[CentOS] Why is localhost self-signed cert a CA cert?

Tue Jan 8 23:27:36 UTC 2013
Robert Moskowitz <rgm at htt-consult.com>

On 01/08/2013 05:07 PM, Gordon Messmer wrote:
> On 01/08/2013 11:49 AM, Robert Moskowitz wrote:
>> Why was this chosen?  Why is not -extensions v3_req used in the
>> certificate creation?
> Because it has to be able to sign itself?

I just checked a couple RFCs. If this is a root CA cert, of course it is 
self-signed. By definition.

But a self-signed server cert is not a CA root cert....