitalSignature: true, nonRepudiation: true, keyEncipherment: true, dataEncipherment: true },
+    // { name: 'extKeyUsage', serverAuth: true, clientAuth: true, codeSigning: true, emailProtection: true, timeStamping: true },
+    // { name: 'nsCertType', client: true, server: true, email: true, objsign: true, sslCA: true, emailCA: true, objCA: true },
+    // { name: 'subjectAltName', altNames: [ { type: 6, /* URI */ value: 'http://example.org/webid#me' }, { type: 7, /* IP */ ip: '127.0.0.1' } ] },
+    // { name: 'subjectKeyIdentifier' }
   ]);
 
   cert.sign(keys.privateKey, forge.md.sha256.create());
diff --git a/package.json b/package.json
index 1c99666..1738483 100644
--- a/package.json
+++ b/package.json
@@ -18,6 +18,7 @@
     "ip": "^0.3.2",
     "juicer": "^0.6.6-stable",
     "nedb": "^0.11.0",
+    "node-forge": "^0.6.39",
     "npm": "^2.7.0",
     "promise": "^7.0.4",
     "qrcode-npm": "0.0.3",