I am currently writing my masters thesis in which I need to develop a licensing module for an application. The license itself is a JSON Web Token which is signed using a RSA private key Since we have the requirement that resellers should also be able to create and sign valid licenses I thought about using a PKI where my company owns the root CA and creates an intermediate certificate for