diff --git a/VM_VPN_GATEWAY.sh b/VM_VPN_GATEWAY.sh
index 8fb7484..8ed1543 100644
--- a/VM_VPN_GATEWAY.sh
+++ b/VM_VPN_GATEWAY.sh
@@ -53,14 +53,15 @@ sudo iptables-save > /etc/sysconfig/iptables # :3
 
 # Copiar o Self-signed Certificate Authority
 ca_dir="/etc/pki/CA"
-mkdir -p $ca_dir 
-cp ca.crt $ca_dir
+sudo mkdir -p $ca_dir 
+sudo touch "${ca_dir}/serial"
+sudo cp ca.crt $ca_dir
 
 # Criar vpn certificate
-openssl req -new -key vpn.key -out vpn.csr
-openssl ca -in vpn.csr -cert ca.crt -keyfile ca.key -out vpn.crt
-cp vpn.key $ca_dir
-cp vpn.crt $ca_dir
+sudo openssl req -new -key vpn.key -out vpn.csr
+sudo openssl ca -in vpn.csr -cert ca.crt -keyfile ca.key -out vpn.crt
+sudo cp vpn.key $ca_dir
+sudo cp vpn.crt $ca_dir
 
 
 # NOTA(vasco): o ficheiro conf vai ser vpn.conf pq isso é o nome do serviço
diff --git a/vpn.csr b/vpn.csr
new file mode 100644
index 0000000..5904d72
--- /dev/null
+++ b/vpn.csr
@@ -0,0 +1,17 @@
+-----BEGIN CERTIFICATE REQUEST-----
+MIICoTCCAYkCAQAwXDELMAkGA1UEBhMCUFQxEDAOBgNVBAgMB0NvaW1icmExEDAO
+BgNVBAcMB0NvaW1icmExCzAJBgNVBAoMAlVDMQ4wDAYDVQQLDAVGQ1RVQzEMMAoG
+A1UEAwwDVlBOMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuO077R1T
+T0l5yDyEdQBKRWu50exIMEQKANHh7AHfuLCoqfGsvulphnNVuQPXoH+pnos4NkAn
+C3ME5u0kt2UwmGLRj9tzrUK/AGQ6WXokXMco0FBIxDzYSVkq+0V52x24JNiEBrTY
+ZwYcrC7bqbmIDiAR5siI82KSgO7Mv6EU15rzcMpO73C5uiG3sJzWqd9rMB65s7Ei
+cw6w1ZETE9g0AwW2CyeR/uYA35ieRwIznDMBO+Rm8BngymtVE+PWhad9NAL58K9n
+nKqjGuOEWd7HNdP/IoDcbDWV0LLhL7+GMVwzmVYpDD8QJ7ebfcKu1j8CwoeBtDVF
+GrE0hlEWyWE70wIDAQABoAAwDQYJKoZIhvcNAQELBQADggEBAKayFAqGxJg1GCjf
+VC3K+f2fYAWYWObnRk57k9+dDoAicjq+RiUHmsxmbskZPclRxPpAeev+acXlCBnL
+Bj/pKegDHwM0k+3+9vvFI5Co3UE5hsMACSql20lWPFrJlZzEIjW8HpDqotp4fE4O
+49X1Fekz/FOby44UeqtUDUpLkYc5QMuXVV+DblwkYNrjyLlqy8BFQnRuWLTJjFAG
+FFgJfVEfAfd+3V3G7700rAtszGpwvr5E3BhRyvbliQJr7wGUkqV2HQ3IpoG3HovO
+QFAxAfMbnMJe81k8GhSHYBeD9gFFbyq9e18RO/mwJF357G/asEe/nyAko1FCbDrl
+/bjTKBA=
+-----END CERTIFICATE REQUEST-----