I grabbed this article from "netguy.org". As he states, it's hard to get a correct writeup.
1. Install openssl-perl:
yum -y install openssl-perl
2. You need to edit the CA.pl file. This was a common area of errors since the instructions for the edit were WRONG. Rather than screwing around with diff files, you just need to make the following changes (copying the existing /etc/pki/tls/misc/CA.pl to /etc/pki/tls/misc/CA1.pl)