TXT_DB error number 2
This thing happens when you try to sign a certificate that shares the same common data as another certificate. You cannot have two certificates that look the same.
Either remove them by hand from the database, or properly revoke them using ‘openssl ca -revoke xyz.crt’.
You could also allow two this by editing the file “CA_database.txt.attr” and set “unique_subject = no”