Add the ability to specific RFC822 (email) names as Subject Alternative Names in x509 certificates generated via the PKI system.
Example of potential implementation below:
vyos@vyos:~$ generate pki certificate self-signed Enter private key type: [rsa, dsa, ec] (Default: rsa) rsa ... Do you want to configure Subject Alternative Names? [y/N] y Enter alternative names in a comma separate list, example: ipv4:1.1.1.1,ipv6:fe80::1,dns:vyos.net,rfc822:user@vyos.net Enter Subject Alternative Names: rfc822:example@vyos.net,dns:example.vyos.net Enter how many days certificate will be valid: (Default: 365) 365 ...