描述 ACM 证书
您可以使用 ACM 控制台或 AWS CLI 列出有关证书的元数据。
描述证书 (控制台)
要显示证书元数据,请选择紧邻域名左侧的箭头。控制台将显示类似于以下内容的信息。
描述证书 (CLI)
您可以使用 AWS CLI 来获取有关颁发的证书的信息、删除证书或重新发送验证电子邮件。
检索 ACM 证书字段
您可以使用 describe-certificate 命令列出证书的元数据。
aws acm describe-certificate --certificate-arn arn:aws:acm:region:account:certificate/12345678-1234-1234-1234-123456789012
describe-certificate 命令输出以下信息。
{
"Certificate": {
"CertificateArn": "arn:aws:acm:region:account:certificate/12345678-1234-1234-1234-123456789012",
"Status": "EXPIRED",
"Options": {
"CertificateTransparencyLoggingPreference": "ENABLED"
},
"SubjectAlternativeNames": [
"example.com",
"www.example.com"
],
"DomainName": "gregpe.com",
"NotBefore": 1450137600.0,
"RenewalEligibility": "INELIGIBLE",
"NotAfter": 1484481600.0,
"KeyAlgorithm": "RSA-2048",
"InUseBy": [
"arn:aws:cloudfront::account:distribution/E12KXPQHVLSYVC"
],
"SignatureAlgorithm": "SHA256WITHRSA",
"CreatedAt": 1450212224.0,
"IssuedAt": 1450212292.0,
"KeyUsages": [
{
"Name": "DIGITAL_SIGNATURE"
},
{
"Name": "KEY_ENCIPHERMENT"
}
],
"Serial": "07:71:71:f4:6b:e7:bf:63:87:e6:ad:3c:b2:0f:d0:5b",
"Issuer": "Amazon",
"Type": "AMAZON_ISSUED",
"ExtendedKeyUsages": [
{
"OID": "1.3.6.1.5.5.7.3.1",
"Name": "TLS_WEB_SERVER_AUTHENTICATION"
},
{
"OID": "1.3.6.1.5.5.7.3.2",
"Name": "TLS_WEB_CLIENT_AUTHENTICATION"
}
],
"DomainValidationOptions": [
{
"ValidationEmails": [
"hostmaster@example.com",
"admin@example.com",
"postmaster@example.com",
"webmaster@example.com",
"administrator@example.com"
],
"ValidationDomain": "example.com",
"DomainName": "example.com"
},
{
"ValidationEmails": [
"hostmaster@example.com",
"admin@example.com",
"postmaster@example.com",
"webmaster@example.com",
"administrator@example.com"
],
"ValidationDomain": "www.example.com",
"DomainName": "www.example.com"
}
],
"Subject": "CN=example.com"
}
}