show certificate cert-type

Displays the digital certificate for given certificate type or lists all the certificate details from the local store for given certificate type.

Syntax

show certificate cert-type default-tls-certificate
show certificate cert-type intermediate-ca-cert WORD<1-80>
show certificate cert-type offline-ca-cert
show certificate cert-type offline-subject-cert
show certificate cert-type online-ca-cert
show certificate cert-type online-subject-cert
show certificate cert-type root-ca-cert WORD<1-80>

Command Parameters

default-tls-certificate: Displays the default TLS certificate (self-signed).
intermediate-ca-cert WORD<1-80>: Specifies the intermediate certificate obtained offline from Certificate Authority.
offline-ca-cert: Specifies Certificate Authority certificate obtained offline from Certificate Authority
offline-subject-cert: Specifies subject certificate obtained offline from Certificate Authority.
online-ca-cert: Specifies Certificate Authority Certificate obtained online from Certificate Authority.
online-subject-cert: Specifies subject certificate obtained online from Certificate Authority.
root-ca-cert WORD<1-80>: Specifies root certificate obtained offline from Root Certificate Authority.

Default

None

Command Mode

User EXEC

Command Output

The show certificate cert-type command displays the following information:


Output field	Description
Certificate Type	Indicates the type of certificate. Self-signed certificate Root Certificate Offline subject certificate Online subject certificate Intermediate CA certificate Offline CA certificate Online CA certificate
VersionNumber	Indicates the certificate version number for the subject as issued by the Certificate Authority.
SerialNumber	Indicates the certificate serial number for the subject as issued by the Certificate Authority.
IssuerName	Indicates the certificate issuer name for the subject as issued by the Certificate Authority.
ValidityPeriodNotBefore	Indicates the certificate validation period start date for the subject as issued by the Certificate Authority.
ValidityPeriodNotAfter	Indicates the certificate validation period last date for the subject as issued by the Certificate Authority.
CertificateSignatureAlgorithm	Indicates the algorithm used for the issuer's signature on the certificate for the subject as issued by the Certificate Authority.
CertificateSignature	Indicates the issuer's signature on the certificate for the subject as issued by the Certificate Authority.
Subject	Indicates the details of the subject on its certificate as issued by Certificate Authority.
SubjectPublicKeyAlgorithm	Indicates the algorithm used to generate the subject's public key for the certificate issued by the Certificate Authority.
SubjectPublicKey	Indicates the public key of the subject used for Certificate Signing Request.
HasBasicConstraint	Indicates whether certificate contains basic certificate constraint.
HasKeyUsage	Indicates whether certificate contains basic key usage constraint.
IsCa	Indicates if the certificate is a CA certificate or not.
KeyUsage	Indicates the purpose of the key used in the certificate. It is represented in the form of bits as follows: bit 0 - digitalSignature bit 1 - nonRepudiation bit 2 - keyEncipherment bit 3 - dataEncipherment bit 4 - keyAgreement bit 5 - keyCertSign bit 6 - cRLSign bit 7 - encipherOnly bit 8 - decipherOnly
ExtendedKeyUsage	Indicates the purpose for which the key is used in addition to or in place of the basic purposes indicated in the key-usage field of the certificate.
CDPUrl	Indicates the CDP URL present in the Digital Certificate Extensions field.
OCSPUrl	Indicates the OCSP URL present in the Digital Certificate AIA field.
Status	Indicates the certificate status.
Installed	Indicates if the certificate is installed.