> I used CX509CertificateRequestCertificate class to create CSR with only
public key.
Those functions/classes/names/whatever are not part of OpenSSL.The OpenSSL "req" command cannot process as CSR unless it is signed by the private key. If you have a requirement to sign a CSR with the public key, then probably other things within OpenSSL will not be able to handle it.
