That's quite a bummer, But if it's just about generating a generic CSR which you can present a certificate authority, why not just use openssl (works on Windows too) or any other usual way for generating a CSR?
For example:
openssl genrsa 2048 > private.key
openssl req -new -out request.csr -key private.key -config sslconf.cfg
sslconf.cfg should look like this:
[ req ]
default_bits = 2048
default_keyfile = key
distinguished_name = req_distinguished_name
encrypt_key = no
prompt = no
string_mask = nombstr
req_extensions = v3_req
[ v3_req ]
basicConstraints = CA:FALSE
keyUsage = digitalSignature, keyEncipherment
extendedKeyUsage = serverAuth
subjectAltName = DNS: Server.FQDN.IfRequired, DNS: SomeOtherCoolPublic.Domain.Name
[ req_distinguished_name ]
countryName = US
stateOrProvinceName = MiddleOfNowhere
localityName = SomeCity
0.organizationName = MyCompany
organizationalUnitName = Department99
commonName = ExternalPublicDNSName.FQDN