Can Vault generate signed certificate that's a CA (isCA:True)?

Can Vault generate signed certificate that’s a CA (isCA:True)?