IRIS staff have been delegated the ability to create InCommon-Comodo SSL certificates for the subdomains used on the IRIS networks.
If you are the registered system administrator of a device on the IRIS network, please use [this webform](https://iris.eecs.berkeley.edu/forms/cert-request.html) to submit CSRs to IRIS staff instead of contacting calnet-pki@lists.b.e.
UPDATE
[2011-01-03 13:20:59 | Robert McNicholas]
Beginning Dec 20, 2010, Comodo began requiring at least 2048- bit keys for all SSL certificates. Please be sure to use a 2048-bit or larger key when requesting SSL certificates through IRIS.