I suppose I should be the first to point out that trusting a private key from a random website is not something that you should ever do.<p>Seems fine upon inspecting the source, but that could change at any minute.<p>These instructions should suffice for anybody trying to do this from the command line: <a href="https://devcenter.heroku.com/articles/ssl-certificate-self" rel="nofollow">https://devcenter.heroku.com/articles/ssl-certificate-self</a>