| Parameter | Description | Value |
|---|---|---|
| certificate-identifier | Specifies the CA certificate. It is usually the file name that can uniquely identify a certificate. If it is a certificate chain file, you need to add an underscore (_) and sequence number to the end of the name of a certificate chain file. For example, if certificate chain file chain.crt is imported, the certificate identifiers are chain_1 and chain_2. | The value is a string of 1 to 67 case-insensitive characters. |
If the certificate-identifier parameter is not specified, it indicates that the certificate list is displayed. In this case, the list of all the CA certificates of the virtual gateway is displayed. If the certificate-identifier parameter is specified, it indicates that detailed information about the CA certificate with the certificate-identifier identifier is displayed.
# Display the list of all the CA certificates under virtual gateway gateway.
<sysname> system-view
[sysname] v-gateway gateway
[sysname-gateway] basic
[sysname-gateway-basic] display certificate-ca
Gateway CA Certificate List
------------------------------------------------------------------------------
Identifier Subject Issuer End Time
------------------------------------------------------------------------------
chain_3 a a Nov 9 03:55:26 2018 GMT
chain_2 a2 a Nov 9 03:55:26 2018 GMT
chain_1 a3 a2 Nov 9 03:55:26 2018 GMT
------------------------------------------------------------------------------
----End
Item |
Description |
|---|---|
Identifier |
Identifier of the CA certificate. It is unique. |
Subject |
Subject of the certificate. |
Issuer |
Issuer of the certificate. |
End Time |
Expiration time of the certificate. |
# Display detailed information about the CA certificate named xyz.
<sysname> system-view
[sysname] v-gateway gateway
[sysname-gateway] basic
[sysname-gateway-basic] display certificate-ca xyz
Certificate Detail Information
------------------------
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1 (0x1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=ch, ST=zj, L=hz, O=hw, OU=hw, CN=a
Validity
Not Before: Nov 11 03:55:26 2008 GMT
Not After : Nov 9 03:55:26 2018 GMT
Subject: C=ch, ST=zj, L=hz, O=hw, OU=hw, CN=a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (1024 bit)
Modulus (1024 bit):
00:ae:41:50:e8:6a:eb:ec:00:ba:9d:c3:f3:72:b7:
33:49:5d:47:0f:cd:63:e5:b9:f2:3a:f6:05:49:50:
63:0f:9b:4d:77:d4:a8:f7:7a:94:df:60:0a:c4:1b:
5e:21:87:94:13:39:5b:68:0d:da:0b:4e:44:b8:c1:
21:5c:b4:34:27:9a:d6:ec:5a:98:19:29:63:b9:b7:
2e:31:2b:13:75:b5:c8:52:fe:bc:0e:44:dd:89:8f:
9e:53:e6:19:b9:6b:1c:16:c0:e7:46:65:76:f3:ce:
3a:5b:5a:3b:30:11:7f:1b:db:44:4d:aa:89:63:e2:
bb:0b:da:d6:53:c2:97:84:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
40:79:98:63:15:D7:FF:79:5A:4D:79:C7:9A:E3:8E:D5:2E:A3:49:1A
X509v3 Key Usage:
Certificate Sign, CRL Sign
Netscape Cert Type:
SSL CA, S/MIME CA, Object Signing CA
Netscape Comment:
xca certificate
Signature Algorithm: sha256WithRSAEncryption
a8:5a:52:c4:21:1d:25:3a:8f:29:22:3b:39:a1:97:40:20:da:
d9:7b:04:1f:01:b5:aa:88:6d:6e:3f:5c:c4:61:a6:81:63:d5:
c6:f8:45:e1:c3:49:43:55:aa:f3:b2:fe:3c:08:0f:81:3a:71:
30:44:08:75:56:52:10:11:f8:4c:fa:85:e6:94:0f:3b:8d:29:
1d:1b:58:ed:a1:45:b7:2d:01:cc:78:b7:1a:43:59:7f:0a:87:
4d:f2:68:f2:65:d5:a8:ba:e9:01:c0:ef:40:e0:61:d0:f5:80:
d7:f5:e5:91:81:84:cb:64:6e:46:66:08:26:35:49:90:85:7c:
01:17
----End
Item |
Description |
|---|---|
Version |
Version of the certificate. |
Serial Number |
Serial number of the certificate. |
Signature Algorithm |
Signature algorithm of the certificate. |
Issuer |
Issuer of the certificate. |
Validity Not Before |
Start date of the certificate validity. |
Validity Not After |
End date of the certificate validity. |
Subject |
Subject of the certificate. |
Subject Public Key Info |
Information about the public key of the certificate. |
X509v3 extensions |
Information about the certificate extension. |