When you have created a keystore for the Java client, you can generate the certificate request. The certificate request contains the following:
You send the certificate request to the certification authority (CA). The CA then issues the actual certificate.